![]() |
|
Plagegeister aller Art und deren Bekämpfung: Windows 10 bootet langsam trotz ssdWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
![]() | #1 |
![]() ![]() | ![]() Windows 10 bootet langsam trotz ssd Hallo, mir wurde schon einmal sehr geholfen in diesem Board, nun hoffe ich erneut auf eure Hilfe. Mein System bootet extrem langsam vor allem die Abmeldung um in einem andern Benutzer sich einzuloggen dauert sehr lange. Ich versteh leider nicht wieso. Ich schau etliche Videos welches Antivirusprogramm ich benutzen könnte aber sehr oft wird von Usern abgeraten Antivirenprogramme zu benutzen was meint ihr ? Ich freu mich auf eure antworten Vielen Dank. PS: Ich hab das gleiche Thema im Log Analyse und Auswertung Bereich erstellt. Bin mir sicher das müsse der falsche Bereich sein hoffe es wird gelöscht und bitte um Entschuldigung. Ich hab schonmal die Logdatein von Frist.txt Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:25-01-2016 durchgeführt von NABIL (Administrator) auf NABIL-PC (25-01-2016 20:56:12) Gestartet von C:\Users\NABIL\Downloads Geladene Profile: NABIL (Verfügbare Profile: NABIL & asd & Gast) Platform: Windows 10 Pro (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Edge) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start101\Start10Srv.exe (Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start101\Start10_64.exe (Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe () C:\Windows\SysWOW64\ASGT.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (ABBYY Production LLC) C:\Program Files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe (Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe () C:\Program Files (x86)\ASUS\APRP\AsusProductRegisterService.exe (Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe (IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe (Microsoft Corporation) C:\Windows\System32\mqsvc.exe (DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Microsoft Corporation) C:\Windows\splwow64.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe (Microsoft Corporation) C:\Windows\splwow64.exe () M:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe () M:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.1.7\deploy\LoLLauncher.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe () M:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.47\deploy\LoLPatcher.exe (Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.266\SSScheduler.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe () M:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.182\deploy\LolClient.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16404224 2015-12-22] (Realtek Semiconductor) HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-10-30] (Adobe Systems Incorporated) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-12-17] (Apple Inc.) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1065968 2015-07-23] (SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [LexwareInfoService] => C:\Program Files (x86)\Common Files\Lexware\Update Manager\LxUpdateManager.exe [189808 2011-07-31] (Haufe-Lexware GmbH & Co. KG) HKLM-x32\...\Run: [Bonus.SSR.FR12] => C:\Program Files (x86)\ABBYY FineReader 12\Bonus.ScreenshotReader.exe [1517088 2014-09-21] (ABBYY Production LLC.) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1867448 2015-12-18] (Adobe Systems Inc.) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1085656 2015-12-13] (Adobe Systems Incorporated) Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd) HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd) HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50378880 2015-12-29] (Skype Technologies S.A.) HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\Run: [Speech Recognition] => C:\WINDOWS\Speech\Common\sapisvr.exe [45056 2015-07-10] (Microsoft Corporation) ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Keine Datei ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => Keine Datei ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => Keine Datei ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Keine Datei ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Keine Datei ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => Keine Datei ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => Keine Datei Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2015-12-27] ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.266\SSScheduler.exe (McAfee, Inc.) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{281f7690-3078-4910-b67d-7743d4eb2a9a}: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{F37B658C-DD8B-4CF0-8B0B-6CE9D411B48F}: [NameServer] 208.67.222.222 208.67.220.220 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-225648569-1694930765-1264359465-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.giga.de/androidnews/ SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-11-18] (Microsoft Corporation) BHO: Adblock IE -> {667BEE43-20BD-4CE3-94AC-E63E04D4B191} -> C:\Program Files\MGTEK\Adblock IE\adblockie.dll [2013-05-08] (MGTEK) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2016-01-06] (Oracle Corporation) BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-09-30] (Adobe Systems Incorporated) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-11-10] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2016-01-06] (Oracle Corporation) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-09-30] (Adobe Systems Incorporated) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-11-18] (Microsoft Corporation) BHO-x32: Adblock IE -> {667BEE43-20BD-4CE3-94AC-E63E04D4B191} -> C:\Program Files (x86)\MGTEK\Adblock IE\adblockie.dll [2013-05-08] (MGTEK) BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-09-30] (Adobe Systems Incorporated) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-11-10] (Microsoft Corporation) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-09-30] (Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-09-30] (Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-09-30] (Adobe Systems Incorporated) Toolbar: HKU\S-1-5-21-225648569-1694930765-1264359465-1000 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2015-09-30] (Adobe Systems Incorporated) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-03-12] (Microsoft Corporation) FireFox: ======== FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2014-05-26] (Tracker Software Products (Canada) Ltd.) FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2016-01-06] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2016-01-06] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.1.0 -> m:\Program Files\VideoLAN\VLC\npvlc.dll [2013-09-25] (VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems) FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] () FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2014-05-26] (Tracker Software Products (Canada) Ltd.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-11-18] (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation) FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2014-03-18] (Nero AG) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-03] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-03] (Google Inc.) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2015-12-18] (Adobe Systems Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-12-17] (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems) FF Plugin HKU\S-1-5-21-225648569-1694930765-1264359465-1000: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2014-05-26] (Tracker Software Products (Canada) Ltd.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-11-18] (Microsoft Corporation) FF Extension: Kein Name - C:\Program Files (x86)\RichMediaViewV1\RichMediaViewV1release6352\ff [nicht gefunden] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn FF Extension: Adobe Acrobat DC - Create PDF - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2016-01-14] FF HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff => nicht gefunden Chrome: ======= CHR Profile: C:\Users\NABIL\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Drive) - C:\Users\NABIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-02] CHR Extension: (YouTube) - C:\Users\NABIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26] CHR Extension: (Adblock Plus) - C:\Users\NABIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-01-06] CHR Extension: (Google-Suche) - C:\Users\NABIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-02] CHR Extension: (Adblock Plus) - C:\Users\NABIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\fancjlijdfajbmighlldmgmeobfmempn [2015-03-23] CHR Extension: (Google Docs Offline) - C:\Users\NABIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-24] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\NABIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-29] CHR Extension: (Google Mail) - C:\Users\NABIL\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [4907232 2014-12-01] (Emsisoft GmbH) R2 ABBYY.Licensing.FineReader.Professional.12.0; C:\Program Files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe [961744 2014-07-13] (ABBYY Production LLC) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2016448 2015-11-25] (Adobe Systems, Incorporated) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.) R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] () [Datei ist nicht signiert] R2 Asus Product Register Service; C:\Program Files (x86)\ASUS\APRP\AsusProductRegisterService.exe [62128 2012-09-11] () [Datei ist nicht signiert] S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1145216 2015-05-19] () R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [382312 2015-11-27] (Digital Wave Ltd.) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd) R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-04-30] (Intel Corporation) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Datei ist nicht signiert] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation) R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-12] (Intel Corporation) R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [182248 2013-03-14] () S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] () R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation) R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2934048 2015-11-10] (IObit) S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe [289256 2015-12-02] (McAfee, Inc.) R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [703984 2014-09-22] (SEIKO EPSON CORPORATION) S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2015.SP1\RpcAgentSrv.exe [73200 2015-02-15] (SiSoftware) [Datei ist nicht signiert] R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU Co., LTD.) R2 Start10; C:\Program Files (x86)\Stardock\Start101\Start10Srv.exe [219664 2015-02-03] (Stardock Software, Inc) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R3 a2acc; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys [71472 2014-05-12] (Emsisoft GmbH) R1 A2DDA; C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [26176 2013-03-28] (Emsisoft GmbH) R1 a2injectiondriver; C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys [45208 2013-09-30] (Emsisoft GmbH) R1 a2util; C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys [23088 2014-05-12] (Emsisoft GmbH) R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [62152 2014-10-28] (Advanced Micro Devices, Inc.) R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-12-22] (Advanced Micro Devices) R3 cleanhlp; C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys [57024 2013-12-04] (Emsisoft GmbH) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-09-10] (Disc Soft Ltd) R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d65x64.sys [531424 2015-12-22] (Intel Corporation) R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-11-08] (REALiX(tm)) R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [21048 2013-03-14] () R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [21048 2013-03-14] () R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [23680 2010-02-23] (ASUSTeK Computer Inc.) R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-03-14] () R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [185088 2015-12-22] (Intel Corporation) S3 MotioninJoyXFilter; C:\Windows\System32\DRIVERS\MijXfilt.sys [121416 2012-05-12] (MotioninJoy) [Datei ist nicht signiert] S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2015.SP1\WNt600x64\Sandra.sys [23112 2009-08-07] (SiSoftware) R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33960 2015-12-22] (Synaptics Incorporated) S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] () S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation) R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation) R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2016-01-25] () U4 idsvc; kein ImagePath S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] U4 wpcsvc; kein ImagePath ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-01-25 20:56 - 2016-01-25 20:56 - 00025242 _____ C:\Users\NABIL\Downloads\FRST.txt 2016-01-25 20:55 - 2016-01-25 20:55 - 02370560 _____ (Farbar) C:\Users\NABIL\Downloads\FRST64.exe 2016-01-25 20:52 - 2016-01-25 20:52 - 00001086 _____ C:\Users\NABIL\Desktop\Deponia The Complete Journey Configuration Tool.lnk 2016-01-25 20:52 - 2016-01-25 20:52 - 00000984 _____ C:\Users\NABIL\Desktop\Deponia The Complete Journey.lnk 2016-01-25 20:44 - 2016-01-25 20:44 - 00016148 _____ C:\WINDOWS\system32\NABIL-PC_NABIL_HistoryPrediction.bin 2016-01-25 20:43 - 2016-01-25 20:43 - 00016148 _____ C:\WINDOWS\system32\NABIL-PC_asd_HistoryPrediction.bin 2016-01-25 19:02 - 2016-01-25 19:02 - 00020440 _____ C:\Users\NABIL\Downloads\_g0371_Deponia_The_Complete_Journey_MULTi2_-_x.X.RIDDICK.X.x-3nkxg1o73z9c.dlc 2016-01-22 19:45 - 2016-01-22 19:45 - 00000000 ____D C:\Users\asd\Documents\CAPCOM 2016-01-21 21:12 - 2016-01-21 21:12 - 00007856 _____ C:\Users\NABIL\Downloads\ac0a459a259dbb443421eabe91c814a89905cb6f (2).dlc 2016-01-21 21:12 - 2016-01-21 21:12 - 00007856 _____ C:\Users\NABIL\Downloads\ac0a459a259dbb443421eabe91c814a89905cb6f (1).dlc 2016-01-20 19:25 - 2016-01-20 19:25 - 00002200 _____ C:\Users\NABIL\Downloads\2d6f622cbdd4001cb8ab4327fb939765708c4891.dlc 2016-01-20 19:22 - 2016-01-25 20:44 - 00094656 _____ (CACE Technologies) C:\WINDOWS\system32\WPRO_41_2001woem.tmp 2016-01-17 21:06 - 2016-01-17 21:06 - 00000000 ____D C:\Users\asd\AppData\Local\Apple Computer 2016-01-13 22:06 - 2016-01-14 04:30 - 00000000 ____D C:\Users\asd\AppData\Roaming\Skype 2016-01-13 22:06 - 2016-01-13 22:06 - 00000000 ____D C:\Users\asd\Tracing 2016-01-13 22:02 - 2016-01-13 22:02 - 00000000 ____D C:\Users\asd\AppData\Roaming\LolClient 2016-01-13 16:04 - 2016-01-13 16:04 - 00025755 _____ C:\Users\asd\Downloads\Aktivierungskarte_Kreditvertrag_2381650.pdf 2016-01-13 08:08 - 2016-01-05 04:07 - 00377592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL 2016-01-13 08:08 - 2016-01-05 04:06 - 01991120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL 2016-01-13 08:08 - 2016-01-05 04:06 - 01270104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll 2016-01-13 08:08 - 2016-01-05 04:06 - 01063504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll 2016-01-13 08:08 - 2016-01-05 04:04 - 02641928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL 2016-01-13 08:08 - 2016-01-05 04:04 - 01150816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2016-01-13 08:08 - 2016-01-05 04:04 - 00862056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll 2016-01-13 08:08 - 2016-01-05 04:04 - 00787720 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL 2016-01-13 08:08 - 2016-01-05 04:04 - 00779928 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll 2016-01-13 08:08 - 2016-01-05 04:04 - 00751992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL 2016-01-13 08:08 - 2016-01-05 04:04 - 00667856 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll 2016-01-13 08:08 - 2016-01-05 04:04 - 00115704 _____ (Microsoft Corporation) C:\WINDOWS\system32\VIDRESZR.DLL 2016-01-13 08:08 - 2016-01-05 04:04 - 00083704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfvdsp.dll 2016-01-13 08:08 - 2016-01-05 03:50 - 00345080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL 2016-01-13 08:08 - 2016-01-05 03:50 - 00205072 _____ (Microsoft Corporation) C:\WINDOWS\system32\COLORCNV.DLL 2016-01-13 08:08 - 2016-01-05 03:30 - 02459096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL 2016-01-13 08:08 - 2016-01-05 03:30 - 02162064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVENCOD.DLL 2016-01-13 08:08 - 2016-01-05 03:30 - 01106872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll 2016-01-13 08:08 - 2016-01-05 03:30 - 00882208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll 2016-01-13 08:08 - 2016-01-05 03:30 - 00368776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL 2016-01-13 08:08 - 2016-01-05 03:28 - 00714808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll 2016-01-13 08:08 - 2016-01-05 03:28 - 00696192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL 2016-01-13 08:08 - 2016-01-05 03:28 - 00695752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL 2016-01-13 08:08 - 2016-01-05 03:28 - 00497896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll 2016-01-13 08:08 - 2016-01-05 03:28 - 00107952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VIDRESZR.DLL 2016-01-13 08:08 - 2016-01-05 03:28 - 00072808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfvdsp.dll 2016-01-13 08:08 - 2016-01-05 03:18 - 21873152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2016-01-13 08:08 - 2016-01-05 03:15 - 24592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2016-01-13 08:08 - 2016-01-05 03:15 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL 2016-01-13 08:08 - 2016-01-05 03:10 - 00305776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSDECD.DLL 2016-01-13 08:08 - 2016-01-05 03:10 - 00188032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\COLORCNV.DLL 2016-01-13 08:08 - 2016-01-05 03:09 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2016-01-13 08:08 - 2016-01-05 03:02 - 01672192 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll 2016-01-13 08:08 - 2016-01-05 02:57 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2016-01-13 08:08 - 2016-01-05 02:51 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL 2016-01-13 08:08 - 2016-01-05 02:51 - 01009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL 2016-01-13 08:08 - 2016-01-05 02:51 - 00634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL 2016-01-13 08:08 - 2016-01-05 02:51 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL 2016-01-13 08:08 - 2016-01-05 02:43 - 19324928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2016-01-13 08:08 - 2016-01-05 02:42 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL 2016-01-13 08:08 - 2016-01-05 02:32 - 01541632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll 2016-01-13 08:08 - 2016-01-05 02:31 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll 2016-01-13 08:08 - 2016-01-05 02:30 - 18802176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2016-01-13 08:08 - 2016-01-05 02:26 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2016-01-13 08:08 - 2016-01-05 02:20 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL 2016-01-13 08:08 - 2016-01-05 02:19 - 01070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL 2016-01-13 08:08 - 2016-01-05 02:19 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL 2016-01-13 08:08 - 2016-01-05 02:19 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL 2016-01-13 08:07 - 2016-01-05 04:07 - 02463704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2016-01-13 08:07 - 2016-01-05 04:06 - 08022368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2016-01-13 08:07 - 2016-01-05 04:06 - 00119800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL 2016-01-13 08:07 - 2016-01-05 04:04 - 02824248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2016-01-13 08:07 - 2016-01-05 04:04 - 01591848 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2016-01-13 08:07 - 2016-01-05 04:04 - 00784136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2016-01-13 08:07 - 2016-01-05 04:04 - 00772448 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2016-01-13 08:07 - 2016-01-05 04:04 - 00250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPG4DECD.DLL 2016-01-13 08:07 - 2016-01-05 04:04 - 00249464 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL 2016-01-13 08:07 - 2016-01-05 04:04 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2016-01-13 08:07 - 2016-01-05 04:04 - 00233992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll 2016-01-13 08:07 - 2016-01-05 04:04 - 00090912 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll 2016-01-13 08:07 - 2016-01-05 03:59 - 00781976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll 2016-01-13 08:07 - 2016-01-05 03:52 - 00441696 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2016-01-13 08:07 - 2016-01-05 03:50 - 01817064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll 2016-01-13 08:07 - 2016-01-05 03:50 - 01083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2016-01-13 08:07 - 2016-01-05 03:50 - 00723648 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2016-01-13 08:07 - 2016-01-05 03:50 - 00251544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP43DECD.DLL 2016-01-13 08:07 - 2016-01-05 03:31 - 01365576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2016-01-13 08:07 - 2016-01-05 03:30 - 02152744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2016-01-13 08:07 - 2016-01-05 03:30 - 00232896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL 2016-01-13 08:07 - 2016-01-05 03:30 - 00100712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL 2016-01-13 08:07 - 2016-01-05 03:29 - 00208688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll 2016-01-13 08:07 - 2016-01-05 03:28 - 02445128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2016-01-13 08:07 - 2016-01-05 03:28 - 00645144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2016-01-13 08:07 - 2016-01-05 03:28 - 00635312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll 2016-01-13 08:07 - 2016-01-05 03:28 - 00277400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MPG4DECD.DLL 2016-01-13 08:07 - 2016-01-05 03:28 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll 2016-01-13 08:07 - 2016-01-05 03:28 - 00082096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll 2016-01-13 08:07 - 2016-01-05 03:21 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll 2016-01-13 08:07 - 2016-01-05 03:15 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll 2016-01-13 08:07 - 2016-01-05 03:15 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgrcli.dll 2016-01-13 08:07 - 2016-01-05 03:10 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll 2016-01-13 08:07 - 2016-01-05 03:10 - 00278424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP43DECD.DLL 2016-01-13 08:07 - 2016-01-05 03:09 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2016-01-13 08:07 - 2016-01-05 03:02 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll 2016-01-13 08:07 - 2016-01-05 03:02 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll 2016-01-13 08:07 - 2016-01-05 03:01 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax 2016-01-13 08:07 - 2016-01-05 03:00 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2016-01-13 08:07 - 2016-01-05 03:00 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2016-01-13 08:07 - 2016-01-05 02:59 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2016-01-13 08:07 - 2016-01-05 02:57 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll 2016-01-13 08:07 - 2016-01-05 02:57 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2016-01-13 08:07 - 2016-01-05 02:56 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2016-01-13 08:07 - 2016-01-05 02:51 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFWMAAEC.DLL 2016-01-13 08:07 - 2016-01-05 02:44 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll 2016-01-13 08:07 - 2016-01-05 02:44 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usermgrcli.dll 2016-01-13 08:07 - 2016-01-05 02:38 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh264enc.dll 2016-01-13 08:07 - 2016-01-05 02:32 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll 2016-01-13 08:07 - 2016-01-05 02:31 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax 2016-01-13 08:07 - 2016-01-05 02:29 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2016-01-13 08:07 - 2016-01-05 02:29 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2016-01-13 08:07 - 2016-01-05 02:24 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2016-01-13 08:07 - 2016-01-05 02:19 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFWMAAEC.DLL 2016-01-10 20:05 - 2016-01-10 20:05 - 00069336 _____ C:\Users\NABIL\Downloads\The.Flash.S01.German.DL.720p.BluRay.x264-iNTENTiON-dai97zncwho.dlc 2016-01-07 02:49 - 2016-01-07 03:09 - 00000000 ____D C:\Users\asd\AppData\Roaming\vlc 2016-01-06 15:01 - 2016-01-06 15:01 - 00110176 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll 2016-01-06 15:01 - 2016-01-06 15:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit 2016-01-06 15:01 - 2016-01-06 15:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-01-06 15:00 - 2016-01-06 15:01 - 00000000 ____D C:\Program Files\Java 2016-01-06 14:54 - 2016-01-06 14:54 - 00000000 ____D C:\Users\NABIL\.jmc 2016-01-06 14:54 - 2016-01-06 14:54 - 00000000 ____D C:\Users\NABIL\.eclipse 2016-01-06 14:45 - 2016-01-06 14:54 - 00000000 ____D C:\Users\NABIL\.oracle_jre_usage 2016-01-06 14:45 - 2016-01-06 14:45 - 00000000 ____D C:\Users\NABIL\AppData\Roaming\Sun 2016-01-06 14:45 - 2016-01-06 14:45 - 00000000 ____D C:\Users\NABIL\AppData\LocalLow\Sun 2016-01-06 14:45 - 2016-01-06 14:45 - 00000000 ____D C:\ProgramData\Oracle 2016-01-06 14:44 - 2016-01-06 14:44 - 00000000 ____D C:\Users\NABIL\AppData\LocalLow\Oracle 2016-01-06 14:43 - 2016-01-06 14:44 - 195629144 _____ (Oracle Corporation) C:\Users\NABIL\Downloads\jdk-8u65-windows-x64.exe 2016-01-06 14:29 - 2016-01-06 14:29 - 00000000 ____D C:\Users\NABIL\AppData\Roaming\GalileoPress 2016-01-06 14:29 - 2016-01-06 14:29 - 00000000 ____D C:\Users\NABIL\AppData\Local\Disc_Soft_Ltd 2016-01-06 10:15 - 2016-01-06 10:15 - 00001136 _____ C:\Users\NABIL\Downloads\Video2Brain_-_Programmieren_lernen_mit_JavaScript-0ube0tnrwle1 (1).dlc 2016-01-06 10:14 - 2016-01-06 10:14 - 00001136 _____ C:\Users\NABIL\Downloads\Video2Brain_-_Programmieren_lernen_mit_JavaScript-0ube0tnrwle1.dlc 2016-01-03 18:32 - 2016-01-03 18:32 - 00000000 ____D C:\Users\NABIL\AppData\Roaming\LolClient 2016-01-03 17:50 - 2016-01-03 17:50 - 00000000 ____D C:\ProgramData\Riot Games 2016-01-03 17:34 - 2016-01-03 17:34 - 00001475 _____ C:\Users\Public\Desktop\League of Legends.lnk 2016-01-03 17:34 - 2016-01-03 17:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends 2016-01-03 17:34 - 2008-07-12 01:18 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll 2016-01-03 17:34 - 2008-07-12 01:18 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll 2016-01-03 17:34 - 2008-07-12 01:18 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll 2016-01-03 17:33 - 2016-01-03 17:49 - 00000000 ____D C:\Users\NABIL\AppData\Roaming\Riot Games 2016-01-03 17:33 - 2016-01-03 17:33 - 30668968 _____ (Riot Games) C:\Users\NABIL\Downloads\LeagueofLegends_EUW_Installer_9_15_2014.exe 2016-01-03 16:48 - 2016-01-03 16:48 - 00000000 ____D C:\Users\NABIL\Tracing 2016-01-03 16:42 - 2016-01-25 20:45 - 00000000 ____D C:\Users\NABIL\AppData\Roaming\Skype 2016-01-03 16:42 - 2016-01-13 22:06 - 00002642 _____ C:\Users\Public\Desktop\Skype.lnk 2016-01-03 16:42 - 2016-01-13 22:06 - 00000000 ____D C:\ProgramData\Skype 2016-01-03 16:42 - 2016-01-13 22:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2016-01-03 16:42 - 2016-01-03 16:42 - 00000000 ___RD C:\Program Files (x86)\Skype 2016-01-03 16:41 - 2016-01-03 16:41 - 01503872 _____ (Skype Technologies S.A.) C:\Users\NABIL\Downloads\SkypeSetup.exe 2016-01-03 15:51 - 2016-01-03 15:51 - 00001782 _____ C:\Users\Public\Desktop\iTunes.lnk 2016-01-03 15:51 - 2016-01-03 15:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2016-01-03 15:51 - 2016-01-03 15:51 - 00000000 ____D C:\Program Files\iTunes 2016-01-03 15:51 - 2016-01-03 15:51 - 00000000 ____D C:\Program Files\iPod 2016-01-03 15:51 - 2016-01-03 15:51 - 00000000 ____D C:\Program Files (x86)\iTunes 2016-01-03 15:50 - 2016-01-03 15:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud 2015-12-27 06:16 - 2015-12-27 06:16 - 00000000 ____D C:\Users\asd\AppData\Local\Stardock ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-01-25 20:56 - 2014-11-10 19:40 - 00000000 ____D C:\FRST 2016-01-25 20:50 - 2015-08-27 14:58 - 02080688 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2016-01-25 20:50 - 2015-07-10 17:34 - 00884806 _____ C:\WINDOWS\system32\perfh007.dat 2016-01-25 20:50 - 2015-07-10 17:34 - 00196438 _____ C:\WINDOWS\system32\perfc007.dat 2016-01-25 20:50 - 2015-07-10 12:02 - 00000000 ____D C:\WINDOWS\INF 2016-01-25 20:44 - 2015-11-08 00:06 - 00000384 _____ C:\WINDOWS\Tasks\HARAPNPKMD1.job 2016-01-25 20:44 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-01-25 20:44 - 2015-07-10 10:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI 2016-01-25 20:44 - 2014-11-08 03:57 - 00000000 ____D C:\Program Files (x86)\Emsisoft Anti-Malware 2016-01-25 20:44 - 2013-10-25 17:03 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2016-01-25 20:44 - 2013-10-05 02:12 - 00034752 _____ C:\WINDOWS\system32\Drivers\WPRO_41_2001.sys 2016-01-25 20:42 - 2015-08-27 13:42 - 00000911 _____ C:\WINDOWS\Tasks\EPSON XP-412 413 415 Series Update {92EF7091-E3AF-4879-84FE-EE26D1C3216F}.job 2016-01-25 20:42 - 2015-08-27 13:42 - 00000725 _____ C:\WINDOWS\Tasks\EPSON XP-412 413 415 Series Invitation {92EF7091-E3AF-4879-84FE-EE26D1C3216F}.job 2016-01-25 20:41 - 2015-09-30 19:25 - 00000000 ____D C:\WINDOWS\Panther 2016-01-25 20:41 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp 2016-01-25 20:33 - 2015-10-30 20:28 - 00000000 ___HD C:\$WINDOWS.~BT 2016-01-25 20:15 - 2013-10-25 17:03 - 00001136 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2016-01-25 19:29 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness 2016-01-25 19:24 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps 2016-01-25 19:03 - 2014-03-19 16:30 - 00000000 ____D C:\Users\NABIL\AppData\Local\JDownloader 2.0 2016-01-24 18:59 - 2015-08-27 14:58 - 00000000 ____D C:\Users\NABIL 2016-01-24 15:56 - 2015-11-08 00:18 - 00000000 ____D C:\Program Files (x86)\Opera 2016-01-23 04:08 - 2013-10-08 20:23 - 00000000 ____D C:\Users\NABIL\AppData\Roaming\vlc 2016-01-22 19:41 - 2015-10-30 15:10 - 00000000 ____D C:\Users\asd\AppData\Local\Packages 2016-01-21 07:24 - 2015-11-08 00:54 - 00000000 ____D C:\ProgramData\ProductData 2016-01-20 15:56 - 2015-11-08 00:18 - 00003978 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1446938337 2016-01-20 15:56 - 2015-11-08 00:18 - 00001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk 2016-01-17 21:06 - 2015-10-30 15:10 - 00000000 ____D C:\Users\asd\AppData\Roaming\Apple Computer 2016-01-15 23:16 - 2015-03-06 22:27 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-01-15 00:32 - 2013-10-29 21:30 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2016-01-14 17:48 - 2013-10-25 15:49 - 00000000 ____D C:\ProgramData\Microsoft Help 2016-01-14 16:05 - 2015-09-26 13:06 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2016-01-14 16:05 - 2015-09-26 13:05 - 00002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2016-01-14 16:05 - 2015-09-26 13:05 - 00002114 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk 2016-01-14 15:53 - 2015-10-30 15:10 - 00000000 ____D C:\Users\asd 2016-01-13 17:04 - 2013-10-08 20:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2016-01-13 17:04 - 2013-10-08 20:01 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2016-01-13 17:04 - 2013-10-08 20:01 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2016-01-13 17:03 - 2013-10-25 15:51 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2016-01-13 17:01 - 2009-07-14 03:34 - 00000478 _____ C:\WINDOWS\win.ini 2016-01-13 16:55 - 2013-10-05 02:58 - 00000000 ____D C:\WINDOWS\system32\MRT 2016-01-13 16:52 - 2014-03-05 21:02 - 143671360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2016-01-11 10:15 - 2015-04-24 21:35 - 00000000 ____D C:\Users\NABIL\Desktop\Bewerbung 2016-01-07 22:38 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\NDF 2016-01-07 18:38 - 2015-07-10 10:05 - 00000000 ____D C:\Windows 2016-01-06 14:28 - 2013-10-05 03:37 - 00000000 ____D C:\Users\NABIL\AppData\Roaming\DAEMON Tools Lite 2016-01-03 18:07 - 2015-07-26 22:01 - 00000000 ____D C:\Users\NABIL\AppData\Roaming\TS3Client 2016-01-03 16:58 - 2013-10-07 14:17 - 00000000 ____D C:\Users\NABIL\AppData\Local\ElevatedDiagnostics 2016-01-03 15:51 - 2015-03-30 22:30 - 00000000 ____D C:\Program Files\Common Files\Apple 2016-01-03 15:50 - 2013-10-16 02:55 - 00001003 _____ C:\Users\Public\Desktop\EPSON Scan.lnk 2016-01-03 02:40 - 2015-07-10 12:06 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2016-01-03 02:40 - 2015-07-10 12:06 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2016-01-01 02:11 - 2015-12-22 16:46 - 00000000 ____D C:\ProgramData\Stardock 2015-12-27 10:29 - 2015-12-22 10:27 - 00000000 ____D C:\Users\asd\AppData\Roaming\DVDVideoSoft 2015-12-27 02:03 - 2015-12-22 16:47 - 00001165 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-12-27 02:03 - 2015-12-02 09:22 - 00001427 _____ C:\Users\Public\Desktop\Free Dailymotion Download.lnk 2015-12-27 02:03 - 2015-12-02 09:13 - 00001908 _____ C:\Users\Public\Desktop\QuickTime Player.lnk 2015-12-27 02:03 - 2015-11-10 08:46 - 00002007 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk 2015-12-27 02:03 - 2015-11-08 00:19 - 00000901 _____ C:\Users\Public\Desktop\CCleaner.lnk 2015-12-27 02:03 - 2015-11-08 00:18 - 00001174 _____ C:\Users\Public\Desktop\Opera.lnk 2015-12-27 02:03 - 2015-11-08 00:08 - 00002036 _____ C:\Users\Public\Desktop\Samsung Kies 3.lnk 2015-12-27 02:03 - 2015-11-07 17:02 - 00000778 _____ C:\Users\Public\Desktop\Call of Duty Black Ops III.lnk 2015-12-27 02:03 - 2015-10-20 19:06 - 00002190 _____ C:\Users\Public\Desktop\Smart Switch.lnk 2015-12-27 02:03 - 2015-09-26 13:05 - 00002085 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk 2015-12-27 02:03 - 2015-09-16 23:58 - 00002875 _____ C:\Users\Public\Desktop\ABBYY FineReader 12.lnk 2015-12-27 02:03 - 2015-09-10 17:59 - 00001852 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk 2015-12-27 02:03 - 2015-08-27 15:01 - 00001540 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-12-27 02:03 - 2015-07-26 22:01 - 00001005 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk 2015-12-27 02:03 - 2015-05-14 18:45 - 00001149 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk 2015-12-27 02:03 - 2015-05-14 18:45 - 00001093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk 2015-12-27 02:03 - 2015-05-14 18:07 - 00001308 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk 2015-12-27 02:03 - 2015-04-30 19:46 - 00000861 _____ C:\Users\Public\Desktop\Runaway - A Road Adventure.lnk 2015-12-27 02:03 - 2015-03-30 22:31 - 00002523 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk 2015-12-27 02:03 - 2014-10-12 11:55 - 00000599 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ultra Street Fighter IV.lnk 2015-12-27 02:03 - 2014-07-07 14:27 - 00000960 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Valiant Hearts The Great War.lnk 2015-12-27 02:03 - 2013-10-16 20:55 - 00001526 _____ C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk 2015-12-27 02:03 - 2013-10-05 16:22 - 00000518 _____ C:\Users\Public\Desktop\Fraps.lnk 2015-12-27 02:03 - 2013-10-05 04:49 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk 2015-12-27 02:03 - 2013-10-05 03:48 - 00000749 _____ C:\Users\Public\Desktop\VLC media player.lnk 2015-12-27 02:03 - 2013-10-05 02:17 - 00000676 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk 2015-12-27 02:03 - 2013-10-05 02:17 - 00000653 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Deinstallationsprogramm.lnk 2015-12-27 02:03 - 2013-10-05 02:17 - 00000621 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Update.lnk 2015-12-27 02:02 - 2015-12-22 16:36 - 00000000 ____D C:\Program Files (x86)\Stardock 2015-12-27 02:02 - 2015-12-16 14:30 - 00000844 _____ C:\Users\NABIL\Desktop\Bewerbung - Shortcut.lnk 2015-12-27 02:02 - 2015-11-07 17:47 - 00000279 _____ C:\Users\NABIL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Papierkorb.lnk 2015-12-27 02:02 - 2015-09-15 18:09 - 00001077 _____ C:\Users\NABIL\Desktop\Metal Gear Solid 5 The Phantom Pain TimeZone geändert.lnk 2015-12-27 02:02 - 2015-09-15 18:09 - 00001033 _____ C:\Users\NABIL\Desktop\Metal Gear Solid 5 The Phantom Pain.lnk 2015-12-27 02:02 - 2015-09-04 18:41 - 00001055 _____ C:\Users\NABIL\Desktop\Final Fantasy Type 0 HD.lnk 2015-12-27 02:02 - 2015-09-04 18:41 - 00001001 _____ C:\Users\NABIL\Desktop\Final Fantasy Type 0 HD Launcher.lnk 2015-12-27 02:02 - 2015-08-27 21:18 - 00001047 _____ C:\Users\NABIL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk 2015-12-27 02:02 - 2015-08-27 21:15 - 00002392 _____ C:\Users\NABIL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2015-12-27 02:02 - 2015-07-14 19:56 - 00001095 _____ C:\Users\NABIL\Desktop\The Witcher 3 Wild Hunt Collectors Edition.lnk 2015-12-27 02:02 - 2015-07-09 19:12 - 00001081 _____ C:\Users\NABIL\Desktop\Mortal Kombat X Premium Edition.lnk 2015-12-27 02:02 - 2014-10-11 22:28 - 00001256 _____ C:\Users\NABIL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk 2015-12-27 02:02 - 2014-03-19 16:31 - 00002101 _____ C:\Users\NABIL\Desktop\JDownloader 2.lnk 2015-12-27 02:01 - 2014-11-09 17:35 - 00000000 ____D C:\WINDOWS\ERUNT ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-09-15 17:56 - 2015-09-15 17:56 - 0000000 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2 2015-09-15 17:56 - 2015-09-15 17:56 - 0000000 _____ () C:\Program Files (x86)\The SIMS 4 Deluxe Edition 2015-09-15 17:56 - 2015-09-15 17:56 - 0000000 _____ () C:\Program Files (x86)\Common Files\AMD 2014-09-01 09:18 - 2014-09-01 09:18 - 0001248 _____ () C:\Users\NABIL\AppData\Roaming\ICWGRTHR 2015-03-01 03:43 - 2015-03-01 04:31 - 14848000 _____ () C:\Users\NABIL\AppData\Roaming\Sandra.mdb 2014-10-27 15:08 - 2014-10-27 15:09 - 0043928 _____ () C:\Users\NABIL\AppData\Roaming\test.jar 2015-08-27 14:57 - 2015-08-27 14:57 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Einige Dateien in TEMP: ==================== C:\Users\NABIL\AppData\Local\Temp\DseShExt-x64.dll C:\Users\NABIL\AppData\Local\Temp\DseShExt-x86.dll C:\Users\NABIL\AppData\Local\Temp\Execute2App.exe C:\Users\NABIL\AppData\Local\Temp\msvcp90.dll C:\Users\NABIL\AppData\Local\Temp\msvcr90.dll C:\Users\NABIL\AppData\Local\Temp\proxy_vole2309565387049725057.dll C:\Users\NABIL\AppData\Local\Temp\proxy_vole7630234170090151215.dll C:\Users\NABIL\AppData\Local\Temp\proxy_vole8845626479727338712.dll C:\Users\NABIL\AppData\Local\Temp\SDShelEx-win32.dll C:\Users\NABIL\AppData\Local\Temp\SDShelEx-x64.dll C:\Users\NABIL\AppData\Local\Temp\tmd_34015212.exe C:\Users\NABIL\AppData\Local\Temp\tmp99BA.exe C:\Users\NABIL\AppData\Local\Temp\Uninstall.exe ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert C:\WINDOWS\explorer.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert C:\WINDOWS\system32\services.exe => Datei ist digital signiert C:\WINDOWS\system32\User32.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2016-01-19 21:09 ==================== Ende von FRST.txt ============================ Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:25-01-2016 durchgeführt von NABIL (2016-01-25 20:56:40) Gestartet von C:\Users\NABIL\Downloads Windows 10 Pro (X64) (2015-08-27 20:13:47) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-225648569-1694930765-1264359465-500 - Administrator - Disabled) asd (S-1-5-21-225648569-1694930765-1264359465-1004 - Administrator - Enabled) => C:\Users\asd DefaultAccount (S-1-5-21-225648569-1694930765-1264359465-503 - Limited - Disabled) Gast (S-1-5-21-225648569-1694930765-1264359465-501 - Limited - Disabled) => C:\Users\Gast HomeGroupUser$ (S-1-5-21-225648569-1694930765-1264359465-1002 - Limited - Enabled) NABIL (S-1-5-21-225648569-1694930765-1264359465-1000 - Administrator - Enabled) => C:\Users\NABIL ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Emsisoft Anti-Malware (Disabled - Out of date) {8504DEEF-CC04-1F76-2137-F1A5F4A659DA} AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Emsisoft Anti-Malware (Disabled - Out of date) {3E653F0B-EA3E-10F8-1B87-CAD78F211367} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) ABBYY FineReader 12 Professional (HKLM-x32\...\{F12000FE-0001-0000-0000-074957833700}) (Version: 12.1.426 - ABBYY Production LLC) Adblock IE 2.3 (HKLM\...\{58161756-037B-42CD-B575-AF804A2F0F47}) (Version: 2.3.1756 - MGTEK) Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.010.20056 - Adobe Systems Incorporated) Adobe Reader XI (11.0.14) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.14 - Adobe Systems Incorporated) AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD) AMD Catalyst Install Manager (HKLM\...\{14D58A97-B60E-A858-34D8-95469C02F7EC}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Apple Application Support (32-Bit) (HKLM-x32\...\{7FA9ECCF-A2DE-4DA1-BFF3-81260DBDA68F}) (Version: 4.1.2 - Apple Inc.) Apple Application Support (64-Bit) (HKLM\...\{691F30EB-9009-475A-B8A9-E1BF39598FD5}) (Version: 4.1.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.) ASRock App Charger v1.0.5 (HKLM\...\ASRock App Charger_is1) (Version: - ASRock Inc.) Assassin's Creed 4 Black Flag Jackdaw Edition MULTI-2 1.06 (HKLM-x32\...\Assassin's Creed 4 Black Flag Jackdaw Edition MULTI-2 1.06) (Version: - ) Assassin's Creed Unity Gold Edition MULTi2 1.0 (HKLM-x32\...\Assassin's Creed Unity Gold Edition MULTi2 1.0) (Version: - ) ASUS GPU Tweak (HKLM-x32\...\InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.2.8.1 - ASUSTek COMPUTER INC.) ASUS GPU Tweak (x32 Version: 2.2.8.1 - ASUSTek COMPUTER INC.) Hidden ASUS Product Register Program (HKLM-x32\...\{C0B16F2E-3980-44F8-8CF4-F84696541FF7}) (Version: 1.0.017 - ASUSTek Computer Inc.) Batman: Arkham City™ GOTY (x32 Version: 1.0.0000.133 - WB Games) Hidden Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Broken Sword 5 - the Serpent's Curse (HKLM-x32\...\GOGPACKBROKENSWORD5EP1EP2_is1) (Version: 2.0.0.2 - GOG.com) Bully - Scholarship Edition (HKLM-x32\...\Bully - Scholarship Edition_is1) (Version: - ) Call of Duty Black Ops III Version 1.0 (HKLM-x32\...\{322C0A98-947C-4EB4-A48B-C8C818B137C8}_is1) (Version: 1.0 - Activision Blizzard) CCleaner (HKLM\...\CCleaner) (Version: 5.11 - Piriform) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.5.5571 - CDBurnerXP) CrystalDiskInfo 6.1.8 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.1.8 - Crystal Dew World) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd) Deponia The Complete Journey MULTi2 3.3.0155 (HKLM-x32\...\Deponia The Complete Journey MULTi2 3.3.0155) (Version: - ) Dragonball Xenoverse MULTi2 1.0 (HKLM-x32\...\Dragonball Xenoverse MULTi2 1.0) (Version: - ) Dragonball Xenoverse Update 3 MULTi2 1.0 (HKLM-x32\...\Dragonball Xenoverse Update 3 MULTi2 1.0) (Version: - ) Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD) Emsisoft Anti-Malware (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 9.0 - Emsisoft GmbH) Epson Event Manager (HKLM-x32\...\{17FA0444-A025-43B9-862C-81AE6307C2F2}) (Version: 3.10.0050 - Seiko Epson Corporation) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation) EPSON XP-412 413 415 Series Printer Uninstall (HKLM\...\EPSON XP-412 413 415 Series) (Version: - SEIKO EPSON Corporation) EPSON-Handbücher (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.50.0.0 - SEIKO EPSON CORPORATION) EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION) EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc) EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.) Final Fantasy Type 0 HD MULTi2 1.0 (HKLM-x32\...\Final Fantasy Type 0 HD MULTi2 1.0) (Version: - ) Fraps (HKLM-x32\...\Fraps) (Version: - ) Free Dailymotion Download (HKLM-x32\...\Free Dailymotion Download_is1) (Version: 1.0.55.1127 - DVDVideoSoft Ltd.) Free Driver Scout (HKLM-x32\...\{50a7e828-15d3-40e6-a37d-22d5c5357878}) (Version: 1.0.0.0 - Covus Freemium) Free Driver Scout (Version: 1.0.0.0 - Covus Freemium) Hidden Free YouTube to MP3 Converter version 3.12.59.505 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.59.505 - DVDVideoSoft Ltd.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.111 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games) iCloud (HKLM\...\{4B48E22A-2FB0-4EFA-B99E-954B1E50CD69}) (Version: 5.1.0.34 - Apple Inc.) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation) Intel(R) Network Connections 18.2.63.0 (HKLM\...\PROSetDX) (Version: 18.2.63.0 - Intel) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.6.0.1033 - Intel Corporation) Intel(R) Smart Connect Technology 4.1 x64 (HKLM\...\{1EF24D7D-7B14-4EBA-A686-9E91C9C6763D}) (Version: 4.1.40.2143 - Intel) Intel(R) Update Manager (HKLM-x32\...\{12914061-EB9B-4AE7-AC7E-0B8A607C7DF4}) (Version: 2.3.1338 - Intel Corporation) iTunes (HKLM\...\{FBEB98F8-64E4-4FA3-A15E-4A9F42FF962E}) (Version: 12.3.2.35 - Apple Inc.) Java 8 Update 65 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418065F0}) (Version: 8.0.650.17 - Oracle Corporation) Java SE Development Kit 8 Update 65 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180650}) (Version: 8.0.650.17 - Oracle Corporation) JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH) JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games ) League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden Lexware Info Service (HKLM-x32\...\{F3C2ECAA-1B4D-4B75-9105-106B0D03EF02}) (Version: 2.80.00.0007 - Haufe-Lexware GmbH & Co.KG) Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes) McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.266.3 - McAfee, Inc.) Metal Gear Solid 5 The Phantom Pain MULTI8 1.005 (HKLM-x32\...\Metal Gear Solid 5 The Phantom Pain MULTI8 1.005) (Version: - ) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation) Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{85467CBC-7A39-33C9-8940-D72D9269B84F}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft) Mortal Kombat X Premium Edition MULTi2 1.0 (HKLM-x32\...\Mortal Kombat X Premium Edition MULTi2 1.0) (Version: - ) MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com) MSI Kombustor 2.5.0 (HKLM-x32\...\{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1) (Version: - MSI Co., LTD) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) MyEpson Portal (HKLM-x32\...\MyEpson Portal) (Version: - SEIKO EPSON Corporation) MyEpson Portal (x32 Version: 1.1.1.0 - SEIKO EPSON CORPORATION) Hidden Naruto Shippuden - Ultimate Ninja Storm 3 Full Burst (HKLM-x32\...\Naruto Shippuden - Ultimate Ninja Storm 3 Full Burst_is1) (Version: - ) Nero 2014 (HKLM-x32\...\{A618CE26-1E36-4FA4-A1F4-D079DC6022B8}) (Version: 15.0.08500 - Nero AG) Nero 2015 Content Pack (HKLM-x32\...\{55192BC6-EDBA-4F48-A2C4-3D164E41AF55}) (Version: 16.0.00300 - Nero AG) Nero Burning ROM 2014 (HKLM-x32\...\{A4DC74AA-F4DF-48B9-AA4B-C30CA0DBCA33}) (Version: 15.0.04600 - Nero AG) Nero Info (HKLM-x32\...\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}) (Version: 15.1.0030 - Nero AG) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Opera Stable 34.0.2036.50 (HKLM-x32\...\Opera 34.0.2036.50) (Version: 34.0.2036.50 - Opera Software) Origin (HKLM-x32\...\Origin) (Version: 9.4.22.2815 - Electronic Arts, Inc.) Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.308.0 - Tracker Software Products Ltd) Prerequisite installer (x32 Version: 15.0.0005 - Nero AG) Hidden Prerequisite installer (x32 Version: 16.0.0000 - Nero AG) Hidden QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7644 - Realtek Semiconductor Corp.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.9 - Rockstar Games) Runaway - A Road Adventure (HKLM-x32\...\GOGPACKRUNAWAY_is1) (Version: 2.0.0.3 - GOG.com) Saints Row IV Game of the Century Edition 1.0 (HKLM-x32\...\Saints Row IV Game of the Century Edition 1.0) (Version: - ) Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.15072.2 - Samsung Electronics Co., Ltd.) Samsung Kies3 (x32 Version: 3.2.15072.2 - Samsung Electronics Co., Ltd.) Hidden Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.55.0 - Samsung Electronics Co., Ltd.) ScummVM 1.6.0 (HKLM-x32\...\ScummVM_is1) (Version: - The ScummVM Team) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden Sherlock Holmes Crimes and Punishments German Subbed Edition 1.0 (HKLM-x32\...\Sherlock Holmes Crimes and Punishments German Subbed Edition 1.0) (Version: - ) SiSoftware Sandra Lite 2015.SP1 (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2496}_is1) (Version: 21.27.2015.2 - SiSoftware) Skype™ 7.17 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.106 - Skype Technologies S.A.) Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.0.15104.7 - Samsung Electronics Co., Ltd.) Smart Switch (x32 Version: 4.0.15104.7 - Samsung Electronics Co., Ltd.) Hidden Software Updater (HKLM-x32\...\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87}) (Version: 4.3.7 - SEIKO EPSON CORPORATION) South Park - The Stick of Truth Version 1.0.1353 (HKLM-x32\...\{83736891-79AE-49BA-96F5-55DD6F2186AC}_is1) (Version: 1.0.1353 - Ubisoft) SSD Tweaker version 3.0.5 (HKLM-x32\...\{83FA601A-241A-4956-8A21-F7D525C4422F}_is1) (Version: 3.0.5 - Elpamsoft.com) Stardock Start10 (HKLM\...\Start10_is1) (Version: 1.0 - Stardock Software, Inc.) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) The Book of Unwritten Tales Collection Version 1.0 (HKLM-x32\...\{552EE0FA-C570-4283-9E79-358A95068DCA}_is1) (Version: 1.0 - Nordic Games) The Witcher 3 Wild Hunt Collectors Edition MULTi2 1.02 (HKLM-x32\...\The Witcher 3 Wild Hunt Collectors Edition MULTi2 1.02) (Version: - ) Tomb Raider [2013] Collectors Edition MULTI-2 1.01.748.0 (HKLM-x32\...\Tomb Raider [2013] Collectors Edition MULTI-2 1.01.748.0) (Version: - ) Tony Hawk's Pro Skater 2 (HKLM-x32\...\Activision_THPS2UninstallKey) (Version: - ) Ultra Street Fighter IV (HKLM-x32\...\VWx0cmFTdHJlZXRGaWdodGVySVY=_is1) (Version: 1 - ) Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{5D2260D6-DB16-41DC-915B-A39BF4F66362}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3114502) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{6F47687A-78E9-41B1-8587-ED0CC2677A2A}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3114502) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{6F47687A-78E9-41B1-8587-ED0CC2677A2A}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3114502) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{6F47687A-78E9-41B1-8587-ED0CC2677A2A}) (Version: - Microsoft) Valiant Hearts: The Great War (HKLM-x32\...\VmFsaWFudEhlYXJ0c1RoZUdyZWF0V2Fy_is1) (Version: 1 - ) VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden VLC media player 2.1.0 (HKLM\...\VLC media player) (Version: 2.1.0 - VideoLAN) Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation) WinRAR 5.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {01955A10-3280-46FE-B295-16984CFF4AB3} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe Task: {09EF13AF-7F6B-4F5E-A821-86F0F9765AED} - \Safer-Networking\Spybot - Search and Destroy\Scan the system -> Keine Datei <==== ACHTUNG Task: {0CE42A92-4C76-4FD1-83EE-B48021CBA13F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {0F5482F8-E640-402E-AF7D-E8CEF861D772} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG Task: {163A17B5-F3DE-486E-9FD8-AE460A042434} - System32\Tasks\ASC Task (One-Time) => C:\Program Files (x86)\IObit\Advanced SystemCare\XmasPromote.exe Task: {18663283-6FDA-4403-AEA0-76F187710EF4} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG Task: {1C4A3BB1-32AE-418E-A163-659B200D094C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-01-13] (Microsoft Corporation) Task: {1D6EAC2C-CCCC-48D3-A9B2-0BF073A859DD} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {1F55AC57-5BA5-4A77-8512-E48E7F663F7A} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe Task: {1FA75676-E7D0-44FA-A6E4-D1CC7124E499} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe Task: {2219BAF3-970C-442B-AA03-6D10302BA04F} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2013-10-16] (Nero AG) Task: {238610D6-9699-44BC-A5B0-E5679E67D1A0} - \EPSON XP-412 413 415 Series Update {00138945-9C65-4A60-B651-17E309D19196} -> Keine Datei <==== ACHTUNG Task: {25E967C3-EA75-4CB8-9FCC-0AE64DE1D754} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe Task: {2776DC5D-B0AC-4588-AB90-45257F175B71} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe Task: {27B49083-4E57-43A3-8339-DF6843AB4125} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {2F910DE1-C01D-4F91-9672-CA57A347D8A0} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe Task: {348F3260-4BAE-4743-A9D1-B023A55EE5E3} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe Task: {37EEDB11-5C90-47E8-B40F-144D8F9FEA33} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe Task: {40227C76-4BC2-4972-9E8D-1F518A755005} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-26] (Apple Inc.) Task: {40FCA32E-2588-4671-A0E1-8E12C100365B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe Task: {5113B6CC-4DE8-44AF-9599-C0219896EAB8} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe Task: {569982D6-C3BC-40D5-89EA-62F97A122231} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG Task: {580DFDC9-3B7A-4509-B13E-9CA824E8473F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated) Task: {58BC4120-518A-41FB-9FEA-228B9943C912} - System32\Tasks\{204DFE98-125F-4E2A-BEF7-0F237FF15EA8} => pcalua.exe -a "M:\Users\NABIL\Downloads\DB.X_M2\Dragonball Xenoverse MULTi2\DB.X_M2.exe" -d "M:\Users\NABIL\Downloads\DB.X_M2\Dragonball Xenoverse MULTi2" Task: {5B6CC23A-D5C6-4522-B4DF-D1F35D4DFA74} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe Task: {5EF0F301-E74A-461C-813D-D5298404EB44} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe Task: {64621D7C-90BC-4A85-A961-4ED32C124752} - \Safer-Networking\Spybot - Search and Destroy\Check for updates -> Keine Datei <==== ACHTUNG Task: {677B0070-1C32-4FAB-B3EA-4878687598FE} - \Safer-Networking\Spybot - Search and Destroy\Refresh immunization -> Keine Datei <==== ACHTUNG Task: {6B05F11A-0FAA-459F-8398-5A68E112F578} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.) Task: {736668EB-1D51-450F-B4E8-C02358182D06} - System32\Tasks\Driver Booster SkipUAC (NABIL) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe Task: {7499461B-5DC4-4C2A-8990-F17947981EE7} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {781B7E50-8B6D-4764-8AFA-46E8C7417708} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {78C2FD3D-5725-47D8-9751-10D343A2894F} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe Task: {7AF61DD3-4CD4-4508-97E1-778984972570} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-10-19] (Piriform Ltd) Task: {7ED06AB3-3419-4D6E-9C9D-0856A9156FF4} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe Task: {7F34203D-7E5A-4698-9622-D093B9BBFA68} - System32\Tasks\{77584C26-73F5-4330-9F49-0396C6D171AE} => pcalua.exe -a C:\Users\NABIL\AppData\Roaming\key-find\UninstallManager.exe -c -ptid=cvs Task: {876EA98A-187D-4A26-8183-339326B7D990} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.) Task: {96771FD7-B11F-43D3-B439-011C2B276961} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe Task: {97432494-44EB-4E0E-BAB5-1A73A165C1FE} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe Task: {9EB0276E-9DD5-4B8E-AE4E-593EFB68E285} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG Task: {A0FF1C4C-B44D-432C-AFCB-8A38CAAB8ADC} - \Microsoft\Windows\File Classification Infrastructure\Property Definition Sync -> Keine Datei <==== ACHTUNG Task: {A20B2CAE-96B0-4388-B8C9-A8AC43E1FEAA} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto Task: {A2A92207-0A3E-4168-9456-6F6F2ECDC921} - System32\Tasks\HARAPNPKMD1 => C:\ProgramData\SecurityUtility\SecurityUtility.exe <==== ACHTUNG Task: {A7F242A1-2D4C-49E1-A99B-BA4F6A5EE323} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe Task: {AA042026-FBE0-4833-A729-9C41A988620B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG Task: {B27D50C5-906A-4AD6-BE29-AAD1BD3EB5D7} - System32\Tasks\EPSON XP-412 413 415 Series Update {92EF7091-E3AF-4879-84FE-EE26D1C3216F} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE [2013-02-28] (SEIKO EPSON CORPORATION) Task: {B2AAFA9D-1363-446E-8F37-C1DB07D99FC9} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG Task: {B6FB57AF-5104-4E12-9FD5-88D761B2AED5} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {C4CA90C8-9016-46A3-B9C3-9E7E0174C172} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG Task: {CF27364E-6CD6-49E3-BE7A-BDBBAE6AAF2D} - System32\Tasks\EPSON XP-412 413 415 Series Invitation {92EF7091-E3AF-4879-84FE-EE26D1C3216F} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE [2013-02-28] (SEIKO EPSON CORPORATION) Task: {D708C5A0-D29F-4B76-B7A7-D8749943DE92} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG Task: {D95F6E07-DC38-4EE8-B71B-F127BE280028} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG Task: {DBCCFDB7-E380-42A4-82BA-B20BC69765B0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {F06FB421-8598-4FD4-A4D6-DE7B7CAF9F9F} - System32\Tasks\Opera scheduled Autoupdate 1446938337 => C:\Program Files (x86)\Opera\launcher.exe [2016-01-18] (Opera Software) Task: {F9DB0870-59E2-4373-90D5-AE97BB6D64C7} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe Task: {F9F3B650-0031-492D-A12A-2F67B6DD4592} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG Task: {FCB0CF30-3917-45CE-AA1D-466F4D9E1D17} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe Task: {FEB14092-F1D6-4470-89CF-0D643BD2A411} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\EPSON XP-412 413 415 Series Invitation {00138945-9C65-4A60-B651-17E309D19196}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE Task: C:\WINDOWS\Tasks\EPSON XP-412 413 415 Series Invitation {92EF7091-E3AF-4879-84FE-EE26D1C3216F}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE Task: C:\WINDOWS\Tasks\EPSON XP-412 413 415 Series Update {00138945-9C65-4A60-B651-17E309D19196}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE:/EXE:{00138945-9C65-4A60-B651-17E309D19196} /F:UpdateSYSTEMĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\WINDOWS\Tasks\EPSON XP-412 413 415 Series Update {92EF7091-E3AF-4879-84FE-EE26D1C3216F}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLEE.EXE:/EXE:{92EF7091-E3AF-4879-84FE-EE26D1C3216F} /F:UpdateSYSTEMĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\HARAPNPKMD1.job => C:\ProgramData\SecurityUtility\SecurityUtility.exe <==== ACHTUNG ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) Shortcut: C:\Users\NABIL\Desktop\Metal Gear Solid 5 The Phantom Pain TimeZone geändert.lnk -> M:\Program Files (x86)\Metal Gear Solid 5 The Phantom Pain\MGS TimeZone geändert.bat () ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2015-08-27 21:20 - 2015-07-15 03:04 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll 2015-08-27 21:20 - 2015-08-11 10:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll 2012-01-17 10:24 - 2012-01-17 10:24 - 00055296 _____ () C:\Windows\SysWOW64\ASGT.exe 2015-01-20 21:35 - 2015-01-20 21:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-10-12 22:45 - 2015-10-12 22:45 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2012-09-11 16:27 - 2012-09-11 16:27 - 00062128 _____ () C:\Program Files (x86)\ASUS\APRP\AsusProductRegisterService.exe 2013-03-14 13:42 - 2013-03-14 13:42 - 00182248 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe 2013-03-14 13:42 - 2013-03-14 13:42 - 00059880 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll 2015-09-30 20:21 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2015-09-30 20:21 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2015-09-30 20:21 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2015-12-09 03:46 - 2015-11-25 05:20 - 06569472 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2015-12-09 03:46 - 2015-11-25 05:17 - 00471040 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2015-12-09 03:46 - 2015-11-25 05:17 - 01808384 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2015-09-30 20:21 - 2015-09-17 06:43 - 02274816 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2014-01-21 09:54 - 2016-01-03 17:49 - 01294336 _____ () M:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe 2016-01-24 23:54 - 2016-01-24 23:54 - 02344440 _____ () M:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.1.7\deploy\LoLLauncher.exe 2016-01-24 23:54 - 2016-01-24 23:54 - 04319736 _____ () M:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.47\deploy\LoLPatcher.exe 2015-10-19 21:00 - 2015-10-19 21:00 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll 2016-01-03 17:52 - 2016-01-03 17:52 - 00074752 _____ () M:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.182\deploy\LolClient.exe 2015-05-14 18:07 - 2015-11-27 12:06 - 00110952 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll 2015-05-14 18:07 - 2015-11-27 12:06 - 00295272 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\stat.dll 2015-05-14 18:07 - 2015-11-27 12:06 - 00253800 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\collector.dll 2015-05-14 18:07 - 2015-11-27 12:06 - 00104296 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll 2015-05-14 18:07 - 2015-11-27 12:06 - 00020328 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll 2015-05-14 18:07 - 2015-11-27 12:06 - 00044392 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll 2015-11-08 00:54 - 2014-10-16 03:26 - 00622880 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll 2016-01-24 23:54 - 2016-01-24 23:54 - 01424376 _____ () M:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.47\deploy\RiotLauncher.dll 2016-01-03 17:49 - 2016-01-03 17:50 - 04885152 _____ () M:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.182\deploy\Adobe AIR\Versions\1.0\Resources\WebKit.dll 2016-01-03 17:49 - 2016-01-03 17:50 - 17414304 _____ () M:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.182\deploy\Adobe AIR\Versions\1.0\Resources\NPSWF32.dll 2016-01-15 23:16 - 2016-01-12 17:35 - 01590088 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\libglesv2.dll 2016-01-15 23:16 - 2016-01-12 17:35 - 00087880 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.111\libegl.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) AlternateDataStreams: C:\Users\NABIL\Downloads\amddriverdownloader.exe:BDU AlternateDataStreams: C:\Users\NABIL\Downloads\CrystalDiskInfo6_1_8-en.exe:BDU AlternateDataStreams: C:\Users\NABIL\Downloads\everesthome220.exe:BDU AlternateDataStreams: C:\Users\NABIL\Downloads\UseNeXTSetup_5.62.exe:BDU AlternateDataStreams: C:\Users\NABIL\Downloads\WebInstallerJD2_c.exe:BDU ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver" ==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\10sek.com -> www.10sek.com IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\12-26.net -> user1.12-26.net IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\12-27.net -> user1.12-27.net IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\S-1-5-21-225648569-1694930765-1264359465-1000\...\123simsen.com -> www.123simsen.com Da befinden sich 7863 mehr Seiten. ==================== Hosts Inhalt: ========================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2009-07-14 03:34 - 2015-12-15 07:06 - 00514780 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 localhost 0.0.0.0 m.fr.a2dfp.net 0.0.0.0 mfr.a2dfp.net 0.0.0.0 ad.a8.net 0.0.0.0 asy.a8ww.net 0.0.0.0 static.a-ads.com 0.0.0.0 abcstats.com 0.0.0.0 ad4.abradio.cz 0.0.0.0 a.abv.bg 0.0.0.0 adserver.abv.bg 0.0.0.0 adv.abv.bg 0.0.0.0 bimg.abv.bg 0.0.0.0 ca.abv.bg 0.0.0.0 www2.a-counter.kiev.ua 0.0.0.0 track.acclaimnetwork.com 0.0.0.0 accuserveadsystem.com 0.0.0.0 www.accuserveadsystem.com 0.0.0.0 achmedia.com 0.0.0.0 csh.actiondesk.com 0.0.0.0 ads.activepower.net 0.0.0.0 app.activetrail.com 0.0.0.0 stat.active24stats.nl #[Tracking.Cookie] 0.0.0.0 traffic.acwebconnecting.com 0.0.0.0 office.ad1.ru 0.0.0.0 cms.ad2click.nl 0.0.0.0 ad2games.com 0.0.0.0 ads.ad2games.com 0.0.0.0 content.ad20.net 0.0.0.0 core.ad20.net 0.0.0.0 banner.ad.nu Da befinden sich 12297 zusätzliche Einträge. ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-225648569-1694930765-1264359465-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\NABIL\Desktop\burj_khalifa_tower_dubai-wide.jpg DNS Servers: 192.168.178.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^iSCTsysTray.lnk => C:\Windows\pss\iSCTsysTray.lnk.CommonStartup MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: amd_dc_opt => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart MSCONFIG\startupreg: EEventManager => "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe" MSCONFIG\startupreg: EPLTarget => MSCONFIG\startupreg: HydraVisionDesktopManager => "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" MSCONFIG\startupreg: IAStorIcon => "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60 MSCONFIG\startupreg: IMSS => "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" MSCONFIG\startupreg: MSC => "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\RAPTRS~1.EXE --startup MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "Bonus.SSR.FR12" HKLM\...\StartupApproved\Run32: => "LexwareInfoService" HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0" HKLM\...\StartupApproved\Run32: => "QuickTime Task" HKLM\...\StartupApproved\Run32: => "Adobe ARM" ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808 FirewallRules: [{4C4C228A-CE78-4F94-AB6A-9A37178B6087}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{BAC03561-5F5C-4155-9946-6B82F61A6381}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe FirewallRules: [{B48BF075-2C5F-47F9-ACAF-2980D48ACE01}] => (Allow) M:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{A2E30EF8-99FA-4ABA-B833-741974D6BC05}] => (Allow) M:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{B4380FC8-563B-472A-81A3-22FADE6734CA}] => (Allow) M:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{9EA90930-8669-4BCB-AE2C-B41D164F14E5}] => (Allow) M:\Program Files (x86)\Steam\Steam.exe FirewallRules: [UDP Query User{D9AE8798-8B04-4742-93CA-7AB2A9C5D39A}M:\program files (x86)\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) M:\program files (x86)\steamlibrary\steamapps\common\dayz\dayz.exe FirewallRules: [TCP Query User{C5DFAF2D-B544-4910-A68A-FC0155A1ACAF}M:\program files (x86)\steamlibrary\steamapps\common\dayz\dayz.exe] => (Allow) M:\program files (x86)\steamlibrary\steamapps\common\dayz\dayz.exe FirewallRules: [{B263A842-E664-4611-B127-0E9041E80D1E}] => (Allow) M:\Program Files (x86)\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [{68E4D429-DBA5-4597-951D-CAF7117A56F2}] => (Allow) M:\Program Files (x86)\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [UDP Query User{1A33A746-BD72-44D4-9EDC-C53D8F2E8C08}M:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) M:\program files\rockstar games\grand theft auto v\gta5.exe FirewallRules: [TCP Query User{2848611B-7895-4823-B6D6-EF1CB0A006B6}M:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) M:\program files\rockstar games\grand theft auto v\gta5.exe FirewallRules: [{911438D9-1E32-4989-84B7-DEB3B3280F77}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2015.SP1\WNt600x64\RpcSandraSrv.exe FirewallRules: [{F6B58786-8162-49F8-A162-73C2A3240B33}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2015.SP1\RpcAgentSrv.exe FirewallRules: [{A816DD60-DD86-4EA0-B739-3C9B7863C439}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{68B18BCB-3874-46A4-80DD-9699222566CF}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{39F833ED-D645-4DF5-83B4-831D54CC965E}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{21FE5001-0179-4A7F-B498-5A4FC555CC78}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [UDP Query User{15C82FC6-62AB-4904-B306-70AD69A9F8AD}M:\program files (x86)\saints row iv game of the century edition\saintsrowiv.exe] => (Allow) M:\program files (x86)\saints row iv game of the century edition\saintsrowiv.exe FirewallRules: [TCP Query User{8F4C311D-D711-48C8-8940-A2C3CC194115}M:\program files (x86)\saints row iv game of the century edition\saintsrowiv.exe] => (Allow) M:\program files (x86)\saints row iv game of the century edition\saintsrowiv.exe FirewallRules: [{054F7E49-BAC3-46B6-B654-491B7FC98899}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe FirewallRules: [{BDBA1559-0767-4003-B9C0-F7E1807BB450}] => (Allow) D:\Network\EpsonNetSetup\ENEasyApp.exe FirewallRules: [UDP Query User{994936E9-37C4-47A0-BDEB-6A846D73F363}M:\jdownloader\jre\bin\java.exe] => (Allow) M:\jdownloader\jre\bin\java.exe FirewallRules: [TCP Query User{1D8D5B98-EB69-4C6A-AC19-F712EFF883CC}M:\jdownloader\jre\bin\java.exe] => (Allow) M:\jdownloader\jre\bin\java.exe FirewallRules: [UDP Query User{42847236-F025-4A30-B7B4-2AE9BF5DCCF1}M:\jdownloader\jre\bin\javaw.exe] => (Allow) M:\jdownloader\jre\bin\javaw.exe FirewallRules: [TCP Query User{80785240-54DC-4A65-81ED-4E4E4935CBE0}M:\jdownloader\jre\bin\javaw.exe] => (Allow) M:\jdownloader\jre\bin\javaw.exe FirewallRules: [{B8A06571-4006-45A7-A1EF-ADA6310A3A8C}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{FB68982A-4546-4AC7-89C8-F6F25FDFF8CA}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{EFB0E201-529A-45E2-98C4-7274A672BC4C}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{45AE5955-F685-4A1B-AA98-0A234C4AB8F7}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [UDP Query User{0578CCF7-AE1D-4C9C-943C-C69726E231B2}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [TCP Query User{9558C53E-37FF-45E7-9A8B-1EC4C71880C3}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [UDP Query User{1C42E517-0CBF-4D71-8D85-969177EA4138}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [TCP Query User{978374A8-AD20-4359-BE77-A67D94DA9896}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [TCP Query User{20E12BCC-D3DD-4775-BE35-10FF60E010BB}M:\games\call of duty black ops iii\blackops3.exe] => (Allow) M:\games\call of duty black ops iii\blackops3.exe FirewallRules: [UDP Query User{47FD8685-D285-49CB-ABD0-0977F2F84DD8}M:\games\call of duty black ops iii\blackops3.exe] => (Allow) M:\games\call of duty black ops iii\blackops3.exe FirewallRules: [{0781B69A-4B35-473F-AB47-89CE6318ED73}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{51D35BE1-7AFF-4262-BE02-61BD921DF615}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{2215C6AB-62FB-4EEB-8717-07E567C59244}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{9852CEB2-2423-4233-B583-35544D84D9A3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{6462BAA3-0284-4552-A8DE-589A37AC6BCE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{2440C70A-7A6B-4B6D-A123-712FBD70A9CE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{89114CC2-34F0-4122-B301-61AA4319945F}] => (Allow) M:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{E3DF5FD2-B668-4E3E-9D3E-8E5BB0BF87BA}] => (Allow) M:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{9A9C337E-426E-4C26-9A1F-1245926A6921}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{50617DBB-D641-4217-B751-BD810DB7F119}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{4EA24165-101E-41CF-9C45-B4F69E5A3C74}C:\program files\java\jdk1.8.0_65\bin\jmc.exe] => (Allow) C:\program files\java\jdk1.8.0_65\bin\jmc.exe FirewallRules: [UDP Query User{600F0A67-9FF7-4CB5-9863-3DF6FF0C2D6B}C:\program files\java\jdk1.8.0_65\bin\jmc.exe] => (Allow) C:\program files\java\jdk1.8.0_65\bin\jmc.exe FirewallRules: [{50A97E78-2C74-4AF0-9761-97F9F5A469A5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service ==================== Wiederherstellungspunkte ========================= 24-01-2016 19:28:47 Geplanter Prüfpunkt ==================== Fehlerhafte Geräte im Gerätemanager ============= ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (01/25/2016 08:43:16 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: services.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f3848 Name des fehlerhaften Moduls: services.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f3848 Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000000000006069 ID des fehlerhaften Prozesses: 0x2cc Startzeit der fehlerhaften Anwendung: 0xservices.exe0 Pfad der fehlerhaften Anwendung: services.exe1 Pfad des fehlerhaften Moduls: services.exe2 Berichtskennung: services.exe3 Vollständiger Name des fehlerhaften Pakets: services.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: services.exe5 Error: (01/25/2016 04:45:05 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073418154 Error: (01/24/2016 07:28:48 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer". Details: AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll. System Error: Zugriff verweigert . Error: (01/24/2016 06:55:34 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: backgroundTaskHost.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f38c5 Name des fehlerhaften Moduls: twinapi.appcore.dll, Version: 10.0.10240.16590, Zeitstempel: 0x563ad512 Ausnahmecode: 0xc000027b Fehleroffset: 0x000000000006646f ID des fehlerhaften Prozesses: 0x1f50 Startzeit der fehlerhaften Anwendung: 0xbackgroundTaskHost.exe0 Pfad der fehlerhaften Anwendung: backgroundTaskHost.exe1 Pfad des fehlerhaften Moduls: backgroundTaskHost.exe2 Berichtskennung: backgroundTaskHost.exe3 Vollständiger Name des fehlerhaften Pakets: backgroundTaskHost.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: backgroundTaskHost.exe5 Error: (01/24/2016 06:47:55 PM) (Source: ESENT) (EventID: 104) (User: ) Description: wuaueng.dll (996) SUS20ClientDataStore: Das Datenbankmodul hat die Instanz (0) mit einem Fehler (-1090) beendet. Interne Zeitsteuerungsabfolge: [1] 0.000, [2] 0.000, [3] 0.000, [4] 0.000, [5] 0.000, [6] 0.000, [7] 0.000, [8] 0.000, [9] 0.000, [10] 0.000, [11] 0.000, [12] 0.000, [13] 0.000, [14] 0.000, [15] 0.000. Error: (01/24/2016 06:47:55 PM) (Source: ESENT) (EventID: 536) (User: ) Description: svchost (996) Fehler beim Versuch, die temporäre Datenbank "C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb" zu erstellen: -1808. Error: (01/24/2016 06:47:55 PM) (Source: ESENT) (EventID: 439) (User: ) Description: wuaueng.dll (996) SUS20ClientDataStore: Die Shadowkopfzeile für Datei "C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb" konnte nicht geschrieben werden. Fehler -1808. Error: (01/24/2016 06:40:34 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: backgroundTaskHost.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f38c5 Name des fehlerhaften Moduls: twinapi.appcore.dll, Version: 10.0.10240.16590, Zeitstempel: 0x563ad512 Ausnahmecode: 0xc000027b Fehleroffset: 0x000000000006646f ID des fehlerhaften Prozesses: 0x1680 Startzeit der fehlerhaften Anwendung: 0xbackgroundTaskHost.exe0 Pfad der fehlerhaften Anwendung: backgroundTaskHost.exe1 Pfad des fehlerhaften Moduls: backgroundTaskHost.exe2 Berichtskennung: backgroundTaskHost.exe3 Vollständiger Name des fehlerhaften Pakets: backgroundTaskHost.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: backgroundTaskHost.exe5 Error: (01/24/2016 06:25:34 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: backgroundTaskHost.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f38c5 Name des fehlerhaften Moduls: twinapi.appcore.dll, Version: 10.0.10240.16590, Zeitstempel: 0x563ad512 Ausnahmecode: 0xc000027b Fehleroffset: 0x000000000006646f ID des fehlerhaften Prozesses: 0x1474 Startzeit der fehlerhaften Anwendung: 0xbackgroundTaskHost.exe0 Pfad der fehlerhaften Anwendung: backgroundTaskHost.exe1 Pfad des fehlerhaften Moduls: backgroundTaskHost.exe2 Berichtskennung: backgroundTaskHost.exe3 Vollständiger Name des fehlerhaften Pakets: backgroundTaskHost.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: backgroundTaskHost.exe5 Error: (01/24/2016 06:10:34 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Name der fehlerhaften Anwendung: backgroundTaskHost.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f38c5 Name des fehlerhaften Moduls: twinapi.appcore.dll, Version: 10.0.10240.16590, Zeitstempel: 0x563ad512 Ausnahmecode: 0xc000027b Fehleroffset: 0x000000000006646f ID des fehlerhaften Prozesses: 0x2240 Startzeit der fehlerhaften Anwendung: 0xbackgroundTaskHost.exe0 Pfad der fehlerhaften Anwendung: backgroundTaskHost.exe1 Pfad des fehlerhaften Moduls: backgroundTaskHost.exe2 Berichtskennung: backgroundTaskHost.exe3 Vollständiger Name des fehlerhaften Pakets: backgroundTaskHost.exe4 Anwendungs-ID, die relativ zum fehlerhaften Paket ist: backgroundTaskHost.exe5 Systemfehler: ============= Error: (01/25/2016 08:44:40 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Der Dienst "Net.Tcp-Listeneradapter" ist vom Dienst "Net.Tcp-Portfreigabedienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1058 Error: (01/25/2016 08:44:36 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Das System wurde zuvor am 25.01.2016 um 20:25:33 unerwartet heruntergefahren. Error: (01/25/2016 08:43:00 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Synchronisierungshost_Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts. Error: (01/25/2016 08:41:03 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT) Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0xc190020e fehlgeschlagen: Upgrade auf Windows 10 Pro, Version 1511, 10586 Error: (01/25/2016 08:25:36 PM) (Source: DCOM) (EventID: 10016) (User: NABIL-PC) Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NABIL-PCNABILS-1-5-21-225648569-1694930765-1264359465-1000LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Error: (01/25/2016 08:25:35 PM) (Source: DCOM) (EventID: 10016) (User: NABIL-PC) Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NABIL-PCNABILS-1-5-21-225648569-1694930765-1264359465-1000LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Error: (01/25/2016 08:25:34 PM) (Source: DCOM) (EventID: 10016) (User: NABIL-PC) Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NABIL-PCNABILS-1-5-21-225648569-1694930765-1264359465-1000LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Error: (01/25/2016 08:25:34 PM) (Source: DCOM) (EventID: 10016) (User: NABIL-PC) Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NABIL-PCNABILS-1-5-21-225648569-1694930765-1264359465-1000LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Error: (01/25/2016 08:25:34 PM) (Source: DCOM) (EventID: 10016) (User: NABIL-PC) Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NABIL-PCNABILS-1-5-21-225648569-1694930765-1264359465-1000LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Error: (01/25/2016 08:25:34 PM) (Source: DCOM) (EventID: 10016) (User: NABIL-PC) Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NABIL-PCNABILS-1-5-21-225648569-1694930765-1264359465-1000LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar CodeIntegrity: =================================== Date: 2016-01-25 20:54:02.045 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-01-25 20:54:02.032 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-01-25 20:47:01.779 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-01-25 20:47:01.764 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-01-25 19:04:44.687 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-01-25 19:04:44.671 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-01-25 19:04:44.563 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-01-25 19:04:44.494 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-01-24 21:09:22.981 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-01-24 21:09:22.967 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz Prozentuale Nutzung des RAM: 32% Installierter physikalischer RAM: 8111.46 MB Verfügbarer physikalischer RAM: 5451.4 MB Summe virtueller Speicher: 16303.46 MB Verfügbarer virtueller Speicher: 12965.69 MB ==================== Laufwerke ================================ Drive c: () (Fixed) (Total:111.25 GB) (Free:13.23 GB) NTFS Drive e: (Video-Training) (CDROM) (Total:4.46 GB) (Free:0 GB) CDFS Drive f: (GSP1RMCULFRER_DE_DVD) (CDROM) (Total:2.34 GB) (Free:0 GB) UDF Drive m: (Volume) (Fixed) (Total:1863.01 GB) (Free:58.75 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 4A40E047) Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 5AC0E83E) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) ==================== Ende von Addition.txt ============================ |
Themen zu Windows 10 bootet langsam trotz ssd |
abmeldung, analyse, antivirusprogramm, antworten, auswertung, benutzer, bereich, board, bootet, bootet langsam, dauert, dnsapi.dll, driver booster, erneut, erstell, extrem, falsche, gelöscht, hoffe, installmanager.exe, langsam, programme, sehr geholfen, system, thema, tower, trotz, usern, videos, windows, windows 10 pro, worte |