|
Log-Analyse und Auswertung: file:///C:/ProgramData/Avira/Antivirus/IPM/IpmDocument.htmlWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
26.06.2016, 08:55 | #1 |
| file:///C:/ProgramData/Avira/Antivirus/IPM/IpmDocument.html Hallo, ich habe gestern auf Facebook eine Mitteilung erhalten, dass ich in einem Kommentar erwähnt wurde. Als ich dort draufgeklickt hatte wurde eine Datei runtergeladen die jedoch als Schaddatei erkannt wurde und Chrome fragte mich ob ich diese wieder entfernen möchte. Diesem habe ich natürlich zugestimmt. Weitere Probleme hatte ich gestern nichtmehr. Als ich jedoch heute meinen PC gestartet hatte kam der Fehler: hxxp://puu.sh/pGpb2/8b41cccb5e.png Solange dieses Fenster offen ist, ich Ja drücke oder Nein drücke sind sehr viele Dinge bei mir nur eingeschränkt möglich. Ich konnte z.B. AdwCleaner nicht downloaden (erst nach einem Neustart bevor der Scriptfehler aufging war es dann möglich). Ich hatte bereits die Anleitung von folgendem Thread probiert: http://www.trojaner-board.de/178885-...ment-html.html Jedoch brachte dies kein Erfolg und es wurden nur normale Programme angezeigt (die ich aber vorsichtshalber mal gelöscht hatte). Mfg |
26.06.2016, 14:04 | #2 |
/// Winkelfunktion /// TB-Süch-Tiger™ | file:///C:/ProgramData/Avira/Antivirus/IPM/IpmDocument.html Hallo und
__________________Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden? Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520 Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten! Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht! Zudem bitte auch ein Log mit Farbars Tool machen: Scan mit Farbar's Recovery Scan Tool (FRST) Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
Lesestoff: Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
26.06.2016, 15:30 | #3 |
| file:///C:/ProgramData/Avira/Antivirus/IPM/IpmDocument.htmlCode:
ATTFilter Free Antivirus Erstellungsdatum der Reportdatei: Sonntag, 26. Juni 2016 09:45 Das Programm läuft als uneingeschränkte Vollversion. Online-Dienste stehen zur Verfügung. Lizenznehmer : Free Seriennummer : 0000149996-AVHOE-0000001 Plattform : Windows 7 Ultimate Windowsversion : (Service Pack 1) [6.1.7601] Boot Modus : Normal gebootet Benutzername : Nico Computername : NICO-PC Versionsinformationen: build.dat : 15.0.17.273 92152 Bytes 04.04.2016 17:07:00 AVSCAN.EXE : 15.0.17.264 1258544 Bytes 12.05.2016 20:23:24 AVSCANRC.DLL : 15.0.17.269 65256 Bytes 12.05.2016 20:23:24 LUKE.DLL : 15.0.17.264 68864 Bytes 12.05.2016 20:23:29 AVSCPLR.DLL : 15.0.17.264 130712 Bytes 12.05.2016 20:23:24 REPAIR.DLL : 15.0.17.264 640544 Bytes 12.05.2016 20:23:23 repair.rdf : 1.0.17.96 1658372 Bytes 24.06.2016 11:40:19 AVREG.DLL : 15.0.17.264 350584 Bytes 12.05.2016 20:23:23 avlode.dll : 15.0.17.264 722920 Bytes 12.05.2016 20:23:23 avlode.rdf : 14.0.5.40 101832 Bytes 07.06.2016 09:59:15 XBV00011.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:15 XBV00012.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:15 XBV00013.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:15 XBV00014.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:15 XBV00015.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:15 XBV00016.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:15 XBV00017.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00018.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00019.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00020.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00021.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00022.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00023.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00024.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00025.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00026.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00027.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00028.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00029.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00030.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00031.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00032.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00033.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00034.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00035.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00036.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00037.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00038.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00039.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00040.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00041.VDF : 8.12.37.66 2048 Bytes 17.12.2015 15:10:16 XBV00073.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00074.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00075.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00076.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00077.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00078.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00079.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00080.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00081.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00082.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00083.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00084.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00085.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00086.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00087.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00088.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00089.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00090.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00091.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00092.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00093.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00094.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00095.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00096.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00097.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00098.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00099.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00100.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00101.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00102.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00103.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00104.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00105.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00106.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00107.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00108.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00109.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00110.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00111.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00112.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00113.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00114.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:54 XBV00115.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00116.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00117.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00118.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00119.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00120.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00121.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00122.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00123.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00124.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00125.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00126.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00127.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00128.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00129.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00130.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00131.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00132.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00133.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00134.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00135.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00136.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00137.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00138.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00139.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00140.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00141.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00142.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00143.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00144.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00145.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00146.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00147.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00148.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00149.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00150.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00151.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00152.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00153.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00154.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00155.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00156.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00157.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00158.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00159.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00160.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00161.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00162.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00163.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00164.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00165.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00166.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00167.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00168.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00169.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00170.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00171.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00172.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00173.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00174.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00175.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00176.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00177.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:55 XBV00178.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00179.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00180.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00181.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00182.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00183.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00184.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00185.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00186.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00187.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00188.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00189.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00190.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00191.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00192.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00193.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00194.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00195.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00196.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00197.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00198.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00199.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00200.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00201.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00202.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00203.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00204.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00205.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00206.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00207.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00208.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00209.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00210.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00211.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00212.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00213.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00214.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00215.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00216.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00217.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00218.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00219.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00220.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00221.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00222.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00223.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00224.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00225.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00226.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00227.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00228.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00229.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00230.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00231.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00232.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00233.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00234.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00235.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:56 XBV00236.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00237.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00238.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00239.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00240.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00241.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00242.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00243.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00244.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00245.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00246.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00247.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00248.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00249.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00250.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00251.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00252.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00253.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00254.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00255.VDF : 8.12.100.102 2048 Bytes 22.06.2016 06:16:57 XBV00000.VDF : 7.11.70.0 66736640 Bytes 04.04.2013 13:23:57 XBV00001.VDF : 7.11.237.0 48041984 Bytes 02.06.2015 15:10:09 XBV00002.VDF : 7.12.37.36 16452096 Bytes 17.12.2015 15:10:15 XBV00003.VDF : 8.12.44.142 3948032 Bytes 09.01.2016 15:13:18 XBV00004.VDF : 8.12.52.208 4036096 Bytes 02.02.2016 14:47:46 XBV00005.VDF : 8.12.62.184 2779136 Bytes 26.02.2016 18:41:18 XBV00006.VDF : 8.12.71.186 2191360 Bytes 19.03.2016 18:53:43 XBV00007.VDF : 8.12.80.192 3617280 Bytes 13.04.2016 06:44:43 XBV00008.VDF : 8.12.88.34 4358144 Bytes 06.05.2016 11:53:56 XBV00009.VDF : 8.12.95.102 4861952 Bytes 28.05.2016 10:11:16 XBV00010.VDF : 8.12.100.102 3856384 Bytes 22.06.2016 06:16:53 XBV00042.VDF : 8.12.100.108 46080 Bytes 23.06.2016 10:16:52 XBV00043.VDF : 8.12.100.114 9216 Bytes 23.06.2016 10:16:52 XBV00044.VDF : 8.12.100.118 7168 Bytes 23.06.2016 10:16:52 XBV00045.VDF : 8.12.100.146 25600 Bytes 23.06.2016 14:16:52 XBV00046.VDF : 8.12.100.170 2048 Bytes 23.06.2016 14:16:52 XBV00047.VDF : 8.12.100.194 2048 Bytes 23.06.2016 14:16:52 XBV00048.VDF : 8.12.100.218 44032 Bytes 23.06.2016 18:16:52 XBV00049.VDF : 8.12.100.242 2048 Bytes 23.06.2016 18:16:53 XBV00050.VDF : 8.12.101.10 20992 Bytes 23.06.2016 07:40:19 XBV00051.VDF : 8.12.101.12 2048 Bytes 23.06.2016 07:40:19 XBV00052.VDF : 8.12.101.14 29184 Bytes 23.06.2016 07:40:19 XBV00053.VDF : 8.12.101.16 7168 Bytes 23.06.2016 07:40:19 XBV00054.VDF : 8.12.101.18 11264 Bytes 23.06.2016 07:40:19 XBV00055.VDF : 8.12.101.22 56320 Bytes 24.06.2016 07:40:19 XBV00056.VDF : 8.12.101.24 6656 Bytes 24.06.2016 07:40:19 XBV00057.VDF : 8.12.101.26 9728 Bytes 24.06.2016 07:40:19 XBV00058.VDF : 8.12.101.28 6144 Bytes 24.06.2016 09:40:19 XBV00059.VDF : 8.12.101.30 7680 Bytes 24.06.2016 09:40:19 XBV00060.VDF : 8.12.101.32 7168 Bytes 24.06.2016 11:40:19 XBV00061.VDF : 8.12.101.36 59392 Bytes 24.06.2016 17:40:20 XBV00062.VDF : 8.12.101.38 9728 Bytes 24.06.2016 19:40:20 XBV00063.VDF : 8.12.101.40 9728 Bytes 24.06.2016 06:26:29 XBV00064.VDF : 8.12.101.42 8704 Bytes 24.06.2016 06:26:29 XBV00065.VDF : 8.12.101.44 2048 Bytes 24.06.2016 06:26:29 XBV00066.VDF : 8.12.101.46 11776 Bytes 24.06.2016 06:26:29 XBV00067.VDF : 8.12.101.50 65536 Bytes 25.06.2016 10:26:29 XBV00068.VDF : 8.12.101.52 2048 Bytes 25.06.2016 10:26:29 XBV00069.VDF : 8.12.101.54 18944 Bytes 25.06.2016 12:36:13 XBV00070.VDF : 8.12.101.56 2048 Bytes 25.06.2016 12:36:13 XBV00071.VDF : 8.12.101.60 2048 Bytes 25.06.2016 12:36:13 XBV00072.VDF : 8.12.101.62 26624 Bytes 25.06.2016 14:36:13 LOCAL000.VDF : 8.12.101.62 163390976 Bytes 25.06.2016 14:36:26 Engineversion : 8.3.40.60 AEBB.DLL : 8.1.3.0 59296 Bytes 19.11.2015 13:56:22 AECORE.DLL : 8.3.12.4 247720 Bytes 21.03.2016 12:42:27 AECRYPTO.DLL : 8.2.0.2 128936 Bytes 12.05.2016 10:23:17 AEDROID.DLL : 8.4.3.362 2717608 Bytes 29.04.2016 11:31:37 AEEMU.DLL : 8.1.3.8 404328 Bytes 18.03.2016 14:54:52 AEEXP.DLL : 8.4.2.182 305064 Bytes 01.06.2016 14:50:33 AEGEN.DLL : 8.1.8.126 542632 Bytes 23.06.2016 12:16:52 AEHELP.DLL : 8.3.2.10 284584 Bytes 15.02.2016 14:49:19 AEHEUR.DLL : 8.1.4.2358 10341232 Bytes 23.06.2016 12:16:53 AELIBINF.DLL : 8.2.1.4 68464 Bytes 12.05.2016 10:23:17 AEMOBILE.DLL : 8.1.8.10 301936 Bytes 26.11.2015 15:31:34 AEOFFICE.DLL : 8.3.4.10 482160 Bytes 24.06.2016 13:40:19 AEPACK.DLL : 8.4.2.14 805744 Bytes 31.03.2016 11:51:28 AERDL.DLL : 8.2.1.42 813928 Bytes 18.03.2016 14:54:53 AESBX.DLL : 8.2.22.4 1633128 Bytes 20.06.2016 14:23:43 AESCN.DLL : 8.3.4.6 141216 Bytes 06.05.2016 11:53:55 AESCRIPT.DLL : 8.3.0.164 625520 Bytes 24.06.2016 13:40:19 AEVDF.DLL : 8.3.3.4 142184 Bytes 21.03.2016 12:42:27 AVWINLL.DLL : 15.0.17.264 27680 Bytes 12.05.2016 20:23:22 AVPREF.DLL : 15.0.17.264 53944 Bytes 12.05.2016 20:23:23 AVREP.DLL : 15.0.17.264 223400 Bytes 12.05.2016 20:23:23 AVARKT.DLL : 15.0.17.264 230080 Bytes 12.05.2016 20:23:22 AVEVTLOG.DLL : 15.0.17.264 202776 Bytes 12.05.2016 20:23:22 SQLITE3.DLL : 15.0.17.264 459752 Bytes 12.05.2016 20:23:30 AVSMTP.DLL : 15.0.17.264 80200 Bytes 12.05.2016 20:23:24 NETNT.DLL : 15.0.17.264 16880 Bytes 12.05.2016 20:23:29 CommonImageRc.dll: 15.0.17.269 4307832 Bytes 12.05.2016 20:23:22 CommonTextRc.dll: 15.0.17.269 68864 Bytes 12.05.2016 20:23:22 Konfiguration für den aktuellen Suchlauf: Job Name..............................: Vollständige Prüfung Konfigurationsdatei...................: C:\Program Files (x86)\Avira\Antivirus\sysscan.avp Protokollierung.......................: standard Primäre Aktion........................: Interaktiv Sekundäre Aktion......................: Ignorieren Durchsuche Masterbootsektoren.........: ein Durchsuche Bootsektoren...............: ein Bootsektoren..........................: C:, E:, F:, G:, Durchsuche aktive Programme...........: ein Laufende Programme erweitert..........: ein Durchsuche Registrierung..............: ein Suche nach Rootkits...................: ein Integritätsprüfung von Systemdateien..: aus Prüfe alle Dateien....................: Alle Dateien Durchsuche Archive....................: ein Rekursionstiefe einschränken..........: 20 Archiv Smart Extensions...............: ein Makrovirenheuristik...................: ein Dateiheuristik........................: erweitert Auszulassende Dateien.................: Beginn des Suchlaufs: Sonntag, 26. Juni 2016 09:45 Der Suchlauf über die Bootsektoren wird begonnen: Bootsektor 'HDD1(C:)' [INFO] Es wurde kein Virus gefunden! Bootsektor 'HDD2(E:, F:)' [INFO] Es wurde kein Virus gefunden! Bootsektor 'HDD0(G:)' [INFO] Es wurde kein Virus gefunden! Der Suchlauf nach versteckten Objekten wird begonnen. Der Suchlauf über gestartete Prozesse wird begonnen: Durchsuche Prozess 'svchost.exe' - '52' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '34' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '86' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '126' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '82' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '148' Modul(e) wurden durchsucht Durchsuche Prozess 'UMVPFSrv.exe' - '29' Modul(e) wurden durchsucht Durchsuche Prozess 'SbieSvc.exe' - '33' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '73' Modul(e) wurden durchsucht Durchsuche Prozess 'Dwm.exe' - '37' Modul(e) wurden durchsucht Durchsuche Prozess 'Explorer.EXE' - '175' Modul(e) wurden durchsucht Durchsuche Prozess 'spoolsv.exe' - '86' Modul(e) wurden durchsucht Durchsuche Prozess 'taskhost.exe' - '52' Modul(e) wurden durchsucht Durchsuche Prozess 'sched.exe' - '78' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '61' Modul(e) wurden durchsucht Durchsuche Prozess 'taskeng.exe' - '28' Modul(e) wurden durchsucht Durchsuche Prozess 'armsvc.exe' - '28' Modul(e) wurden durchsucht Durchsuche Prozess 'taskeng.exe' - '29' Modul(e) wurden durchsucht Durchsuche Prozess 'GoogleUpdate.exe' - '50' Modul(e) wurden durchsucht Durchsuche Prozess 'avguard.exe' - '108' Modul(e) wurden durchsucht Durchsuche Prozess 'AppleMobileDeviceService.exe' - '62' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '58' Modul(e) wurden durchsucht Durchsuche Prozess 'pabeSvc64.exe' - '71' Modul(e) wurden durchsucht Durchsuche Prozess 'PnkBstrA.exe' - '31' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '32' Modul(e) wurden durchsucht Durchsuche Prozess 'iTunesHelper.exe' - '71' Modul(e) wurden durchsucht Durchsuche Prozess 'DTLite.exe' - '50' Modul(e) wurden durchsucht Durchsuche Prozess 'TeamViewer_Service.exe' - '77' Modul(e) wurden durchsucht Durchsuche Prozess 'SbieCtrl.exe' - '40' Modul(e) wurden durchsucht Durchsuche Prozess 'avgnt.exe' - '105' Modul(e) wurden durchsucht Durchsuche Prozess 'LWS.exe' - '43' Modul(e) wurden durchsucht Durchsuche Prozess 'jusched.exe' - '33' Modul(e) wurden durchsucht Durchsuche Prozess 'McAfee.TrueKey.Service.exe' - '120' Modul(e) wurden durchsucht Durchsuche Prozess 'wmiprvse.exe' - '43' Modul(e) wurden durchsucht Durchsuche Prozess 'firefox.exe' - '139' Modul(e) wurden durchsucht Durchsuche Prozess 'avcenter.exe' - '145' Modul(e) wurden durchsucht Durchsuche Prozess 'avshadow.exe' - '30' Modul(e) wurden durchsucht Durchsuche Prozess 'SearchIndexer.exe' - '57' Modul(e) wurden durchsucht Durchsuche Prozess 'iPodService.exe' - '33' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '37' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '51' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '59' Modul(e) wurden durchsucht Durchsuche Prozess 'avscan.exe' - '79' Modul(e) wurden durchsucht Durchsuche Prozess 'avscan.exe' - '125' Modul(e) wurden durchsucht Durchsuche Prozess 'sppsvc.exe' - '27' Modul(e) wurden durchsucht Durchsuche Prozess 'vssvc.exe' - '47' Modul(e) wurden durchsucht Durchsuche Prozess 'svchost.exe' - '28' Modul(e) wurden durchsucht Durchsuche Prozess 'DllHost.exe' - '41' Modul(e) wurden durchsucht Durchsuche Prozess 'ipmGui.exe' - '109' Modul(e) wurden durchsucht Durchsuche Prozess 'AnimationService.exe' - '61' Modul(e) wurden durchsucht Durchsuche Prozess 'McTkSchedulerService.exe' - '57' Modul(e) wurden durchsucht Durchsuche Prozess 'plugin-container.exe' - '111' Modul(e) wurden durchsucht Durchsuche Prozess 'SearchProtocolHost.exe' - '29' Modul(e) wurden durchsucht Durchsuche Prozess 'SearchFilterHost.exe' - '27' Modul(e) wurden durchsucht Durchsuche Prozess 'smss.exe' - '2' Modul(e) wurden durchsucht Durchsuche Prozess 'csrss.exe' - '16' Modul(e) wurden durchsucht Durchsuche Prozess 'wininit.exe' - '26' Modul(e) wurden durchsucht Durchsuche Prozess 'csrss.exe' - '16' Modul(e) wurden durchsucht Durchsuche Prozess 'services.exe' - '33' Modul(e) wurden durchsucht Durchsuche Prozess 'lsass.exe' - '74' Modul(e) wurden durchsucht Durchsuche Prozess 'lsm.exe' - '16' Modul(e) wurden durchsucht Durchsuche Prozess 'winlogon.exe' - '31' Modul(e) wurden durchsucht Der Suchlauf auf Verweise zu ausführbaren Dateien (Registry) wird begonnen: Die Registry wurde durchsucht ( '1660' Dateien ). Der Suchlauf über die ausgewählten Dateien wird begonnen: Beginne mit der Suche in 'C:\' Beginne mit der Suche in 'E:\' Beginne mit der Suche in 'F:\' Beginne mit der Suche in 'G:\' <Volume> G:\Programme\Steam\steamapps\common\SpeedRunners\Content\Levels\Multiplayer\casino.xnb [WARNUNG] Mögliche Archivbombe: die maximale Komprimierungsrate wurde überschritten. G:\Programme\Steam\steamapps\common\SpeedRunners\Content\Levels\Multiplayer\prototype2.xnb [WARNUNG] Mögliche Archivbombe: die maximale Komprimierungsrate wurde überschritten. G:\Programme\Steam\steamapps\common\SpeedRunners\Content\Levels\Multiplayer\prototype3.xnb [WARNUNG] Mögliche Archivbombe: die maximale Komprimierungsrate wurde überschritten. G:\Programme\Steam\steamapps\common\SpeedRunners\Content\Levels\Multiplayer\swiftpeaks.xnb [WARNUNG] Mögliche Archivbombe: die maximale Komprimierungsrate wurde überschritten. Ende des Suchlaufs: Sonntag, 26. Juni 2016 12:00 Benötigte Zeit: 2:15:18 Stunde(n) Der Suchlauf wurde vollständig durchgeführt. 87014 Verzeichnisse wurden überprüft 2773704 Dateien wurden geprüft 0 Viren bzw. unerwünschte Programme wurden gefunden 0 Dateien wurden als verdächtig eingestuft 0 Dateien wurden gelöscht 0 Viren bzw. unerwünschte Programme wurden repariert 0 Dateien wurden in die Quarantäne verschoben 0 Dateien wurden umbenannt 0 Dateien konnten nicht durchsucht werden 2773704 Dateien ohne Befall 18468 Archive wurden durchsucht 4 Warnungen 0 Hinweise 1217736 Objekte wurden beim Rootkitscan durchsucht 0 Versteckte Objekte wurden gefunden |
26.06.2016, 15:30 | #4 |
| file:///C:/ProgramData/Avira/Antivirus/IPM/IpmDocument.htmlCode:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 26-06-2016 01 durchgeführt von Nico (Administrator) auf NICO-PC (26-06-2016 16:22:50) Gestartet von C:\Users\Nico\Downloads Geladene Profile: Nico (Verfügbare Profile: Nico) Platform: Windows 7 Ultimate Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 8 (Standard-Browser: FF) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (Sandboxie Holdings, LLC) G:\Program Files\Sandboxie\SbieSvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc64.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Apple Inc.) G:\Program Files\iTunes\iTunesHelper.exe (DT Soft Ltd) G:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (TeamViewer GmbH) G:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Sandboxie Holdings, LLC) G:\Program Files\Sandboxie\SbieCtrl.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe (Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\ipmgui.exe () C:\Program Files\WALTR\x86\AnimationService.exe (McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe () G:\Program Files (x86)\puush\puush.exe (TeamSpeak Systems GmbH) G:\Programme\Teamspeak\ts3client_win64.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_22_0_0_192.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_22_0_0_192.exe () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\samp.exe (Valve Corporation) G:\Programme\Steam\Steam.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Valve Corporation) G:\Programme\Steam\bin\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe () G:\Programme\AHK\AutoHotkeyA32.exe (Valve Corporation) G:\Programme\Steam\bin\steamwebhelper.exe (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe (Don HO don.h@free.fr) C:\Program Files (x86)\Notepad++\notepad++.exe () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\gta_sa.exe () C:\Users\Nico\Desktop\Ordner\Spiele\GTA\SAMP\Sani.exe (Valve Corporation) G:\Programme\Steam\bin\steamwebhelper.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [iTunesHelper] => G:\Program Files\iTunes\iTunesHelper.exe [170256 2015-12-17] (Apple Inc.) HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [814608 2016-05-12] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation) HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\Run: [DAEMON Tools Lite] => G:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [1305408 2011-01-20] (DT Soft Ltd) HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\Run: [SandboxieControl] => G:\Program Files\Sandboxie\SbieCtrl.exe [797328 2016-02-26] (Sandboxie Holdings, LLC) HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\MountPoints2: {0c3103d5-d64e-11e5-a080-d05099550755} - H:\setup.exe HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\MountPoints2: {3615cf4f-ead8-11e4-b335-806e6f6e6963} - D:\SETUP.EXE HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\MountPoints2: {4c1d68e5-3428-11e5-bf51-d05099550755} - H:\setup.exe Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 78.42.43.41 82.212.62.41 Tcpip\..\Interfaces\{0B9A43B5-F2AD-4751-A7AD-1B7E8E1D37D1}: [DhcpNameServer] 82.212.62.62 78.42.43.62 Tcpip\..\Interfaces\{5248E955-8A2B-4323-82C9-8861A890D5CF}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{CE6FB0E5-C7C8-4374-8A6F-5C39CDA1E29C}: [DhcpNameServer] 78.42.43.41 82.212.62.41 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-1388351622-919218107-1302039281-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-05-27] (Microsoft Corporation) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-05-25] (Oracle Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-05-17] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-25] (Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-05-27] (Microsoft Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-05-25] (Oracle Corporation) BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-05-17] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-25] (Oracle Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-05-17] (Microsoft Corporation) Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2015-12-10] (Microsoft Corporation) Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2015-12-10] (Microsoft Corporation) Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2015-12-10] (Microsoft Corporation) Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2015-12-10] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\aDV28Sk4.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_192.dll [2016-06-24] () FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-25] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-25] (Oracle Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-06-24] () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-25] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-25] (Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-11-18] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-09-13] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-09-13] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll [2015-04-24] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll [2015-04-24] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-11-18] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-05-27] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2015-11-10] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2015-11-10] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2015-11-10] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2015-11-10] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2015-11-10] (Apple Inc.) FF Extension: Google Search by Image - C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\aDV28Sk4.default\extensions\google@hitachi.com.xpi [2016-04-28] FF Extension: Avira Browser Safety - C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\aDV28Sk4.default\Extensions\abs@avira.com [2016-06-22] FF Extension: MEGA - C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\aDV28Sk4.default\Extensions\firefox@mega.co.nz.xpi [2016-06-23] FF Extension: Adblock Plus - C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\aDV28Sk4.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28] Chrome: ======= CHR Profile: C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Docs) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-24] CHR Extension: (Google Drive) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-24] CHR Extension: (YouTube) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-24] CHR Extension: (Google-Suche) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-24] CHR Extension: (Google Mail) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-24] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 AnimationService; C:\Program Files\WALTR\x86\AnimationService.exe [55744 2015-10-08] () S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [970656 2016-05-12] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [467016 2016-05-12] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [467016 2016-05-12] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1435704 2016-05-12] (Avira Operations GmbH & Co. KG) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.) S4 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [251160 2015-12-08] (Avira Operations GmbH & Co. KG) S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1141248 2015-07-16] () S4 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [437880 2015-07-13] (BlueStack Systems, Inc.) S4 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [417400 2015-07-13] (BlueStack Systems, Inc.) S4 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [822904 2015-07-13] (BlueStack Systems, Inc.) S3 Disc Soft Lite Bus Service; G:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd) S4 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-12] (NVIDIA Corporation) S4 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19184 2014-12-10] (Intel Corporation) S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Datei ist nicht signiert] S4 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation) S4 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-03-20] (Intel Corporation) R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc64.exe [3020440 2015-11-25] (Intel(R) Corporation) S4 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-04-03] () S4 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-09-25] (Intel Corporation) S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation) S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3916368 2016-01-09] (INCA Internet Co., Ltd.) S4 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-12] (NVIDIA Corporation) S4 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-12] (NVIDIA Corporation) S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-12] (NVIDIA Corporation) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75064 2015-08-29] () S4 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [246488 2013-06-18] (Realtek Semiconductor) R2 SbieSvc; G:\Program Files\Sandboxie\SbieSvc.exe [187024 2016-02-26] (Sandboxie Holdings, LLC) R2 TeamViewer; G:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer GmbH) R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [868592 2016-03-31] (McAfee, Inc.) R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [15736 2016-03-31] (McAfee, Inc.) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) S4 Bonjour Service; "C:\Program Files\Bonjour\mDNSResponder.exe" [X] S2 InstallerService; "C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe" [X] S3 TrueKeyServiceHelper; "C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe" [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [154816 2016-03-08] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [141920 2016-05-12] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2015-04-16] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [79696 2016-05-12] (Avira Operations GmbH & Co. KG) S2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [145528 2015-07-13] (BlueStack Systems) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-07-27] (Disc Soft Ltd) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2016-02-18] (DT Soft Ltd) R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [488216 2014-02-03] (Intel Corporation) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [30960 2014-12-10] (Intel Corporation) R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [22216 2014-02-03] () R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [22728 2014-02-03] () S3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-04-03] () R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [44744 2014-02-03] () R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [118272 2014-03-20] (Intel Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-12] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation) R3 SbieDrv; G:\Program Files\Sandboxie\SbieDrv.sys [204944 2016-02-26] (Sandboxie Holdings, LLC) R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3604480 2013-07-30] (Sonix Co. Ltd.) S3 ssdevfactory; C:\Windows\System32\DRIVERS\ssdevfactory.sys [25088 2015-04-14] (SteelSeries ApS) R3 VBAudioVACMME; C:\Windows\System32\DRIVERS\vbaudio_cable64_win7.sys [41192 2013-07-11] (Windows (R) Win 7 DDK provider) S3 VGPU; System32\drivers\rdvgkmd.sys [X] S3 xhunter1; \??\C:\Windows\xhunter1.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-06-26 16:22 - 2016-06-26 16:22 - 02388992 _____ (Farbar) C:\Users\Nico\Downloads\FRST64.exe 2016-06-26 16:22 - 2016-06-26 16:22 - 00022714 _____ C:\Users\Nico\Downloads\FRST.txt 2016-06-26 16:22 - 2016-06-26 16:22 - 00000000 ____D C:\FRST 2016-06-26 09:37 - 2016-06-26 09:40 - 00000000 ____D C:\AdwCleaner 2016-06-26 09:37 - 2016-06-26 09:37 - 03703360 _____ C:\Users\Nico\Downloads\AdwCleaner_5.200.exe 2016-06-25 16:33 - 2016-06-25 16:33 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Source 2016-06-25 14:33 - 2016-06-25 14:36 - 00007606 _____ C:\Users\Nico\AppData\Local\Resmon.ResmonCfg 2016-06-20 11:47 - 2016-06-20 11:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WALTR 2016-06-20 11:47 - 2016-06-20 11:47 - 00000000 ____D C:\Program Files\WALTR 2016-06-20 11:46 - 2016-06-20 11:47 - 34417272 _____ (Softorino, Inc. ) C:\Users\Nico\Downloads\waltrwindows_1.1.33(1).exe 2016-06-18 08:42 - 2016-06-21 22:49 - 00012364 _____ C:\Users\Nico\Desktop\Hay Day.xlsx 2016-06-16 23:00 - 2016-06-16 23:00 - 00008102 _____ C:\Users\Nico\Desktop\Urlaub.xlsx 2016-06-15 18:21 - 2016-06-06 18:58 - 00041704 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-06-15 18:21 - 2016-06-06 18:50 - 01204224 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-06-15 18:21 - 2016-06-03 15:05 - 01413120 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-06-15 18:21 - 2016-05-27 15:06 - 00569856 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-06-15 18:21 - 2016-05-27 15:06 - 00544256 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-06-15 18:21 - 2016-05-27 15:06 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-06-15 18:21 - 2016-05-27 15:06 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll 2016-06-15 18:21 - 2016-05-22 15:06 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2016-06-15 18:21 - 2016-05-18 18:10 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2016-06-15 18:21 - 2016-05-18 18:09 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2016-06-15 18:21 - 2016-05-14 00:15 - 00382184 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2016-06-15 18:21 - 2016-05-14 00:09 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2016-06-15 18:21 - 2016-05-14 00:09 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2016-06-15 18:21 - 2016-05-14 00:09 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2016-06-15 18:21 - 2016-05-14 00:09 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2016-06-15 18:21 - 2016-05-13 23:54 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2016-06-15 18:21 - 2016-05-13 23:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll 2016-06-15 18:21 - 2016-05-13 23:49 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2016-06-15 18:21 - 2016-05-13 23:49 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll 2016-06-15 18:21 - 2016-05-13 23:27 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2016-06-15 18:21 - 2016-05-12 19:20 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2016-06-15 18:21 - 2016-05-12 19:20 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2016-06-15 18:21 - 2016-05-12 19:15 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2016-06-15 18:21 - 2016-05-12 19:15 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2016-06-15 18:21 - 2016-05-12 19:15 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll 2016-06-15 18:21 - 2016-05-12 19:15 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2016-06-15 18:21 - 2016-05-12 19:15 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2016-06-15 18:21 - 2016-05-12 19:15 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00794624 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00793088 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL 2016-06-15 18:21 - 2016-05-12 19:14 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00591872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2016-06-15 18:21 - 2016-05-12 17:06 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe 2016-06-15 18:21 - 2016-05-12 17:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2016-06-15 18:21 - 2016-05-12 17:03 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2016-06-15 18:21 - 2016-05-12 16:58 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2016-06-15 18:21 - 2016-05-12 16:58 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2016-06-15 18:21 - 2016-05-12 16:58 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2016-06-15 18:21 - 2016-05-12 16:58 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2016-06-15 18:21 - 2016-05-12 16:58 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2016-06-15 18:21 - 2016-05-12 16:58 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2016-06-15 18:21 - 2016-05-12 16:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll 2016-06-15 18:21 - 2016-05-12 16:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2016-06-15 18:21 - 2016-05-12 16:57 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.exe 2016-06-15 18:21 - 2016-05-12 16:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2016-06-15 18:21 - 2016-05-12 16:51 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2016-06-15 18:21 - 2016-05-12 15:05 - 00459640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2016-06-15 18:21 - 2016-05-12 15:05 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll 2016-06-15 18:21 - 2016-05-12 15:04 - 00249352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll 2016-06-15 18:21 - 2016-05-11 19:02 - 00483840 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll 2016-06-15 18:21 - 2016-05-11 19:02 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll 2016-06-15 18:21 - 2016-05-11 19:02 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll 2016-06-15 18:21 - 2016-05-11 19:02 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll 2016-06-15 18:21 - 2016-05-11 17:19 - 00363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll 2016-06-15 18:21 - 2016-05-11 17:19 - 00351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll 2016-06-15 18:21 - 2016-05-11 17:19 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll 2016-06-15 18:21 - 2016-05-11 17:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll 2016-06-15 18:21 - 2016-05-11 17:11 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe 2016-06-15 18:21 - 2016-05-11 17:01 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe 2016-06-15 18:21 - 2016-05-11 16:58 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys 2016-06-15 18:21 - 2016-04-14 18:46 - 00114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2016-06-15 18:21 - 2016-04-14 18:42 - 03243520 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2016-06-15 18:21 - 2016-04-14 18:42 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2016-06-15 18:21 - 2016-04-14 18:42 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2016-06-15 18:21 - 2016-04-14 18:42 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll 2016-06-15 18:21 - 2016-04-14 18:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll 2016-06-15 18:21 - 2016-04-14 17:33 - 02365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2016-06-15 18:21 - 2016-04-14 17:33 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2016-06-15 18:21 - 2016-04-14 17:33 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll 2016-06-15 18:21 - 2016-04-14 17:33 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll 2016-06-15 18:21 - 2016-04-14 17:19 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe 2016-06-15 18:21 - 2016-04-14 17:11 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe 2016-06-15 18:21 - 2016-04-09 08:58 - 14186496 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2016-06-15 18:21 - 2016-04-09 08:57 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2016-06-15 18:21 - 2016-04-09 08:54 - 12881408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2016-06-15 18:21 - 2016-04-09 08:54 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2016-06-15 18:21 - 2016-04-09 07:53 - 03231232 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2016-06-15 18:21 - 2016-04-09 07:44 - 02973184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2016-06-15 18:21 - 2016-03-09 21:00 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll 2016-06-15 18:21 - 2016-03-09 20:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll 2016-06-06 22:53 - 2016-06-20 14:32 - 00008354 _____ C:\Users\Nico\Desktop\Terminkalender.xlsx 2016-05-28 19:10 - 2016-06-01 22:58 - 00009103 _____ C:\Users\Nico\Desktop\PSC-Handel.xlsx ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-06-26 16:13 - 2015-04-24 21:29 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Skype 2016-06-26 15:56 - 2015-04-26 20:28 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-06-26 15:30 - 2015-04-24 20:25 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-06-26 09:53 - 2009-07-14 06:45 - 00026544 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-06-26 09:53 - 2009-07-14 06:45 - 00026544 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-06-26 09:50 - 2011-04-12 09:43 - 00700130 _____ C:\Windows\system32\perfh007.dat 2016-06-26 09:50 - 2011-04-12 09:43 - 00149768 _____ C:\Windows\system32\perfc007.dat 2016-06-26 09:50 - 2009-07-14 07:13 - 01622706 _____ C:\Windows\system32\PerfStringBackup.INI 2016-06-26 09:50 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf 2016-06-26 09:45 - 2015-04-24 20:25 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-06-26 09:44 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-06-25 23:25 - 2015-05-09 07:30 - 00000000 ____D C:\Users\Nico\AppData\Roaming\OBS 2016-06-25 14:54 - 2015-05-17 20:29 - 00000000 ___HD C:\Users\Nico\AppData\Local\Battle.net 2016-06-25 14:54 - 2015-04-24 22:15 - 00000000 ____D C:\Users\Nico\AppData\Roaming\vlc 2016-06-25 14:42 - 2015-09-28 15:16 - 00000000 ____D C:\Windows\pss 2016-06-24 10:37 - 2015-12-27 02:40 - 00000000 ____D C:\Users\Nico\AppData\Local\CrashDumps 2016-06-24 10:36 - 2015-04-26 20:28 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-06-24 10:36 - 2015-04-26 20:28 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-06-24 10:36 - 2015-04-26 20:28 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2016-06-24 10:36 - 2015-04-26 20:28 - 00000000 ___HD C:\Users\Nico\AppData\Local\Adobe 2016-06-22 17:24 - 2015-05-14 18:48 - 00001742 _____ C:\Windows\Sandboxie.ini 2016-06-20 12:07 - 2015-10-25 15:02 - 00111936 _____ C:\Windows\system32\GDIPFONTCACHEV1.DAT 2016-06-20 12:05 - 2015-11-10 23:04 - 00000000 ____D C:\Program Files (x86)\Movavi Video Converter 16 2016-06-20 12:00 - 2015-11-10 22:44 - 00000000 ____D C:\Users\Nico\.fontconfig 2016-06-20 11:44 - 2016-05-15 12:50 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Franz 2016-06-18 00:04 - 2016-03-15 08:20 - 00001601 _____ C:\Users\Nico\Desktop\tommy.txt 2016-06-16 15:12 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2016-06-16 09:26 - 2015-04-25 02:18 - 00000000 ____D C:\Windows\system32\appraiser 2016-06-16 09:26 - 2009-07-14 06:45 - 00434792 _____ C:\Windows\system32\FNTCACHE.DAT 2016-06-15 23:09 - 2015-05-26 21:40 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2016-06-15 23:08 - 2015-04-24 22:12 - 00000000 ____D C:\Windows\system32\MRT 2016-06-15 23:06 - 2015-04-24 22:12 - 142482544 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-06-09 12:47 - 2015-06-27 16:45 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Curse Client 2016-06-09 09:53 - 2015-12-17 07:50 - 00000000 ___RD C:\Program Files (x86)\Skype 2016-06-09 09:53 - 2015-04-24 21:29 - 00000000 ____D C:\ProgramData\Skype 2016-06-09 09:51 - 2015-10-07 22:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-06-08 21:44 - 2016-02-25 19:37 - 00014108 _____ C:\Users\Nico\Desktop\Microsoft Excel-Arbeitsblatt (neu).xlsx 2016-06-07 12:09 - 2015-05-02 09:01 - 00000000 ____D C:\Users\Nico\AppData\Roaming\.minecraft 2016-06-04 15:47 - 2015-10-29 19:57 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2016-05-30 21:43 - 2016-04-05 20:06 - 00011793 _____ C:\Users\Nico\Desktop\Miss Random.xlsx ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-10-02 11:19 - 2015-10-02 14:11 - 0002071 _____ () C:\Users\Nico\AppData\Roaming\SpeedRunnersLog.txt 2016-06-25 14:33 - 2016-06-25 14:36 - 0007606 _____ () C:\Users\Nico\AppData\Local\Resmon.ResmonCfg 2015-11-10 22:43 - 2015-11-10 22:43 - 0000016 _____ () C:\ProgramData\mntemp Einige Dateien in TEMP: ==================== C:\Users\Nico\AppData\Local\Temp\avgnt.exe C:\Users\Nico\AppData\Local\Temp\libeay32.dll C:\Users\Nico\AppData\Local\Temp\msvcr120.dll C:\Users\Nico\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2016-06-17 09:52 ==================== Ende von FRST.txt ============================ Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 26-06-2016 01 durchgeführt von Nico (2016-06-26 16:23:08) Gestartet von C:\Users\Nico\Downloads Windows 7 Ultimate Service Pack 1 (X64) (2015-04-24 18:18:19) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-1388351622-919218107-1302039281-500 - Administrator - Disabled) Gast (S-1-5-21-1388351622-919218107-1302039281-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1388351622-919218107-1302039281-1002 - Limited - Enabled) Nico (S-1-5-21-1388351622-919218107-1302039281-1000 - Administrator - Enabled) => C:\Users\Nico ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) 7-Zip 9.38 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0938-000001000000}) (Version: 9.38.00.0 - Igor Pavlov) Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated) Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated) Aeria Ignite (HKLM-x32\...\Aeria Ignite 1.13.3296) (Version: 1.13.3296 - Aeria Games & Entertainment) Aeria Ignite (HKLM-x32\...\Aeria Ignite) (Version: 1.13.3296 - Aeria Games & Entertainment) Aeria Ignite (x32 Version: 1.13.3296 - Aeria Games & Entertainment) Hidden Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version: - Hidden Path Entertainment, Ensemble Studios) Akamai NetSession Interface (HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\Akamai) (Version: - Akamai Technologies, Inc) Apple Application Support (32-Bit) (HKLM-x32\...\{7FA9ECCF-A2DE-4DA1-BFF3-81260DBDA68F}) (Version: 4.1.2 - Apple Inc.) Apple Application Support (64-Bit) (HKLM\...\{691F30EB-9009-475A-B8A9-E1BF39598FD5}) (Version: 4.1.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.) ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version: - Studio Wildcard) ASRock App Charger v1.0.6 (HKLM\...\ASRock App Charger_is1) (Version: 1.0.6 - ASRock Inc.) AutoHotkey 1.1.21.03 (HKLM\...\AutoHotkey) (Version: 1.1.21.03 - Lexikos) Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.17.273 - Avira Operations GmbH & Co. KG) Avira Launcher (HKLM-x32\...\{eac7da46-2097-4dd4-80a6-8b67cbb2b23f}) (Version: 1.1.53.13962 - Avira Operations GmbH & Co. KG) Avira Launcher (x32 Version: 1.1.53.13962 - Avira Operations GmbH & Co. KG) Hidden Batman™: Arkham Origins (HKLM-x32\...\Steam App 209000) (Version: - WB Games Montreal) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) BioShock (HKLM-x32\...\Steam App 7670) (Version: - 2K Boston) BioShock 2 (HKLM-x32\...\Steam App 8850) (Version: - 2K Marin) Blade & Soul (HKLM-x32\...\InstallShield_{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.237 - NC Interactive, LLC) Blade & Soul (x32 Version: 1.0.63.237 - NC Interactive, LLC) Hidden BlueStacks App Player (HKLM-x32\...\{CCFDC6A9-4455-4117-BB1F-5FC580349DDB}) (Version: 1.1.8.162 - BlueStack Systems, Inc.) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Call of Duty: Advanced Warfare - Multiplayer (HKLM\...\Steam App 209660) (Version: - Sledgehammer Games) Call of Duty: Black Ops (HKLM\...\Steam App 42700) (Version: - Treyarch) Call of Duty: Black Ops III Beta (HKLM-x32\...\Steam App 388520) (Version: - Treyarch) Call of Duty: Modern Warfare 3 - Multiplayer (HKLM\...\Steam App 42690) (Version: - Infinity Ward) CameraHelperMsi (x32 Version: 13.40.836.0 - Logitech) Hidden Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version: - Colossal Order Ltd.) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve) Curse (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Curse) Cyperia (HKLM-x32\...\{CA9F6B5A-2C32-4CB3-8635-390AB45A8C49}) (Version: 2.0 - Cyperia) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.40.2.0131 - DT Soft Ltd) Die Sims 4 Digital Deluxe Edition ReRelease Incl. Update 10 MULTi2 1.5.139.1020 (HKLM-x32\...\Die Sims 4 Digital Deluxe Edition ReRelease Incl. Update 10 MULTi2 1.5.139.1020) (Version: - ) Die Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.5.139.1020 - Electronic Arts Inc.) erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Franz (HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\Franz) (Version: 0.9.10 - Franz) Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios) GIGABYTE OC_GURU II (HKLM-x32\...\InstallShield_{EA298EC1-2B8F-4DA9-8C5B-BC1FCBBAD72F}) (Version: 1.69.0000 - GIGABYTE Technology Co.,Ltd.) GIGABYTE OC_GURU II (x32 Version: 1.69.0000 - GIGABYTE Technology Co.,Ltd.) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 26.0.1410.40 - Google Inc.) Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games) Grand Theft Auto: San Andreas (HKLM-x32\...\Steam App 12120) (Version: - Rockstar Games) Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) HUE HD Camera (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.60000.104 - Sonix) Intel Security True Key (HKLM\...\TrueKey) (Version: 3.9.141.1 - Intel Security) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation) Intel(R) Network Connections 19.0.27.0 (HKLM\...\PROSetDX) (Version: 19.0.27.0 - Intel) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.6.0.1002 - Intel Corporation) Intel(R) Smart Connect Technology (HKLM\...\{7228EFBA-512B-4EB3-B8A7-E2C331475DF4}) (Version: 5.0.10.2808 - Intel Corporation) Intel(R) Update Manager (HKLM-x32\...\{B991A1BC-DE0F-41B3-9037-B2F948F706EC}) (Version: 3.1.1228 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation) Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.13 - Intel(R) Corporation) Hidden iTunes (HKLM\...\{FBEB98F8-64E4-4FA3-A15E-4A9F42FF962E}) (Version: 12.3.2.35 - Apple Inc.) Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation) Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation) Java SE Development Kit 8 Update 73 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0180730}) (Version: 8.0.730.2 - Oracle Corporation) JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games ) League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve) Logitech Webcam-Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.40 - Logitech Inc.) LWS VideoEffects (Version: 13.30.1379.0 - Logitech) Hidden Medal of Honor(TM) Multiplayer (HKLM-x32\...\Steam App 47830) (Version: - Electronic Arts) Medal of Honor(TM) Single Player (HKLM-x32\...\Steam App 47790) (Version: - Electronic Arts) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Expression Encoder 4 (HKLM-x32\...\Encoder_4.0.1651.0) (Version: 4.0.1651.0 - Microsoft Corporation) Microsoft Expression Encoder 4 Screen Capture Codec (HKLM-x32\...\{F21D2032-60FE-4729-9C87-46F1615FB965}) (Version: 4.0.1651.0 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{09298F26-A95C-31E2-9D95-2C60F586F075}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Movavi Video Converter 16 (HKLM-x32\...\Movavi Video Converter 16) (Version: 16.0.2 - Movavi) Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Studio Platinum 13.0 (64-bit) (HKLM\...\{F4721C9E-74D6-11E4-9122-F04DA23A5C58}) (Version: 13.0.943 - Sony) Mozilla Firefox 47.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 de)) (Version: 47.0 - Mozilla) NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version: - NCSOFT) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.9 - Notepad++ Team) NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation) NVIDIA 3D Vision Treiber 355.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.98 - NVIDIA Corporation) NVIDIA GeForce Experience 2.9.1.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.9.1.22 - NVIDIA Corporation) NVIDIA Grafiktreiber 355.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.98 - NVIDIA Corporation) NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{E10DB5DA-E576-40EA-A7FC-1CB2A7B283A6}) (Version: 9.09.1112 - NVIDIA Corporation) Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - ) Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Outlast (HKLM\...\Steam App 238320) (Version: - Red Barrels) Portal 2 (HKLM-x32\...\Steam App 620) (Version: - Valve) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.989 - Even Balance, Inc.) puush (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert) QuickTime 7 (HKLM-x32\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7004 - Realtek Semiconductor Corp.) Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.8 - Rockstar Games) RollerCoaster Tycoon 3: Platinum! (HKLM\...\Steam App 2700) (Version: - Frontier) SA-MP Colorpicker 1.1.0 (HKLM-x32\...\SA-MP Colorpicker) (Version: 1.1.0 - GTAvision.com) Sandboxie 5.10 (64-bit) (HKLM\...\Sandboxie) (Version: 5.10 - Sandboxie Holdings, LLC) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) SHIELD Streaming (Version: 4.1.0260 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.9.1.22 - NVIDIA Corporation) Hidden Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.) South Park™: The Stick of Truth™ (HKLM-x32\...\Steam App 213670) (Version: - Obsidian Entertainment) SpeedRunners (HKLM-x32\...\Steam App 207140) (Version: - DoubleDutch Games) Spore (HKLM-x32\...\Steam App 17390) (Version: - Maxis™) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SteelSeries Engine 3.3.6.1 (HKLM\...\SteelSeries Engine 3) (Version: 3.3.6.1 - SteelSeries ApS) Stronghold 2 Deluxe (HKLM-x32\...\{16D2C649-CBA8-44EE-B730-12584667D487}) (Version: 1.40.000 - Firefly Studios) Super Meat Boy (HKLM-x32\...\Steam App 40800) (Version: - Team Meat) Surgeon Simulator (HKLM\...\Steam App 233720) (Version: - Bossa Studios) Tank Universal (HKLM-x32\...\Steam App 19200) (Version: - Dialogue Design) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.56083 - TeamViewer) TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 28 - Gameforge Productions GmbH) Terraria (HKLM-x32\...\Steam App 105600) (Version: - Re-Logic) The Binding of Isaac: Rebirth (HKLM-x32\...\Steam App 250900) (Version: - Nicalis, Inc.) TL-WN851ND Driver (HKLM-x32\...\{4BAE4C76-44C3-418F-B715-6BBF5A65323E}) (Version: 1.00.0000 - TP-LINK) TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 2.01.0012 - TP-LINK) TrackMania² Stadium (HKLM-x32\...\Steam App 232910) (Version: - Nadeo) Two Worlds II Castle Defense (HKLM-x32\...\Steam App 7530) (Version: - Reality Pump Studios) Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{5D2260D6-DB16-41DC-915B-A39BF4F66362}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3115033) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{F258B6E3-BF41-4FEE-BE45-D7518C3B7FC1}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3115033) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{F258B6E3-BF41-4FEE-BE45-D7518C3B7FC1}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3115033) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{F258B6E3-BF41-4FEE-BE45-D7518C3B7FC1}) (Version: - Microsoft) VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software) Vegas Pro 13.0 (64-bit) (HKLM\...\{1F8D8040-0BC8-11E5-85C5-F04DA23A5C58}) (Version: 13.0.453 - Sony) VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN) WALTR version 1.1.33 (HKLM\...\{20AFC2A1-9E47-4A77-96E8-89AAED7B6AEB}_is1) (Version: 1.1.33 - Softorino, Inc.) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) Wolfenstein The Old Blood German Uncut Edition 1.0 (HKLM-x32\...\Wolfenstein The Old Blood German Uncut Edition 1.0) (Version: - ) World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment) Worms Revolution (HKLM-x32\...\Steam App 200170) (Version: - Team17 Digital Ltd.) XAMPP (HKLM-x32\...\xampp) (Version: 7.0.4-0 - Bitnami) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {2E87B74D-F65F-4412-AC03-E42BC061085B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {489FB674-5113-4B98-9E97-2B81D4EE0F0E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-24] (Google Inc.) Task: {4E2F4B7B-4935-4AFA-8FF0-D102A80F278E} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation) Task: {8A458805-3DA2-4BBF-B367-948A7E3B6B5A} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1388351622-919218107-1302039281-1000 Task: {8BAD7105-21A7-4B8C-8F85-BEDDF495CBF0} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation) Task: {91A95712-EB05-4248-8F01-292412E88D20} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {AAF1A12C-5C49-42F8-A121-77CE22A5A93D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {C157557D-96CE-4424-85ED-3765AA5D6FED} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-24] (Adobe Systems Incorporated) Task: {CBE9F7B5-6089-4AD1-A3DF-147503BCDBE0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated) Task: {D96278F6-D5DF-45EE-86C2-C2E7D4025147} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-24] (Google Inc.) Task: {FAC8A8C7-8A29-4D20-B791-6C7655A54E8C} - System32\Tasks\Core Temp Autostart Nico => G:\Program Files\Core Temp\Core Temp.exe (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) Shortcut: C:\Users\Nico\AppData\Local\Microsoft\Windows\GameExplorer\{68FD21EF-5CCA-4415-B58F-0BB2B0E863C2}\SupportTasks\0\Weitere Spiele von Microsoft.lnk -> hxxp://www.rockstargames.com/sanandreas/ (Keine Datei) Shortcut: C:\Users\Nico\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cyperia\Cyperia Homepage.lnk -> hxxp://cyperia.org/ (Keine Datei) ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2015-09-23 16:47 - 2015-09-23 16:47 - 00085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-10-13 06:45 - 2015-10-13 06:45 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2015-08-29 21:11 - 2015-08-29 21:11 - 00075064 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2016-06-20 11:47 - 2015-10-08 16:53 - 00055744 _____ () C:\Program Files\WALTR\x86\AnimationService.exe 2012-01-10 14:41 - 2015-05-28 20:37 - 00568904 _____ () G:\Program Files (x86)\puush\puush.exe 2014-02-28 11:14 - 2016-06-24 10:35 - 00174872 _____ () G:\Programme\Teamspeak\quazip.dll 2014-08-04 15:43 - 2016-06-24 10:35 - 00103192 _____ () G:\Programme\Teamspeak\soundbackends\directsound_win64.dll 2014-08-04 15:43 - 2016-06-24 10:35 - 00107800 _____ () G:\Programme\Teamspeak\soundbackends\windowsaudiosession_win64.dll 2014-08-04 15:46 - 2016-06-24 10:35 - 00312088 _____ () G:\Programme\Teamspeak\plugins\clientquery_plugin.dll 2014-08-04 15:46 - 2016-06-24 10:35 - 00485656 _____ () G:\Programme\Teamspeak\plugins\teamspeak_control_plugin.dll 2015-04-27 04:50 - 2015-04-27 04:50 - 00412672 _____ () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\samp.exe 2015-04-25 08:53 - 2015-04-12 02:34 - 00795136 _____ () G:\Programme\AHK\AutoHotkeyA32.exe 2014-03-12 21:27 - 2005-06-07 17:59 - 14383616 _____ () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\gta_sa.exe 2016-06-25 16:33 - 2016-06-25 16:34 - 00805376 _____ () C:\Users\Nico\Desktop\Ordner\Spiele\GTA\SAMP\Sani.exe 2011-11-11 15:08 - 2011-11-11 15:08 - 02145304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll 2011-11-11 15:08 - 2011-11-11 15:08 - 07956504 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll 2011-11-11 15:08 - 2011-11-11 15:08 - 00342552 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll 2011-11-11 15:08 - 2011-11-11 15:08 - 00029208 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll 2011-11-11 15:08 - 2011-11-11 15:08 - 00128536 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll 2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2016-06-24 10:36 - 2016-06-24 10:36 - 19455168 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll 2015-04-24 21:46 - 2016-04-29 22:10 - 00785920 _____ () G:\Programme\Steam\SDL2.dll 2015-04-24 21:46 - 2015-07-03 18:12 - 04962816 _____ () G:\Programme\Steam\v8.dll 2015-04-24 21:46 - 2015-07-03 18:12 - 01556992 _____ () G:\Programme\Steam\icui18n.dll 2015-04-24 21:46 - 2015-07-03 18:12 - 01187840 _____ () G:\Programme\Steam\icuuc.dll 2015-04-24 21:46 - 2016-06-15 02:47 - 02387024 _____ () G:\Programme\Steam\video.dll 2015-04-24 21:46 - 2016-02-09 01:14 - 02549760 _____ () G:\Programme\Steam\libavcodec-56.dll 2015-04-24 21:46 - 2016-02-09 01:14 - 00442880 _____ () G:\Programme\Steam\libavutil-54.dll 2015-04-24 21:46 - 2016-02-09 01:14 - 00491008 _____ () G:\Programme\Steam\libavformat-56.dll 2015-04-24 21:46 - 2016-02-09 01:14 - 00332800 _____ () G:\Programme\Steam\libavresample-2.dll 2015-04-24 21:46 - 2016-02-09 01:14 - 00485888 _____ () G:\Programme\Steam\libswscale-3.dll 2015-04-24 21:46 - 2016-06-15 02:47 - 00829008 _____ () G:\Programme\Steam\bin\chromehtml.DLL 2016-03-09 18:00 - 2016-02-18 00:25 - 00281088 _____ () G:\Programme\Steam\openvr_api.dll 2015-04-24 21:46 - 2016-06-14 21:14 - 49826080 _____ () G:\Programme\Steam\bin\libcef.dll 2015-06-03 21:14 - 2015-06-03 20:18 - 00499712 _____ () F:\Sammelordner\Keybinder\Test Keybinder API\Test2\API.dll 2015-04-24 21:46 - 2015-09-25 01:56 - 00119208 _____ () G:\Programme\Steam\winh264.dll 2014-07-19 09:53 - 2014-07-19 09:53 - 00065536 _____ () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\vorbisfile.dll 2014-03-12 21:27 - 2003-11-15 18:54 - 00036864 _____ () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\ogg.dll 2014-07-19 09:50 - 2003-11-16 11:48 - 01060864 _____ () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\vorbis.dll 2016-02-27 18:33 - 2015-09-11 12:59 - 02907136 _____ () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\d3d9.dll 2015-10-13 06:46 - 2015-10-13 06:46 - 01040144 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2015-09-23 16:47 - 2015-09-23 16:47 - 00073512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2016-06-25 16:34 - 2016-06-25 16:34 - 00499712 _____ () C:\Users\Nico\Desktop\Ordner\Spiele\GTA\SAMP\overlay.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) AlternateDataStreams: C:\Windows\Temp:$DATA [16] ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) ==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) IE trusted site: HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\aeriagames.com -> hxxps://aeriagames.com IE trusted site: HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\aeriagames.com -> hxxp://aeriagames.com ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-1388351622-919218107-1302039281-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Nico\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 78.42.43.41 - 82.212.62.41 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: Apple Mobile Device Service => 2 MSCONFIG\Services: Avira.ServiceHost => 2 MSCONFIG\Services: AxInstSV => 3 MSCONFIG\Services: BEService => 3 MSCONFIG\Services: Bonjour Service => 2 MSCONFIG\Services: BstHdAndroidSvc => 3 MSCONFIG\Services: BstHdLogRotatorSvc => 2 MSCONFIG\Services: BstHdUpdaterSvc => 2 MSCONFIG\Services: Disc Soft Lite Bus Service => 3 MSCONFIG\Services: GfExperienceService => 2 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: IAStorDataMgrSvc => 2 MSCONFIG\Services: IDriverT => 3 MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3 MSCONFIG\Services: Intel(R) ME Service => 2 MSCONFIG\Services: Intel(R) PROSet Monitoring Service => 2 MSCONFIG\Services: iPod Service => 3 MSCONFIG\Services: ISCTAgent => 2 MSCONFIG\Services: iumsvc => 3 MSCONFIG\Services: jhi_service => 2 MSCONFIG\Services: LMS => 2 MSCONFIG\Services: NvNetworkService => 2 MSCONFIG\Services: NvStreamNetworkSvc => 3 MSCONFIG\Services: NvStreamSvc => 2 MSCONFIG\Services: nvsvc => 2 MSCONFIG\Services: Origin Client Service => 3 MSCONFIG\Services: ose => 3 MSCONFIG\Services: ose64 => 3 MSCONFIG\Services: osppsvc => 3 MSCONFIG\Services: RtkAudioService => 2 MSCONFIG\Services: SbieSvc => 2 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\Services: Steam Client Service => 3 MSCONFIG\Services: Stereo Service => 2 MSCONFIG\Services: TeamViewer => 2 MSCONFIG\Services: wlidsvc => 2 MSCONFIG\Services: WMPNetworkSvc => 2 MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^GIGABYTE OC_GURU.lnk => C:\Windows\pss\GIGABYTE OC_GURU.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SteelSeries Engine 3.lnk => C:\Windows\pss\SteelSeries Engine 3.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TP-LINK Wireless Configuration Utility.lnk => C:\Windows\pss\TP-LINK Wireless Configuration Utility.lnk.CommonStartup MSCONFIG\startupfolder: C:^Users^Nico^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk => C:\Windows\pss\Curse.lnk.Startup MSCONFIG\startupreg: Aeria Ignite => "C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe" silent MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Nico\AppData\Local\Akamai\netsession_win.exe" MSCONFIG\startupreg: avgnt => "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min MSCONFIG\startupreg: Avira SystrayStartTrigger => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe MSCONFIG\startupreg: DAEMON Tools Lite Automount => "G:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun MSCONFIG\startupreg: IAStorIcon => "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60 MSCONFIG\startupreg: ISCT Tray => C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe MSCONFIG\startupreg: iTunesHelper => "G:\Program Files\iTunes\iTunesHelper.exe" MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" MSCONFIG\startupreg: Prime95 => C:\Users\Nico\Desktop\p95v285.win64\prime95.exe MSCONFIG\startupreg: QuickTime Task => "G:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s MSCONFIG\startupreg: SandboxieControl => "G:\Program Files\Sandboxie\SbieCtrl.exe" MSCONFIG\startupreg: ShadowPlay => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: snp2uvc => C:\Program Files (x86)\Common Files\SNP2UVC\vsnp2uvc.exe MSCONFIG\startupreg: Steam => "G:\Programme\Steam\steam.exe" -silent MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: tsnp2uvc => C:\Program Files (x86)\Common Files\SNP2UVC\tsnp2uvc.exe MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [{3EDDB680-4D51-4658-AB9A-9DDEBB302CEA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{4EAF8AEA-44D2-4C6E-A3A7-EC4EC99E498A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{6ADE5866-59CE-4530-8C92-E4DABF140B44}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{8B3ADBB4-3CCD-4472-BC7D-D90929F86D1D}] => (Allow) G:\Programme\Steam\Steam.exe FirewallRules: [{C336919E-18C6-49AA-9F8F-B3C2BEE6AD05}] => (Allow) G:\Programme\Steam\Steam.exe FirewallRules: [{8C338A42-01F4-48E8-9BD3-0B770BFB9B0C}] => (Allow) G:\Programme\Steam\bin\steamwebhelper.exe FirewallRules: [{91B46F8D-85F7-4970-9D9C-A1ACDBD5695A}] => (Allow) G:\Programme\Steam\bin\steamwebhelper.exe FirewallRules: [{FE896C60-6EE4-4E17-9069-2A6EB3CF4C48}] => (Allow) G:\Programme\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{253AB5B9-B03C-4201-92F9-14F6F855CC7F}] => (Allow) G:\Programme\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [TCP Query User{72E9A7EF-0C89-4973-A5FD-F12E125800D4}G:\programme\gta 5\gta5.exe] => (Allow) G:\programme\gta 5\gta5.exe FirewallRules: [UDP Query User{E0C7B836-35F9-4C14-BE8D-5C3182AA21D3}G:\programme\gta 5\gta5.exe] => (Allow) G:\programme\gta 5\gta5.exe FirewallRules: [TCP Query User{5C5464D2-CA6D-428A-A5C5-EFEFCDB0F22A}G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{9B73A348-C4DC-48D0-AAD0-A83BBE5205F8}G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{FC38207F-D80C-43AB-BD6F-74C56C53872B}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{14D8132C-6FFB-4C31-9F6C-8C532624041B}] => (Allow) LPort=2869 FirewallRules: [{34DAF000-1DEA-4D3F-9E6B-92A66DF50D2A}] => (Allow) LPort=1900 FirewallRules: [TCP Query User{5DE6F8AD-0577-4DA4-AB99-B0A948F7192F}G:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) G:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe FirewallRules: [UDP Query User{173B074F-DCDF-4061-9FEE-BD48CAC1D57D}G:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) G:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe FirewallRules: [{C282B9D5-D2A9-4D9D-9065-47B8CF6FDD8F}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{1C2217D1-C667-4CE8-A920-F5AEAA4BFE19}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{CD34EB94-5909-4B6B-B636-8EA7D35E6162}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{76018861-8928-4E61-A3DC-2D5224A54A80}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{10CE181E-3D27-40C5-AA2D-6D15B5C0FAC3}] => (Allow) G:\Programme\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{2EAAF798-755B-4744-99D6-0EB459077C33}] => (Allow) G:\Programme\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{539665A7-BB12-4BE3-8659-435D58CE3D68}] => (Allow) G:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [{C5BBE019-CBA5-4E58-9EA3-B236CE87802C}] => (Allow) G:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [TCP Query User{838FDEEA-13D5-416D-9B7D-7901D8318839}G:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) G:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{775369B9-AC8C-4DC9-AD02-43B5E33C591C}G:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) G:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{0EA13EBC-4AD2-4FED-B733-AD4ED8E6E214}G:\programme\steam\steamapps\common\dayz\dayz.exe] => (Allow) G:\programme\steam\steamapps\common\dayz\dayz.exe FirewallRules: [UDP Query User{ACB58FB8-8829-4FF1-8F75-EFF2EF5FE568}G:\programme\steam\steamapps\common\dayz\dayz.exe] => (Allow) G:\programme\steam\steamapps\common\dayz\dayz.exe FirewallRules: [TCP Query User{B50D74F9-DF5B-4BA0-B756-513A4936825C}C:\users\nico\desktop\ritter.part01\age2hd\aok hd.exe] => (Allow) C:\users\nico\desktop\ritter.part01\age2hd\aok hd.exe FirewallRules: [UDP Query User{2E8E2584-5F40-4E72-8D42-CBD6D4BC4D0E}C:\users\nico\desktop\ritter.part01\age2hd\aok hd.exe] => (Allow) C:\users\nico\desktop\ritter.part01\age2hd\aok hd.exe FirewallRules: [TCP Query User{341628FB-E0B8-46CF-B783-8093B7B4A72C}G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{DDEC344F-79D9-4102-B04A-D95E66DF8689}G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{40C777E4-AC2B-4146-9F8A-BDBB14BCBF93}] => (Allow) G:\Programme\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{65315F19-F5D2-487B-86A2-DDC36B0CC63D}] => (Allow) G:\Programme\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{AC9F71BE-013A-4D06-AA2E-88EFB6004867}] => (Allow) G:\Programme\Steam\steamapps\common\Bioshock\Builds\Release\Bioshock.exe FirewallRules: [{088B78BD-4A56-465D-8A92-C4B133B0D009}] => (Allow) G:\Programme\Steam\steamapps\common\Bioshock\Builds\Release\Bioshock.exe FirewallRules: [{02EACC16-6777-4D7A-B7DF-B6ABF62D3D78}] => (Allow) G:\Programme\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe FirewallRules: [{ECD532B4-67CB-4670-98C2-AA1F59366C16}] => (Allow) G:\Programme\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe FirewallRules: [{CCF2ED7D-CA82-4B32-B122-0347252F69F3}] => (Allow) G:\Programme\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe FirewallRules: [{CDFFB36A-7A4B-4267-A868-9664827B35FB}] => (Allow) G:\Programme\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe FirewallRules: [{7276C062-E66B-4987-A607-075A6B155FEC}] => (Allow) G:\Programme\Steam\steamapps\common\Spore\SporeBin\SporeApp.exe FirewallRules: [{44EC96F0-0F84-4F22-8760-20BB3F162EB4}] => (Allow) G:\Programme\Steam\steamapps\common\Spore\SporeBin\SporeApp.exe FirewallRules: [{5E0076D6-A204-47DC-AF72-7C49131D3763}] => (Allow) G:\Programme\Steam\steamapps\common\Super Meat Boy\SuperMeatBoy.exe FirewallRules: [{1F7E80FD-2456-49FD-BD28-87785C50B761}] => (Allow) G:\Programme\Steam\steamapps\common\Super Meat Boy\SuperMeatBoy.exe FirewallRules: [{E207447E-B58F-40D1-8989-B2A767B8127D}] => (Allow) G:\Programme\Steam\steamapps\common\Tank Universal SteamWorks Edition\TU.exe FirewallRules: [{4AC20C70-D1FA-4E19-8C7B-C1E6BDCBE6E0}] => (Allow) G:\Programme\Steam\steamapps\common\Tank Universal SteamWorks Edition\TU.exe FirewallRules: [{6AB849D6-0F71-40C2-9F4F-055C09893228}] => (Allow) G:\Programme\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [{BF17B311-59F5-446A-B8D8-BFB0A7989B28}] => (Allow) G:\Programme\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [{1E50125D-9F57-46D5-A19B-9A6B680EEB50}] => (Allow) G:\Programme\Steam\steamapps\common\Two Worlds II Castle Defense\TW2CD.exe FirewallRules: [{B8E2874D-E952-44FD-B685-14022346D6C7}] => (Allow) G:\Programme\Steam\steamapps\common\Two Worlds II Castle Defense\TW2CD.exe FirewallRules: [{36497A1F-BBAF-498C-AD0C-6F991A858D17}] => (Allow) G:\Programme\Steam\steamapps\common\ManiaPlanet_TMStadium\ManiaPlanetLauncher.exe FirewallRules: [{4278F034-C680-432A-AEF4-333F95ABB777}] => (Allow) G:\Programme\Steam\steamapps\common\ManiaPlanet_TMStadium\ManiaPlanetLauncher.exe FirewallRules: [{0F2FA581-8A69-4218-BAE5-8F5FF20B3195}] => (Allow) G:\Programme\Steam\steamapps\common\South Park - The Stick of Truth\South Park - The Stick of Truth.exe FirewallRules: [{C5AD8336-D744-4D9C-9303-DFBC6BA8E4CF}] => (Allow) G:\Programme\Steam\steamapps\common\South Park - The Stick of Truth\South Park - The Stick of Truth.exe FirewallRules: [{D389DD57-C860-4DEA-8FAB-74C53A4F87CA}] => (Allow) G:\Programme\Steam\steamapps\common\Age2HD\Launcher.exe FirewallRules: [{6A2E9EE1-DD6D-4BD7-9996-1589F3336386}] => (Allow) G:\Programme\Steam\steamapps\common\Age2HD\Launcher.exe FirewallRules: [{9E607F6A-EA59-4EDC-B578-43781CD189B6}] => (Allow) G:\Programme\Steam\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe FirewallRules: [{230E936F-C32F-4722-9B94-C65158DF513F}] => (Allow) G:\Programme\Steam\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe FirewallRules: [{ECA81B0D-7072-4B2E-93D8-78F2BF32CB8D}] => (Allow) G:\Programme\Steam\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe FirewallRules: [{7946455B-A7B3-42A6-AE39-41D63A6A9D33}] => (Allow) G:\Programme\Steam\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe FirewallRules: [TCP Query User{20745C20-CD67-48D5-94C5-88B492FCFD47}C:\users\nico\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\nico\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{83462889-87D3-432A-A992-8D5B60525A4C}C:\users\nico\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\nico\appdata\local\akamai\netsession_win.exe FirewallRules: [{F2EE41D6-9188-4656-A5EF-05AEBC709A2A}] => (Allow) G:\Programme\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe FirewallRules: [{9224E388-1165-411C-BB24-6A8365D92346}] => (Allow) G:\Programme\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe FirewallRules: [TCP Query User{A9FEE789-AC63-4B82-B90E-621BC8DC2341}G:\programme\steam\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe] => (Allow) G:\programme\steam\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe FirewallRules: [UDP Query User{0FDF9B0F-DF21-403B-BAFB-5623619037C9}G:\programme\steam\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe] => (Allow) G:\programme\steam\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe FirewallRules: [{91A1FFF0-11BB-47FC-905E-090E667B759D}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Black Ops III Beta\BlackOps3.exe FirewallRules: [{4F514D1A-2A33-4E26-87E3-CD96B2FDAD6E}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Black Ops III Beta\BlackOps3.exe FirewallRules: [{AD2D2F25-FEE7-41D0-B66A-4C4FEBD0E73B}] => (Allow) G:\Programme\Steam\steamapps\common\Medal of Honor\Binaries\moh.exe FirewallRules: [{D63073A2-51B1-4ABD-9CFC-501E26C167DD}] => (Allow) G:\Programme\Steam\steamapps\common\Medal of Honor\Binaries\moh.exe FirewallRules: [{3DD44EA0-72A4-48B0-9B51-A434848A980D}] => (Allow) G:\Programme\Steam\steamapps\common\Medal of Honor\MP\mohmpgame.exe FirewallRules: [{C27C5FD8-7AE2-4C59-B22A-13EA4944C24D}] => (Allow) G:\Programme\Steam\steamapps\common\Medal of Honor\MP\mohmpgame.exe FirewallRules: [{83BAF684-D1EE-49B7-8090-709620F12781}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{96E6ABA4-74A4-4538-909E-77B47040116D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{CBDAA2EA-B42B-45CF-A3F5-FB7AFE56CC71}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{9EB37349-198B-4501-8109-D5622499B4E2}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{24A82132-0F73-4F4D-8271-637A651A3E5C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{A46E2743-18CD-4326-82A5-C6E65C640DF9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{9B96E021-6562-4AC9-9098-8FA977E8D84A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{28DCE3AF-451C-4404-896E-D77F6766AD15}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{ECFD9908-20A4-4765-BB30-A14AC394288E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{AB9D4DFB-DD2D-42C5-A53D-72CC11AB9AC5}] => (Allow) G:\Programme\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe FirewallRules: [{32E9762B-A370-4BF0-8671-5A32F242C4F9}] => (Allow) G:\Programme\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe FirewallRules: [{CBE52B5B-BE3B-4EDB-9C8F-6E97E68ABFA8}] => (Allow) G:\Programme\Steam\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe FirewallRules: [{450B0BD4-8BE7-496C-B0DA-021103F057BC}] => (Allow) G:\Programme\Steam\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe FirewallRules: [{D34509B0-7F69-46C4-9158-46BBCB2CFC1D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{2A1466AA-B707-49D5-B6CA-F98153231AF8}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{9F2D2B3D-DCB4-4CB2-A4C4-1EED03FAAC14}] => (Allow) G:\Program Files (x86)\Die Sims 4 Digital Deluxe Edition\Game\Bin\TS4.exe FirewallRules: [{95509523-3CFC-4AD0-A61A-7A420A917C99}] => (Allow) G:\Program Files (x86)\Die Sims 4 Digital Deluxe Edition\Game\Bin\TS4.exe FirewallRules: [{D4C208FB-E873-4F53-A9EC-AFFA20C9B3E5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{C3C92800-567F-49B4-BB2E-C94382EB0576}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{1E0AA99D-A6DE-46CC-84A9-BBDD5F447DBA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{962C5C7F-8580-4EEC-B5F7-55F5C1E1E490}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{C6622CB9-1CED-4990-AF3E-EEE713EBC27D}] => (Allow) G:\Programme\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{EDD36567-3517-42C3-8EB1-C7DC35FC4B98}] => (Allow) G:\Programme\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{2132FA33-F89C-49EF-94E4-366EB8D73276}] => (Allow) G:\Programme\Steam\steamapps\common\Cities_Skylines\Cities.exe FirewallRules: [{A75AF38B-6631-4A2F-BB2C-34ACE37140C9}] => (Allow) G:\Programme\Steam\steamapps\common\Cities_Skylines\Cities.exe FirewallRules: [{2681309A-9BB9-478C-B2BF-00DA6E754EA8}] => (Allow) G:\Programme\Steam\steamapps\common\WormsRevolution\WormsRevolution.exe FirewallRules: [{337A881C-14C5-4938-9190-B4303CCD2783}] => (Allow) G:\Programme\Steam\steamapps\common\WormsRevolution\WormsRevolution.exe FirewallRules: [{C93AA90B-D61F-4F5F-9C2C-E497DAF1FAAF}] => (Allow) G:\Programme\Steam\steamapps\common\Counter-Strike Source\hl2.exe FirewallRules: [{828441BB-E138-4ADF-B639-443B76EBCB9A}] => (Allow) G:\Programme\Steam\steamapps\common\Counter-Strike Source\hl2.exe FirewallRules: [TCP Query User{23561AFA-5716-4CBC-8CEE-62EF564290A9}C:\users\nico\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\nico\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{6BB1F7D5-C727-48A1-B278-63F80D41BFA1}C:\users\nico\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\nico\appdata\local\akamai\netsession_win.exe FirewallRules: [{A4CF7DC6-091A-4F69-8F17-BB38A2B295A1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{95411A29-27B3-4A43-83AF-9E83BBC35555}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{EBF33698-4C5F-4469-8474-80A631FCE2FA}] => (Allow) G:\Programme\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe FirewallRules: [{B9BAAEDB-3731-4FC1-B64D-A82E81748320}] => (Allow) G:\Programme\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe FirewallRules: [{7C08ACF0-206B-4D1A-BA5A-008B16526188}] => (Allow) G:\Program Files\iTunes\iTunes.exe FirewallRules: [{7029928D-C6D3-47BB-8FB5-40A2DE7D08D7}] => (Allow) G:\Program Files (x86)\Firefly Studios\Stronghold 2\Stronghold2.exe FirewallRules: [{FB78B9F5-9733-4C72-8934-21E555FC933B}] => (Allow) G:\Program Files (x86)\Firefly Studios\Stronghold 2\Stronghold2.exe FirewallRules: [TCP Query User{A4188246-814D-4239-B28B-2AFD1E7899C5}G:\samp server\xampp\mysql\bin\mysqld.exe] => (Allow) G:\samp server\xampp\mysql\bin\mysqld.exe FirewallRules: [UDP Query User{3C1A9987-A487-44F4-AEAA-356E27F0A6C9}G:\samp server\xampp\mysql\bin\mysqld.exe] => (Allow) G:\samp server\xampp\mysql\bin\mysqld.exe FirewallRules: [TCP Query User{CFDC54F6-0ACA-4A9C-A82E-77666B275D91}G:\samp server\xampp\apache\bin\httpd.exe] => (Allow) G:\samp server\xampp\apache\bin\httpd.exe FirewallRules: [UDP Query User{8C15F310-8726-432C-B838-D2B34DAA28FF}G:\samp server\xampp\apache\bin\httpd.exe] => (Allow) G:\samp server\xampp\apache\bin\httpd.exe FirewallRules: [TCP Query User{840F7990-5B63-42E8-9A51-E9E25C1B7A27}G:\samp server\loh\server\samp-server.exe] => (Allow) G:\samp server\loh\server\samp-server.exe FirewallRules: [UDP Query User{61B943BD-553F-4240-9961-47E970CA8C1B}G:\samp server\loh\server\samp-server.exe] => (Allow) G:\samp server\loh\server\samp-server.exe FirewallRules: [TCP Query User{B20AB493-A506-4D5D-A565-A4FCE12066BC}G:\samp server\eigenes script\samp-server.exe] => (Allow) G:\samp server\eigenes script\samp-server.exe FirewallRules: [UDP Query User{1EC4D278-930D-43BD-9687-7EC0936C607A}G:\samp server\eigenes script\samp-server.exe] => (Allow) G:\samp server\eigenes script\samp-server.exe FirewallRules: [{EE73BEB5-ABFB-4CAD-89C5-50EE14696BB5}] => (Allow) G:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{533697EC-59C3-491C-B9DA-EC96313BF7ED}] => (Allow) G:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{C2ABA57F-023F-43BF-A96C-9ADEFE8B258A}] => (Allow) G:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{2FEFC2DD-B156-434F-8139-6CF3481753C1}] => (Allow) G:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{D00AF6DC-A9FB-4550-AC84-783BDC4811D2}] => (Allow) G:\Programme\Steam\steamapps\common\Rollercoaster Tycoon 3 Gold\RCT3plus.exe FirewallRules: [{62246B4D-A948-4F71-B0C7-DAC95221A88B}] => (Allow) G:\Programme\Steam\steamapps\common\Rollercoaster Tycoon 3 Gold\RCT3plus.exe FirewallRules: [{7EAD8D49-5BD3-4B6B-8E36-68D18152749E}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Black Ops\BlackOps.exe FirewallRules: [{1598B165-270B-4EE1-A1F1-3A679E411C18}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Black Ops\BlackOps.exe FirewallRules: [{568B239F-C60D-4401-B486-9B6F1CCB2133}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe FirewallRules: [{41DC2EBA-EA3A-4C75-AB7B-6265C16BA643}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe FirewallRules: [{79DC7177-7766-4D66-B291-5C8D65E8D5A2}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5mp.exe FirewallRules: [{F5B19322-62C5-47A5-AEDB-009685E563A6}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5mp.exe FirewallRules: [{99DF45D5-36B9-4F33-AAA5-B08F397E843C}] => (Allow) G:\Programme\Steam\steamapps\common\Surgeon Simulator 2013\ss2013.exe FirewallRules: [{C6B946D4-5A30-49EA-B5D0-E43A2273043E}] => (Allow) G:\Programme\Steam\steamapps\common\Surgeon Simulator 2013\ss2013.exe FirewallRules: [TCP Query User{363ACE7E-A6C8-4410-AF73-1B25887B4E58}I:\quake iii arena\quake3.exe] => (Block) I:\quake iii arena\quake3.exe FirewallRules: [UDP Query User{F97D878C-1E0B-45A3-AD3C-DAC11FC4B3E2}I:\quake iii arena\quake3.exe] => (Block) I:\quake iii arena\quake3.exe FirewallRules: [TCP Query User{11CF85D0-EF4D-444A-ADDD-B661C97DA80C}H:\quake3\quake3.exe] => (Allow) H:\quake3\quake3.exe FirewallRules: [UDP Query User{51449C22-5DD5-4D7F-B0DB-6C4D7EE55BC0}H:\quake3\quake3.exe] => (Allow) H:\quake3\quake3.exe FirewallRules: [{8ECFF9A6-9697-4F11-A819-E9518CFFDA02}] => (Allow) G:\Programme\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{728E754C-B43E-4B63-84A9-C005651E11BC}] => (Allow) G:\Programme\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{B39D0760-9C7D-4D76-87BB-19B45A48FF69}] => (Allow) G:\Programme\Steam\steamapps\common\Outlast\OutlastLauncher.exe FirewallRules: [{FE6ACB7F-7FBF-45A1-8C35-264875041FAF}] => (Allow) G:\Programme\Steam\steamapps\common\Outlast\OutlastLauncher.exe ==================== Wiederherstellungspunkte ========================= 18-06-2016 19:48:10 Windows Update 19-06-2016 22:47:32 Windows Update 20-06-2016 22:12:35 Windows Update 21-06-2016 22:49:34 Windows Update 22-06-2016 21:03:43 Windows Update 23-06-2016 21:51:25 Windows Update 25-06-2016 00:16:50 Windows Update 25-06-2016 14:45:10 Windows Update 26-06-2016 00:30:12 Windows Update ==================== Fehlerhafte Geräte im Gerätemanager ============= Name: BlueStacks Hypervisor Description: BlueStacks Hypervisor Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: BstHdDrv Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (06/26/2016 09:45:09 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/26/2016 09:41:39 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/26/2016 09:36:31 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/26/2016 09:15:59 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073418154 Error: (06/26/2016 09:06:07 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/26/2016 09:03:14 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/25/2016 02:49:52 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/25/2016 02:26:20 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/25/2016 08:56:54 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm gta_sa.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: e54 Startzeit: 01d1ceaea9c26cf3 Endzeit: 47 Anwendungspfad: F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\gta_sa.exe Berichts-ID: Error: (06/25/2016 08:55:57 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm gta_sa.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 12f8 Startzeit: 01d1ceae7ac1b973 Endzeit: 57 Anwendungspfad: F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\gta_sa.exe Berichts-ID: Systemfehler: ============= Error: (06/26/2016 09:46:02 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC) Error: (06/26/2016 09:45:00 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "Service Installer TrueKey" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 = Das System kann die angegebene Datei nicht finden. Error: (06/26/2016 09:45:00 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "BlueStacks Hypervisor" wurde aufgrund folgenden Fehlers nicht gestartet: %%3 = Das System kann den angegebenen Pfad nicht finden. Error: (06/26/2016 09:42:33 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC) Error: (06/26/2016 09:41:31 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "Service Installer TrueKey" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 = Das System kann die angegebene Datei nicht finden. Error: (06/26/2016 09:41:31 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "BlueStacks Hypervisor" wurde aufgrund folgenden Fehlers nicht gestartet: %%3 = Das System kann den angegebenen Pfad nicht finden. Error: (06/26/2016 09:41:01 AM) (Source: Service Control Manager) (EventID: 7032) (User: ) Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: %%1056 = Es wird bereits eine Instanz des Dienstes ausgeführt. Error: (06/26/2016 09:40:32 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Intel Security True Key Scheduler" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1400464715 Millisekunden durchgeführt: Neustart des Diensts. Error: (06/26/2016 09:40:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "AnimationService" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (06/26/2016 09:40:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "Volumeschattenkopie" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Xeon(R) CPU E3-1231 v3 @ 3.40GHz Prozentuale Nutzung des RAM: 66% Installierter physikalischer RAM: 8126.95 MB Verfügbarer physikalischer RAM: 2687.92 MB Summe virtueller Speicher: 16252.09 MB Verfügbarer virtueller Speicher: 10042.7 MB ==================== Laufwerke ================================ Drive c: () (Fixed) (Total:223.47 GB) (Free:43.8 GB) NTFS Drive e: () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)] Drive f: () (Fixed) (Total:596.07 GB) (Free:33.89 GB) NTFS Drive g: (Volume) (Fixed) (Total:2794.39 GB) (Free:634.76 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (Size: 2794.5 GB) (Disk ID: 0B12BDBB) Partition: GPT. ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: D3AD8B81) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=223.5 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 4DC435DF) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=596.1 GB) - (Type=07 NTFS) ==================== Ende von Addition.txt ============================ |
26.06.2016, 15:36 | #5 | |
/// Winkelfunktion /// TB-Süch-Tiger™ | file:///C:/ProgramData/Avira/Antivirus/IPM/IpmDocument.htmlZitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
26.06.2016, 16:18 | #6 |
| file:///C:/ProgramData/Avira/Antivirus/IPM/IpmDocument.html Nope nur für den privaten Gebrauch. Mache jedoch einige Hobbys am PC weshalb ich diese Programme habe. |
26.06.2016, 19:32 | #7 |
/// Winkelfunktion /// TB-Süch-Tiger™ | file:///C:/ProgramData/Avira/Antivirus/IPM/IpmDocument.html Als Hobby Office ProPlus????? Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Lesestoff: Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ Logfiles bitte immer in CODE-Tags posten |
26.06.2016, 20:24 | #8 |
| file:///C:/ProgramData/Avira/Antivirus/IPM/IpmDocument.html Mein Bruder hat sich um die PC Einrichtung gekümmert. Ich kenne mich mit den genauen Programmunterschieden nicht aus. Jedoch nutze ich die Programe meist mehrmals täglich. Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001 www.malwarebytes.org Database version: main: v2016.06.26.04 rootkit: v2016.05.27.01 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 8.0.7601.17514 Nico :: NICO-PC [administrator] 26.06.2016 21:08:05 mbar-log-2016-06-26 (21-08-05).txt Scan type: Quick scan Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken Scan options disabled: Objects scanned: 359829 Time elapsed: 11 minute(s), 45 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) Physical Sectors Detected: 0 (No malicious items detected) (end) |
26.06.2016, 21:55 | #9 |
/// Winkelfunktion /// TB-Süch-Tiger™ | file:///C:/ProgramData/Avira/Antivirus/IPM/IpmDocument.html Adware/Junkware/Toolbars entfernen Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop! Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren! 1. Schritt: adwCleaner Downloade Dir bitte AdwCleaner auf deinen Desktop.
2. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
__________________ Logfiles bitte immer in CODE-Tags posten |
27.06.2016, 08:45 | #10 |
| file:///C:/ProgramData/Avira/Antivirus/IPM/IpmDocument.htmlCode:
ATTFilter # AdwCleaner v5.200 - Bericht erstellt am 26/06/2016 um 23:13:47 # Aktualisiert am 14/06/2016 von ToolsLib # Datenbank : 2016-06-26.1 [Server] # Betriebssystem : Windows 7 Ultimate Service Pack 1 (X64) # Benutzername : Nico - NICO-PC # Gestartet von : C:\Users\Nico\Desktop\AdwCleaner_5.200.exe # Option : Suchlauf # Unterstützung : https://toolslib.net/forum ***** [ Dienste ] ***** ***** [ Ordner ] ***** ***** [ Dateien ] ***** ***** [ DLL ] ***** ***** [ WMI ] ***** ***** [ Verknüpfungen ] ***** ***** [ Aufgabenplanung ] ***** ***** [ Registrierungsdatenbank ] ***** ***** [ Internetbrowser ] ***** ************************* C:\AdwCleaner\AdwCleaner[S1].txt - [691 Bytes] - [26/06/2016 23:13:47] ########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [763 Bytes] ########## Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Malwarebytes Version: 8.0.6 (04.25.2016) Operating System: Windows 7 Ultimate x64 Ran by Nico (Administrator) on 26.06.2016 at 23:15:58,28 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ File System: 6 Failed to delete: C:\Users\Nico\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0VW709NX (Temporary Internet Files Folder) Failed to delete: C:\Users\Nico\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\INGMEUZR (Temporary Internet Files Folder) Failed to delete: C:\Users\Nico\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TO0ASOYU (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0VW709NX (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\INGMEUZR (Temporary Internet Files Folder) Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TO0ASOYU (Temporary Internet Files Folder) Registry: 0 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 26.06.2016 at 23:17:04,19 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ als ich gestern am Ende nochmal meinen PC neugestartet hatte zum Testen ob der Fehler verschwunden sein konnte kam die Meldung wieder nach dem PC start. Jedoch kommt er heute nichtmehr. Meinst du, dass damit das Problem behoben ist? Mfg. |
27.06.2016, 09:13 | #11 |
/// Winkelfunktion /// TB-Süch-Tiger™ | file:///C:/ProgramData/Avira/Antivirus/IPM/IpmDocument.html Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken
__________________ Logfiles bitte immer in CODE-Tags posten |
27.06.2016, 09:20 | #12 |
| file:///C:/ProgramData/Avira/Antivirus/IPM/IpmDocument.html Ich denke mal, dass du dies überlesen hattest, da ich dies gerade erst gepostet hatte: Hey, als ich gestern am Ende nochmal meinen PC neugestartet hatte zum Testen ob der Fehler verschwunden sein konnte kam die Meldung wieder nach dem PC start. Jedoch kommt der Fehler heute nichtmehr. Meinst du, dass damit das Problem behoben ist? Mfg. |
27.06.2016, 10:17 | #13 |
/// Winkelfunktion /// TB-Süch-Tiger™ | file:///C:/ProgramData/Avira/Antivirus/IPM/IpmDocument.html Es ist völlig irrelvant ob das Problem weg ist oder nicht, nach Entfernen von Ad- und Junjkware will ich immer zur Kontrolle neue FRST Logs haben
__________________ Logfiles bitte immer in CODE-Tags posten |
27.06.2016, 10:27 | #14 |
| file:///C:/ProgramData/Avira/Antivirus/IPM/IpmDocument.htmlCode:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 26-06-2016 02 durchgeführt von Nico (Administrator) auf NICO-PC (27-06-2016 11:24:21) Gestartet von C:\Users\Nico\Downloads Geladene Profile: Nico (Verfügbare Profile: Nico) Platform: Windows 7 Ultimate Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 8 (Standard-Browser: FF) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (Sandboxie Holdings, LLC) G:\Program Files\Sandboxie\SbieSvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc64.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Apple Inc.) G:\Program Files\iTunes\iTunesHelper.exe (DT Soft Ltd) G:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (TeamViewer GmbH) G:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Sandboxie Holdings, LLC) G:\Program Files\Sandboxie\SbieCtrl.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe (Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe () C:\Program Files\WALTR\x86\AnimationService.exe (McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Valve Corporation) G:\Programme\Steam\Steam.exe (Valve Corporation) G:\Programme\Steam\bin\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (TeamSpeak Systems GmbH) G:\Programme\Teamspeak\ts3client_win64.exe () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\samp.exe () C:\Users\Nico\Desktop\Ordner\Spiele\GTA\SAMP\Sani.exe () G:\Programme\AHK\AutoHotkeyA32.exe () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\gta_sa.exe () G:\Program Files (x86)\puush\puush.exe (Sony Creative Software Inc.) G:\Program Files\Sony Vegas Pro 13\vegas130.exe (Sony Creative Software Inc.) G:\Program Files\Sony Vegas Pro 13\ErrorReportLauncher.exe (Sony Creative Software Inc.) G:\Program Files\Sony Vegas Pro 13\x86\FileIOSurrogate.exe (Sony Creative Software Inc.) G:\Program Files\Sony Vegas Pro 13\x86\sfvstserver.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [iTunesHelper] => G:\Program Files\iTunes\iTunesHelper.exe [170256 2015-12-17] (Apple Inc.) HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [814608 2016-05-12] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation) HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\Run: [DAEMON Tools Lite] => G:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [1305408 2011-01-20] (DT Soft Ltd) HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\Run: [SandboxieControl] => G:\Program Files\Sandboxie\SbieCtrl.exe [797328 2016-02-26] (Sandboxie Holdings, LLC) HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\MountPoints2: {0c3103d5-d64e-11e5-a080-d05099550755} - H:\setup.exe HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\MountPoints2: {3615cf4f-ead8-11e4-b335-806e6f6e6963} - D:\SETUP.EXE HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\MountPoints2: {4c1d68e5-3428-11e5-bf51-d05099550755} - H:\setup.exe Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 78.42.43.41 82.212.62.41 Tcpip\..\Interfaces\{0B9A43B5-F2AD-4751-A7AD-1B7E8E1D37D1}: [DhcpNameServer] 82.212.62.62 78.42.43.62 Tcpip\..\Interfaces\{5248E955-8A2B-4323-82C9-8861A890D5CF}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{CE6FB0E5-C7C8-4374-8A6F-5C39CDA1E29C}: [DhcpNameServer] 78.42.43.41 82.212.62.41 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-1388351622-919218107-1302039281-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-05-27] (Microsoft Corporation) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-05-25] (Oracle Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-05-17] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-25] (Oracle Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-05-27] (Microsoft Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-05-25] (Oracle Corporation) BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-05-17] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-25] (Oracle Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-05-17] (Microsoft Corporation) Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2015-12-10] (Microsoft Corporation) Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2015-12-10] (Microsoft Corporation) Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2015-12-10] (Microsoft Corporation) Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2015-12-10] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\aDV28Sk4.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_192.dll [2016-06-24] () FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-25] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-25] (Oracle Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-06-24] () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-25] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-25] (Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-11-18] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-09-13] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-09-13] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll [2015-04-24] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll [2015-04-24] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-11-18] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-05-27] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2015-11-10] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2015-11-10] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2015-11-10] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2015-11-10] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2015-11-10] (Apple Inc.) FF Extension: Google Search by Image - C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\aDV28Sk4.default\extensions\google@hitachi.com.xpi [2016-04-28] FF Extension: Avira Browser Safety - C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\aDV28Sk4.default\Extensions\abs@avira.com [2016-06-22] FF Extension: MEGA - C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\aDV28Sk4.default\Extensions\firefox@mega.co.nz.xpi [2016-06-23] FF Extension: Adblock Plus - C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\aDV28Sk4.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28] Chrome: ======= CHR Profile: C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Docs) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-24] CHR Extension: (Google Drive) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-24] CHR Extension: (YouTube) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-24] CHR Extension: (Google-Suche) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-24] CHR Extension: (Google Mail) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-24] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 AnimationService; C:\Program Files\WALTR\x86\AnimationService.exe [55744 2015-10-08] () S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [970656 2016-05-12] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [467016 2016-05-12] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [467016 2016-05-12] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1435704 2016-05-12] (Avira Operations GmbH & Co. KG) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.) S4 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [251160 2015-12-08] (Avira Operations GmbH & Co. KG) S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1141248 2015-07-16] () S4 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [437880 2015-07-13] (BlueStack Systems, Inc.) S4 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [417400 2015-07-13] (BlueStack Systems, Inc.) S4 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [822904 2015-07-13] (BlueStack Systems, Inc.) S3 Disc Soft Lite Bus Service; G:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd) S4 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-12] (NVIDIA Corporation) S4 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19184 2014-12-10] (Intel Corporation) S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Datei ist nicht signiert] S4 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation) S4 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-03-20] (Intel Corporation) R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc64.exe [3020440 2015-11-25] (Intel(R) Corporation) S4 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-04-03] () S4 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-09-25] (Intel Corporation) S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation) S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3916368 2016-01-09] (INCA Internet Co., Ltd.) S4 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-12] (NVIDIA Corporation) S4 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-12] (NVIDIA Corporation) S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-12] (NVIDIA Corporation) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75064 2015-08-29] () S4 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [246488 2013-06-18] (Realtek Semiconductor) R2 SbieSvc; G:\Program Files\Sandboxie\SbieSvc.exe [187024 2016-02-26] (Sandboxie Holdings, LLC) R2 TeamViewer; G:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer GmbH) R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [868592 2016-03-31] (McAfee, Inc.) R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [15736 2016-03-31] (McAfee, Inc.) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) S4 Bonjour Service; "C:\Program Files\Bonjour\mDNSResponder.exe" [X] S2 InstallerService; "C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe" [X] S3 TrueKeyServiceHelper; "C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe" [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [154816 2016-03-08] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [141920 2016-05-12] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2015-04-16] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [79696 2016-05-12] (Avira Operations GmbH & Co. KG) S2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [145528 2015-07-13] (BlueStack Systems) R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-07-27] (Disc Soft Ltd) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2016-02-18] (DT Soft Ltd) R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [488216 2014-02-03] (Intel Corporation) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [30960 2014-12-10] (Intel Corporation) R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [22216 2014-02-03] () R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [22728 2014-02-03] () S3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-04-03] () R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [44744 2014-02-03] () R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [118272 2014-03-20] (Intel Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-12] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation) R3 SbieDrv; G:\Program Files\Sandboxie\SbieDrv.sys [204944 2016-02-26] (Sandboxie Holdings, LLC) R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3604480 2013-07-30] (Sonix Co. Ltd.) S3 ssdevfactory; C:\Windows\System32\DRIVERS\ssdevfactory.sys [25088 2015-04-14] (SteelSeries ApS) R3 VBAudioVACMME; C:\Windows\System32\DRIVERS\vbaudio_cable64_win7.sys [41192 2013-07-11] (Windows (R) Win 7 DDK provider) S3 VGPU; System32\drivers\rdvgkmd.sys [X] S3 xhunter1; \??\C:\Windows\xhunter1.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-06-27 11:24 - 2016-06-27 11:25 - 00022583 _____ C:\Users\Nico\Downloads\FRST.txt 2016-06-27 11:24 - 2016-06-27 11:24 - 00000000 ____D C:\Users\Nico\Downloads\FRST-OlderVersion 2016-06-26 23:17 - 2016-06-26 23:17 - 00001518 _____ C:\Users\Nico\Desktop\JRT.txt 2016-06-26 23:14 - 2016-06-26 23:14 - 01610816 _____ (Malwarebytes) C:\Users\Nico\Desktop\JRT.exe 2016-06-26 23:13 - 2016-06-26 23:13 - 00000000 ____D C:\AdwCleaner 2016-06-26 23:11 - 2016-06-26 23:11 - 03703360 _____ C:\Users\Nico\Desktop\AdwCleaner_5.200.exe 2016-06-26 23:09 - 2016-06-26 23:09 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Sony Creative Software Inc 2016-06-26 22:52 - 2016-06-26 22:52 - 10926508 _____ C:\Users\Nico\Downloads\Gunther_Bunt.mp4 2016-06-26 22:52 - 2016-06-26 22:52 - 00020520 _____ C:\Users\Nico\Downloads\Gunther_Bunt.mp4.sfk 2016-06-26 21:08 - 2016-06-26 21:08 - 00000000 ____D C:\ProgramData\Malwarebytes 2016-06-26 21:07 - 2016-06-26 21:23 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2016-06-26 21:07 - 2016-06-26 21:07 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2016-06-26 21:07 - 2016-06-26 21:07 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2016-06-26 21:06 - 2016-06-26 21:06 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Nico\Downloads\mbar-1.09.3.1001.exe 2016-06-26 16:22 - 2016-06-27 11:24 - 02389504 _____ (Farbar) C:\Users\Nico\Downloads\FRST64.exe 2016-06-26 16:22 - 2016-06-27 11:24 - 00000000 ____D C:\FRST 2016-06-25 16:33 - 2016-06-25 16:33 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Source 2016-06-25 14:33 - 2016-06-25 14:36 - 00007606 _____ C:\Users\Nico\AppData\Local\Resmon.ResmonCfg 2016-06-20 11:47 - 2016-06-20 11:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WALTR 2016-06-20 11:47 - 2016-06-20 11:47 - 00000000 ____D C:\Program Files\WALTR 2016-06-20 11:46 - 2016-06-20 11:47 - 34417272 _____ (Softorino, Inc. ) C:\Users\Nico\Downloads\waltrwindows_1.1.33(1).exe 2016-06-18 08:42 - 2016-06-21 22:49 - 00012364 _____ C:\Users\Nico\Desktop\Hay Day.xlsx 2016-06-16 23:00 - 2016-06-16 23:00 - 00008102 _____ C:\Users\Nico\Desktop\Urlaub.xlsx 2016-06-15 18:21 - 2016-06-06 18:58 - 00041704 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-06-15 18:21 - 2016-06-06 18:50 - 01204224 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-06-15 18:21 - 2016-06-03 15:05 - 01413120 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-06-15 18:21 - 2016-05-27 15:06 - 00569856 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-06-15 18:21 - 2016-05-27 15:06 - 00544256 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-06-15 18:21 - 2016-05-27 15:06 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-06-15 18:21 - 2016-05-27 15:06 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll 2016-06-15 18:21 - 2016-05-22 15:06 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2016-06-15 18:21 - 2016-05-18 18:10 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2016-06-15 18:21 - 2016-05-18 18:09 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2016-06-15 18:21 - 2016-05-14 00:15 - 00382184 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2016-06-15 18:21 - 2016-05-14 00:09 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2016-06-15 18:21 - 2016-05-14 00:09 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2016-06-15 18:21 - 2016-05-14 00:09 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2016-06-15 18:21 - 2016-05-14 00:09 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2016-06-15 18:21 - 2016-05-13 23:54 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2016-06-15 18:21 - 2016-05-13 23:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll 2016-06-15 18:21 - 2016-05-13 23:49 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2016-06-15 18:21 - 2016-05-13 23:49 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll 2016-06-15 18:21 - 2016-05-13 23:27 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2016-06-15 18:21 - 2016-05-12 19:20 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2016-06-15 18:21 - 2016-05-12 19:20 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2016-06-15 18:21 - 2016-05-12 19:15 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2016-06-15 18:21 - 2016-05-12 19:15 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2016-06-15 18:21 - 2016-05-12 19:15 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll 2016-06-15 18:21 - 2016-05-12 19:15 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2016-06-15 18:21 - 2016-05-12 19:15 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2016-06-15 18:21 - 2016-05-12 19:15 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00794624 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00793088 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL 2016-06-15 18:21 - 2016-05-12 19:14 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2016-06-15 18:21 - 2016-05-12 19:14 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00591872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2016-06-15 18:21 - 2016-05-12 17:18 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2016-06-15 18:21 - 2016-05-12 17:06 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe 2016-06-15 18:21 - 2016-05-12 17:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2016-06-15 18:21 - 2016-05-12 17:03 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2016-06-15 18:21 - 2016-05-12 16:58 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2016-06-15 18:21 - 2016-05-12 16:58 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2016-06-15 18:21 - 2016-05-12 16:58 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2016-06-15 18:21 - 2016-05-12 16:58 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2016-06-15 18:21 - 2016-05-12 16:58 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2016-06-15 18:21 - 2016-05-12 16:58 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2016-06-15 18:21 - 2016-05-12 16:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll 2016-06-15 18:21 - 2016-05-12 16:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2016-06-15 18:21 - 2016-05-12 16:57 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.exe 2016-06-15 18:21 - 2016-05-12 16:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2016-06-15 18:21 - 2016-05-12 16:51 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2016-06-15 18:21 - 2016-05-12 15:05 - 00459640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2016-06-15 18:21 - 2016-05-12 15:05 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll 2016-06-15 18:21 - 2016-05-12 15:04 - 00249352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll 2016-06-15 18:21 - 2016-05-11 19:02 - 00483840 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll 2016-06-15 18:21 - 2016-05-11 19:02 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll 2016-06-15 18:21 - 2016-05-11 19:02 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll 2016-06-15 18:21 - 2016-05-11 19:02 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll 2016-06-15 18:21 - 2016-05-11 17:19 - 00363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll 2016-06-15 18:21 - 2016-05-11 17:19 - 00351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll 2016-06-15 18:21 - 2016-05-11 17:19 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll 2016-06-15 18:21 - 2016-05-11 17:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll 2016-06-15 18:21 - 2016-05-11 17:11 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe 2016-06-15 18:21 - 2016-05-11 17:01 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe 2016-06-15 18:21 - 2016-05-11 16:58 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys 2016-06-15 18:21 - 2016-04-14 18:46 - 00114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2016-06-15 18:21 - 2016-04-14 18:42 - 03243520 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2016-06-15 18:21 - 2016-04-14 18:42 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2016-06-15 18:21 - 2016-04-14 18:42 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2016-06-15 18:21 - 2016-04-14 18:42 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll 2016-06-15 18:21 - 2016-04-14 18:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll 2016-06-15 18:21 - 2016-04-14 17:33 - 02365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2016-06-15 18:21 - 2016-04-14 17:33 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2016-06-15 18:21 - 2016-04-14 17:33 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll 2016-06-15 18:21 - 2016-04-14 17:33 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll 2016-06-15 18:21 - 2016-04-14 17:19 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe 2016-06-15 18:21 - 2016-04-14 17:11 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe 2016-06-15 18:21 - 2016-04-09 08:58 - 14186496 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2016-06-15 18:21 - 2016-04-09 08:57 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2016-06-15 18:21 - 2016-04-09 08:54 - 12881408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2016-06-15 18:21 - 2016-04-09 08:54 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2016-06-15 18:21 - 2016-04-09 07:53 - 03231232 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2016-06-15 18:21 - 2016-04-09 07:44 - 02973184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2016-06-15 18:21 - 2016-03-09 21:00 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll 2016-06-15 18:21 - 2016-03-09 20:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll 2016-06-06 22:53 - 2016-06-20 14:32 - 00008354 _____ C:\Users\Nico\Desktop\Terminkalender.xlsx 2016-05-28 19:10 - 2016-06-01 22:58 - 00009103 _____ C:\Users\Nico\Desktop\PSC-Handel.xlsx ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-06-27 10:56 - 2015-04-26 20:28 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-06-27 10:34 - 2015-04-24 21:29 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Skype 2016-06-27 10:30 - 2015-04-24 20:25 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-06-27 10:22 - 2015-04-24 22:15 - 00000000 ____D C:\Users\Nico\AppData\Roaming\vlc 2016-06-27 09:23 - 2009-07-14 06:45 - 00026544 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-06-27 09:23 - 2009-07-14 06:45 - 00026544 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-06-27 09:14 - 2011-04-12 09:43 - 00700130 _____ C:\Windows\system32\perfh007.dat 2016-06-27 09:14 - 2011-04-12 09:43 - 00149768 _____ C:\Windows\system32\perfc007.dat 2016-06-27 09:14 - 2009-07-14 07:13 - 01622706 _____ C:\Windows\system32\PerfStringBackup.INI 2016-06-27 09:14 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf 2016-06-27 09:08 - 2015-04-24 20:25 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-06-27 09:08 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-06-26 21:45 - 2015-05-09 07:30 - 00000000 ____D C:\Users\Nico\AppData\Roaming\OBS 2016-06-25 14:54 - 2015-05-17 20:29 - 00000000 ___HD C:\Users\Nico\AppData\Local\Battle.net 2016-06-25 14:42 - 2015-09-28 15:16 - 00000000 ____D C:\Windows\pss 2016-06-24 10:37 - 2015-12-27 02:40 - 00000000 ____D C:\Users\Nico\AppData\Local\CrashDumps 2016-06-24 10:36 - 2015-04-26 20:28 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-06-24 10:36 - 2015-04-26 20:28 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-06-24 10:36 - 2015-04-26 20:28 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2016-06-24 10:36 - 2015-04-26 20:28 - 00000000 ___HD C:\Users\Nico\AppData\Local\Adobe 2016-06-22 17:24 - 2015-05-14 18:48 - 00001742 _____ C:\Windows\Sandboxie.ini 2016-06-20 12:07 - 2015-10-25 15:02 - 00111936 _____ C:\Windows\system32\GDIPFONTCACHEV1.DAT 2016-06-20 12:05 - 2015-11-10 23:04 - 00000000 ____D C:\Program Files (x86)\Movavi Video Converter 16 2016-06-20 12:00 - 2015-11-10 22:44 - 00000000 ____D C:\Users\Nico\.fontconfig 2016-06-20 11:44 - 2016-05-15 12:50 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Franz 2016-06-18 00:04 - 2016-03-15 08:20 - 00001601 _____ C:\Users\Nico\Desktop\tommy.txt 2016-06-16 15:12 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2016-06-16 09:26 - 2015-04-25 02:18 - 00000000 ____D C:\Windows\system32\appraiser 2016-06-16 09:26 - 2009-07-14 06:45 - 00434792 _____ C:\Windows\system32\FNTCACHE.DAT 2016-06-15 23:09 - 2015-05-26 21:40 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2016-06-15 23:08 - 2015-04-24 22:12 - 00000000 ____D C:\Windows\system32\MRT 2016-06-15 23:06 - 2015-04-24 22:12 - 142482544 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-06-09 12:47 - 2015-06-27 16:45 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Curse Client 2016-06-09 09:53 - 2015-12-17 07:50 - 00000000 ___RD C:\Program Files (x86)\Skype 2016-06-09 09:53 - 2015-04-24 21:29 - 00000000 ____D C:\ProgramData\Skype 2016-06-09 09:51 - 2015-10-07 22:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-06-08 21:44 - 2016-02-25 19:37 - 00014108 _____ C:\Users\Nico\Desktop\Microsoft Excel-Arbeitsblatt (neu).xlsx 2016-06-07 12:09 - 2015-05-02 09:01 - 00000000 ____D C:\Users\Nico\AppData\Roaming\.minecraft 2016-06-04 15:47 - 2015-10-29 19:57 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2016-05-30 21:43 - 2016-04-05 20:06 - 00011793 _____ C:\Users\Nico\Desktop\Miss Random.xlsx ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2016-06-25 14:33 - 2016-06-25 14:36 - 0007606 _____ () C:\Users\Nico\AppData\Local\Resmon.ResmonCfg Einige Dateien in TEMP: ==================== C:\Users\Nico\AppData\Local\Temp\avgnt.exe C:\Users\Nico\AppData\Local\Temp\libeay32.dll C:\Users\Nico\AppData\Local\Temp\msvcr120.dll C:\Users\Nico\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2016-06-17 09:52 ==================== Ende von FRST.txt ============================ Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 26-06-2016 02 durchgeführt von Nico (2016-06-27 11:25:59) Gestartet von C:\Users\Nico\Downloads Windows 7 Ultimate Service Pack 1 (X64) (2015-04-24 18:18:19) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-1388351622-919218107-1302039281-500 - Administrator - Disabled) Gast (S-1-5-21-1388351622-919218107-1302039281-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1388351622-919218107-1302039281-1002 - Limited - Enabled) Nico (S-1-5-21-1388351622-919218107-1302039281-1000 - Administrator - Enabled) => C:\Users\Nico ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) 7-Zip 9.38 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0938-000001000000}) (Version: 9.38.00.0 - Igor Pavlov) Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated) Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated) Aeria Ignite (HKLM-x32\...\Aeria Ignite 1.13.3296) (Version: 1.13.3296 - Aeria Games & Entertainment) Aeria Ignite (HKLM-x32\...\Aeria Ignite) (Version: 1.13.3296 - Aeria Games & Entertainment) Aeria Ignite (x32 Version: 1.13.3296 - Aeria Games & Entertainment) Hidden Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version: - Hidden Path Entertainment, Ensemble Studios) Akamai NetSession Interface (HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\Akamai) (Version: - Akamai Technologies, Inc) Apple Application Support (32-Bit) (HKLM-x32\...\{7FA9ECCF-A2DE-4DA1-BFF3-81260DBDA68F}) (Version: 4.1.2 - Apple Inc.) Apple Application Support (64-Bit) (HKLM\...\{691F30EB-9009-475A-B8A9-E1BF39598FD5}) (Version: 4.1.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.) ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version: - Studio Wildcard) ASRock App Charger v1.0.6 (HKLM\...\ASRock App Charger_is1) (Version: 1.0.6 - ASRock Inc.) AutoHotkey 1.1.21.03 (HKLM\...\AutoHotkey) (Version: 1.1.21.03 - Lexikos) Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.17.273 - Avira Operations GmbH & Co. KG) Avira Launcher (HKLM-x32\...\{eac7da46-2097-4dd4-80a6-8b67cbb2b23f}) (Version: 1.1.53.13962 - Avira Operations GmbH & Co. KG) Avira Launcher (x32 Version: 1.1.53.13962 - Avira Operations GmbH & Co. KG) Hidden Batman™: Arkham Origins (HKLM-x32\...\Steam App 209000) (Version: - WB Games Montreal) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) BioShock (HKLM-x32\...\Steam App 7670) (Version: - 2K Boston) BioShock 2 (HKLM-x32\...\Steam App 8850) (Version: - 2K Marin) Blade & Soul (HKLM-x32\...\InstallShield_{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.237 - NC Interactive, LLC) Blade & Soul (x32 Version: 1.0.63.237 - NC Interactive, LLC) Hidden BlueStacks App Player (HKLM-x32\...\{CCFDC6A9-4455-4117-BB1F-5FC580349DDB}) (Version: 1.1.8.162 - BlueStack Systems, Inc.) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Call of Duty: Advanced Warfare - Multiplayer (HKLM\...\Steam App 209660) (Version: - Sledgehammer Games) Call of Duty: Black Ops (HKLM\...\Steam App 42700) (Version: - Treyarch) Call of Duty: Black Ops III Beta (HKLM-x32\...\Steam App 388520) (Version: - Treyarch) Call of Duty: Modern Warfare 3 - Multiplayer (HKLM\...\Steam App 42690) (Version: - Infinity Ward) CameraHelperMsi (x32 Version: 13.40.836.0 - Logitech) Hidden Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version: - Colossal Order Ltd.) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve) Curse (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Curse) Cyperia (HKLM-x32\...\{CA9F6B5A-2C32-4CB3-8635-390AB45A8C49}) (Version: 2.0 - Cyperia) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.40.2.0131 - DT Soft Ltd) Die Sims 4 Digital Deluxe Edition ReRelease Incl. Update 10 MULTi2 1.5.139.1020 (HKLM-x32\...\Die Sims 4 Digital Deluxe Edition ReRelease Incl. Update 10 MULTi2 1.5.139.1020) (Version: - ) Die Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.5.139.1020 - Electronic Arts Inc.) erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Franz (HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\Franz) (Version: 0.9.10 - Franz) Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios) GIGABYTE OC_GURU II (HKLM-x32\...\InstallShield_{EA298EC1-2B8F-4DA9-8C5B-BC1FCBBAD72F}) (Version: 1.69.0000 - GIGABYTE Technology Co.,Ltd.) GIGABYTE OC_GURU II (x32 Version: 1.69.0000 - GIGABYTE Technology Co.,Ltd.) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 26.0.1410.40 - Google Inc.) Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games) Grand Theft Auto: San Andreas (HKLM-x32\...\Steam App 12120) (Version: - Rockstar Games) Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) HUE HD Camera (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.60000.104 - Sonix) Intel Security True Key (HKLM\...\TrueKey) (Version: 3.9.141.1 - Intel Security) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation) Intel(R) Network Connections 19.0.27.0 (HKLM\...\PROSetDX) (Version: 19.0.27.0 - Intel) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.6.0.1002 - Intel Corporation) Intel(R) Smart Connect Technology (HKLM\...\{7228EFBA-512B-4EB3-B8A7-E2C331475DF4}) (Version: 5.0.10.2808 - Intel Corporation) Intel(R) Update Manager (HKLM-x32\...\{B991A1BC-DE0F-41B3-9037-B2F948F706EC}) (Version: 3.1.1228 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation) Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.13 - Intel(R) Corporation) Hidden iTunes (HKLM\...\{FBEB98F8-64E4-4FA3-A15E-4A9F42FF962E}) (Version: 12.3.2.35 - Apple Inc.) Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation) Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation) Java SE Development Kit 8 Update 73 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0180730}) (Version: 8.0.730.2 - Oracle Corporation) JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games ) League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve) Logitech Webcam-Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.40 - Logitech Inc.) LWS VideoEffects (Version: 13.30.1379.0 - Logitech) Hidden Medal of Honor(TM) Multiplayer (HKLM-x32\...\Steam App 47830) (Version: - Electronic Arts) Medal of Honor(TM) Single Player (HKLM-x32\...\Steam App 47790) (Version: - Electronic Arts) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Expression Encoder 4 (HKLM-x32\...\Encoder_4.0.1651.0) (Version: 4.0.1651.0 - Microsoft Corporation) Microsoft Expression Encoder 4 Screen Capture Codec (HKLM-x32\...\{F21D2032-60FE-4729-9C87-46F1615FB965}) (Version: 4.0.1651.0 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{09298F26-A95C-31E2-9D95-2C60F586F075}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Movavi Video Converter 16 (HKLM-x32\...\Movavi Video Converter 16) (Version: 16.0.2 - Movavi) Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Studio Platinum 13.0 (64-bit) (HKLM\...\{F4721C9E-74D6-11E4-9122-F04DA23A5C58}) (Version: 13.0.943 - Sony) Mozilla Firefox 47.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 de)) (Version: 47.0 - Mozilla) NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version: - NCSOFT) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.9 - Notepad++ Team) NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation) NVIDIA 3D Vision Treiber 355.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.98 - NVIDIA Corporation) NVIDIA GeForce Experience 2.9.1.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.9.1.22 - NVIDIA Corporation) NVIDIA Grafiktreiber 355.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.98 - NVIDIA Corporation) NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{E10DB5DA-E576-40EA-A7FC-1CB2A7B283A6}) (Version: 9.09.1112 - NVIDIA Corporation) Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - ) Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Outlast (HKLM\...\Steam App 238320) (Version: - Red Barrels) Portal 2 (HKLM-x32\...\Steam App 620) (Version: - Valve) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.989 - Even Balance, Inc.) puush (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert) QuickTime 7 (HKLM-x32\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7004 - Realtek Semiconductor Corp.) Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.8 - Rockstar Games) RollerCoaster Tycoon 3: Platinum! (HKLM\...\Steam App 2700) (Version: - Frontier) SA-MP Colorpicker 1.1.0 (HKLM-x32\...\SA-MP Colorpicker) (Version: 1.1.0 - GTAvision.com) Sandboxie 5.10 (64-bit) (HKLM\...\Sandboxie) (Version: 5.10 - Sandboxie Holdings, LLC) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) SHIELD Streaming (Version: 4.1.0260 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.9.1.22 - NVIDIA Corporation) Hidden Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.) South Park™: The Stick of Truth™ (HKLM-x32\...\Steam App 213670) (Version: - Obsidian Entertainment) SpeedRunners (HKLM-x32\...\Steam App 207140) (Version: - DoubleDutch Games) Spore (HKLM-x32\...\Steam App 17390) (Version: - Maxis™) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SteelSeries Engine 3.3.6.1 (HKLM\...\SteelSeries Engine 3) (Version: 3.3.6.1 - SteelSeries ApS) Stronghold 2 Deluxe (HKLM-x32\...\{16D2C649-CBA8-44EE-B730-12584667D487}) (Version: 1.40.000 - Firefly Studios) Super Meat Boy (HKLM-x32\...\Steam App 40800) (Version: - Team Meat) Surgeon Simulator (HKLM\...\Steam App 233720) (Version: - Bossa Studios) Tank Universal (HKLM-x32\...\Steam App 19200) (Version: - Dialogue Design) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.56083 - TeamViewer) TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 28 - Gameforge Productions GmbH) Terraria (HKLM-x32\...\Steam App 105600) (Version: - Re-Logic) The Binding of Isaac: Rebirth (HKLM-x32\...\Steam App 250900) (Version: - Nicalis, Inc.) TL-WN851ND Driver (HKLM-x32\...\{4BAE4C76-44C3-418F-B715-6BBF5A65323E}) (Version: 1.00.0000 - TP-LINK) TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 2.01.0012 - TP-LINK) TrackMania² Stadium (HKLM-x32\...\Steam App 232910) (Version: - Nadeo) Two Worlds II Castle Defense (HKLM-x32\...\Steam App 7530) (Version: - Reality Pump Studios) Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{5D2260D6-DB16-41DC-915B-A39BF4F66362}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3115033) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{F258B6E3-BF41-4FEE-BE45-D7518C3B7FC1}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3115033) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{F258B6E3-BF41-4FEE-BE45-D7518C3B7FC1}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3115033) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{F258B6E3-BF41-4FEE-BE45-D7518C3B7FC1}) (Version: - Microsoft) VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software) Vegas Pro 13.0 (64-bit) (HKLM\...\{1F8D8040-0BC8-11E5-85C5-F04DA23A5C58}) (Version: 13.0.453 - Sony) VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN) WALTR version 1.1.33 (HKLM\...\{20AFC2A1-9E47-4A77-96E8-89AAED7B6AEB}_is1) (Version: 1.1.33 - Softorino, Inc.) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) Wolfenstein The Old Blood German Uncut Edition 1.0 (HKLM-x32\...\Wolfenstein The Old Blood German Uncut Edition 1.0) (Version: - ) World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment) Worms Revolution (HKLM-x32\...\Steam App 200170) (Version: - Team17 Digital Ltd.) XAMPP (HKLM-x32\...\xampp) (Version: 7.0.4-0 - Bitnami) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {2E87B74D-F65F-4412-AC03-E42BC061085B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {489FB674-5113-4B98-9E97-2B81D4EE0F0E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-24] (Google Inc.) Task: {4E2F4B7B-4935-4AFA-8FF0-D102A80F278E} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation) Task: {8A458805-3DA2-4BBF-B367-948A7E3B6B5A} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1388351622-919218107-1302039281-1000 Task: {8BAD7105-21A7-4B8C-8F85-BEDDF495CBF0} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation) Task: {91A95712-EB05-4248-8F01-292412E88D20} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {AAF1A12C-5C49-42F8-A121-77CE22A5A93D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {C157557D-96CE-4424-85ED-3765AA5D6FED} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-24] (Adobe Systems Incorporated) Task: {CBE9F7B5-6089-4AD1-A3DF-147503BCDBE0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated) Task: {D96278F6-D5DF-45EE-86C2-C2E7D4025147} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-24] (Google Inc.) Task: {FAC8A8C7-8A29-4D20-B791-6C7655A54E8C} - System32\Tasks\Core Temp Autostart Nico => G:\Program Files\Core Temp\Core Temp.exe (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) Shortcut: C:\Users\Nico\AppData\Local\Microsoft\Windows\GameExplorer\{68FD21EF-5CCA-4415-B58F-0BB2B0E863C2}\SupportTasks\0\Weitere Spiele von Microsoft.lnk -> hxxp://www.rockstargames.com/sanandreas/ (Keine Datei) Shortcut: C:\Users\Nico\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cyperia\Cyperia Homepage.lnk -> hxxp://cyperia.org/ (Keine Datei) ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2015-09-23 16:47 - 2015-09-23 16:47 - 00085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-10-13 06:45 - 2015-10-13 06:45 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2015-08-29 21:11 - 2015-08-29 21:11 - 00075064 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2016-06-20 11:47 - 2015-10-08 16:53 - 00055744 _____ () C:\Program Files\WALTR\x86\AnimationService.exe 2014-02-28 11:14 - 2016-06-24 10:35 - 00174872 _____ () G:\Programme\Teamspeak\quazip.dll 2014-08-04 15:43 - 2016-06-24 10:35 - 00103192 _____ () G:\Programme\Teamspeak\soundbackends\directsound_win64.dll 2014-08-04 15:43 - 2016-06-24 10:35 - 00107800 _____ () G:\Programme\Teamspeak\soundbackends\windowsaudiosession_win64.dll 2014-08-04 15:46 - 2016-06-24 10:35 - 00312088 _____ () G:\Programme\Teamspeak\plugins\clientquery_plugin.dll 2014-08-04 15:46 - 2016-06-24 10:35 - 00485656 _____ () G:\Programme\Teamspeak\plugins\teamspeak_control_plugin.dll 2015-04-27 04:50 - 2015-04-27 04:50 - 00412672 _____ () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\samp.exe 2016-06-25 16:33 - 2016-06-25 16:34 - 00805376 _____ () C:\Users\Nico\Desktop\Ordner\Spiele\GTA\SAMP\Sani.exe 2015-04-25 08:53 - 2015-04-12 02:34 - 00795136 _____ () G:\Programme\AHK\AutoHotkeyA32.exe 2014-03-12 21:27 - 2005-06-07 17:59 - 14383616 _____ () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\gta_sa.exe 2012-01-10 14:41 - 2015-05-28 20:37 - 00568904 _____ () G:\Program Files (x86)\puush\puush.exe 2015-06-05 16:53 - 2015-06-05 16:53 - 01699640 _____ () G:\Program Files\Sony Vegas Pro 13\OpenColorIO.dll 2015-06-05 16:51 - 2015-06-05 16:51 - 00058168 _____ () G:\Program Files\Sony Vegas Pro 13\FileIOProxyStubx64.dll 2015-06-05 16:52 - 2015-06-05 16:52 - 00028984 _____ () G:\Program Files\Sony Vegas Pro 13\de\Sony.Vegas.resources.dll 2015-06-05 16:52 - 2015-06-05 16:52 - 00019256 _____ () G:\Program Files\Sony Vegas Pro 13\de\Sony.Vegas.Publish.resources.dll 2015-09-24 22:39 - 2015-09-14 02:29 - 42840368 _____ () C:\Windows\system32\nvcompiler.dll 2015-06-05 16:53 - 2015-06-05 16:53 - 00212792 _____ () G:\Program Files\Sony Vegas Pro 13\de\Sony.MediaSoftware.XDCAMExp.resources.dll 2015-06-05 16:52 - 2015-06-05 16:52 - 00086840 _____ () G:\Program Files\Sony Vegas Pro 13\de\Sony.MediaSoftware.DeviceExp.resources.dll 2015-06-05 16:52 - 2015-06-05 16:52 - 00010552 _____ () G:\Program Files\Sony Vegas Pro 13\de\Sony.Monitor3D.resources.dll 2015-06-05 16:52 - 2015-06-05 16:52 - 13706040 _____ () G:\Program Files\Sony Vegas Pro 13\OFX Video Plug-Ins\Vfx1.ofx.bundle\Contents\Win64\Vfx1.ofx 2015-06-05 16:53 - 2015-06-05 16:53 - 00175928 _____ () G:\Program Files\Sony Vegas Pro 13\de\Sony.MediaSoftware.VideoEffectsUI.resources.dll 2011-11-11 15:08 - 2011-11-11 15:08 - 02145304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll 2011-11-11 15:08 - 2011-11-11 15:08 - 07956504 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll 2011-11-11 15:08 - 2011-11-11 15:08 - 00342552 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll 2011-11-11 15:08 - 2011-11-11 15:08 - 00029208 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll 2011-11-11 15:08 - 2011-11-11 15:08 - 00128536 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll 2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2015-04-24 21:46 - 2016-04-29 22:10 - 00785920 _____ () G:\Programme\Steam\SDL2.dll 2015-04-24 21:46 - 2015-07-03 18:12 - 04962816 _____ () G:\Programme\Steam\v8.dll 2015-04-24 21:46 - 2015-07-03 18:12 - 01556992 _____ () G:\Programme\Steam\icui18n.dll 2015-04-24 21:46 - 2015-07-03 18:12 - 01187840 _____ () G:\Programme\Steam\icuuc.dll 2015-04-24 21:46 - 2016-06-15 02:47 - 02387024 _____ () G:\Programme\Steam\video.dll 2015-04-24 21:46 - 2016-02-09 01:14 - 02549760 _____ () G:\Programme\Steam\libavcodec-56.dll 2015-04-24 21:46 - 2016-02-09 01:14 - 00442880 _____ () G:\Programme\Steam\libavutil-54.dll 2015-04-24 21:46 - 2016-02-09 01:14 - 00491008 _____ () G:\Programme\Steam\libavformat-56.dll 2015-04-24 21:46 - 2016-02-09 01:14 - 00332800 _____ () G:\Programme\Steam\libavresample-2.dll 2015-04-24 21:46 - 2016-02-09 01:14 - 00485888 _____ () G:\Programme\Steam\libswscale-3.dll 2015-04-24 21:46 - 2016-06-15 02:47 - 00829008 _____ () G:\Programme\Steam\bin\chromehtml.DLL 2016-03-09 18:00 - 2016-02-18 00:25 - 00281088 _____ () G:\Programme\Steam\openvr_api.dll 2015-04-24 21:46 - 2016-06-14 21:14 - 49826080 _____ () G:\Programme\Steam\bin\libcef.dll 2016-06-25 16:34 - 2016-06-25 16:34 - 00499712 _____ () C:\Users\Nico\Desktop\Ordner\Spiele\GTA\SAMP\overlay.dll 2015-06-03 21:14 - 2015-06-03 20:18 - 00499712 _____ () F:\Sammelordner\Keybinder\Test Keybinder API\Test2\API.dll 2014-07-19 09:53 - 2014-07-19 09:53 - 00065536 _____ () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\vorbisfile.dll 2014-03-12 21:27 - 2003-11-15 18:54 - 00036864 _____ () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\ogg.dll 2014-07-19 09:50 - 2003-11-16 11:48 - 01060864 _____ () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\vorbis.dll 2016-02-27 18:33 - 2015-09-11 12:59 - 02907136 _____ () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\d3d9.dll 2015-10-13 06:46 - 2015-10-13 06:46 - 01040144 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2015-09-23 16:47 - 2015-09-23 16:47 - 00073512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2015-06-05 16:51 - 2015-06-05 16:51 - 00046392 _____ () G:\Program Files\Sony Vegas Pro 13\x86\FileIOProxyStubx86.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) AlternateDataStreams: C:\Windows\Temp:$DATA [16] ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) ==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) IE trusted site: HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\aeriagames.com -> hxxps://aeriagames.com IE trusted site: HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\aeriagames.com -> hxxp://aeriagames.com ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-1388351622-919218107-1302039281-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Nico\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 78.42.43.41 - 82.212.62.41 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: Apple Mobile Device Service => 2 MSCONFIG\Services: Avira.ServiceHost => 2 MSCONFIG\Services: AxInstSV => 3 MSCONFIG\Services: BEService => 3 MSCONFIG\Services: Bonjour Service => 2 MSCONFIG\Services: BstHdAndroidSvc => 3 MSCONFIG\Services: BstHdLogRotatorSvc => 2 MSCONFIG\Services: BstHdUpdaterSvc => 2 MSCONFIG\Services: Disc Soft Lite Bus Service => 3 MSCONFIG\Services: GfExperienceService => 2 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: IAStorDataMgrSvc => 2 MSCONFIG\Services: IDriverT => 3 MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3 MSCONFIG\Services: Intel(R) ME Service => 2 MSCONFIG\Services: Intel(R) PROSet Monitoring Service => 2 MSCONFIG\Services: iPod Service => 3 MSCONFIG\Services: ISCTAgent => 2 MSCONFIG\Services: iumsvc => 3 MSCONFIG\Services: jhi_service => 2 MSCONFIG\Services: LMS => 2 MSCONFIG\Services: NvNetworkService => 2 MSCONFIG\Services: NvStreamNetworkSvc => 3 MSCONFIG\Services: NvStreamSvc => 2 MSCONFIG\Services: nvsvc => 2 MSCONFIG\Services: Origin Client Service => 3 MSCONFIG\Services: ose => 3 MSCONFIG\Services: ose64 => 3 MSCONFIG\Services: osppsvc => 3 MSCONFIG\Services: RtkAudioService => 2 MSCONFIG\Services: SbieSvc => 2 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\Services: Steam Client Service => 3 MSCONFIG\Services: Stereo Service => 2 MSCONFIG\Services: TeamViewer => 2 MSCONFIG\Services: wlidsvc => 2 MSCONFIG\Services: WMPNetworkSvc => 2 MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^GIGABYTE OC_GURU.lnk => C:\Windows\pss\GIGABYTE OC_GURU.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SteelSeries Engine 3.lnk => C:\Windows\pss\SteelSeries Engine 3.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TP-LINK Wireless Configuration Utility.lnk => C:\Windows\pss\TP-LINK Wireless Configuration Utility.lnk.CommonStartup MSCONFIG\startupfolder: C:^Users^Nico^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk => C:\Windows\pss\Curse.lnk.Startup MSCONFIG\startupreg: Aeria Ignite => "C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe" silent MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Nico\AppData\Local\Akamai\netsession_win.exe" MSCONFIG\startupreg: avgnt => "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min MSCONFIG\startupreg: Avira SystrayStartTrigger => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe MSCONFIG\startupreg: DAEMON Tools Lite Automount => "G:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun MSCONFIG\startupreg: IAStorIcon => "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60 MSCONFIG\startupreg: ISCT Tray => C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe MSCONFIG\startupreg: iTunesHelper => "G:\Program Files\iTunes\iTunesHelper.exe" MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" MSCONFIG\startupreg: Prime95 => C:\Users\Nico\Desktop\p95v285.win64\prime95.exe MSCONFIG\startupreg: QuickTime Task => "G:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s MSCONFIG\startupreg: SandboxieControl => "G:\Program Files\Sandboxie\SbieCtrl.exe" MSCONFIG\startupreg: ShadowPlay => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: snp2uvc => C:\Program Files (x86)\Common Files\SNP2UVC\vsnp2uvc.exe MSCONFIG\startupreg: Steam => "G:\Programme\Steam\steam.exe" -silent MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: tsnp2uvc => C:\Program Files (x86)\Common Files\SNP2UVC\tsnp2uvc.exe MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [{3EDDB680-4D51-4658-AB9A-9DDEBB302CEA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{4EAF8AEA-44D2-4C6E-A3A7-EC4EC99E498A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{6ADE5866-59CE-4530-8C92-E4DABF140B44}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{8B3ADBB4-3CCD-4472-BC7D-D90929F86D1D}] => (Allow) G:\Programme\Steam\Steam.exe FirewallRules: [{C336919E-18C6-49AA-9F8F-B3C2BEE6AD05}] => (Allow) G:\Programme\Steam\Steam.exe FirewallRules: [{8C338A42-01F4-48E8-9BD3-0B770BFB9B0C}] => (Allow) G:\Programme\Steam\bin\steamwebhelper.exe FirewallRules: [{91B46F8D-85F7-4970-9D9C-A1ACDBD5695A}] => (Allow) G:\Programme\Steam\bin\steamwebhelper.exe FirewallRules: [{FE896C60-6EE4-4E17-9069-2A6EB3CF4C48}] => (Allow) G:\Programme\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{253AB5B9-B03C-4201-92F9-14F6F855CC7F}] => (Allow) G:\Programme\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [TCP Query User{72E9A7EF-0C89-4973-A5FD-F12E125800D4}G:\programme\gta 5\gta5.exe] => (Allow) G:\programme\gta 5\gta5.exe FirewallRules: [UDP Query User{E0C7B836-35F9-4C14-BE8D-5C3182AA21D3}G:\programme\gta 5\gta5.exe] => (Allow) G:\programme\gta 5\gta5.exe FirewallRules: [TCP Query User{5C5464D2-CA6D-428A-A5C5-EFEFCDB0F22A}G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{9B73A348-C4DC-48D0-AAD0-A83BBE5205F8}G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{FC38207F-D80C-43AB-BD6F-74C56C53872B}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{14D8132C-6FFB-4C31-9F6C-8C532624041B}] => (Allow) LPort=2869 FirewallRules: [{34DAF000-1DEA-4D3F-9E6B-92A66DF50D2A}] => (Allow) LPort=1900 FirewallRules: [TCP Query User{5DE6F8AD-0577-4DA4-AB99-B0A948F7192F}G:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) G:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe FirewallRules: [UDP Query User{173B074F-DCDF-4061-9FEE-BD48CAC1D57D}G:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) G:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe FirewallRules: [{C282B9D5-D2A9-4D9D-9065-47B8CF6FDD8F}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{1C2217D1-C667-4CE8-A920-F5AEAA4BFE19}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{CD34EB94-5909-4B6B-B636-8EA7D35E6162}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{76018861-8928-4E61-A3DC-2D5224A54A80}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{10CE181E-3D27-40C5-AA2D-6D15B5C0FAC3}] => (Allow) G:\Programme\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{2EAAF798-755B-4744-99D6-0EB459077C33}] => (Allow) G:\Programme\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{539665A7-BB12-4BE3-8659-435D58CE3D68}] => (Allow) G:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [{C5BBE019-CBA5-4E58-9EA3-B236CE87802C}] => (Allow) G:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [TCP Query User{838FDEEA-13D5-416D-9B7D-7901D8318839}G:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) G:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{775369B9-AC8C-4DC9-AD02-43B5E33C591C}G:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) G:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{0EA13EBC-4AD2-4FED-B733-AD4ED8E6E214}G:\programme\steam\steamapps\common\dayz\dayz.exe] => (Allow) G:\programme\steam\steamapps\common\dayz\dayz.exe FirewallRules: [UDP Query User{ACB58FB8-8829-4FF1-8F75-EFF2EF5FE568}G:\programme\steam\steamapps\common\dayz\dayz.exe] => (Allow) G:\programme\steam\steamapps\common\dayz\dayz.exe FirewallRules: [TCP Query User{B50D74F9-DF5B-4BA0-B756-513A4936825C}C:\users\nico\desktop\ritter.part01\age2hd\aok hd.exe] => (Allow) C:\users\nico\desktop\ritter.part01\age2hd\aok hd.exe FirewallRules: [UDP Query User{2E8E2584-5F40-4E72-8D42-CBD6D4BC4D0E}C:\users\nico\desktop\ritter.part01\age2hd\aok hd.exe] => (Allow) C:\users\nico\desktop\ritter.part01\age2hd\aok hd.exe FirewallRules: [TCP Query User{341628FB-E0B8-46CF-B783-8093B7B4A72C}G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{DDEC344F-79D9-4102-B04A-D95E66DF8689}G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{40C777E4-AC2B-4146-9F8A-BDBB14BCBF93}] => (Allow) G:\Programme\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{65315F19-F5D2-487B-86A2-DDC36B0CC63D}] => (Allow) G:\Programme\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{AC9F71BE-013A-4D06-AA2E-88EFB6004867}] => (Allow) G:\Programme\Steam\steamapps\common\Bioshock\Builds\Release\Bioshock.exe FirewallRules: [{088B78BD-4A56-465D-8A92-C4B133B0D009}] => (Allow) G:\Programme\Steam\steamapps\common\Bioshock\Builds\Release\Bioshock.exe FirewallRules: [{02EACC16-6777-4D7A-B7DF-B6ABF62D3D78}] => (Allow) G:\Programme\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe FirewallRules: [{ECD532B4-67CB-4670-98C2-AA1F59366C16}] => (Allow) G:\Programme\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe FirewallRules: [{CCF2ED7D-CA82-4B32-B122-0347252F69F3}] => (Allow) G:\Programme\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe FirewallRules: [{CDFFB36A-7A4B-4267-A868-9664827B35FB}] => (Allow) G:\Programme\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe FirewallRules: [{7276C062-E66B-4987-A607-075A6B155FEC}] => (Allow) G:\Programme\Steam\steamapps\common\Spore\SporeBin\SporeApp.exe FirewallRules: [{44EC96F0-0F84-4F22-8760-20BB3F162EB4}] => (Allow) G:\Programme\Steam\steamapps\common\Spore\SporeBin\SporeApp.exe FirewallRules: [{5E0076D6-A204-47DC-AF72-7C49131D3763}] => (Allow) G:\Programme\Steam\steamapps\common\Super Meat Boy\SuperMeatBoy.exe FirewallRules: [{1F7E80FD-2456-49FD-BD28-87785C50B761}] => (Allow) G:\Programme\Steam\steamapps\common\Super Meat Boy\SuperMeatBoy.exe FirewallRules: [{E207447E-B58F-40D1-8989-B2A767B8127D}] => (Allow) G:\Programme\Steam\steamapps\common\Tank Universal SteamWorks Edition\TU.exe FirewallRules: [{4AC20C70-D1FA-4E19-8C7B-C1E6BDCBE6E0}] => (Allow) G:\Programme\Steam\steamapps\common\Tank Universal SteamWorks Edition\TU.exe FirewallRules: [{6AB849D6-0F71-40C2-9F4F-055C09893228}] => (Allow) G:\Programme\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [{BF17B311-59F5-446A-B8D8-BFB0A7989B28}] => (Allow) G:\Programme\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [{1E50125D-9F57-46D5-A19B-9A6B680EEB50}] => (Allow) G:\Programme\Steam\steamapps\common\Two Worlds II Castle Defense\TW2CD.exe FirewallRules: [{B8E2874D-E952-44FD-B685-14022346D6C7}] => (Allow) G:\Programme\Steam\steamapps\common\Two Worlds II Castle Defense\TW2CD.exe FirewallRules: [{36497A1F-BBAF-498C-AD0C-6F991A858D17}] => (Allow) G:\Programme\Steam\steamapps\common\ManiaPlanet_TMStadium\ManiaPlanetLauncher.exe FirewallRules: [{4278F034-C680-432A-AEF4-333F95ABB777}] => (Allow) G:\Programme\Steam\steamapps\common\ManiaPlanet_TMStadium\ManiaPlanetLauncher.exe FirewallRules: [{0F2FA581-8A69-4218-BAE5-8F5FF20B3195}] => (Allow) G:\Programme\Steam\steamapps\common\South Park - The Stick of Truth\South Park - The Stick of Truth.exe FirewallRules: [{C5AD8336-D744-4D9C-9303-DFBC6BA8E4CF}] => (Allow) G:\Programme\Steam\steamapps\common\South Park - The Stick of Truth\South Park - The Stick of Truth.exe FirewallRules: [{D389DD57-C860-4DEA-8FAB-74C53A4F87CA}] => (Allow) G:\Programme\Steam\steamapps\common\Age2HD\Launcher.exe FirewallRules: [{6A2E9EE1-DD6D-4BD7-9996-1589F3336386}] => (Allow) G:\Programme\Steam\steamapps\common\Age2HD\Launcher.exe FirewallRules: [{9E607F6A-EA59-4EDC-B578-43781CD189B6}] => (Allow) G:\Programme\Steam\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe FirewallRules: [{230E936F-C32F-4722-9B94-C65158DF513F}] => (Allow) G:\Programme\Steam\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe FirewallRules: [{ECA81B0D-7072-4B2E-93D8-78F2BF32CB8D}] => (Allow) G:\Programme\Steam\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe FirewallRules: [{7946455B-A7B3-42A6-AE39-41D63A6A9D33}] => (Allow) G:\Programme\Steam\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe FirewallRules: [TCP Query User{20745C20-CD67-48D5-94C5-88B492FCFD47}C:\users\nico\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\nico\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{83462889-87D3-432A-A992-8D5B60525A4C}C:\users\nico\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\nico\appdata\local\akamai\netsession_win.exe FirewallRules: [{F2EE41D6-9188-4656-A5EF-05AEBC709A2A}] => (Allow) G:\Programme\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe FirewallRules: [{9224E388-1165-411C-BB24-6A8365D92346}] => (Allow) G:\Programme\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe FirewallRules: [TCP Query User{A9FEE789-AC63-4B82-B90E-621BC8DC2341}G:\programme\steam\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe] => (Allow) G:\programme\steam\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe FirewallRules: [UDP Query User{0FDF9B0F-DF21-403B-BAFB-5623619037C9}G:\programme\steam\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe] => (Allow) G:\programme\steam\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe FirewallRules: [{91A1FFF0-11BB-47FC-905E-090E667B759D}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Black Ops III Beta\BlackOps3.exe FirewallRules: [{4F514D1A-2A33-4E26-87E3-CD96B2FDAD6E}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Black Ops III Beta\BlackOps3.exe FirewallRules: [{AD2D2F25-FEE7-41D0-B66A-4C4FEBD0E73B}] => (Allow) G:\Programme\Steam\steamapps\common\Medal of Honor\Binaries\moh.exe FirewallRules: [{D63073A2-51B1-4ABD-9CFC-501E26C167DD}] => (Allow) G:\Programme\Steam\steamapps\common\Medal of Honor\Binaries\moh.exe FirewallRules: [{3DD44EA0-72A4-48B0-9B51-A434848A980D}] => (Allow) G:\Programme\Steam\steamapps\common\Medal of Honor\MP\mohmpgame.exe FirewallRules: [{C27C5FD8-7AE2-4C59-B22A-13EA4944C24D}] => (Allow) G:\Programme\Steam\steamapps\common\Medal of Honor\MP\mohmpgame.exe FirewallRules: [{83BAF684-D1EE-49B7-8090-709620F12781}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{96E6ABA4-74A4-4538-909E-77B47040116D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{CBDAA2EA-B42B-45CF-A3F5-FB7AFE56CC71}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{9EB37349-198B-4501-8109-D5622499B4E2}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{24A82132-0F73-4F4D-8271-637A651A3E5C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{A46E2743-18CD-4326-82A5-C6E65C640DF9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{9B96E021-6562-4AC9-9098-8FA977E8D84A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{28DCE3AF-451C-4404-896E-D77F6766AD15}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{ECFD9908-20A4-4765-BB30-A14AC394288E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{AB9D4DFB-DD2D-42C5-A53D-72CC11AB9AC5}] => (Allow) G:\Programme\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe FirewallRules: [{32E9762B-A370-4BF0-8671-5A32F242C4F9}] => (Allow) G:\Programme\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe FirewallRules: [{CBE52B5B-BE3B-4EDB-9C8F-6E97E68ABFA8}] => (Allow) G:\Programme\Steam\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe FirewallRules: [{450B0BD4-8BE7-496C-B0DA-021103F057BC}] => (Allow) G:\Programme\Steam\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe FirewallRules: [{D34509B0-7F69-46C4-9158-46BBCB2CFC1D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{2A1466AA-B707-49D5-B6CA-F98153231AF8}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{9F2D2B3D-DCB4-4CB2-A4C4-1EED03FAAC14}] => (Allow) G:\Program Files (x86)\Die Sims 4 Digital Deluxe Edition\Game\Bin\TS4.exe FirewallRules: [{95509523-3CFC-4AD0-A61A-7A420A917C99}] => (Allow) G:\Program Files (x86)\Die Sims 4 Digital Deluxe Edition\Game\Bin\TS4.exe FirewallRules: [{D4C208FB-E873-4F53-A9EC-AFFA20C9B3E5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{C3C92800-567F-49B4-BB2E-C94382EB0576}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{1E0AA99D-A6DE-46CC-84A9-BBDD5F447DBA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{962C5C7F-8580-4EEC-B5F7-55F5C1E1E490}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{C6622CB9-1CED-4990-AF3E-EEE713EBC27D}] => (Allow) G:\Programme\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{EDD36567-3517-42C3-8EB1-C7DC35FC4B98}] => (Allow) G:\Programme\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{2132FA33-F89C-49EF-94E4-366EB8D73276}] => (Allow) G:\Programme\Steam\steamapps\common\Cities_Skylines\Cities.exe FirewallRules: [{A75AF38B-6631-4A2F-BB2C-34ACE37140C9}] => (Allow) G:\Programme\Steam\steamapps\common\Cities_Skylines\Cities.exe FirewallRules: [{2681309A-9BB9-478C-B2BF-00DA6E754EA8}] => (Allow) G:\Programme\Steam\steamapps\common\WormsRevolution\WormsRevolution.exe FirewallRules: [{337A881C-14C5-4938-9190-B4303CCD2783}] => (Allow) G:\Programme\Steam\steamapps\common\WormsRevolution\WormsRevolution.exe FirewallRules: [{C93AA90B-D61F-4F5F-9C2C-E497DAF1FAAF}] => (Allow) G:\Programme\Steam\steamapps\common\Counter-Strike Source\hl2.exe FirewallRules: [{828441BB-E138-4ADF-B639-443B76EBCB9A}] => (Allow) G:\Programme\Steam\steamapps\common\Counter-Strike Source\hl2.exe FirewallRules: [TCP Query User{23561AFA-5716-4CBC-8CEE-62EF564290A9}C:\users\nico\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\nico\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{6BB1F7D5-C727-48A1-B278-63F80D41BFA1}C:\users\nico\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\nico\appdata\local\akamai\netsession_win.exe FirewallRules: [{A4CF7DC6-091A-4F69-8F17-BB38A2B295A1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{95411A29-27B3-4A43-83AF-9E83BBC35555}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{EBF33698-4C5F-4469-8474-80A631FCE2FA}] => (Allow) G:\Programme\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe FirewallRules: [{B9BAAEDB-3731-4FC1-B64D-A82E81748320}] => (Allow) G:\Programme\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe FirewallRules: [{7C08ACF0-206B-4D1A-BA5A-008B16526188}] => (Allow) G:\Program Files\iTunes\iTunes.exe FirewallRules: [{7029928D-C6D3-47BB-8FB5-40A2DE7D08D7}] => (Allow) G:\Program Files (x86)\Firefly Studios\Stronghold 2\Stronghold2.exe FirewallRules: [{FB78B9F5-9733-4C72-8934-21E555FC933B}] => (Allow) G:\Program Files (x86)\Firefly Studios\Stronghold 2\Stronghold2.exe FirewallRules: [TCP Query User{A4188246-814D-4239-B28B-2AFD1E7899C5}G:\samp server\xampp\mysql\bin\mysqld.exe] => (Allow) G:\samp server\xampp\mysql\bin\mysqld.exe FirewallRules: [UDP Query User{3C1A9987-A487-44F4-AEAA-356E27F0A6C9}G:\samp server\xampp\mysql\bin\mysqld.exe] => (Allow) G:\samp server\xampp\mysql\bin\mysqld.exe FirewallRules: [TCP Query User{CFDC54F6-0ACA-4A9C-A82E-77666B275D91}G:\samp server\xampp\apache\bin\httpd.exe] => (Allow) G:\samp server\xampp\apache\bin\httpd.exe FirewallRules: [UDP Query User{8C15F310-8726-432C-B838-D2B34DAA28FF}G:\samp server\xampp\apache\bin\httpd.exe] => (Allow) G:\samp server\xampp\apache\bin\httpd.exe FirewallRules: [TCP Query User{840F7990-5B63-42E8-9A51-E9E25C1B7A27}G:\samp server\loh\server\samp-server.exe] => (Allow) G:\samp server\loh\server\samp-server.exe FirewallRules: [UDP Query User{61B943BD-553F-4240-9961-47E970CA8C1B}G:\samp server\loh\server\samp-server.exe] => (Allow) G:\samp server\loh\server\samp-server.exe FirewallRules: [TCP Query User{B20AB493-A506-4D5D-A565-A4FCE12066BC}G:\samp server\eigenes script\samp-server.exe] => (Allow) G:\samp server\eigenes script\samp-server.exe FirewallRules: [UDP Query User{1EC4D278-930D-43BD-9687-7EC0936C607A}G:\samp server\eigenes script\samp-server.exe] => (Allow) G:\samp server\eigenes script\samp-server.exe FirewallRules: [{EE73BEB5-ABFB-4CAD-89C5-50EE14696BB5}] => (Allow) G:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{533697EC-59C3-491C-B9DA-EC96313BF7ED}] => (Allow) G:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{C2ABA57F-023F-43BF-A96C-9ADEFE8B258A}] => (Allow) G:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{2FEFC2DD-B156-434F-8139-6CF3481753C1}] => (Allow) G:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{D00AF6DC-A9FB-4550-AC84-783BDC4811D2}] => (Allow) G:\Programme\Steam\steamapps\common\Rollercoaster Tycoon 3 Gold\RCT3plus.exe FirewallRules: [{62246B4D-A948-4F71-B0C7-DAC95221A88B}] => (Allow) G:\Programme\Steam\steamapps\common\Rollercoaster Tycoon 3 Gold\RCT3plus.exe FirewallRules: [{7EAD8D49-5BD3-4B6B-8E36-68D18152749E}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Black Ops\BlackOps.exe FirewallRules: [{1598B165-270B-4EE1-A1F1-3A679E411C18}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Black Ops\BlackOps.exe FirewallRules: [{568B239F-C60D-4401-B486-9B6F1CCB2133}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe FirewallRules: [{41DC2EBA-EA3A-4C75-AB7B-6265C16BA643}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe FirewallRules: [{79DC7177-7766-4D66-B291-5C8D65E8D5A2}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5mp.exe FirewallRules: [{F5B19322-62C5-47A5-AEDB-009685E563A6}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5mp.exe FirewallRules: [{99DF45D5-36B9-4F33-AAA5-B08F397E843C}] => (Allow) G:\Programme\Steam\steamapps\common\Surgeon Simulator 2013\ss2013.exe FirewallRules: [{C6B946D4-5A30-49EA-B5D0-E43A2273043E}] => (Allow) G:\Programme\Steam\steamapps\common\Surgeon Simulator 2013\ss2013.exe FirewallRules: [TCP Query User{363ACE7E-A6C8-4410-AF73-1B25887B4E58}I:\quake iii arena\quake3.exe] => (Block) I:\quake iii arena\quake3.exe FirewallRules: [UDP Query User{F97D878C-1E0B-45A3-AD3C-DAC11FC4B3E2}I:\quake iii arena\quake3.exe] => (Block) I:\quake iii arena\quake3.exe FirewallRules: [TCP Query User{11CF85D0-EF4D-444A-ADDD-B661C97DA80C}H:\quake3\quake3.exe] => (Allow) H:\quake3\quake3.exe FirewallRules: [UDP Query User{51449C22-5DD5-4D7F-B0DB-6C4D7EE55BC0}H:\quake3\quake3.exe] => (Allow) H:\quake3\quake3.exe FirewallRules: [{8ECFF9A6-9697-4F11-A819-E9518CFFDA02}] => (Allow) G:\Programme\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{728E754C-B43E-4B63-84A9-C005651E11BC}] => (Allow) G:\Programme\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{B39D0760-9C7D-4D76-87BB-19B45A48FF69}] => (Allow) G:\Programme\Steam\steamapps\common\Outlast\OutlastLauncher.exe FirewallRules: [{FE6ACB7F-7FBF-45A1-8C35-264875041FAF}] => (Allow) G:\Programme\Steam\steamapps\common\Outlast\OutlastLauncher.exe ==================== Wiederherstellungspunkte ========================= 20-06-2016 22:12:35 Windows Update 21-06-2016 22:49:34 Windows Update 22-06-2016 21:03:43 Windows Update 23-06-2016 21:51:25 Windows Update 25-06-2016 00:16:50 Windows Update 25-06-2016 14:45:10 Windows Update 26-06-2016 00:30:12 Windows Update 26-06-2016 23:14:57 JRT Pre-Junkware Removal 26-06-2016 23:15:58 JRT Pre-Junkware Removal 27-06-2016 00:19:24 Windows Update ==================== Fehlerhafte Geräte im Gerätemanager ============= Name: BlueStacks Hypervisor Description: BlueStacks Hypervisor Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: BstHdDrv Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (06/27/2016 09:18:14 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073418154 Error: (06/27/2016 09:08:20 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/26/2016 11:25:07 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/26/2016 09:45:09 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/26/2016 09:41:39 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/26/2016 09:36:31 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/26/2016 09:15:59 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073418154 Error: (06/26/2016 09:06:07 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/26/2016 09:03:14 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/25/2016 02:49:52 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Systemfehler: ============= Error: (06/27/2016 09:09:14 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC) Error: (06/27/2016 09:08:12 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "Service Installer TrueKey" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 = Das System kann die angegebene Datei nicht finden. Error: (06/27/2016 09:08:12 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "BlueStacks Hypervisor" wurde aufgrund folgenden Fehlers nicht gestartet: %%3 = Das System kann den angegebenen Pfad nicht finden. Error: (06/27/2016 12:19:57 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT) Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Internet Explorer 11 für Windows 7 für x64-basierte Systeme Error: (06/26/2016 11:26:00 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC) Error: (06/26/2016 11:24:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "Service Installer TrueKey" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 = Das System kann die angegebene Datei nicht finden. Error: (06/26/2016 11:24:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "BlueStacks Hypervisor" wurde aufgrund folgenden Fehlers nicht gestartet: %%3 = Das System kann den angegebenen Pfad nicht finden. Error: (06/26/2016 09:46:02 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC) Error: (06/26/2016 09:45:00 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "Service Installer TrueKey" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 = Das System kann die angegebene Datei nicht finden. Error: (06/26/2016 09:45:00 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "BlueStacks Hypervisor" wurde aufgrund folgenden Fehlers nicht gestartet: %%3 = Das System kann den angegebenen Pfad nicht finden. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Xeon(R) CPU E3-1231 v3 @ 3.40GHz Prozentuale Nutzung des RAM: 63% Installierter physikalischer RAM: 8126.95 MB Verfügbarer physikalischer RAM: 2932.94 MB Summe virtueller Speicher: 16252.09 MB Verfügbarer virtueller Speicher: 9637.1 MB ==================== Laufwerke ================================ Drive c: () (Fixed) (Total:223.47 GB) (Free:44.25 GB) NTFS Drive e: () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)] Drive f: () (Fixed) (Total:596.07 GB) (Free:33.89 GB) NTFS Drive g: (Volume) (Fixed) (Total:2794.39 GB) (Free:631.41 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (Size: 2794.5 GB) (Disk ID: 0B12BDBB) Partition: GPT. ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: D3AD8B81) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=223.5 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 4DC435DF) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=596.1 GB) - (Type=07 NTFS) ==================== Ende von Addition.txt ============================ |
27.06.2016, 11:04 | #15 |
/// Winkelfunktion /// TB-Süch-Tiger™ | file:///C:/ProgramData/Avira/Antivirus/IPM/IpmDocument.html Bitte Avira deinstallieren. Das Teil empfehlen wir schon seit Jahren aus mehreren Gründen nicht mehr. Ein Grund ist ne rel. hohe Fehlalarmquote, der zweite Hauptgrund ist, dass die immer noch mit ASK zusammenarbeiten (Avira Suchfunktion geht über ASK). Auch andere Freewareanbieter wie AVG, Avast oder Panda sprangen auf diesen Zug auf; so was ist bei Sicherheitssoftware einfach inakzeptabel. Vgl. Antivirensoftware: Schutz Für Ihre Dateien, Aber Auf Kosten Ihrer Privatsphäre? | Emsisoft Blog Gib Bescheid wenn Avira weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren!
__________________ Logfiles bitte immer in CODE-Tags posten |
Themen zu file:///C:/ProgramData/Avira/Antivirus/IPM/IpmDocument.html |
angezeigt, anleitung, datei, dinge, downloaden, eingeschränkt, entferne, entfernen, erhalte, erkannt, fehler, fenster, file, folge, gelöscht, gestartet, gestern, heute, konnte, natürlich, neustart, offen, probleme, programme, thread |