| |
| |||||||
Log-Analyse und Auswertung: Webseiten werden umgeleitet bei Klick plus WerbungWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
11.09.2016, 10:05
| #1 |
| |  Webseiten werden umgeleitet bei Klick plus Werbung Hallo, ich habe das Problem, dass ich mir irgendetwas auf den Rechner eingefangen habe. Beim Besuch von Internetseiten wechselt beim ersten Klick auf einen Link der gewünschten Seite der Browser auf eine ungewünschte Seite. Dies wird meist von meinem Virenscanner Kaspersky blockiert  aber es nervt doch sehr und ich weiss nicht mehr was ich noch machen kann. Habe die Programme Superantispyware, Spybot S&D versucht. Diese finden anscheinend auch etwas aber das Problem besteht weiterhin. FRST.txt: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 31-08-2016
durchgeführt von Lakenludwig (Administrator) auf LAKENLUDWIG-PC (11-09-2016 10:51:27)
Gestartet von C:\Users\Lakenludwig\Downloads
Geladene Profile: Lakenludwig (Verfügbare Profile: Lakenludwig & DefaultAppPool)
Platform: Windows 10 Pro Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
() C:\Windows\SysWOW64\ASGT.exe
(Advanced Micro Devices) C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe
(Apple Computer, Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(SUPERAntiSpyware.com) F:\Program Files (x86)\Spyware\SASCore64.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Plays.tv, LLC) C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\NCS2\WMIProv\ncs2prov.exe
(TODO: <Company name>) C:\Program Files (x86)\ASUS\GPU TweakII\GPUTweakII.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(TODO: <Company name>) C:\Program Files (x86)\ASUS\GPU TweakII\Monitor.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(SUPERAntiSpyware) F:\Program Files (x86)\Spyware\SUPERANTISPYWARE.EXE
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
() C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Samsung Electronics.) C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.486_none_7640e086266ea227\TiWorker.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8497368 2015-07-07] (Realtek Semiconductor)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [6625672 2016-08-30] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-06-15] (Intel Corporation)
HKLM-x32\...\Run: [PlaysTV] => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe [71440 2016-09-08] (Plays.tv, LLC)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4127488 2015-06-16] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58640 2016-08-23] (Raptr, Inc)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)
HKLM-x32\...\Run: [Adobe_ID0EYTHM] => C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3Tray.exe [1884160 2007-03-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452272 2012-08-31] (CANON INC.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8810200 2016-06-10] (Piriform Ltd)
HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\Run: [SUPERAntiSpyware] => F:\Program Files (x86)\Spyware\SUPERAntiSpyware.exe [7943072 2016-09-06] (SUPERAntiSpyware)
HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\MountPoints2: {034fcecc-938a-11e5-95c4-806e6f6e6963} - "D:\.\Bin\Instv2.exe"
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
AutoConfigURL: [S-1-5-21-105961712-2016900154-967398330-1000] => hxxp://stoppblock.org/wpad.dat?3daeb2c4592413fd337b73f5bbb79c1414812302
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{160961cb-493d-44be-b97e-4df4fb3023ad}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{E3D88831-457C-4627-8975-ED8FEC189422}: [DhcpNameServer] 7.254.254.254
Tcpip\..\Interfaces\{f23388c4-a044-42dd-ae00-ac5da0aeb324}: [DhcpNameServer] 192.168.2.1
ManualProxies: 0hxxp://stoppblock.org/wpad.dat?3daeb2c4592413fd337b73f5bbb79c1414812302
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-105961712-2016900154-967398330-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-105961712-2016900154-967398330-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-04-30] (Oracle Corporation)
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-11-25] (AO Kaspersky Lab)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-30] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-30] (Oracle Corporation)
BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2015-11-25] (AO Kaspersky Lab)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-30] (Oracle Corporation)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\IEExt\ie_plugin.dll [2015-11-25] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll [2015-11-25] (AO Kaspersky Lab)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL [2001-01-22] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Lakenludwig\AppData\Roaming\Mozilla\Firefox\Profiles\op41augj.default
FF Homepage: hxxps://metager.de/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-15] ()
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-30] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-30] (Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> F:\Programme\VLC Player\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-15] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-30] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
FF Extension: (Firefox Hotfix) - C:\Users\Lakenludwig\AppData\Roaming\Mozilla\Firefox\Profiles\op41augj.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-06]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox [2016-05-24]
Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.bing.com/search?FORM=INMODF&PC=IN06&PTAG=IMZ-15696-000013&loc=K%c3%b6ln,Germany&q=sichere+suchmaschine","hxxps://metager.de/"
CHR Profile: C:\Users\Lakenludwig\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Kaspersky Protection) - C:\Users\Lakenludwig\AppData\Local\Google\Chrome\User Data\Default\Extensions\eahebamiopdhefndnmappcihfajigkka [2015-11-25]
CHR Extension: (Click&Clean) - C:\Users\Lakenludwig\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2016-08-05]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Lakenludwig\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Chrome Media Router) - C:\Users\Lakenludwig\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-30]
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - hxxps://chrome.google.com/webstore/detail/eahebamiopdhefndnmappcihfajigkka
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 !SASCORE; F:\Program Files (x86)\Spyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2016-08-30] (Advanced Micro Devices) [Datei ist nicht signiert]
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2015-05-08] ()
R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [48640 2015-05-29] () [Datei ist nicht signiert]
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-04-24] () [Datei ist nicht signiert]
R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [194000 2015-11-25] (Kaspersky Lab ZAO)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1404936 2016-08-02] ()
R2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [Datei ist nicht signiert]
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [382312 2015-11-27] (Digital Wave Ltd.)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [229648 2016-07-31] (EasyAntiCheat Ltd)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2016-04-01] (Macrovision Europe Ltd.) [Datei ist nicht signiert]
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2016-06-21] (Futuremark)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223008 2015-06-02] (Intel Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2122248 2016-07-18] (Electronic Arts)
R2 PlaysService; C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe [32528 2016-09-08] (Plays.tv, LLC)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1750712 2015-06-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2102496 2015-06-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [224712 2015-07-24] (Safer-Networking Ltd.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6889232 2015-12-14] (TeamViewer GmbH)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [814064 2015-12-22] (Tunngle.net GmbH)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [511488 2015-10-30] (Microsoft Corporation)
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe [144640 2015-07-09] (AO Kaspersky Lab)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-01] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 amdacpksd; C:\WINDOWS\system32\drivers\amdacpksd.sys [314392 2016-08-31] (Advanced Micro Devices)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [40720 2015-07-28] (Advanced Micro Devices, Inc.)
S3 AndnetBus; C:\Windows\System32\drivers\lgandnetbus64.sys [20992 2015-01-21] (LG Electronics Inc.)
S3 AndNetDiag; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [30720 2015-01-26] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [37376 2015-01-26] (LG Electronics Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-09] ()
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [118848 2016-07-28] (Advanced Micro Devices)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics Co., Ltd.)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d65x64.sys [559080 2016-04-19] (Intel Corporation)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-09-06] ()
R3 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [24824 2014-10-24] (ASUSTeK Computer Inc.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70512 2015-06-27] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [77728 2016-02-29] (AO Kaspersky Lab)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [181640 2015-11-25] (AO Kaspersky Lab)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [238000 2016-05-24] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [933808 2016-05-24] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [49240 2016-05-24] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [41656 2015-06-06] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [41352 2015-11-25] (AO Kaspersky Lab)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [87984 2016-05-24] (AO Kaspersky Lab)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [102584 2015-06-16] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO)
R1 SASDIFSV; F:\Program Files (x86)\Spyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; F:\Program Files (x86)\Spyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics Co., Ltd.)
R3 tap0901t; C:\Windows\System32\drivers\tap0901t.sys [47736 2015-12-21] (Tunngle.net)
S3 tsusbhub; C:\Windows\System32\drivers\tsusbhub.sys [117248 2010-11-21] (Microsoft Corporation) [Datei ist nicht signiert]
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
U3 idsvc; kein ImagePath
U3 wpcsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-09-11 10:51 - 2016-09-11 10:51 - 02397696 _____ (Farbar) C:\Users\Lakenludwig\Downloads\FRST64.exe
2016-09-11 10:51 - 2016-09-11 10:51 - 00021388 _____ C:\Users\Lakenludwig\Downloads\FRST.txt
2016-09-11 10:51 - 2016-09-11 10:51 - 00000000 ____D C:\FRST
2016-09-07 13:06 - 2016-09-07 13:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2016-09-07 13:05 - 2016-09-07 13:05 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-09-06 22:32 - 2016-09-06 22:32 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2016-09-06 22:31 - 2016-09-06 22:31 - 02623496 _____ (Kaspersky Lab) C:\Users\Lakenludwig\Downloads\kss16.0.0.1344mlg_10009.exe
2016-09-06 22:25 - 2016-09-10 22:25 - 00000540 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 26d8ced4-01f9-466a-abb9-2dc5272d9616.job
2016-09-06 22:25 - 2016-09-07 13:08 - 00000540 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 4b765044-a9d5-4b28-8e8d-1c0a920d0464.job
2016-09-06 22:25 - 2016-09-06 22:25 - 00003790 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task 4b765044-a9d5-4b28-8e8d-1c0a920d0464
2016-09-06 22:25 - 2016-09-06 22:25 - 00003708 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task 26d8ced4-01f9-466a-abb9-2dc5272d9616
2016-09-06 22:24 - 2016-09-06 22:24 - 00000882 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2016-09-06 22:24 - 2016-09-06 22:24 - 00000000 ____D C:\Users\Lakenludwig\AppData\Roaming\SUPERAntiSpyware.com
2016-09-06 22:24 - 2016-09-06 22:24 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2016-09-06 22:24 - 2016-09-06 22:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2016-09-06 22:22 - 2016-09-06 22:23 - 26663080 _____ (SUPERAntiSpyware) C:\Users\Lakenludwig\Downloads\SUPERAntiSpyware.exe
2016-09-06 16:49 - 2016-09-06 16:49 - 00000000 _____ C:\autoexec.bat
2016-09-06 16:48 - 2016-09-06 16:48 - 03516080 _____ (Enigma Software Group USA, LLC.) C:\Users\Lakenludwig\Downloads\SpyHunter-Installer (1).exe
2016-09-06 16:48 - 2016-09-06 16:48 - 00022704 _____ C:\WINDOWS\system32\Drivers\EsgScanner.sys
2016-09-05 21:47 - 2016-09-05 21:47 - 03516080 _____ (Enigma Software Group USA, LLC.) C:\Users\Lakenludwig\Downloads\SpyHunter-Installer.exe
2016-09-03 09:42 - 2016-09-03 09:42 - 00000000 ____D C:\Users\Lakenludwig\Desktop\German Top 100 Single Charts 30.10.2015 - Powered
2016-09-03 09:42 - 2016-09-03 09:42 - 00000000 ____D C:\Users\Lakenludwig\Desktop\German Top 100 Single Charts (2015) - Powered by S
2016-09-03 09:03 - 2016-09-03 09:21 - 00000000 ____D C:\Users\Lakenludwig\Desktop\Mash 2016
2016-08-31 20:40 - 2016-08-31 20:40 - 32550032 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 26633872 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 15721104 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 14312080 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 08864688 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2016-08-31 20:40 - 2016-08-31 20:40 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2016-08-31 20:40 - 2016-08-31 20:40 - 02139792 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 01321104 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00987280 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00732336 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2016-08-31 20:40 - 2016-08-31 20:40 - 00732336 _____ C:\WINDOWS\system32\atiapfxx.blb
2016-08-31 20:40 - 2016-08-31 20:40 - 00513680 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2016-08-31 20:40 - 2016-08-31 20:40 - 00451720 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00394896 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2016-08-31 20:40 - 2016-08-31 20:40 - 00342152 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe
2016-08-31 20:40 - 2016-08-31 20:40 - 00284296 _____ C:\WINDOWS\system32\dgtrayicon.exe
2016-08-31 20:40 - 2016-08-31 20:40 - 00279696 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00279184 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2016-08-31 20:40 - 2016-08-31 20:40 - 00267920 _____ C:\WINDOWS\system32\GameManager64.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00262288 _____ C:\WINDOWS\system32\clinfo.exe
2016-08-31 20:40 - 2016-08-31 20:40 - 00260752 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00226448 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00223368 _____ C:\WINDOWS\system32\atieah64.exe
2016-08-31 20:40 - 2016-08-31 20:40 - 00201360 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2016-08-31 20:40 - 2016-08-31 20:40 - 00194704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00161432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00151696 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00129168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00127120 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00122512 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00120384 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00115856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00110736 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00103056 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00102672 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00101520 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00100496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00100496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00071816 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00065168 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00061576 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00060560 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe
2016-08-31 20:40 - 2016-08-31 20:40 - 00058512 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00052880 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2016-08-31 20:40 - 2016-08-31 20:40 - 00013456 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 48811152 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 27481232 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 08828560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdvlk64.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 08653760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 08620176 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 07085712 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdvlk32.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 07045344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 06947984 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 02370704 _____ C:\WINDOWS\system32\amdoclvp9lib64.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 02281104 _____ C:\WINDOWS\SysWOW64\amdoclvp9lib32.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 01829520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 00743568 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 00619152 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 00475632 _____ C:\WINDOWS\system32\amdmiracast.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 00314392 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdacpksd.sys
2016-08-31 20:39 - 2016-08-31 20:39 - 00241296 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 00214160 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 00193680 _____ C:\WINDOWS\system32\amdhdl64.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 00173712 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 00156248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 00152096 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 00135920 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 00120376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 00105616 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 00102672 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 00096400 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 00075920 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 00060040 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 00059536 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll
2016-08-31 20:39 - 2016-08-31 20:39 - 00047760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2016-08-31 18:14 - 2016-08-31 18:22 - 156518399 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.77.zip
2016-08-31 18:14 - 2016-08-31 18:15 - 156768508 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.78.zip
2016-08-31 18:14 - 2016-08-31 18:15 - 154380213 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.79.zip
2016-08-31 18:09 - 2016-08-31 18:16 - 163348532 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.81.zip
2016-08-31 18:09 - 2016-08-31 18:16 - 158261379 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.80.zip
2016-08-31 18:08 - 2016-08-31 18:09 - 159668011 _____ C:\Users\Lakenludwig\Downloads\muyb--vol.82.zip
2016-08-31 18:08 - 2016-08-31 18:09 - 157166877 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.83.zip
2016-08-31 17:55 - 2016-08-31 18:02 - 161361818 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.84.zip
2016-08-31 17:55 - 2016-08-31 17:57 - 332248144 _____ C:\Users\Lakenludwig\Downloads\mash-up-your-movies.zip
2016-08-31 17:55 - 2016-08-31 17:56 - 160283817 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.85.zip
2016-08-31 17:54 - 2016-08-31 17:56 - 159007209 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.86.zip
2016-08-31 17:39 - 2016-08-31 17:47 - 164432815 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.87.zip
2016-08-31 17:38 - 2016-08-31 17:47 - 179562315 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.90.zip
2016-08-31 17:38 - 2016-08-31 17:47 - 178919836 _____ C:\Users\Lakenludwig\Downloads\muyb--vol.89.zip
2016-08-31 17:38 - 2016-08-31 17:46 - 159638224 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.88.zip
2016-08-31 16:36 - 2016-08-31 16:36 - 175027484 _____ C:\Users\Lakenludwig\Downloads\muyb--vol.91.zip
2016-08-31 16:35 - 2016-08-31 16:50 - 316168295 _____ C:\Users\Lakenludwig\Downloads\djmorgoth-mashupyourbootzvol.7.zip
2016-08-31 16:17 - 2016-08-31 16:18 - 333646110 _____ C:\Users\Lakenludwig\Downloads\muyb-bestof2014-trackz.zip
2016-08-31 16:16 - 2016-08-31 16:25 - 166821784 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.92.zip
2016-08-31 16:12 - 2016-08-31 16:20 - 168646709 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.94.zip
2016-08-31 16:12 - 2016-08-31 16:12 - 178064276 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.93.zip
2016-08-31 16:11 - 2016-08-31 16:20 - 175218136 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.95.zip
2016-08-31 16:11 - 2016-08-31 16:19 - 161135494 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.96.zip
2016-08-30 22:33 - 2016-08-31 18:35 - 00000000 ____D C:\Users\Lakenludwig\Desktop\mashs
2016-08-30 22:27 - 2016-08-30 22:34 - 170591938 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.98.zip
2016-08-30 22:27 - 2016-08-30 22:28 - 160424678 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.97.zip
2016-08-30 22:04 - 2016-08-30 22:28 - 513383073 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.100-the-past-part-2.zip
2016-08-30 22:04 - 2016-08-30 22:28 - 489081768 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.100-the-past-part-1.zip
2016-08-30 22:03 - 2016-08-30 22:13 - 175080446 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.99.zip
2016-08-30 22:00 - 2016-08-30 22:01 - 156903081 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.100-the-present.zip
2016-08-30 21:59 - 2016-08-30 22:08 - 180544085 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.100-the-future.zip
2016-08-30 21:58 - 2016-08-30 22:07 - 184525656 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.102.zip
2016-08-30 21:58 - 2016-08-30 22:07 - 181645016 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.101.zip
2016-08-30 21:50 - 2016-08-30 21:58 - 00000292 _____ C:\Users\Lakenludwig\Downloads\muyb-vol.103.zip
2016-08-30 21:47 - 2016-08-30 21:48 - 161226458 _____ C:\Users\Lakenludwig\Downloads\muyb-bestof2015-mix.zip
2016-08-30 17:24 - 2016-08-30 17:24 - 00000000 ____D C:\WINDOWS\Panther
2016-08-30 17:11 - 2016-08-30 17:11 - 00001408 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2016-08-30 17:11 - 2016-08-30 17:11 - 00000988 _____ C:\Users\Public\Desktop\Free YouTube Download.lnk
2016-08-30 17:10 - 2016-08-30 17:10 - 60894040 _____ (Digital Wave Ltd ) C:\Users\Lakenludwig\Downloads\FreeYTVDownloaderBase.exe
2016-08-30 16:48 - 2016-08-30 16:48 - 02412544 _____ C:\WINDOWS\system32\amdacpusl.pdb
2016-08-30 16:39 - 2016-08-30 16:39 - 00364544 _____ (Advanced Micro Devices) C:\WINDOWS\system32\amdacpusl.dll
2016-08-30 16:39 - 2016-08-30 16:39 - 00306176 _____ C:\WINDOWS\system32\amdacpusl.pdb.pub
2016-08-30 16:39 - 2016-08-30 16:39 - 00248832 _____ (Advanced Micro Devices) C:\WINDOWS\SysWOW64\amdacpusl.dll
2016-08-27 09:49 - 2016-08-27 09:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories
2016-08-27 09:49 - 2016-08-27 09:49 - 00000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2016-08-23 14:33 - 2016-08-23 14:33 - 00000000 ____D C:\Users\Lakenludwig\Documents\Rockstar Games
2016-08-23 14:33 - 2016-08-23 14:33 - 00000000 ____D C:\Users\Lakenludwig\AppData\Local\Rockstar Games
2016-08-23 14:33 - 2016-08-23 14:33 - 00000000 ____D C:\Program Files\Rockstar Games
2016-08-23 14:33 - 2016-08-23 14:33 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2016-08-21 16:18 - 2016-08-21 16:18 - 00000164 _____ C:\Users\Lakenludwig\Downloads\donations (1).csv
2016-08-21 14:46 - 2016-08-21 14:46 - 39608231 _____ C:\Users\Lakenludwig\Downloads\CLRBrowserSourcePlugin-20140909x86 (1).zip
2016-08-21 14:33 - 2016-08-21 14:33 - 00001972 _____ C:\Users\Public\Desktop\SrpnFiles.lnk
2016-08-21 14:33 - 2016-08-21 14:33 - 00000000 ____D C:\Users\Lakenludwig\AppData\Roaming\SpringFiles
2016-08-21 14:33 - 2016-08-21 14:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\SrpnFiles
2016-08-21 14:33 - 2016-08-21 14:33 - 00000000 ____D C:\Program Files (x86)\SrpnFiles
2016-08-21 14:31 - 2016-08-21 14:31 - 05582848 _____ C:\Users\Lakenludwig\Downloads\clrbrowser4_repack.zip.iso
2016-08-21 14:27 - 2016-08-21 14:27 - 01118920 _____ (Microsoft Corporation) C:\Users\Lakenludwig\Downloads\NDP452-KB2901954-Web.exe
2016-08-21 14:25 - 2016-08-21 14:25 - 07195928 _____ (Microsoft Corporation) C:\Users\Lakenludwig\Downloads\vcredist_x64.exe
2016-08-21 14:25 - 2016-08-21 14:25 - 06505592 _____ (Microsoft Corporation) C:\Users\Lakenludwig\Downloads\vcredist_x86.exe
2016-08-21 14:25 - 2016-08-21 14:25 - 01422408 _____ (Microsoft Corporation) C:\Users\Lakenludwig\Downloads\vcredist_arm.exe
2016-08-21 14:23 - 2016-08-21 14:23 - 00000000 ____D C:\Users\Lakenludwig\Desktop\CLRBrowserSourcePlugin
2016-08-21 14:20 - 2016-08-21 14:21 - 39608231 _____ C:\Users\Lakenludwig\Downloads\CLRBrowserSourcePlugin-20140909x86.zip
2016-08-21 14:14 - 2013-08-25 07:26 - 00000000 ____D C:\Users\Lakenludwig\Downloads\CLRHostPlugin
2016-08-21 14:14 - 2013-08-25 07:24 - 00143872 _____ C:\Users\Lakenludwig\Downloads\CLRHostPlugin.dll
2016-08-21 14:07 - 2016-08-21 14:13 - 64720538 _____ C:\Users\Lakenludwig\Downloads\CLRBrowserSourcePlugin3.7z
2016-08-21 13:55 - 2016-08-21 13:55 - 00000142 _____ C:\Users\Lakenludwig\Downloads\donations.csv
2016-08-20 12:18 - 2016-08-20 12:18 - 00527423 _____ ( ) C:\Users\Lakenludwig\Downloads\Lame_v3.99.3_for_Windows.exe
2016-08-20 12:11 - 2016-09-03 09:39 - 00000000 ____D C:\Users\Lakenludwig\AppData\Roaming\Audacity
2016-08-20 12:11 - 2016-08-20 12:11 - 00000709 _____ C:\Users\Public\Desktop\Audacity.lnk
2016-08-20 12:11 - 2016-08-20 12:11 - 00000709 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2016-08-20 12:11 - 2016-08-20 12:11 - 00000000 ____D C:\Users\Lakenludwig\AppData\Local\Audacity
2016-08-20 12:10 - 2016-08-20 12:10 - 01474568 _____ C:\Users\Lakenludwig\Downloads\Audacity - CHIP-Installer.exe
2016-08-19 14:30 - 2016-08-19 14:30 - 00000753 _____ C:\Users\Lakenludwig\Desktop\Xsplit Videos - Verknüpfung.lnk
2016-08-19 13:37 - 2016-09-11 01:18 - 00000000 ____D C:\Users\Lakenludwig\AppData\Roaming\OBS
2016-08-19 13:37 - 2016-09-05 16:45 - 00000000 ____D C:\Program Files (x86)\OBS
2016-08-19 13:37 - 2016-08-21 16:28 - 00001004 _____ C:\Users\Lakenludwig\Desktop\Open Broadcaster Software.lnk
2016-08-19 13:37 - 2016-08-19 13:37 - 07472712 _____ (obsproject.com) C:\Users\Lakenludwig\Downloads\OBS_0_658b_Installer.exe
2016-08-19 13:37 - 2016-08-19 13:37 - 01474568 _____ C:\Users\Lakenludwig\Downloads\Open Broadcaster Software - CHIP-Installer.exe
2016-08-19 13:37 - 2016-08-19 13:37 - 00000000 ____D C:\Users\Lakenludwig\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2016-08-19 13:18 - 2016-08-19 13:18 - 00000000 ____D C:\Users\Lakenludwig\AppData\Roaming\TideSDK
2016-08-19 13:18 - 2016-08-19 13:18 - 00000000 ____D C:\Users\Lakenludwig\AppData\Roaming\Apple Computer
2016-08-19 13:18 - 2016-08-19 13:18 - 00000000 ____D C:\Users\Lakenludwig\AppData\Local\Apple Computer
2016-08-19 13:17 - 2016-08-19 13:17 - 14163288 _____ () C:\Users\Lakenludwig\Downloads\dt_1.4.0.0_installer.exe
2016-08-19 13:17 - 2016-08-19 13:17 - 00000934 _____ C:\Users\Public\Desktop\Donation-Tracker.lnk
2016-08-19 13:17 - 2016-08-19 13:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Donation-Tracker
2016-08-18 11:44 - 2016-08-18 11:44 - 27765912 _____ C:\Users\Lakenludwig\Downloads\xp68-win-mx720-5_65-ea32_2.exe
2016-08-18 11:42 - 2016-08-18 11:42 - 00002082 _____ C:\Users\Public\Desktop\Canon IJ Network Tool.lnk
2016-08-18 11:41 - 2016-08-18 11:41 - 40324736 _____ C:\Users\Lakenludwig\Downloads\mp68-win-mx720-1_01-ea32_2.exe
2016-08-17 14:34 - 2016-08-17 14:34 - 102615032 _____ C:\Users\Lakenludwig\Downloads\MEI_Consumer_V11051189.zip
2016-08-17 14:34 - 2016-08-17 14:34 - 08651467 _____ C:\Users\Lakenludwig\Downloads\MAXIMUS-VIII-RANGER-ASUS-1902.zip
2016-08-17 14:18 - 2016-08-17 14:18 - 00292184 _____ (Microsoft Corporation) C:\Users\Lakenludwig\Downloads\dxwebsetup.exe
2016-08-17 14:18 - 2016-08-17 14:18 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2016-08-17 00:07 - 2016-08-22 16:03 - 00000000 ____D C:\WINDOWS\Minidump
2016-08-16 10:11 - 2016-08-16 11:00 - 00000000 ____D C:\Users\Lakenludwig\Documents\MAGIX Downloads
2016-08-16 10:11 - 2016-08-16 10:14 - 00000000 ____D C:\Users\Lakenludwig\AppData\Roaming\MAGIX
2016-08-16 10:11 - 2016-08-16 10:11 - 00000000 ____D C:\Users\Public\Documents\MAGIX
2016-08-16 10:11 - 2016-08-16 10:11 - 00000000 ____D C:\Users\Lakenludwig\Documents\MAGIX_MusicEditor
2016-08-16 10:11 - 2016-08-16 10:11 - 00000000 ____D C:\Users\Lakenludwig\AppData\Local\Xara
2016-08-16 10:11 - 2016-08-16 10:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
2016-08-16 10:11 - 2016-08-16 10:11 - 00000000 ____D C:\Program Files\Common Files\MAGIX Shared
2016-08-16 10:11 - 2016-08-16 10:11 - 00000000 ____D C:\Program Files\Common Files\MAGIX Services
2016-08-16 10:10 - 2016-08-16 10:14 - 00000000 ____D C:\ProgramData\MAGIX
2016-08-16 10:10 - 2016-08-16 10:13 - 00000000 ___RD C:\Users\Lakenludwig\Documents\MAGIX
2016-08-16 10:10 - 2016-08-16 10:10 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0
2016-08-16 10:10 - 2016-08-16 10:10 - 00000000 ____D C:\Program Files (x86)\MAGIX
2016-08-16 10:01 - 2016-08-16 10:01 - 00000000 ____D C:\Users\Lakenludwig\Documents\Adobe
2016-08-16 09:58 - 2008-08-05 18:01 - 00031417 _____ C:\Users\Lakenludwig\Desktop\XF-AdobeMasterCS3-KG.exe
2016-08-15 23:45 - 2016-08-15 23:45 - 00000000 ____D C:\Users\Lakenludwig\Documents\Soundaufnahmen
2016-08-15 14:21 - 2016-08-15 14:21 - 00001223 _____ C:\Users\Lakenludwig\Desktop\XSplit Videos - email von mir - Verknüpfung.lnk
2016-08-15 14:15 - 2016-08-15 14:15 - 00002261 _____ C:\Users\Lakenludwig\Desktop\Dxtory - CHIP Installer.lnk
2016-08-15 14:14 - 2016-08-15 14:14 - 00000000 ____D C:\Users\Lakenludwig\AppData\Local\Logitech® Webcam-Software
2016-08-15 14:11 - 2016-08-15 14:11 - 00000000 ____D C:\ProgramData\LogiShrd
2016-08-15 14:10 - 2016-08-15 14:11 - 00000000 ____D C:\Program Files\Common Files\logishrd
2016-08-15 14:10 - 2016-08-15 14:10 - 74520472 _____ (Logitech, Inc.) C:\Users\Lakenludwig\Downloads\lws280.exe
2016-08-15 14:10 - 2016-08-15 14:10 - 00001713 _____ C:\Users\Public\Desktop\Logitech Webcam Software .lnk
2016-08-15 14:10 - 2016-08-15 14:10 - 00000000 ____D C:\Users\Lakenludwig\AppData\Roaming\Leadertech
2016-08-15 14:10 - 2016-08-15 14:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2016-08-15 14:10 - 2016-08-15 14:10 - 00000000 ____D C:\Program Files (x86)\Logitech
2016-08-15 10:58 - 2016-08-15 10:58 - 00000000 ____D C:\Users\Lakenludwig\AppData\Local\SplitMediaLabs
2016-08-15 10:54 - 2016-08-15 10:54 - 01474568 _____ C:\Users\Lakenludwig\Downloads\Dxtory - CHIP-Installer.exe
2016-08-14 17:57 - 2016-08-14 17:57 - 00000000 ____D C:\Users\Lakenludwig\AppData\Local\CrashReportClient
2016-08-13 13:54 - 2016-08-13 13:54 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2016-08-13 13:54 - 2016-08-13 13:54 - 00000000 _SHDL C:\Users\DefaultAppPool\Vorlagen
2016-08-13 13:54 - 2016-08-13 13:54 - 00000000 _SHDL C:\Users\DefaultAppPool\Startmenü
2016-08-13 13:54 - 2016-08-13 13:54 - 00000000 _SHDL C:\Users\DefaultAppPool\Netzwerkumgebung
2016-08-13 13:54 - 2016-08-13 13:54 - 00000000 _SHDL C:\Users\DefaultAppPool\Lokale Einstellungen
2016-08-13 13:54 - 2016-08-13 13:54 - 00000000 _SHDL C:\Users\DefaultAppPool\Eigene Dateien
2016-08-13 13:54 - 2016-08-13 13:54 - 00000000 _SHDL C:\Users\DefaultAppPool\Druckumgebung
2016-08-13 13:54 - 2016-08-13 13:54 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Videos
2016-08-13 13:54 - 2016-08-13 13:54 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Musik
2016-08-13 13:54 - 2016-08-13 13:54 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Bilder
2016-08-13 13:54 - 2016-08-13 13:54 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-08-13 13:54 - 2016-08-13 13:54 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Verlauf
2016-08-13 13:54 - 2016-08-13 13:54 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Anwendungsdaten
2016-08-13 13:54 - 2016-08-13 13:54 - 00000000 _SHDL C:\Users\DefaultAppPool\Anwendungsdaten
2016-08-13 13:54 - 2016-08-13 13:54 - 00000000 ____D C:\Users\DefaultAppPool
2016-08-13 13:54 - 2016-07-24 15:00 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Media Center Programs
2016-08-13 10:25 - 2016-08-13 10:25 - 00000000 ____D C:\ProgramData\ATI
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-09-11 10:46 - 2016-04-27 07:48 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-09-11 10:46 - 2015-11-25 17:28 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-09-11 10:46 - 2015-11-25 17:17 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2016-09-11 10:46 - 2015-11-25 17:11 - 00001144 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-11 10:46 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-09-11 10:46 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-09-11 01:17 - 2015-12-02 16:23 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-09-11 01:03 - 2015-11-25 17:11 - 00001148 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-10 21:16 - 2015-11-25 17:40 - 00000000 ____D C:\Program Files (x86)\Steam
2016-09-10 21:14 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-09-10 10:36 - 2016-07-24 14:58 - 02084964 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-09-10 10:36 - 2016-04-27 07:13 - 00888060 _____ C:\WINDOWS\system32\perfh007.dat
2016-09-10 10:36 - 2016-04-27 07:13 - 00197144 _____ C:\WINDOWS\system32\perfc007.dat
2016-09-09 19:22 - 2016-07-03 11:38 - 00000000 ____D C:\Users\Lakenludwig\AppData\Roaming\PlaysTV
2016-09-09 17:40 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-09 17:34 - 2016-07-24 16:56 - 00000000 ____D C:\Users\Lakenludwig\AppData\Roaming\Raptr
2016-09-07 13:11 - 2015-11-25 17:39 - 00000000 ____D C:\Users\Lakenludwig\AppData\Local\AMD
2016-09-07 13:04 - 2015-11-25 17:12 - 00000000 ____D C:\Program Files\AMD
2016-09-07 13:03 - 2015-11-25 17:37 - 00000000 ____D C:\AMD
2016-09-06 22:41 - 2016-07-24 14:58 - 00000000 ____D C:\Users\Lakenludwig
2016-09-06 22:25 - 2015-12-14 19:53 - 00000000 ____D C:\Users\Lakenludwig\AppData\Roaming\UseNeXT
2016-09-06 18:13 - 2016-06-10 19:07 - 00000980 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-09-06 18:13 - 2015-11-25 17:11 - 00002264 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-03 09:26 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-09-03 09:26 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-31 20:40 - 2016-08-11 17:46 - 00149984 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2016-08-31 20:40 - 2016-08-11 17:45 - 09110856 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2016-08-31 20:40 - 2016-07-25 22:53 - 00875152 _____ (AMD) C:\WINDOWS\system32\coinst_16.30.dll
2016-08-31 20:40 - 2016-07-25 22:53 - 00233104 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2016-08-31 20:40 - 2016-07-25 22:53 - 00013456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2016-08-31 20:40 - 2016-04-22 17:52 - 26719376 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2016-08-31 20:40 - 2016-04-22 17:52 - 00510096 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2016-08-31 20:40 - 2016-04-22 17:50 - 10970120 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2016-08-31 20:40 - 2016-04-22 17:50 - 10285464 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2016-08-31 20:40 - 2016-04-22 17:50 - 09311368 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2016-08-31 20:40 - 2016-04-22 17:50 - 01548512 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2016-08-31 20:40 - 2016-04-22 17:50 - 01273584 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2016-08-31 20:40 - 2016-04-22 17:50 - 00181064 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2016-08-31 20:40 - 2015-06-23 04:08 - 07234888 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2016-08-31 20:40 - 2015-06-23 04:08 - 00134448 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2016-08-31 20:40 - 2015-06-23 03:11 - 00987280 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2016-08-31 20:40 - 2015-06-23 03:10 - 00168592 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2016-08-31 20:39 - 2016-07-24 16:30 - 38258312 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2016-08-31 20:39 - 2016-07-24 16:30 - 21633168 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2016-08-31 20:39 - 2015-06-23 04:09 - 00135408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2016-08-30 17:25 - 2016-07-24 15:54 - 00000000 ____D C:\Windows.old
2016-08-30 17:15 - 2015-12-02 19:01 - 00000000 ____D C:\Users\Lakenludwig\AppData\Roaming\DVDVideoSoft
2016-08-30 17:11 - 2015-12-02 19:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2016-08-23 20:00 - 2016-07-31 12:27 - 00383736 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2016-08-21 14:26 - 2015-11-25 17:13 - 00000000 ____D C:\ProgramData\Package Cache
2016-08-21 14:23 - 2014-09-09 23:12 - 00160256 _____ C:\Users\Lakenludwig\Desktop\CLRHost.Interop.dll
2016-08-21 14:23 - 2014-09-09 23:12 - 00151040 _____ C:\Users\Lakenludwig\Desktop\CLRBrowserSourcePlugin.dll
2016-08-20 01:48 - 2015-11-26 12:05 - 00000000 ____D C:\Users\Lakenludwig\AppData\Roaming\vlc
2016-08-19 14:25 - 2016-03-02 12:40 - 00000000 ____D C:\Users\Lakenludwig\AppData\Local\Ubisoft Game Launcher
2016-08-18 11:42 - 2015-11-26 11:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2016-08-18 11:42 - 2015-11-26 11:17 - 00000000 ____D C:\Program Files (x86)\Canon
2016-08-18 11:42 - 2015-10-30 09:24 - 00000000 __RSD C:\WINDOWS\Media
2016-08-17 23:49 - 2016-02-09 15:56 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2016-08-17 14:29 - 2016-07-24 11:32 - 00000000 ____D C:\Windows10Upgrade
2016-08-17 14:18 - 2015-11-25 17:25 - 00000000 ____D C:\Temp
2016-08-17 11:40 - 2015-11-25 17:31 - 00000022 _____ C:\WINDOWS\GPU-Z.INI
2016-08-17 00:05 - 2016-04-26 22:44 - 02376744 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-08-16 10:01 - 2015-11-26 20:47 - 00000000 ____D C:\Users\Lakenludwig\AppData\Roaming\Adobe
2016-08-16 09:53 - 2016-04-01 11:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS3
2016-08-16 09:53 - 2016-01-05 21:34 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-08-15 10:57 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-08-14 17:57 - 2016-07-31 12:27 - 00000000 ____D C:\Users\Lakenludwig\AppData\Local\UnrealEngine
2016-08-14 17:08 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-08-12 15:05 - 2016-04-27 07:55 - 00000000 __RHD C:\Users\Public\AccountPictures
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-09-06 16:42
==================== Ende von FRST.txt
============================
Code:
ATTFilter Addition.txt:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 31-08-2016
durchgeführt von Lakenludwig (11-09-2016 10:51:43)
Gestartet von C:\Users\Lakenludwig\Downloads
Windows 10 Pro Version 1511 (X64) (2016-07-24 13:05:34)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-105961712-2016900154-967398330-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-105961712-2016900154-967398330-503 - Limited - Disabled)
Gast (S-1-5-21-105961712-2016900154-967398330-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-105961712-2016900154-967398330-1002 - Limited - Enabled)
Lakenludwig (S-1-5-21-105961712-2016900154-967398330-1000 - Administrator - Enabled) => C:\Users\Lakenludwig
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Kaspersky Internet Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {A16C3F68-9280-E053-1818-342707FECF4D}
AS: Kaspersky Internet Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7 Days to Die (HKLM\...\Steam App 251570) (Version: - The Fun Pimps)
7-Zip 15.14 (x64) (HKLM\...\7-Zip) (Version: 15.14 - Igor Pavlov)
ACP Application (Version: 2016.0321.0955.20 - Advanced Micro Devices, Inc.) Hidden
ACP Application (Version: 2016.0708.1501.43 - Advanced Micro Devices, Inc.) Hidden
ACP Application (Version: 2016.0830.1638.45 - Advanced Micro Devices, Inc.) Hidden
Add or Remove Adobe Creative Suite 3 Master Collection (HKLM-x32\...\Adobe_4dcfd9b7e901b57f81f667144603236) (Version: 1.0 - Adobe Systems Incorporated)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
AHV content for Acrobat and Flash (x32 Version: 1 - Adobe Systems Incorporated) Hidden
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
ARCADE GAME SERIES: GALAGA (HKLM\...\Steam App 403430) (Version: - BANDAI NAMCO Studios Inc.)
ARK: Survival Evolved (HKLM\...\Steam App 346110) (Version: - Studio Wildcard)
Ashampoo Burning Studio 2015 v.1.15.2 (HKLM-x32\...\{91B33C97-21E3-DF34-9630-2EE80DDE1648}_is1) (Version: 1.15.2 - Ashampoo GmbH & Co. KG)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.26.1 - Asmedia Technology)
ASUS GPU TweakII (HKLM-x32\...\InstallShield_{0075AAC2-EA9F-490E-83F7-5D5F81EB2A43}) (Version: 1.3.2.2 - ASUSTek COMPUTER INC.)
ASUS GPU TweakII (x32 Version: 1.3.2.2 - ASUSTek COMPUTER INC.) Hidden
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.031 - ASUSTek Computer Inc.)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.2.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon MX720 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX720_series) (Version: 1.01 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.6.1 - Canon Inc.)
Catalyst Control Center Next Localization BR (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2015.1129.2307.41591 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2016.0830.1646.28334 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.19 - Piriform)
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6021.5000 - Microsoft Corporation)
Creatures Of Darkness (x32 Version: 4.4.41 - Screaming Bee Inc.) Hidden
Creatures of Darkness Voices for MorphVOX (HKLM-x32\...\{00e68eab-1128-4d89-94ae-a83b286afd69}) (Version: 4.4.41 - Screaming Bee Inc.)
Dead by Daylight (HKLM\...\Steam App 381210) (Version: - Behaviour Digital Inc.)
Donation-Tracker (HKLM-x32\...\Donation-Tracker) (Version: - )
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Europa Universalis IV (HKLM-x32\...\Steam App 236850) (Version: - Paradox Development Studio)
Far Cry Primal (HKLM-x32\...\Uplay Install 2010) (Version: - Ubisoft)
Fragmented (HKLM\...\Steam App 441790) (Version: - Above and Beyond Technologies)
Free YouTube Download (HKLM-x32\...\Free YouTube Download_is1) (Version: 4.1.27.822 - Digital Wave Ltd)
Free YouTube to MP3 Converter Classic (HKLM-x32\...\Free YouTube to MP3 Converter Classic_is1) (Version: 3.12.71.1127 - DVDVideoSoft Ltd.)
Furry Voices (x32 Version: 4.4.41 - Screaming Bee Inc.) Hidden
Furry Voices for MorphVOX (HKLM-x32\...\{65a3b13d-790f-43f7-b666-0d4981ed7960}) (Version: 4.4.41 - Screaming Bee Inc.)
Futuremark SystemInfo (HKLM-x32\...\{C7FF0DD8-90C1-4612-B41F-0CA013062953}) (Version: 4.47.597.0 - Futuremark)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM\...\Steam App 271590) (Version: - Rockstar North)
Half dead (HKLM\...\Steam App 434730) (Version: - Room710Games)
Hearts of Iron IV (HKLM\...\Steam App 394360) (Version: - Paradox Development Studios)
IL-2 Sturmovik Series Ultimate Edition (HKLM-x32\...\InstallShield_{51F24145-A833-4BD5-AA38-AFC5268928E5}) (Version: 1.00.0000 - Ihr Firmenname)
IL-2 Sturmovik Series Ultimate Edition (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation)
Intel(R) Network Connections 20.2.4001.0 (HKLM\...\PROSetDX) (Version: 20.2.4001.0 - Intel)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.0.36 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}) (Version: 16.0.0.614 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 16.0.0.614 - Kaspersky Lab) Hidden
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
LG PC Suite (HKLM-x32\...\LG PC Suite) (Version: 5.3.25.20150529 - LG Electronics)
LG United Mobile Drivers (HKLM-x32\...\{4DE95ED9-0A29-4C4F-8463-35857CF9BA36}) (Version: 3.14.1 - LG Electronics)
Logitech Webcam-Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.80 - Logitech Inc.)
Looterkings (HKLM\...\Steam App 397310) (Version: - Looterkings)
MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{B7802BC1-5F76-48D2-A622-98195BD50B87}) (Version: 7.0.2.6 - MAGIX Software GmbH)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden
MAGIX Video deluxe 2016 Premium (HKLM\...\MX.{B9D9D873-ADDA-4D0C-B691-0F323C6DD62A}) (Version: 15.0.0.62 - MAGIX Software GmbH)
MAGIX Video deluxe 2016 Premium (Version: 15.0.0.62 - MAGIX Software GmbH) Hidden
Making History II: The War of the World (HKLM\...\Steam App 46770) (Version: - Muzzy Lane Software)
Microsoft Office XP Professional mit FrontPage (HKLM-x32\...\{90280407-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.2701.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{3c3aafc8-d898-43ec-998f-965ffdae065a}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MorphVOX Pro (HKLM-x32\...\{DE289787-7ECA-4BED-9D8C-99FAC407E3D6}) (Version: 4.3.13 - Screaming Bee)
Mozilla Firefox 47.0 (x64 de) (HKLM\...\Mozilla Firefox 47.0 (x64 de)) (Version: 47.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0 - Mozilla)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.9.1.62656 - Electronic Arts, Inc.)
Parkitect (HKLM\...\Steam App 453090) (Version: - Texel Raptor)
ParkitectNexus Client (HKLM-x32\...\{9E4A3C1A-F432-408A-A395-615E0CFDEA40}) (Version: 2.1.5980.38291 - ParkitectNexus, Tim Potze)
PDF Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
PlaysTV (HKLM-x32\...\PlaysTV) (Version: 1.14.0-r116157-release - Plays.tv, LLC)
Prison Architect (HKLM-x32\...\Steam App 233450) (Version: - Introversion Software)
Raptr (HKLM-x32\...\Raptr) (Version: 5.2.6-r115593-release - Raptr, Inc)
RarZilla Free Unrar (HKLM-x32\...\RarZilla Free Unrar) (Version: 7 - Philipp Winterberg)
RCT3 Soaked (HKLM-x32\...\{EA926717-CE5A-4CB4-AB21-9E6E9565A458}) (Version: 1.00.000 - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.9.6 - Rockstar Games)
RollerCoaster Tycoon 3 (HKLM-x32\...\{907B4640-266B-4A21-92FB-CD1A86CD0F63}) (Version: 1.00.000 - )
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.5.1 - Samsung Electronics)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.5.43 - Safer-Networking Ltd.)
SrpnFiles (HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\SrpnFiles) (Version: 29.16.33 - hxxps://www.www.springfile.biz)
STAR WARS™ Battlefront™ (HKLM-x32\...\{E402D891-4E45-4ce9-B41F-DD35864EF170}) (Version: 1.0.5.42268 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteamVR Performance Test (HKLM\...\Steam App 323910) (Version: - Valve)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1222 - SUPERAntiSpyware.com)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.53254 - TeamViewer)
thriXXX-Launcher (HKLM-x32\...\thriXXX-Launcher) (Version: - thriXXX Software GmbH)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.8.4 - Tunngle.net GmbH)
Uplay (HKLM-x32\...\Uplay) (Version: 17.0 - Ubisoft)
UseNeXT by Tangysoft (HKLM-x32\...\UseNeXT by Tangysoft_is1) (Version: - Tangysoft Ltd.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Vulkan Run Time Libraries 1.0.17.0 (HKLM\...\VulkanRT1.0.17.0-5) (Version: 1.0.17.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.17.0 (Version: 1.0.17.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1-2) (Version: 1.0.3.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.3.1 (Version: 1.0.3.1 - LunarG, Inc.) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows 10-Upgrade-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17332 - Microsoft Corporation)
XCOM: Enemy Unknown (HKLM-x32\...\Steam App 200510) (Version: - Firaxis Games)
XSplit Gamecaster (HKLM-x32\...\{4EDB1851-7427-4324-AAAA-9E3852C73DAE}) (Version: 2.2.1502.1741 - SplitmediaLabs)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {05FA6885-C7E5-47FE-8CA2-C5EFE5C93310} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-18] ()
Task: {0DBE11D7-F195-409D-B078-272C321C6F55} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {1184C2A4-277F-4D85-9912-85C39094EC81} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {1B5E03F5-09F7-4798-88A5-883772A941B9} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {1C8FA12D-5D2E-45F0-980C-92B20CC0B094} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Keine Datei <==== ACHTUNG
Task: {1F38B28D-AD24-410B-AF87-7BD12E4BEE1B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {292CCCB8-A5D1-4AED-A65C-8F300F413D3D} - System32\Tasks\SUPERAntiSpyware Scheduled Task 26d8ced4-01f9-466a-abb9-2dc5272d9616 => F:\Program Files (x86)\Spyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {2A18047B-AF7F-496D-94F3-CA1DCBDE22CE} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2015-06-16] (Safer-Networking Ltd.)
Task: {2A18A75F-4D12-4265-9AD4-C7D62BB65957} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2016-03-21] (Safer-Networking Ltd.)
Task: {2B1B36FE-B0CA-46D1-A984-6309866E78B1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {2B3A8D56-15FA-4512-B3FD-D91363D952AE} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {305BF18E-BC68-4A9C-A079-687726960095} - System32\Tasks\{8E9F164E-70D6-4763-A0A3-91FAF5F4DF69} => C:\Users\Lakenludwig\Downloads\Saitek_Cyborg_Evo_SD6_64.exe
Task: {30AE2C9F-EEAD-4B64-906A-C19B45475460} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {36D92A72-64A3-43C3-A0A0-270C75CA25C5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-06-10] (Piriform Ltd)
Task: {38AB4598-8435-4781-98E8-5D90A9A6D668} - System32\Tasks\{16FDCDF6-BBE1-46CA-9867-A21E950A6EF0} => F:\Programme\Games\World in Conflict\wic.exe
Task: {4D2A5B81-2590-4F37-9043-E285A53AA347} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {4DB169F6-DAAF-40FF-BDBD-2668D11864D2} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Keine Datei <==== ACHTUNG
Task: {4F8AAFDA-665E-4B0F-B21D-8F491A02F1B1} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {53B83C2F-E2FA-417D-9172-B965FA9526B8} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [2014-09-28] (Samsung Electronics.)
Task: {559F25E6-1B41-4D5E-AD77-A3F14EE5D558} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {5B715593-C587-4CAC-8BA9-9612CA65E5CE} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {5BFF5020-5BC3-4064-8BEA-2F7A7F016530} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {6413F88E-23B7-47CD-93AC-839CA2052D5F} - System32\Tasks\{B2113AE9-5205-4488-97ED-DB2B45FC3F4A} => pcalua.exe -a D:\setup.exe -d D:\
Task: {65B8D686-5063-4A65-8B12-668AF0F81665} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {67FF689D-12AB-4C09-8D1F-8756DB8B10B3} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2016-08-30] (Advanced Micro Devices, Inc.)
Task: {6C61A2DB-5683-4AFF-93A4-E00F30446AC0} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {6D4788A6-2575-4B42-A5F4-22C35DF79401} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {6E0D5561-6CD8-4B7D-9C60-3E7AA006BFBE} - System32\Tasks\SUPERAntiSpyware Scheduled Task 4b765044-a9d5-4b28-8e8d-1c0a920d0464 => F:\Program Files (x86)\Spyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {70343BCC-7398-4EC7-9FE3-9C88D0C894D4} - System32\Tasks\{D1A311E9-4432-45AC-BFE7-2136A9895BF4} => F:\Programme\Games\CC2\generals.exe
Task: {713C567B-37B2-406D-A42C-A9F7D485C8FE} - System32\Tasks\{10CFFE4C-E67B-4E83-BAED-2E9BFBB87C56} => F:\Programme\Games\CC2\generals.exe
Task: {72C3D336-3938-4693-BA71-B21811471450} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Keine Datei <==== ACHTUNG
Task: {754B49DF-E9AD-49AE-8CE7-BCE117E5CEA8} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> Keine Datei <==== ACHTUNG
Task: {848934E3-6CAF-4D08-B8F6-1CD58F13F58A} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2016-03-21] (Safer-Networking Ltd.)
Task: {864A59D5-8A2A-4A64-B495-7DF8974BCC6F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {875D362F-42A4-45BE-B875-1DB59B6923AB} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {90B0BC84-8B07-4D40-BBB0-DF620B8FF352} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {93431D77-5F18-4319-9A0F-6F2ABFCA41EC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {95D5DFFF-3F71-45A7-AD6A-B15B854BCECA} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {9CCE7EA9-DFE2-40FE-B68F-8AE0EA788F42} - System32\Tasks\{7F25E343-9B77-4954-9D2C-E07212FF87CF} => F:\Programme\Games\IL2\il2fb.exe [2003-09-02] ()
Task: {9F0C4A53-3CAA-4AC3-93D4-F2607C9EF065} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {9FBCC546-B2C5-48A6-AC87-7223F0A7719F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-15] (Adobe Systems Incorporated)
Task: {A076008D-F2CB-4F59-AE6B-0E8FFB16DCAA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {A27F68BA-230A-4DF2-805C-FC9291ADFB77} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {A69268C5-ADE1-493F-BB92-7B0D37728589} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)
Task: {B28E9D4D-B79B-4F1C-BEC3-7069D5A47F26} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-25] (Google Inc.)
Task: {C6419B13-6702-4297-99C8-E5B885DEDBDC} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {C7FF4BDE-5B87-4B9A-AFFE-7102A3371C93} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {CE52EDDE-26EF-46AF-A55D-513427891C8D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-25] (Google Inc.)
Task: {D143F960-2471-494D-BF4D-B2F5D49B56C5} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {DC965F34-4BE9-41A0-B1B0-8ED6DA306B7E} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {E710A834-8427-461E-9783-E9EC6284335C} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {E779EE53-959D-4A16-A78D-760F4C0CE665} - System32\Tasks\{9DBD5C9C-A2C4-4E6D-9F14-94DFB5C27BC1} => F:\Programme\Games\IL2\il2fb.exe [2003-09-02] ()
Task: {E98173F9-0EFB-4983-B617-F70AA062BD32} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {E990E52E-A510-4C7B-8C7E-0BEFA9947F48} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {EC3AEE0D-FF2B-48CA-97C6-995B071E9682} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {EFAA99DE-B13D-4D4B-8208-F6AB96E4DAA4} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {F4DE0A9D-DB73-45A4-97B5-BC33DB349A76} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {F5BA687E-F877-4464-ADD0-5250F5328074} - System32\Tasks\{4F200370-1863-46A4-8119-23974E3586FD} => F:\Programme\Games\World in Conflict\wic.exe
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 26d8ced4-01f9-466a-abb9-2dc5272d9616.job => F:\Program Files (x86)\Spyware\SASTask.exeaF:\Program Files (x86)\Spyware\SUPERAntiSpyware.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 4b765044-a9d5-4b28-8e8d-1c0a920d0464.job => F:\Program Files (x86)\Spyware\SASTask.exeaF:\Program Files (x86)\Spyware\SUPERAntiSpyware.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\Lakenludwig\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wurm Online\Wurm Online.lnk -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxp://www.wurmonline.com/client/wurmclient.jnlp "C:\Users\Lakenludwig\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\5fef8269-771c1974"
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-05-08 08:26 - 2015-05-08 08:26 - 00936728 ____R () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
2015-11-25 17:25 - 2014-04-24 08:29 - 01360016 ____R () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
2015-05-29 11:28 - 2015-05-29 11:28 - 00048640 _____ () C:\Windows\SysWOW64\ASGT.exe
2016-07-25 15:27 - 2016-07-01 06:48 - 02656408 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-25 15:27 - 2016-07-01 06:48 - 02656408 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-07-25 15:32 - 2016-07-25 15:32 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-04-27 07:17 - 2016-04-27 07:17 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-25 15:28 - 2016-07-01 05:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-07-25 15:27 - 2016-07-01 05:27 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-07-25 15:26 - 2016-07-01 05:21 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-07-25 15:27 - 2016-07-01 05:22 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-07-25 15:27 - 2016-07-01 05:24 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-11-25 17:24 - 2014-05-22 10:24 - 00096568 _____ () C:\WINDOWS\SYSTEM32\audioLibVc.dll
2016-06-10 17:22 - 2016-06-10 17:22 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 00264040 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
2015-11-25 17:25 - 2016-09-11 10:46 - 00042640 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll
2015-11-25 17:25 - 2015-05-08 08:26 - 00104448 ____R () C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll
2015-07-09 00:18 - 2015-07-09 00:18 - 00794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\kpcengine.2.3.dll
2015-12-02 19:01 - 2016-08-24 16:56 - 00114664 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
2015-12-02 19:01 - 2015-11-27 20:06 - 00295272 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\stat.dll
2015-12-02 19:01 - 2015-11-27 20:06 - 00253800 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\collector.dll
2015-12-02 19:01 - 2016-08-24 16:56 - 00108008 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2015-12-02 19:01 - 2016-08-24 16:56 - 00024040 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2015-12-02 19:01 - 2016-08-24 16:56 - 00048104 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2016-07-24 16:34 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2016-07-24 16:34 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2016-07-24 16:34 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2016-07-24 16:34 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2015-11-24 22:48 - 2015-11-24 22:48 - 00028160 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\servicemanager.pyd
2015-11-24 22:46 - 2015-11-24 22:46 - 00110592 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\pywintypes26.dll
2015-11-24 22:48 - 2015-11-24 22:48 - 00041472 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32service.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00096256 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32api.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00356864 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_hashlib.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00017920 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32event.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00019968 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32evtlog.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00036352 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32process.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00043008 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_socket.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00805376 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_ssl.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00087040 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_ctypes.pyd
2015-11-24 22:46 - 2015-11-24 22:46 - 00354304 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\pythoncom26.dll
2015-11-24 22:48 - 2015-11-24 22:48 - 00167936 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32gui.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 01980928 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtGui.pyd
2015-12-07 22:57 - 2015-12-07 22:57 - 00077824 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\sip.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 01862144 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtCore.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 00516608 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtNetwork.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 04060160 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtWidgets.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00010240 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\select.pyd
2015-08-05 17:41 - 2015-08-05 17:41 - 00057344 _____ () C:\Program Files (x86)\ASUS\GPU TweakII\Exeio.dll
2015-07-22 16:22 - 2015-07-22 16:22 - 01933312 _____ () C:\Program Files (x86)\ASUS\GPU TweakII\Vender.dll
2016-07-25 15:32 - 2016-07-25 15:32 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-07-25 15:32 - 2016-07-25 15:32 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 02144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 07955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 00341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 00028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2012-09-13 00:38 - 2012-09-13 00:38 - 00127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
2012-09-13 00:39 - 2012-09-13 00:39 - 00336232 _____ () C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
2016-08-05 11:05 - 2016-08-03 02:24 - 01771336 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libglesv2.dll
2016-08-05 11:05 - 2016-08-03 02:23 - 00094024 _____ () C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\libegl.dll
2015-12-30 17:27 - 2014-09-28 18:59 - 00019872 _____ () C:\Program Files (x86)\Samsung\Samsung Magician\SAMSUNG_SSD.dll
2015-06-02 05:18 - 2015-06-02 05:18 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\WINDOWS\SysWOW64\zlib.dll:DocumentSummaryInformation [63]
AlternateDataStreams: C:\WINDOWS\SysWOW64\zlib.dll:SummaryInformation [63]
AlternateDataStreams: C:\WINDOWS\SysWOW64\zlib.dll:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-105961712-2016900154-967398330-1000\...\123simsen.com -> www.123simsen.com
Da befinden sich 7904 mehr Seiten.
==================== Hosts Inhalt: ==========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2016-07-10 11:19 - 00452730 ____N C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123haustiereundmehr.com
127.0.0.1 123moviedownload.com
127.0.0.1 www.123moviedownload.com
Da befinden sich 15534 zusätzliche Einträge.
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-105961712-2016900154-967398330-1000\Control Panel\Desktop\\Wallpaper -> F:\Hintergrundbilder\dead_by_daylight.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk => C:\Windows\pss\Adobe Gamma Loader.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk => C:\Windows\pss\Microsoft Office.lnk.CommonStartup
MSCONFIG\startupreg: CanonQuickMenu => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKLM\...\StartupApproved\Run32: => "Adobe_ID0EYTHM"
HKLM\...\StartupApproved\Run32: => "PlaysTV"
HKLM\...\StartupApproved\Run32: => "Raptr"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{A9538CF7-E6CC-4187-8D90-F875BAD0A4AB}] => (Allow) F:\Programme\Games\steamapps\common\GALAGA\GALAGA.exe
FirewallRules: [{7CF2398A-84C7-4874-A921-42031D7DC24F}] => (Allow) F:\Programme\Games\steamapps\common\GALAGA\GALAGA.exe
FirewallRules: [{EE259B9A-4E41-4E6E-B61D-1C5498C8D937}] => (Allow) F:\Programme\Games\steamapps\common\Parkitect\Parkitect.exe
FirewallRules: [{1DDE2800-366E-40B1-8F64-1ABA5F90B60A}] => (Allow) F:\Programme\Games\steamapps\common\Parkitect\Parkitect.exe
FirewallRules: [{529024C3-1391-4686-B042-BBDBE28E49F8}] => (Allow) F:\Programme\Games\steamapps\common\Hearts of Iron IV\hoi4.exe
FirewallRules: [{18D1A9AA-747A-4332-A040-B8657AFA38EF}] => (Allow) F:\Programme\Games\steamapps\common\Hearts of Iron IV\hoi4.exe
FirewallRules: [{049A614E-B4AC-4D30-8AC4-3CE027341133}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{3F713513-CEFE-4FC3-9F10-C68138BC34EB}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{7B6FBE88-A817-44F9-A920-B2F6E53408EC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E8921C0F-B6AA-4F9A-B6FE-9A13551A1BC5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{AB35194A-B3DC-4D88-B419-E82968309D45}] => (Allow) F:\Programme\Games\steamapps\common\Dead by Daylight\DeadByDaylight.exe
FirewallRules: [{BF88FE59-85DF-45F7-B239-FA402EBD7CD5}] => (Allow) F:\Programme\Games\steamapps\common\Dead by Daylight\DeadByDaylight.exe
FirewallRules: [{0F878E1E-4068-4ED7-A7D0-2DB4A551868F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{D7856702-C419-40F9-A236-EA9867DD7BE8}] => (Allow) F:\Programme\Games\steamapps\common\Half dead\HalfDead.exe
FirewallRules: [{88F42631-B073-4243-97CD-21CE7A1D3606}] => (Allow) F:\Programme\Games\steamapps\common\Half dead\HalfDead.exe
FirewallRules: [{7E9FF84E-A321-4A1B-B938-4BAC295F19D5}] => (Allow) F:\Programme\Games\steamapps\common\Fragmented\Fragmented.exe
FirewallRules: [{84F37AF0-6B00-49E1-88FB-847A819FB582}] => (Allow) F:\Programme\Games\steamapps\common\Fragmented\Fragmented.exe
FirewallRules: [{DE5C109E-4DBB-4665-B621-6C6CD7EA1D81}] => (Allow) LPort=3703
FirewallRules: [{71646014-3E92-4F84-8AE4-44830F262189}] => (Allow) LPort=3704
FirewallRules: [{1752EB90-F88A-45AF-A86F-4980B7FC9915}] => (Allow) LPort=50900
FirewallRules: [{2A34ABCF-F968-4A2C-ADC3-8A5BBBA566E0}] => (Allow) LPort=50901
FirewallRules: [{1DCA8CBD-28F5-4C1A-8DF2-2A40DC78BF65}] => (Allow) C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe
FirewallRules: [{CF1B4695-7F23-4D3A-A37A-16C3DD1251A3}] => (Allow) C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe
FirewallRules: [{AFEAE080-5058-4987-A667-27FED91DCEC4}] => (Allow) F:\Programme\Magix Video Deluxe\Videodeluxe.exe
FirewallRules: [{C8936E74-2093-4C4C-9FD7-D88414BFBED4}] => (Allow) C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe
FirewallRules: [{A705EFE5-8951-496B-9062-E3563B8EBEA4}] => (Allow) C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe
FirewallRules: [{C68895C7-A845-4CBC-9552-FBBB7CBCAE81}] => (Allow) C:\Program Files (x86)\SrpnFiles\downloader.exe
FirewallRules: [{DB3ABC8C-D657-493F-A529-9A5F5EF710BE}] => (Allow) C:\Program Files (x86)\SrpnFiles\downloader.exe
FirewallRules: [{76AAAA49-6D89-4B7D-B81C-195CE8282A59}] => (Allow) F:\Programme\Games\steamapps\common\Looterkings\Looterkings.exe
FirewallRules: [{B90BE582-0A2F-403E-843D-B2BAF3ACF99C}] => (Allow) F:\Programme\Games\steamapps\common\Looterkings\Looterkings.exe
FirewallRules: [{3BDDF08E-4085-487D-B816-08D0177B8AC3}] => (Allow) F:\Programme\Games\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{1FED933C-74FF-48DB-BA9C-732B5A2056E2}] => (Allow) F:\Programme\Games\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{625FDC2F-03D9-4843-AB3D-B5A1559DBB94}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{AFB07B36-28D7-42C1-B5BF-21E9CA5F70CB}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{58CA6619-41A7-4F57-A891-56622216E61C}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{9155DEDB-3483-4101-8C24-828F3B9AF4D8}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{C824104F-5CBB-4961-A7F1-EA80C9870308}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{04FDA38F-5C38-4DD9-911B-2B0E84441EB8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{4207EBCD-F0BC-4321-88F5-D8411E557379}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [{FB5B3961-8A15-4434-97D9-4007EA1E0884}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [{24AC80E3-34B2-4EE4-A2BB-77C3F060A6F7}] => (Allow) F:\Programme\Games\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{FDE0D9C3-BE1D-4C93-8534-08C366B6F811}] => (Allow) F:\Programme\Games\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{A09F3CA6-A70A-4737-A8F2-7904D7995F4C}] => (Allow) F:\Programme\Games\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{7D5C4217-84DD-4D00-BDA0-D94F3FBBB6AC}] => (Allow) F:\Programme\Games\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{3BA9D275-B411-41C0-9979-2FBEEAE6E642}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [{6CDD3315-FB65-4CC7-B4BF-4A21D083813E}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
==================== Wiederherstellungspunkte =========================
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (09/09/2016 06:59:56 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "F:\Programme\LG Suite\LG PC Suite\LGPCSuite.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.494_none_ea85e725b9ba5a4b.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.494_none_a2d8b04ea53e3145.manifest.
Error: (09/08/2016 10:46:23 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "WmiApRpl" in der DLL "C:\WINDOWS\system32\wbem\wmiaprpl.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.
Error: (09/08/2016 10:46:23 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Die erweiterbare Leistungsindikator-DLL rdyboost kann nicht geladen werden. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Windows-Fehlercode.
Error: (09/08/2016 10:46:22 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Das Serverdienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.
Error: (09/08/2016 10:46:22 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "MSDTC" in der DLL "C:\WINDOWS\system32\msdtcuiu.DLL" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.
Error: (09/08/2016 10:46:22 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "Lsa" in der DLL "C:\Windows\System32\Secur32.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.
Error: (09/08/2016 10:46:22 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "ESENT" in der DLL "C:\WINDOWS\system32\esentprf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.
Error: (09/08/2016 10:46:22 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.
Error: (09/08/2016 10:46:22 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "WmiApRpl" in der DLL "C:\WINDOWS\system32\wbem\wmiaprpl.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.
Error: (09/08/2016 10:46:22 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Die erweiterbare Leistungsindikator-DLL rdyboost kann nicht geladen werden. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Windows-Fehlercode.
Systemfehler:
=============
Error: (09/11/2016 10:46:46 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
Error: (09/11/2016 10:46:40 AM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI5
Error: (09/11/2016 10:46:19 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_5f38ff4" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/11/2016 10:46:19 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _5f38ff4" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/11/2016 10:46:19 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_5f38ff4" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/11/2016 01:24:40 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_5451147" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/11/2016 01:24:40 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _5451147" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/11/2016 01:24:40 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_5451147" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/11/2016 01:24:40 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_5451147" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/10/2016 04:31:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_45c609f" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
CodeIntegrity:
===================================
Date: 2016-09-03 12:29:23.866
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-08-17 00:09:37.639
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-08-12 15:05:08.078
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-08-01 11:42:03.279
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-26 15:16:00.756
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-25 15:44:13.466
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-24 15:02:14.969
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-24 15:00:57.125
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-07-24 14:56:15.553
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Prozentuale Nutzung des RAM: 16%
Installierter physikalischer RAM: 16313.8 MB
Verfügbarer physikalischer RAM: 13684.73 MB
Summe virtueller Speicher: 32697.8 MB
Verfügbarer virtueller Speicher: 29803.68 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:232.22 GB) (Free:86.84 GB) NTFS
Drive d: (Xbox360_1_2) (CDROM) (Total:0.1 GB) (Free:0 GB) CDFS
Drive f: (Volume) (Fixed) (Total:1862.89 GB) (Free:1394.98 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt ============================
Geändert von cosinus (12.09.2016 um 09:48 Uhr) Grund: CODE-Tags |
|
12.09.2016, 09:49
| #2 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Webseiten werden umgeleitet bei Klick plus WerbungZitat:
Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers  Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
13.09.2016, 10:25
| #3 |
| | Webseiten werden umgeleitet bei Klick plus Werbung ---------------------------------------
__________________Malwarebytes Anti-Rootkit BETA 1.09.3.1001 (c) Malwarebytes Corporation 2011-2012 OS version: 10.0.9200 Windows 10 x64 Account is Administrative Internet Explorer version: 11.545.10586.0 File system is: NTFS Disk drives: C:\ DRIVE_FIXED, F:\ DRIVE_FIXED CPU speed: 3.504000 GHz Memory total: 17106255872, free: 13360623616 ======================================= --------------------------------------- Malwarebytes Anti-Rootkit BETA 1.09.3.1001 (c) Malwarebytes Corporation 2011-2012 OS version: 10.0.9200 Windows 10 x64 Account is Administrative Internet Explorer version: 11.545.10586.0 File system is: NTFS Disk drives: C:\ DRIVE_FIXED, F:\ DRIVE_FIXED CPU speed: 3.504000 GHz Memory total: 17106255872, free: 13462577152 Downloaded database version: v2016.09.13.05 Downloaded database version: v2016.08.15.01 Downloaded database version: v2016.08.31.01 ======================================= Initializing... Driver version: 0.3.0.4 ------------ Kernel report ------------ 09/13/2016 11:06:03 ------------ Loaded modules ----------- \SystemRoot\system32\ntoskrnl.exe \SystemRoot\system32\hal.dll \SystemRoot\system32\kd.dll \SystemRoot\system32\mcupdate_GenuineIntel.dll \SystemRoot\System32\drivers\werkernel.sys \SystemRoot\System32\drivers\CLFS.SYS \SystemRoot\System32\drivers\tm.sys \SystemRoot\system32\PSHED.dll \SystemRoot\system32\BOOTVID.dll \SystemRoot\System32\drivers\cmimcext.sys \SystemRoot\System32\drivers\ntosext.sys \SystemRoot\system32\CI.dll \SystemRoot\System32\drivers\msrpc.sys \SystemRoot\System32\drivers\FLTMGR.SYS \SystemRoot\System32\drivers\ksecdd.sys \SystemRoot\System32\drivers\clipsp.sys \SystemRoot\system32\drivers\Wdf01000.sys \SystemRoot\system32\drivers\WDFLDR.SYS \SystemRoot\System32\Drivers\acpiex.sys \SystemRoot\System32\Drivers\WppRecorder.sys \SystemRoot\System32\Drivers\cng.sys \SystemRoot\System32\drivers\ACPI.sys \SystemRoot\System32\drivers\WMILIB.SYS \SystemRoot\system32\drivers\WindowsTrustedRT.sys \SystemRoot\System32\drivers\WindowsTrustedRTProxy.sys \SystemRoot\System32\drivers\pcw.sys \SystemRoot\system32\DRIVERS\kl1.sys \SystemRoot\System32\drivers\msisadrv.sys \SystemRoot\System32\drivers\pci.sys \SystemRoot\System32\drivers\vdrvroot.sys \SystemRoot\system32\DRIVERS\cm_km.sys \SystemRoot\system32\drivers\pdc.sys \SystemRoot\system32\drivers\CEA.sys \SystemRoot\System32\drivers\partmgr.sys \SystemRoot\System32\drivers\spaceport.sys \SystemRoot\System32\drivers\volmgr.sys \SystemRoot\System32\drivers\volmgrx.sys \SystemRoot\system32\DRIVERS\klbackupdisk.sys \SystemRoot\System32\drivers\mountmgr.sys \SystemRoot\System32\drivers\iaStorA.sys \SystemRoot\System32\drivers\storport.sys \SystemRoot\System32\drivers\EhStorClass.sys \SystemRoot\System32\drivers\fileinfo.sys \SystemRoot\System32\Drivers\Wof.sys \SystemRoot\System32\Drivers\NTFS.sys \SystemRoot\System32\Drivers\Fs_Rec.sys \SystemRoot\system32\drivers\ndis.sys \SystemRoot\system32\drivers\NETIO.SYS \SystemRoot\System32\Drivers\ksecpkg.sys \SystemRoot\System32\drivers\tcpip.sys \SystemRoot\System32\drivers\fwpkclnt.sys \SystemRoot\System32\drivers\wfplwfs.sys \SystemRoot\System32\DRIVERS\fvevol.sys \SystemRoot\System32\drivers\volsnap.sys \SystemRoot\System32\drivers\rdyboost.sys \SystemRoot\System32\Drivers\mup.sys \SystemRoot\System32\drivers\intelpep.sys \SystemRoot\System32\drivers\disk.sys \SystemRoot\System32\drivers\CLASSPNP.SYS \SystemRoot\System32\Drivers\crashdmp.sys \SystemRoot\system32\DRIVERS\klhk.sys \SystemRoot\System32\drivers\cdrom.sys \SystemRoot\system32\DRIVERS\klbackupflt.sys \SystemRoot\system32\DRIVERS\klflt.sys \SystemRoot\system32\drivers\filecrypt.sys \SystemRoot\system32\drivers\tbs.sys \SystemRoot\system32\DRIVERS\klpd.sys \SystemRoot\system32\DRIVERS\klif.sys \SystemRoot\system32\DRIVERS\ks.sys \SystemRoot\System32\Drivers\Null.SYS \SystemRoot\System32\Drivers\Beep.SYS \SystemRoot\System32\drivers\BasicDisplay.sys \SystemRoot\System32\drivers\watchdog.sys \SystemRoot\System32\drivers\dxgkrnl.sys \SystemRoot\System32\drivers\BasicRender.sys \SystemRoot\System32\Drivers\Npfs.SYS \SystemRoot\System32\Drivers\Msfs.SYS \SystemRoot\system32\DRIVERS\klwfp.sys \SystemRoot\system32\DRIVERS\tdx.sys \SystemRoot\system32\DRIVERS\TDI.SYS \SystemRoot\System32\DRIVERS\netbt.sys \SystemRoot\system32\drivers\afd.sys \SystemRoot\system32\DRIVERS\klim6.sys \SystemRoot\system32\DRIVERS\klwtp.sys \SystemRoot\System32\drivers\vwififlt.sys \SystemRoot\System32\drivers\pacer.sys \SystemRoot\system32\drivers\netbios.sys \SystemRoot\system32\DRIVERS\rdbss.sys \SystemRoot\system32\drivers\csc.sys \??\F:\Program Files (x86)\Spyware\SASKUTIL64.SYS \??\F:\Program Files (x86)\Spyware\SASDIFSV64.SYS \SystemRoot\system32\drivers\nsiproxy.sys \SystemRoot\System32\drivers\npsvctrig.sys \SystemRoot\System32\drivers\mssmbios.sys \SystemRoot\system32\DRIVERS\kneps.sys \SystemRoot\System32\drivers\gpuenergydrv.sys \SystemRoot\System32\Drivers\dfsc.sys \SystemRoot\SysWow64\drivers\AsIO.sys \SystemRoot\system32\DRIVERS\ahcache.sys \SystemRoot\System32\drivers\tap0901t.sys \SystemRoot\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys \SystemRoot\System32\drivers\kdnic.sys \SystemRoot\System32\drivers\umbus.sys \SystemRoot\system32\DRIVERS\atikmpag.sys \SystemRoot\system32\DRIVERS\atikmdag.sys \SystemRoot\System32\drivers\HDAudBus.sys \SystemRoot\System32\drivers\portcls.sys \SystemRoot\System32\drivers\drmk.sys \SystemRoot\System32\drivers\USBXHCI.SYS \SystemRoot\system32\drivers\ucx01000.sys \SystemRoot\System32\drivers\TeeDriverW8x64.sys \SystemRoot\System32\drivers\asmtxhci.sys \SystemRoot\system32\DRIVERS\e1d65x64.sys \SystemRoot\System32\drivers\wmiacpi.sys \SystemRoot\System32\drivers\intelppm.sys \SystemRoot\System32\drivers\acpipagr.sys \SystemRoot\System32\drivers\UEFI.sys \SystemRoot\System32\drivers\NdisVirtualBus.sys \SystemRoot\System32\drivers\swenum.sys \SystemRoot\System32\drivers\rdpbus.sys \SystemRoot\system32\drivers\ScreamingBAudio64.sys \SystemRoot\system32\drivers\ksthunk.sys \SystemRoot\system32\drivers\AtihdWT6.sys \SystemRoot\System32\drivers\UsbHub3.sys \SystemRoot\System32\drivers\USBD.SYS \SystemRoot\system32\drivers\RTKVHD64.sys \SystemRoot\System32\Drivers\fastfat.SYS \SystemRoot\System32\drivers\asmthub3.sys \SystemRoot\system32\DRIVERS\cdfs.sys \SystemRoot\System32\win32k.sys \SystemRoot\System32\win32kfull.sys \SystemRoot\System32\drivers\HIDPARSE.SYS \SystemRoot\System32\win32kbase.sys \SystemRoot\System32\drivers\usbccgp.sys \SystemRoot\System32\drivers\hidusb.sys \SystemRoot\System32\drivers\HIDCLASS.SYS \SystemRoot\system32\DRIVERS\lvuvc64.sys \SystemRoot\system32\drivers\usbaudio.sys \SystemRoot\system32\DRIVERS\lvrs64.sys \SystemRoot\System32\drivers\kbdhid.sys \SystemRoot\system32\DRIVERS\klkbdflt.sys \SystemRoot\System32\drivers\kbdclass.sys \SystemRoot\System32\drivers\mouhid.sys \SystemRoot\system32\DRIVERS\klmouflt.sys \SystemRoot\System32\drivers\mouclass.sys \SystemRoot\System32\drivers\dxgmms2.sys \SystemRoot\System32\TSDDD.dll \SystemRoot\System32\ATMFD.DLL \SystemRoot\System32\drivers\monitor.sys \SystemRoot\System32\Drivers\dump_diskdump.sys \SystemRoot\System32\Drivers\dump_iaStorA.sys \SystemRoot\System32\Drivers\dump_dumpfve.sys \SystemRoot\system32\drivers\luafv.sys \SystemRoot\system32\drivers\storqosflt.sys \SystemRoot\system32\drivers\mslldp.sys \SystemRoot\system32\drivers\HTTP.sys \SystemRoot\system32\drivers\lltdio.sys \SystemRoot\system32\drivers\rspndr.sys \SystemRoot\system32\drivers\WudfPf.sys \SystemRoot\system32\DRIVERS\bowser.sys \SystemRoot\system32\DRIVERS\mrxsmb.sys \SystemRoot\system32\DRIVERS\mrxsmb20.sys \SystemRoot\System32\drivers\mpsdrv.sys \SystemRoot\System32\DRIVERS\srvnet.sys \SystemRoot\System32\DRIVERS\srv2.sys \??\C:\WINDOWS\system32\drivers\amdacpksd.sys \SystemRoot\system32\DRIVERS\kldisk.sys \SystemRoot\system32\DRIVERS\mrxsmb10.sys \SystemRoot\system32\drivers\mmcss.sys \SystemRoot\system32\drivers\Ndu.sys \SystemRoot\system32\drivers\mqac.sys \SystemRoot\system32\drivers\peauth.sys \??\C:\Windows\SysWOW64\speedfan.sys \SystemRoot\System32\DRIVERS\srv.sys \SystemRoot\System32\drivers\tcpipreg.sys \SystemRoot\System32\drivers\tunnel.sys \SystemRoot\System32\drivers\condrv.sys \??\C:\WINDOWS\system32\drivers\IOMap64.sys \SystemRoot\System32\drivers\rdpvideominiport.sys \SystemRoot\System32\cdd.dll \??\C:\WINDOWS\system32\drivers\mbamchameleon.sys \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys ----------- End ----------- Done! Scan started Database versions: main: v2016.09.13.05 rootkit: v2016.08.15.01 <<<2>>> Physical Sector Size: 512 Drive: 0, DevicePointer: 0xffffe001c0fd9060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\ --------- Disk Stack ------ DevicePointer: 0xffffe001c0fd9b10, DeviceName: Unknown, DriverName: \Driver\partmgr\ DevicePointer: 0xffffe001c0fd9060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\ DevicePointer: 0xffffe001bfdd8b20, DeviceName: Unknown, DriverName: \Driver\ACPI\ DevicePointer: 0xffffe001bfc87d30, DeviceName: Unknown, DriverName: \Driver\ACPI\ DevicePointer: 0xffffe001c0fdf060, DeviceName: \Device\00000035\, DriverName: \Driver\iaStorA\ ------------ End ---------- Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\ Upper DeviceData: 0x0, 0x0, 0x0 Lower DeviceData: 0x0, 0x0, 0x0 <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes <<<2>>> <<<3>>> Volume: C: File system type: NTFS SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers... Done! Drive 0 This is a System drive Scanning MBR on drive 0... Inspecting partition table: This drive is a GPT Drive. MBR Signature: 55AA Disk Signature: 0 GPT Protective MBR Partition information: Partition 0 type is EFI-GPT (0xee) Partition is NOT ACTIVE. Partition starts at LBA: 1 Numsec = 4294967295 Partition 1 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 2 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 3 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 GPT Partition information: GPT Header Signature 4546492050415254 GPT Header Revision 65536 Size 92 CRC 1760745708 GPT Header CurrentLba = 1 BackupLba 488397167 GPT Header FirstUsableLba 34 LastUsableLba 488397134 GPT Header Guid 1b03d1c7-7040-444e-b16f-6e1571a7447 GPT Header Contains 128 partition entries starting at LBA 2 GPT Header Partition entry size = 128 Backup GPT header Signature 4546492050415254 Backup GPT header Revision 65536 Size 92 CRC 1760745708 Backup GPT header CurrentLba = 488397167 BackupLba 1 Backup GPT header FirstUsableLba 34 LastUsableLba 488397134 Backup GPT header Guid 1b03d1c7-7040-444e-b16f-6e1571a7447 Backup GPT header Contains 128 partition entries starting at LBA 488397135 Backup GPT header Partition entry size = 128 Partition 0 Type c12a7328-f81f-11d2-ba4b-0a0c93ec93b Partition ID 7583687a-809a-4df4-a2d2-bf92735c3a59 FirstLBA 2048 Last LBA 206847 Attributes 0 Partition Name EFI system partition GPT Partition 0 is bootable Partition 1 Type e3c9e316-b5c-4db8-817d-f92df0215ae Partition ID 1674c4b0-2d68-44c4-95f9-ed6bb8e87d3 FirstLBA 206848 Last LBA 468991 Attributes 0 Partition Name Microsoft reserved partition Partition 2 Type ebd0a0a2-b9e5-4433-87c0-68b6b72699c7 Partition ID 88dbfa50-3bdf-4004-9218-e0d62988464b FirstLBA 468992 Last LBA 487475199 Attributes 0 Partition Name Basic data partition Partition 3 Type de94bba4-6d1-4d40-a16a-bfd5179d6ac Partition ID 887f2a4d-e65-43d9-9e20-b5d1461c9a4a FirstLBA 487475200 Last LBA 488396799 Attributes 1 Partition Name Disk Size: 250059350016 bytes Sector size: 512 bytes Done! Physical Sector Size: 512 Drive: 1, DevicePointer: 0xffffe001c0fd8060, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\disk\ --------- Disk Stack ------ DevicePointer: 0xffffe001c0fd8b10, DeviceName: Unknown, DriverName: \Driver\partmgr\ DevicePointer: 0xffffe001c0fd8060, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\disk\ DevicePointer: 0xffffe001bfdd8920, DeviceName: Unknown, DriverName: \Driver\ACPI\ DevicePointer: 0xffffe001bfc86b60, DeviceName: Unknown, DriverName: \Driver\ACPI\ DevicePointer: 0xffffe001c0fdc060, DeviceName: \Device\00000036\, DriverName: \Driver\iaStorA\ ------------ End ---------- Alternate DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\disk\ Upper DeviceData: 0x0, 0x0, 0x0 Lower DeviceData: 0x0, 0x0, 0x0 Drive 1 Scanning MBR on drive 1... Inspecting partition table: This drive is a GPT Drive. MBR Signature: 55AA Disk Signature: 0 GPT Protective MBR Partition information: Partition 0 type is EFI-GPT (0xee) Partition is NOT ACTIVE. Partition starts at LBA: 1 Numsec = 4294967295 Partition 1 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 2 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 Partition 3 type is Empty (0x0) Partition is NOT ACTIVE. Partition starts at LBA: 0 Numsec = 0 GPT Partition information: GPT Header Signature 4546492050415254 GPT Header Revision 65536 Size 92 CRC 1471310882 GPT Header CurrentLba = 1 BackupLba 3907029167 GPT Header FirstUsableLba 34 LastUsableLba 3907029134 GPT Header Guid b98f8194-c5a-4429-8f51-13c5a4c795c9 GPT Header Contains 128 partition entries starting at LBA 2 GPT Header Partition entry size = 128 Backup GPT header Signature 4546492050415254 Backup GPT header Revision 65536 Size 92 CRC 1471310882 Backup GPT header CurrentLba = 3907029167 BackupLba 1 Backup GPT header FirstUsableLba 34 LastUsableLba 3907029134 Backup GPT header Guid b98f8194-c5a-4429-8f51-13c5a4c795c9 Backup GPT header Contains 128 partition entries starting at LBA 3907029135 Backup GPT header Partition entry size = 128 Partition 0 Type e3c9e316-b5c-4db8-817d-f92df0215ae Partition ID 30e09e4d-5534-4373-a515-69e19ec278 FirstLBA 34 Last LBA 262177 Attributes 0 Partition Name Microsoft reserved partition Partition 1 Type ebd0a0a2-b9e5-4433-87c0-68b6b72699c7 Partition ID a885501e-63b1-4e89-b247-60e8fe4ff274 FirstLBA 264192 Last LBA 3907028991 Attributes 0 Partition Name Basic data partition Disk Size: 2000398934016 bytes Sector size: 512 bytes Done! Infected: C:\Users\Lakenludwig\Desktop\XF-AdobeMasterCS3-KG.exe --> [RiskWare.Tool.CK] File "C:\Users\Lakenludwig\AppData\Local\Comms\UnistoreDB\store.vol" is sparse (flags = 32768) File "C:\Windows\System32\config\systemprofile\AppData\Local\DataSharing\Storage\DSTokenDB2.dat" is sparse (flags = 32768) Infected: HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES| --> [Hijack.AutoConfigURL.PrxySvrRST] Infected: HKU\S-1-5-21-105961712-2016900154-967398330-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|AutoConfigUrl --> [Hijack.AutoConfigURL.PrxySvrRST] Scan finished Creating System Restore point... Cleaning up... Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action reg.exe... Success! Executing an action cmd.exe... Success! Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action reg.exe Queuing an action cmd.exe Queuing an action cmd.exe Queuing an action cmd.exe Queuing an action cmd.exe Queuing an action cmd.exe Removal scheduling successful. System shutdown needed. System shutdown occurred ======================================= Mhhh, scheint was mit Adobe Mastercollection zu tun zu haben. Hab aber das Original. Ist aber wohl ein Keygenerator???? |
|
13.09.2016, 12:42
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Webseiten werden umgeleitet bei Klick plus Werbung Anleitung sind richtig zu lesen und umzusetzen! 1. falsches Log 2. Logs sollen in CODE-Tags gepostet werden
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
13.09.2016, 23:00
| #5 | |
| | Webseiten werden umgeleitet bei Klick plus Werbung Okay sorry. Also zuerstmal blockiert kaspersky die links folgendermasen: Zugriff auf die angeforderte Webadresse ist nicht möglich Webadresse: hxxp://www.isanalyze.com/watch?key=0cdb1<...> Wurde von Web-Anti-Virus blockiert Grund: gefährliche Webadresse Klicken Sie hier, wenn Sie glauben, dass die Webseite irrtümlicherweise blockiert wurde. Erkennungsmethode: Datenbanken Zitat:
|
|
14.09.2016, 10:32
| #6 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Webseiten werden umgeleitet bei Klick plus WerbungZitat:
 Lesestoff:Illegale Software: Cracks, Keygens und Co Bitte lesen => http://www.trojaner-board.de/95393-c...-software.html Es geht weiter wenn du alles Illegale entfernt hast. Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.
__________________ --> Webseiten werden umgeleitet bei Klick plus Werbung |
|
15.09.2016, 10:33
| #7 |
| | Webseiten werden umgeleitet bei Klick plus Werbung Hi, mir ist echt unerklärlich wie dieses sch... KG auf meinen Rechner gelangt ist. Ich suche ständig nach tollen kleinen Programmen, die in Konkurrenz zu den Megakonzernen liegen, vermutlich hab ich mir da doch mal was eingefangen, aber ein KG habe ich nie gezogen. Original ist nachweisbar und registriert. Reicht es dieses KG zu löschen oder muss eine Neuinstallation des Systems her`? Ich werde jetzt alles was damit zu tun hat löschen und dann die Mastercollection neu installieren. |
|
15.09.2016, 10:37
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Webseiten werden umgeleitet bei Klick plus Werbung Keygen löschen und die Software deinstallieren
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Webseiten werden umgeleitet bei Klick plus Werbung |
| blockiert, bonjour, browser, canon, computer, converter, desktop, email, esgscanner.sys, flash player, google, homepage, kaspersky, mp3, popup, problem, realtek, registry, scan, security, server, software, suchmaschine, system, uplay, werbung, windows, windowsapps, wurm |
Linear-Darstellung
