|
Log-Analyse und Auswertung: Win 8.1 - Rightcoupon geht nicht weg - kommt mit Selbstanalyse nicht weiterWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
23.05.2017, 17:26 | #1 |
| Win 8.1 - Rightcoupon geht nicht weg - kommt mit Selbstanalyse nicht weiter Hallo, ok ich habe oberflächlich zwei Probleme, von denen ich nicht weiß, ob sie zusammenhängen. Ich habe mal ADWCleaner laufen lassen, der löscht was, startet neu, aber zb Registry Anzeigen mit "xvb'lj" werden immer wieder gemeldet und nach 1-2 Tagen zeigt der ADWCleaner auch wieder viel mehr Probleme. Was ich sehe sind zwei Dinge. Erstens auf manchen Seiten taucht permanent der "Rightcoupon" auf. Als normales Programm habe ich ihn nicht gefunden, und auch als Addon oder Erweitungen von Mozilla sehe ich ihn nirgends. Das ist eher nervig bis beunruhigend, ich möchte ihn aber schon raus haben. Das andere ist, nach einigen Stunden schaltet sich der MCAffee Echtzeitschutz ab, ohne dass ich es merke. Dieses Wimpel Symbol von Windows zeigt es dann an, aber egal wie oft ich aktivieren klicke, es wird nicht aktiviert. Nur ein Neustart läßt den MCAffee Echtzeitschutz wieder laufen. Ich berichte mal vom beidem, da ich nicht weiß ob es zusammenhängt. Ich bin leider was Computer betrifft nur normaler Nutzer. Ich verwende Windows 8.1, es ist auf dem neuesten Update-Stand, mein Rechner ist ein Acer Aspire Notebook. Ich bitte um Hilfe und Rat, da ich nur mit Googlen und Nachlesen was andere gemacht haben, leider keinen Erfolg hatte. (Adwcleaner und Spybot probiert.) Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 22-05-2017 durchgeführt von elikal (Administrator) auf STARGARD (23-05-2017 18:35:44) Gestartet von C:\Users\elikal\Desktop Geladene Profile: elikal (Verfügbare Profile: elikal) Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: FF) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe (Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe (Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfemms.exe (McAfee, Inc.) C:\Windows\System32\mfevtps.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\ModuleCore\ModuleCoreService.exe (McAfee, Inc.) C:\Windows\System32\mfevtps.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\ModuleCore\ModuleCoreService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe (Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe (Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\CSP\2.3.322.0\McCSPServiceHost.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\VSCore_15_6\mcapexe.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMMsg.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe (IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe (Wacom Technology) C:\Program Files\Tablet\Pen\WacomHost.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Atheros Communications) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\igfxsrvc.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (© 2015 Microsoft Corporation) C:\Users\elikal\AppData\Local\Microsoft\BingSvc\BingSvc.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe () C:\Windows\FixCamera.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWelcome.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe (Intel Corporation) C:\Windows\System32\igfxext.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDRootAlyzer.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Intel Security) C:\Program Files\Common Files\mcafee\ClientAnalytics\Legacy\McClientAnalytics.exe ==================== Registry (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13427784 2013-03-18] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1278024 2013-03-08] (Realtek Semiconductor) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2876304 2013-01-18] (ELAN Microelectronics Corp.) HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-05] (IvoSoft) HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM-x32\...\Run: [mcui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [557344 2017-04-17] (McAfee, Inc.) HKLM-x32\...\Run: [WsmUpdater] => C:\Program Files (x86)\Web Solution Mart\Windows 8 Codecs Pack\Updater.exe [292208 2012-05-18] (Web Solution Mart) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [2724896 2016-06-24] (Sony Corporation) HKLM-x32\...\Run: [FixCamera] => C:\WINDOWS\FixCamera.exe [20480 2007-02-12] () HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.) Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation) Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [134784 2014-04-29] (Atheros Communications) HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\Run: [AmazonMP3DownloaderHelper] => C:\Users\elikal\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] () HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\Run: [SansaDispatch] => C:\Users\elikal\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exe [613888 2014-01-28] (SanDisk Corporation) HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\Run: [GalaxyClient] => [X] HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\Run: [BingSvc] => C:\Users\elikal\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-12] (© 2015 Microsoft Corporation) HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9772248 2017-05-05] (Piriform Ltd) HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) HKLM\...\Providers\fa742xx2: C:\Program Files (x86)\Nazish Engine\local64spl.dll [309248 2017-05-19] () AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [170360 2017-02-23] (NVIDIA Corporation) AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [170360 2017-02-23] (NVIDIA Corporation) AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [148016 2017-02-23] (NVIDIA Corporation) ShellExecuteHooks: Kein Name - {E493180C-3927-11E7-BE67-64006A5CFC23} - C:\Users\elikal\AppData\Roaming\Coikewardjesety\Rfertwzase.dll -> Keine Datei ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-05] (IvoSoft) ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-05] (IvoSoft) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk [2013-07-30] ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation) Startup: C:\Users\elikal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2013-07-30] ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) BootExecute: autocheck autochk * sdnclean64.exe ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{2D6DA03F-E4E0-48B2-87ED-B358A5CE3332}: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{373CD580-2886-4774-BFA8-D4B85EFA4F11}: [DhcpNameServer] 192.168.178.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.istartsurf.com/web/?type=ds&ts=1438285421&z=29502bcca22ac6466cf49ebgfzec0baocb5w0c9qbb&from=cor&uid=TOSHIBAXMQ01ABD100_63DLT31YTXX63DLT31YT&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hp&ts=1438285421&z=29502bcca22ac6466cf49ebgfzec0baocb5w0c9qbb&from=cor&uid=TOSHIBAXMQ01ABD100_63DLT31YTXX63DLT31YT HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.istartsurf.com/web/?type=ds&ts=1438285421&z=29502bcca22ac6466cf49ebgfzec0baocb5w0c9qbb&from=cor&uid=TOSHIBAXMQ01ABD100_63DLT31YTXX63DLT31YT&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.istartsurf.com/web/?type=ds&ts=1438285421&z=29502bcca22ac6466cf49ebgfzec0baocb5w0c9qbb&from=cor&uid=TOSHIBAXMQ01ABD100_63DLT31YTXX63DLT31YT&q={searchTerms} SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.istartsurf.com/web/?type=ds&ts=1438285421&z=29502bcca22ac6466cf49ebgfzec0baocb5w0c9qbb&from=cor&uid=TOSHIBAXMQ01ABD100_63DLT31YTXX63DLT31YT&q={searchTerms} SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-05] (IvoSoft) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-22] (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-22] (Oracle Corporation) BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-05] (IvoSoft) BHO-x32: NVRShowBar -> {0B1B0D47-95F7-4bad-9309-A945B655AE61} -> "C:\Program Files (x86)\Naturalsoft\NaturalReader66\IsRegSpy.exe" => Keine Datei BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-05] (IvoSoft) BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> E:\Games\Sword ARC\Arc\Plugins\ArcPluginIE.dll => Keine Datei BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-05] (IvoSoft) Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-05] (IvoSoft) Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-05] (IvoSoft) Toolbar: HKLM-x32 - NVRIEbar.IEbar - {BCBF738C-4891-4B9A-959A-C6BF7F608C3A} - C:\Program Files (x86)\Naturalsoft\NaturalReader66\NVRIEbar.dll [2007-05-16] (www.naturalreaders.com) Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2017-04-17] (McAfee, Inc.) Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2017-04-17] (McAfee, Inc.) FireFox: ======== FF DefaultProfile: ygkbo51b.default-1495529676915 FF ProfilePath: C:\Users\elikal\AppData\Roaming\Mozilla\Firefox\Profiles\jc9q9tbp.FirefoxElikal [2017-05-23] FF Extension: (Sale Clipper) - C:\Users\elikal\AppData\Roaming\Mozilla\Firefox\Profiles\jc9q9tbp.FirefoxElikal\Extensions\{45bde14d-dde4-417e-a26d-b08da043f4ae}.xpi [2015-07-30] [ist nicht signiert] FF ProfilePath: C:\Users\elikal\AppData\Roaming\Mozilla\Firefox\Profiles\ygkbo51b.default-1495529676915 [2017-05-23] FF Extension: (ProxTube) - C:\Users\elikal\AppData\Roaming\Mozilla\Firefox\Profiles\ygkbo51b.default-1495529676915\Extensions\ich@maltegoetz.de.xpi [2017-05-23] FF Extension: (Youtube Best Video Downloader 2) - C:\Users\elikal\AppData\Roaming\Mozilla\Firefox\Profiles\ygkbo51b.default-1495529676915\Extensions\{170503FA-3349-4F17-BC86-001888A5C8E2}.xpi [2017-05-23] FF Extension: (Adblock Plus) - C:\Users\elikal\AppData\Roaming\Mozilla\Firefox\Profiles\ygkbo51b.default-1495529676915\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-05-23] FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2017-03-31] [ist nicht signiert] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_306.dll [2016-02-14] () FF Plugin: @java.com/DTPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-10-22] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-10-22] (Oracle Corporation) FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2017-04-17] () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation) FF Plugin: @wacom.com/wtPlugin,version=2.1.0.2 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2012-05-23] (Wacom) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll [2016-02-14] () FF Plugin-x32: @google.com/sewebplugin -> C:\WINDOWS\system32\npsewebplugin.dll [Keine Datei] FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-01-23] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-01-23] (Intel Corporation) FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2017-04-17] () FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> E:\Games\Sword ARC\Arc\Plugins\npArcPluginFF.dll [Keine Datei] FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.) FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.2 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2012-05-23] (Wacom) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3363342582-2230382534-2369486391-1002: @my.com/Games -> C:\Users\elikal\AppData\Local\MyComGames\NPMyComDetector.dll [2016-06-03] (MY.COM B.V.) FF Plugin HKU\S-1-5-21-3363342582-2230382534-2369486391-1002: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\elikal\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-05-13] (RocketLife, LLP) FF Plugin HKU\S-1-5-21-3363342582-2230382534-2369486391-1002: @spawnapps.com/SpawnApps -> C:\ProgramData\SpawnApps\plugin\npspawnapps1.0.0.4.dll [2013-06-19] (SpawnApps) FF Plugin HKU\S-1-5-21-3363342582-2230382534-2369486391-1002: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\elikal\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-22] (Amazon.com, Inc.) FF Plugin HKU\S-1-5-21-3363342582-2230382534-2369486391-1002: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2015-02-24] () FF Plugin HKU\S-1-5-21-3363342582-2230382534-2369486391-1002: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2012-05-23] (Wacom) Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx ==================== Dienste (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-07-30] (Adobe Systems) [Datei ist nicht signiert] R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [319104 2014-04-29] (Windows (R) Win 7 DDK provider) [Datei ist nicht signiert] R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-19] (Acer Incorporated) R3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1752992 2017-03-29] (Intel Security) S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [469648 2012-11-16] (Acer Incorporated) S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [395024 2016-12-31] (EasyAntiCheat Ltd) R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [662088 2013-03-15] (Acer Incorporated) S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1720888 2015-08-24] (GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6874680 2015-08-24] (GOG.com) R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.) R2 HPSLPSVC; C:\Users\elikal\AppData\Local\Temp\7zS73C9\hpslpsvc64.dll [1039360 2013-07-19] (Hewlett-Packard Co.) [Datei ist nicht signiert] <==== ACHTUNG R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [33640 2017-04-07] (HP Inc.) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [Datei ist nicht signiert] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [167736 2013-01-30] (Intel Corporation) R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [431656 2013-03-15] (Acer Incorporate) R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_6\McApExe.exe [994312 2017-04-04] (McAfee, Inc.) S3 McAWFwk; C:\Program Files\mcafee\msc\McAWFwk.exe [332080 2012-01-26] (McAfee, Inc.) R2 McBootDelayStartSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.) R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.3.322.0\\McCSPServiceHost.exe [2054080 2017-02-28] (McAfee, Inc.) R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.) R2 McNaiAnn; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.) S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [1344472 2017-02-24] (McAfee, Inc.) S4 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.) R2 mcpltsvc; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.) R2 McProxy; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.) R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [241040 2017-01-18] (McAfee, Inc.) R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [385112 2017-01-18] (McAfee, Inc.) R2 mfevtp; C:\windows\system32\mfevtps.exe [343792 2017-01-18] (McAfee, Inc.) R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1551512 2017-02-26] (McAfee, Inc.) S3 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [464440 2017-02-23] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [464440 2017-02-23] (NVIDIA Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-02-23] (NVIDIA Corporation) R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [427064 2017-02-23] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2162064 2017-05-22] (Electronic Arts) S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3136920 2017-05-22] (Electronic Arts) R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1104304 2016-11-15] (Intel Security, Inc.) R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [506912 2016-06-24] (Sony Corporation) R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4088608 2016-09-21] (Safer-Networking Ltd.) [Datei ist nicht signiert] R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [235984 2016-11-24] (Safer-Networking Ltd.) [Datei ist nicht signiert] R2 swpsvr; C:\ProgramData\Microsoft\Windows\system\appidsvr.dll [103936 2017-05-18] (TODO: <Company name>) [Datei ist nicht signiert] S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation) R2 WTabletServiceCon; C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [619904 2012-12-11] (Wacom Technology, Corp.) S3 ArcService; E:\Games\Sword ARC\Arc\ArcService.exe [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ====================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R3 athr; C:\WINDOWS\system32\DRIVERS\athwbx.sys [3893248 2014-04-02] (Qualcomm Atheros Communications, Inc.) R3 BTATH_LWFLT; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [77464 2014-04-29] (Qualcomm Atheros) R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [88464 2017-01-20] (McAfee, Inc.) S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [225432 2017-04-01] (McAfee, Inc.) R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21360 2013-01-10] (Acer Incorporated) R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [487184 2017-01-20] (McAfee, Inc.) R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [366328 2017-01-20] (McAfee, Inc.) S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [85048 2017-04-03] (McAfee, Inc.) R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [518704 2017-01-20] (McAfee, Inc.) R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [923640 2017-01-20] (McAfee, Inc.) R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [498648 2017-01-19] (McAfee, Inc.) S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [109320 2017-01-19] (McAfee, Inc.) R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [110256 2017-01-20] (McAfee, Inc.) R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [254800 2017-01-20] (McAfee, Inc.) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [29240 2017-02-23] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2017-02-23] (NVIDIA Corporation) R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-02-23] (NVIDIA Corporation) R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [15704 2013-01-10] (Acer Incorporated) S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2015-06-04] () S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation) S3 BTATH_HCRP; \SystemRoot\System32\drivers\btath_hcrp.sys [X] S3 EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys [X] S3 xhunter1; \??\C:\WINDOWS\xhunter1.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2017-05-23 18:35 - 2017-05-23 18:36 - 00028508 _____ C:\Users\elikal\Desktop\FRST.txt 2017-05-23 18:35 - 2017-05-23 18:35 - 00000000 ____D C:\FRST 2017-05-23 18:33 - 2017-05-23 18:33 - 02429952 _____ (Farbar) C:\Users\elikal\Desktop\FRST64.exe 2017-05-23 18:02 - 2017-05-23 18:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2017-05-23 18:02 - 2017-05-23 18:02 - 00000000 _____ C:\Users\Public\Documents\temp.dat 2017-05-23 17:58 - 2017-05-23 17:58 - 00000000 ____D C:\Users\elikal\Documents\ProcAlyzer Dumps 2017-05-23 17:48 - 2017-05-23 17:48 - 01663672 _____ (Malwarebytes) C:\Users\elikal\Downloads\JRT.exe 2017-05-23 17:34 - 2017-05-23 17:34 - 04110280 _____ C:\Users\elikal\Desktop\adwcleaner_6.047.exe 2017-05-23 17:32 - 2017-05-23 17:32 - 00000000 _____ C:\WINDOWS\SysWOW64\1 2017-05-23 14:27 - 2017-05-23 14:27 - 00000000 ____D C:\Jopetiondipas 2017-05-23 10:54 - 2017-05-23 10:54 - 00000000 ____D C:\Users\elikal\Desktop\Alte Firefox-Daten 2017-05-23 10:51 - 2017-05-23 10:51 - 00661857 _____ C:\Users\elikal\Desktop\bookmarks.html 2017-05-23 10:51 - 2017-05-23 10:51 - 00320904 _____ C:\Users\elikal\Desktop\bookmarks-2017-05-23.json 2017-05-22 22:08 - 2017-05-23 18:13 - 00003860 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse 2017-05-22 22:08 - 2017-05-23 16:33 - 00004034 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse 2017-05-22 17:30 - 2017-05-22 18:11 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy 2017-05-22 17:30 - 2017-05-22 17:42 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2 2017-05-22 17:30 - 2017-05-22 17:30 - 00001411 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk 2017-05-22 17:30 - 2017-05-22 17:30 - 00001399 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk 2017-05-22 17:30 - 2017-05-22 17:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2 2017-05-22 17:30 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean64.exe 2017-05-22 17:28 - 2017-05-22 17:29 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\elikal\Downloads\spybot-2.4.exe 2017-05-22 12:27 - 2017-05-22 12:27 - 00000000 ____D C:\Program Files (x86)\fa742xx2 2017-05-21 07:15 - 2017-05-21 07:48 - 00000000 ____D C:\Users\elikal\Documents\Bandicam 2017-05-21 07:15 - 2017-05-21 07:15 - 00000000 ____D C:\Users\elikal\AppData\Roaming\Bandicam Company 2017-05-21 07:14 - 2017-05-21 07:14 - 00001008 _____ C:\Users\Public\Desktop\Bandicam.lnk 2017-05-21 07:14 - 2017-05-21 07:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam 2017-05-21 07:14 - 2017-05-21 07:14 - 00000000 ____D C:\Program Files (x86)\BandiMPEG1 2017-05-21 07:14 - 2017-05-21 07:14 - 00000000 ____D C:\Program Files (x86)\Bandicam 2017-05-21 07:13 - 2017-05-21 07:13 - 16992080 _____ (Bandicam Company) C:\Users\elikal\Downloads\bdcamsetup.exe 2017-05-20 04:39 - 2017-05-20 04:50 - 397720838 _____ C:\Users\elikal\Desktop\Mein Film2.mp4 2017-05-20 04:12 - 2017-05-20 04:12 - 00002792 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC 2017-05-20 04:12 - 2017-05-20 04:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2017-05-20 04:12 - 2017-05-20 04:12 - 00000000 ____D C:\Program Files\CCleaner 2017-05-20 02:46 - 2017-05-20 02:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2017-05-20 02:45 - 2017-05-20 02:45 - 00246352 _____ (Mozilla) C:\Users\elikal\Downloads\Firefox Setup Stub 53.0.2.exe 2017-05-20 02:45 - 2017-05-20 02:45 - 00246328 _____ (Mozilla) C:\Users\elikal\Downloads\Firefox Setup Stub 53.0.3.exe 2017-05-19 22:43 - 2017-05-19 22:43 - 00002169 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-05-19 22:43 - 2017-05-19 22:43 - 00000000 ____D C:\Users\Public\Documents\Google 2017-05-19 22:40 - 2017-05-19 22:40 - 00000000 ____D C:\Program Files (x86)\MIO 2017-05-19 22:38 - 2017-05-19 22:38 - 00000000 ____D C:\Program Files\fa742xx2 2017-05-19 11:04 - 2017-05-20 02:47 - 00001179 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2017-05-19 11:04 - 2017-05-20 02:47 - 00001167 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2017-05-19 10:27 - 2017-05-19 10:58 - 00000000 ____D C:\Users\elikal\AppData\Roaming\Coikewardjesety 2017-05-19 10:27 - 2017-05-19 10:27 - 00005974 _____ C:\WINDOWS\System32\Tasks\Nazish Engine 2017-05-19 10:27 - 2017-05-19 10:27 - 00000000 ____D C:\Program Files (x86)\Nazish Engine 2017-05-19 10:26 - 2017-05-23 17:28 - 00000000 ____D C:\Program Files (x86)\Arucalyckeho 2017-05-19 08:51 - 2017-05-19 08:51 - 00000000 ____D C:\Users\elikal\AppData\Local\SlideshowMaker 2017-05-19 08:51 - 2017-05-19 08:51 - 00000000 ____D C:\Users\elikal\AppData\Local\Movavi 2017-05-19 08:50 - 2017-05-19 14:48 - 00000000 ____D C:\ProgramData\Movavi Slideshow Creator 2 2017-05-19 08:50 - 2017-05-19 08:50 - 00004968 _____ C:\ProgramData\mpbppaym.ztc 2017-05-19 08:50 - 2017-05-19 08:50 - 00001169 _____ C:\Users\Public\Desktop\Movavi Slideshow Maker 2.lnk 2017-05-19 08:50 - 2017-05-19 08:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movavi Slideshow Maker 2 2017-05-19 08:50 - 2017-05-19 08:50 - 00000000 ____D C:\Program Files (x86)\Movavi Slideshow Maker 2 2017-05-19 08:48 - 2017-05-19 08:49 - 62034952 _____ (Movavi) C:\Users\elikal\Downloads\MovaviSlideshowMakerDistribSetupF.exe 2017-05-19 08:35 - 2017-05-19 08:35 - 00000000 ____D C:\Users\elikal\Documents\FlashIntegro 2017-05-19 08:35 - 2017-05-19 08:35 - 00000000 ____D C:\Users\elikal\AppData\Roaming\FlashIntegro 2017-05-19 08:35 - 2017-05-19 08:35 - 00000000 ____D C:\Users\elikal\AppData\Local\CrashRpt 2017-05-19 08:35 - 2017-05-12 11:38 - 00071480 _____ (Flash-Integro LLC) C:\WINDOWS\SysWOW64\mslvddsfilter3.ax 2017-05-19 08:35 - 2011-12-07 18:32 - 00216064 _____ ( ) C:\WINDOWS\SysWOW64\Lagarith.dll 2017-05-19 08:35 - 2005-08-01 18:43 - 00245760 _____ () C:\WINDOWS\SysWOW64\lame.ax 2017-05-19 08:35 - 2004-09-06 15:06 - 00053248 _____ C:\WINDOWS\SysWOW64\xvid.ax 2017-05-19 08:35 - 2003-05-22 11:26 - 00638976 _____ (DivXNetworks, Inc.) C:\WINDOWS\SysWOW64\divx.dll 2017-05-19 08:35 - 2003-05-22 11:26 - 00221215 _____ (DivXNetworks, Inc.) C:\WINDOWS\SysWOW64\divxdec.ax 2017-05-19 08:35 - 2003-05-21 22:50 - 00261632 _____ (MainConcept) C:\WINDOWS\SysWOW64\mcdvd_32.dll 2017-05-19 08:35 - 2003-05-21 22:50 - 00156910 _____ C:\WINDOWS\WMSysPr8.prx 2017-05-19 08:35 - 2003-05-21 22:50 - 00082944 _____ (Voxware, Inc.) C:\WINDOWS\SysWOW64\vct3216.acm 2017-05-19 08:35 - 2003-05-21 22:50 - 00038912 _____ (NCT Company) C:\WINDOWS\SysWOW64\alf2cd.acm 2017-05-19 08:35 - 2003-03-25 04:49 - 00098304 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\WINDOWS\SysWOW64\L3CODECX.AX 2017-05-19 08:35 - 2002-08-19 23:41 - 00413760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg4c32.dll 2017-05-19 08:35 - 2000-03-14 19:55 - 00013239 _____ (SHARP Corporation) C:\WINDOWS\SysWOW64\Scg726.acm 2017-05-19 08:33 - 2017-05-19 08:34 - 38434920 _____ (Flash-Integro LLC ) C:\Users\elikal\Downloads\video_editor.exe 2017-05-19 08:18 - 2017-05-19 08:18 - 00000000 ____D C:\Users\elikal\.MCTranscodingSDK 2017-05-19 08:16 - 2017-05-19 08:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightworks 2017-05-19 08:16 - 2017-05-19 08:16 - 00000000 ____D C:\ProgramData\Geevs 2017-05-19 08:15 - 2017-05-19 08:19 - 00000000 ____D C:\Users\Public\Documents\Lightworks 2017-05-19 08:14 - 2017-05-19 10:35 - 00000000 ____D C:\Program Files\Lightworks 2017-05-19 08:11 - 2017-05-19 08:13 - 90864952 _____ (EditShare) C:\Users\elikal\Downloads\lightworks_v14.0.0_full_64bit_setup.exe 2017-05-18 23:55 - 2017-05-19 09:39 - 00000000 ____D C:\Users\elikal\Desktop\Music List 2017-05-18 09:56 - 2017-05-18 09:56 - 01155072 _____ C:\WINDOWS\57388d287c280bb669c7dc574d852870.exe 2017-05-18 09:56 - 2017-05-18 09:56 - 00051620 _____ C:\WINDOWS\uninstaller.dat 2017-05-11 15:59 - 2007-04-20 16:40 - 00057344 _____ ( ) C:\WINDOWS\SysWOW64\vsnp325.dll 2017-05-11 15:59 - 2007-02-12 14:50 - 00020480 _____ () C:\WINDOWS\FixCamera.exe 2017-05-11 15:59 - 2006-07-03 10:31 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\amcap.exe 2017-05-11 15:59 - 2005-11-23 13:55 - 00053248 _____ ( ) C:\WINDOWS\SysWOW64\csnp325.dll 2017-05-11 15:58 - 2017-05-11 15:58 - 08758215 _____ C:\Users\elikal\Downloads\00011596_w98seme2000xpvista_v1_0.zip 2017-05-11 14:18 - 2017-04-28 23:15 - 07444824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2017-05-11 14:18 - 2017-04-26 16:06 - 04169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2017-05-11 14:18 - 2017-04-16 12:23 - 02176584 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2017-05-11 14:18 - 2017-04-16 12:23 - 01662096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2017-05-11 14:18 - 2017-04-16 12:23 - 01063464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2017-05-11 14:18 - 2017-04-16 12:18 - 01135288 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2017-05-11 14:18 - 2017-04-16 12:18 - 00803192 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2017-05-11 14:18 - 2017-04-16 11:07 - 01566032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2017-05-11 14:18 - 2017-04-16 11:07 - 01213792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2017-05-11 14:18 - 2017-04-16 11:07 - 00548032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll 2017-05-11 14:18 - 2017-04-16 11:05 - 00612096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2017-05-11 14:18 - 2017-04-16 10:54 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2017-05-11 14:18 - 2017-04-16 10:54 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll 2017-05-11 14:18 - 2017-04-16 10:51 - 02899456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2017-05-11 14:18 - 2017-04-16 10:37 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe 2017-05-11 14:18 - 2017-04-16 10:36 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2017-05-11 14:18 - 2017-04-16 10:35 - 25741312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2017-05-11 14:18 - 2017-04-16 10:18 - 05977600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2017-05-11 14:18 - 2017-04-16 10:16 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2017-05-11 14:18 - 2017-04-16 10:10 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx 2017-05-11 14:18 - 2017-04-16 10:03 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll 2017-05-11 14:18 - 2017-04-16 10:02 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll 2017-05-11 14:18 - 2017-04-16 10:01 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2017-05-11 14:18 - 2017-04-16 10:00 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll 2017-05-11 14:18 - 2017-04-16 10:00 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll 2017-05-11 14:18 - 2017-04-16 09:53 - 02290176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2017-05-11 14:18 - 2017-04-16 09:52 - 01033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll 2017-05-11 14:18 - 2017-04-16 09:49 - 20278272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2017-05-11 14:18 - 2017-04-16 09:47 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2017-05-11 14:18 - 2017-04-16 09:43 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll 2017-05-11 14:18 - 2017-04-16 09:40 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2017-05-11 14:18 - 2017-04-16 09:40 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2017-05-11 14:18 - 2017-04-16 09:40 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2017-05-11 14:18 - 2017-04-16 09:37 - 02132992 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2017-05-11 14:18 - 2017-04-16 09:29 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx 2017-05-11 14:18 - 2017-04-16 09:24 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll 2017-05-11 14:18 - 2017-04-16 09:23 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll 2017-05-11 14:18 - 2017-04-16 09:22 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll 2017-05-11 14:18 - 2017-04-16 09:22 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll 2017-05-11 14:18 - 2017-04-16 09:17 - 00880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll 2017-05-11 14:18 - 2017-04-16 09:12 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll 2017-05-11 14:18 - 2017-04-16 09:10 - 15250944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2017-05-11 14:18 - 2017-04-16 09:10 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2017-05-11 14:18 - 2017-04-16 09:10 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2017-05-11 14:18 - 2017-04-16 09:08 - 04548608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2017-05-11 14:18 - 2017-04-16 09:08 - 02057216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2017-05-11 14:18 - 2017-04-16 09:04 - 03241472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2017-05-11 14:18 - 2017-04-16 09:02 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll 2017-05-11 14:18 - 2017-04-16 08:53 - 13661184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2017-05-11 14:18 - 2017-04-16 08:50 - 01544704 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2017-05-11 14:18 - 2017-04-16 08:40 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2017-05-11 14:18 - 2017-04-16 08:37 - 02767872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2017-05-11 14:18 - 2017-04-16 08:34 - 01314816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2017-05-11 14:18 - 2017-04-16 08:34 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2017-05-11 14:18 - 2017-04-10 00:00 - 01548640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2017-05-11 14:18 - 2017-04-10 00:00 - 00388448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2017-05-11 14:18 - 2017-04-08 01:20 - 01375960 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2017-05-11 14:18 - 2017-04-07 15:56 - 01094656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2017-05-11 14:18 - 2017-04-02 18:41 - 00684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2017-05-11 14:18 - 2017-04-02 18:41 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys 2017-05-11 14:18 - 2017-04-01 01:16 - 01968408 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll 2017-05-11 14:18 - 2017-03-31 23:59 - 01612504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll 2017-05-11 14:18 - 2017-03-13 18:38 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmitomi.dll 2017-05-11 14:18 - 2017-03-13 18:29 - 02609664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll 2017-05-11 14:18 - 2017-03-13 18:25 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll 2017-05-11 14:18 - 2017-03-13 18:13 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmitomi.dll 2017-05-11 14:18 - 2017-03-13 18:07 - 02170880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll 2017-05-11 14:18 - 2017-03-13 18:06 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll 2017-05-11 14:18 - 2017-03-11 21:34 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys 2017-05-11 14:18 - 2017-03-11 21:32 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2017-05-11 14:18 - 2017-03-11 21:32 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys 2017-05-11 14:18 - 2017-03-11 20:49 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll 2017-05-11 14:18 - 2017-03-11 19:58 - 01437696 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2017-05-11 14:18 - 2017-03-11 19:54 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll 2017-05-11 14:18 - 2017-03-11 01:38 - 02017624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2017-05-11 14:18 - 2017-03-11 01:38 - 00275800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys 2017-05-11 14:18 - 2017-03-09 22:52 - 00293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll 2017-05-11 14:18 - 2017-03-09 21:17 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll 2017-05-11 14:18 - 2017-03-08 04:44 - 00448285 _____ C:\WINDOWS\system32\ApnDatabase.xml 2017-05-11 00:12 - 2017-05-21 07:50 - 00000000 ____D C:\Users\elikal\Desktop\first order 2017-05-03 06:56 - 2017-05-03 06:58 - 55880720 _____ (Softland) C:\Users\elikal\Downloads\dopdf-full.exe 2017-05-02 19:29 - 2017-05-02 19:29 - 04946582 _____ C:\Users\elikal\Downloads\sjippq.zip 2017-04-27 19:53 - 2017-04-27 19:54 - 05643260 _____ C:\Users\elikal\Downloads\betterui1.21.rar 2017-04-26 00:32 - 2017-04-26 03:00 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.3 2017-04-26 00:32 - 2017-04-26 00:32 - 00001132 _____ C:\Users\Public\Desktop\OpenOffice 4.1.3.lnk 2017-04-25 18:28 - 2017-04-25 19:47 - 171330228 _____ C:\Users\elikal\Downloads\Apache_OpenOffice_4.1.3_Win_x86_install_de.exe 2017-04-23 20:41 - 2017-04-23 20:41 - 00000000 ___RD C:\Program Files (x86)\Skype 2017-04-23 20:41 - 2017-04-23 20:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2017-05-23 18:11 - 2016-11-11 02:49 - 00000000 ____D C:\ProgramData\NVIDIA 2017-05-23 18:07 - 2016-11-15 21:30 - 00000000 ____D C:\Users\elikal\AppData\LocalLow\Mozilla 2017-05-23 18:07 - 2013-07-30 20:08 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3363342582-2230382534-2369486391-1002 2017-05-23 18:00 - 2016-10-23 10:45 - 00000000 ____D C:\Users\elikal\Desktop\desk work 2017-05-23 18:00 - 2013-09-04 20:44 - 00000000 ___RD C:\Users\elikal\Desktop\ABLAGE II 2017-05-23 17:57 - 2013-12-04 15:40 - 00000000 ___DO C:\Users\elikal\SkyDrive 2017-05-23 17:56 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-05-23 17:56 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf 2017-05-23 17:55 - 2015-08-31 19:46 - 00000000 ____D C:\AdwCleaner 2017-05-23 17:55 - 2013-08-22 15:25 - 00524288 ___SH C:\WINDOWS\system32\config\BBI 2017-05-23 17:32 - 2013-08-04 22:01 - 00000000 ____D C:\WINDOWS\system32\MRT 2017-05-23 17:32 - 2013-07-31 01:25 - 132223576 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2017-05-23 15:45 - 2014-03-06 22:42 - 00003934 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{664A7BCC-F95F-4469-9DED-CD4812737E98} 2017-05-23 10:09 - 2013-09-30 06:14 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-05-23 10:09 - 2013-09-30 05:56 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat 2017-05-23 10:09 - 2013-09-30 05:56 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat 2017-05-23 00:10 - 2013-07-30 21:40 - 00000000 ____D C:\Program Files (x86)\Steam 2017-05-22 17:43 - 2015-07-21 20:40 - 00000000 ____D C:\Program Files\Common Files\AV 2017-05-22 17:21 - 2013-12-03 11:18 - 00000000 ____D C:\Users\elikal\AppData\Roaming\ClassicShell 2017-05-22 15:48 - 2013-08-03 22:24 - 00000000 ____D C:\ProgramData\Origin 2017-05-22 14:33 - 2013-08-03 22:26 - 00000000 ____D C:\Users\elikal\AppData\Roaming\Origin 2017-05-22 14:24 - 2014-01-17 01:51 - 00000000 ____D C:\Users\elikal\AppData\Local\Audible 2017-05-22 14:08 - 2013-07-30 21:29 - 00000000 ____D C:\Users\elikal\Documents\My PSP Files 2017-05-22 06:03 - 2013-08-03 22:24 - 00000000 ____D C:\Program Files (x86)\Origin 2017-05-21 07:18 - 2013-07-30 20:07 - 00000000 ____D C:\Users\elikal\AppData\Local\CrashDumps 2017-05-20 04:51 - 2013-08-16 22:59 - 00000000 ____D C:\Users\elikal\AppData\Roaming\Media Player Classic 2017-05-20 04:21 - 2014-03-28 02:19 - 00000000 ____D C:\Users\elikal\AppData\Roaming\TS3Client 2017-05-20 04:18 - 2013-12-04 15:00 - 00000000 ___DC C:\WINDOWS\Panther 2017-05-20 03:36 - 2013-07-30 20:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2017-05-20 03:34 - 2013-12-04 15:10 - 00000000 ____D C:\Users\elikal 2017-05-20 02:27 - 2016-06-10 11:53 - 00000354 _____ C:\WINDOWS\Tasks\HPCeeScheduleForelikal.job 2017-05-20 02:13 - 2015-08-26 22:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft 2017-05-19 20:05 - 2016-06-10 11:53 - 00003170 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForelikal 2017-05-17 00:19 - 2015-11-28 12:56 - 00000000 ____D C:\Users\elikal\Desktop\Pagan Work 2017-05-16 18:23 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM 2017-05-13 22:33 - 2015-08-03 11:36 - 00000000 ____D C:\Users\elikal\AppData\Roaming\Skype 2017-05-13 18:14 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache 2017-05-13 15:15 - 2013-08-22 16:44 - 00394752 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2017-05-13 15:09 - 2013-04-18 12:08 - 00000000 ____D C:\Program Files (x86)\McAfee 2017-05-13 15:04 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions 2017-05-13 15:02 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp 2017-05-11 16:02 - 2013-07-30 21:29 - 00000000 ____D C:\ProgramData\InstallShield 2017-05-11 16:02 - 2013-04-18 12:11 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2017-05-11 16:02 - 2012-07-26 07:26 - 00000133 _____ C:\WINDOWS\win.ini 2017-05-09 13:57 - 2013-04-18 12:08 - 00000000 ____D C:\Program Files\Common Files\mcafee 2017-05-09 13:57 - 2012-07-26 10:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP 2017-05-09 13:55 - 2016-05-26 02:23 - 00003068 _____ C:\WINDOWS\System32\Tasks\McAfeeLogon 2017-05-09 13:55 - 2015-06-26 04:05 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee 2017-05-05 16:17 - 2014-06-27 03:30 - 00000000 ____D C:\ProgramData\Stardock 2017-05-05 16:17 - 2013-07-31 00:55 - 00000000 ____D C:\Users\elikal\Documents\my games 2017-05-05 00:32 - 2016-11-25 01:59 - 00004476 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2017-05-04 11:15 - 2014-08-31 20:43 - 00000000 ____D C:\Users\elikal\AppData\Local\Adobe 2017-05-04 11:04 - 2017-02-04 19:35 - 00000000 ____D C:\ProgramData\tmp 2017-05-03 07:09 - 2017-02-04 19:35 - 00000000 ____D C:\ProgramData\hps 2017-05-03 06:36 - 2014-07-29 21:05 - 00000000 ____D C:\Users\elikal\AppData\Local\Blurb 2017-05-03 06:34 - 2014-07-29 21:05 - 00000000 ____D C:\Users\elikal\Documents\Blurb 2017-04-29 00:44 - 2017-04-15 09:18 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2017-04-29 00:44 - 2017-04-15 09:18 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2017-04-28 15:39 - 2013-12-23 18:29 - 00003542 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2017-04-28 15:39 - 2013-12-23 18:29 - 00003414 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2017-04-26 03:00 - 2013-10-10 05:15 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4 2017-04-23 20:41 - 2015-08-03 11:36 - 00000000 ____D C:\ProgramData\Skype ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2017-05-19 08:03 - 2017-05-19 08:08 - 0001371 _____ () C:\Users\elikal\AppData\Roaming\vidiot.ini 2014-01-05 05:52 - 2014-02-27 17:56 - 1065984 _____ () C:\Users\elikal\AppData\Local\file__0.localstorage 2015-07-30 21:39 - 2015-07-30 21:39 - 0000057 _____ () C:\ProgramData\Ament.ini 2013-07-13 04:04 - 2013-07-13 04:04 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2017-05-19 08:50 - 2017-05-19 08:50 - 0004968 _____ () C:\ProgramData\mpbppaym.ztc ==================== Bamital & volsnap ====================== (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert C:\WINDOWS\explorer.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert C:\WINDOWS\system32\services.exe => Datei ist digital signiert C:\WINDOWS\system32\User32.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2017-05-23 10:12 ==================== Ende von FRST.txt ============================ Geändert von MaxBerlin (23.05.2017 um 17:52 Uhr) |
23.05.2017, 17:55 | #2 |
| Win 8.1 - Rightcoupon geht nicht weg - kommt mit Selbstanalyse nicht weiter Hier die zweite Datei, ich hoffe ich habe alles richtig gemacht, mich macht das alles total nervös
__________________Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 22-05-2017 durchgeführt von elikal (23-05-2017 18:36:36) Gestartet von C:\Users\elikal\Desktop Windows 8.1 (Update) (X64) (2013-12-04 13:35:43) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-3363342582-2230382534-2369486391-500 - Administrator - Disabled) elikal (S-1-5-21-3363342582-2230382534-2369486391-1002 - Administrator - Enabled) => C:\Users\elikal Gast (S-1-5-21-3363342582-2230382534-2369486391-501 - Limited - Disabled) ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: McAfee VirusScan (Enabled - Up to date) {8BCDACFA-D264-3528-5EF8-E94FD0BC1FBC} AS: Spybot - Search and Destroy (Disabled - Out of date) {A16C3F68-9280-E053-1818-342707FECF4D} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: McAfee VirusScan (Enabled - Up to date) {30AC4D1E-F45E-3AA6-6448-D23DAB3B5501} FW: McAfee Firewall (Enabled) {B3F62DDF-980B-3470-75A7-407A2E6F58C7} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) AbleReader (HKLM-x32\...\{92A7C138-917F-4280-A5F7-DE2FC9F8F2DD}) (Version: 1.00.0000 - AbleReader.com) Acer Device Fast-lane (HKLM\...\{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}) (Version: 1.00.3011 - Acer Incorporated) Acer Instant Update Service (HKLM\...\{81C6F800-A69B-4E70-9DC0-74732F8B00E7}) (Version: 1.00.3015 - Acer Incorporated) Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.3003 - Acer Incorporated) Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3013 - Acer Incorporated) Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3016 - Acer Incorporated) Acer USB Charge Manager (HKLM\...\{07E867C5-0C48-40FF-A013-DDAF4565AD47}) (Version: 2.00.3003 - Acer Incorporated) AcerCloud Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.01.2008 - Acer Incorporated) AcerCloud Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.02.2021 - Acer Incorporated) Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated) Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.306 - Adobe Systems Incorporated) Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.) Allods Online DE (HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\Allods Online DE) (Version: 1.95 - My.com B.V.) Amazon MP3-Downloader 1.0.18 (HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\Amazon MP3-Downloader) (Version: 1.0.18 - Amazon Services LLC) Anno 1404 (HKLM\...\Steam App 33250) (Version: - Blue Byte) Anno 1404: Venice (HKLM\...\Steam App 33350) (Version: - Blue Byte) Ansel (Version: 378.78 - NVIDIA Corporation) Hidden Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9668 - Perfect World Entertainment) Archeage Beta (HKLM-x32\...\Glyph Archeage Beta) (Version: - Trion Worlds, Inc.) AT&T Natural Voices Reiner v. 1.4 (HKLM-x32\...\AT&T Natural Voice Reiner_is1) (Version: 1.4 - NextUp Technologies) Audacity 1.2.6 (HKLM-x32\...\Audacity_is1) (Version: - ) AudibleManager (HKLM-x32\...\AudibleManager) (Version: 150995208.4759644.48.2147344384 - Audible, Inc.) AVM FRITZ!Box Dokumentation (HKLM-x32\...\AVMFBox) (Version: - AVM Berlin) Bandicam (HKLM-x32\...\Bandicam) (Version: 3.4.0.1227 - Bandicam.com) Bandicam MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandicam.com) Bandizip (HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\Bandizip) (Version: 3.07 - Bandisoft.com) BitTorrent (HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\BitTorrent) (Version: 7.8.1.30016 - BitTorrent Inc.) BookWright Version 1.0.41 (HKLM-x32\...\{C17978EB-5A2C-40E3-B351-F03A27245BF9}_is1) (Version: 1.0.41 - Blurb, Inc.) Caricature (HKLM-x32\...\Caricature) (Version: - ) CC3 (HKLM-x32\...\CC3) (Version: 3.42 - ProFantasy Software) CC3 (x32 Version: 3.42 - ProFantasy Software) Hidden CC3 Update 11 (HKLM-x32\...\CC3 Update 11) (Version: 3.43 - ProFantasy Software) CC3 Update 11 (x32 Version: 3.43 - ProFantasy Software) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.30 - Piriform) CDisplayEx 1.10.29 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.) Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine) Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version: - Colossal Order) Classic Shell (HKLM\...\{023F92C9-AB10-4C54-BF09-C550AEC37917}) (Version: 4.0.6 - IvoSoft) clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.02.2012 - Acer Incorporated) clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.02.2016 - Acer Incorporated) clear.fi SDK - Video 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden clear.fi SDK- Movie 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden CPUID HWMonitor 1.30 (HKLM\...\CPUID HWMonitor_is1) (Version: - ) Crusader Kings II (HKLM-x32\...\Steam App 203770) (Version: - Paradox Development Studio) CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3729_45993 - CyberLink Corp.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DC Universe Online Live (HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\DG0-DC Universe Online Live) (Version: - Sony Online Entertainment) DC Universe Online Live (HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\SOE-DC Universe Online Live PSG) (Version: - Sony Online Entertainment) Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.69.43.024017 - Electronic Arts Inc.) Die Sims™ 3 Jahreszeiten (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts) Die Sims™ 3 Lebensfreude (HKLM-x32\...\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}) (Version: 8.0.152 - Electronic Arts) Die Sims™ 3 Showtime (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts) Die Sims™ 3 Stadt-Accessoires (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts) Die Sims™ 3 Traumkarrieren (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts) Die Sims™ 3 Wildes Studentenleben (HKLM-x32\...\{F26DE8EF-F2CF-40DC-8CDA-CC0D82D11B36}) (Version: 18.0.126 - Electronic Arts) Die Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.29.69.1020 - Electronic Arts Inc.) Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.17 - Dolby Laboratories Inc) Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.12 - Electronic Arts) Dungeon Designer 3 (HKLM-x32\...\Dungeon Designer 3) (Version: 3.0 - ProFantasy Software) Dungeon Designer 3 (x32 Version: 3.0 - ProFantasy Software) Hidden DYNASTY WARRIORS 8: Xtreme Legends Complete Edition (HKLM-x32\...\Steam App 278080) (Version: - TECMO KOEI GAMES CO., LTD.) eBay Worldwide (HKLM-x32\...\{91589413-6675-4C27-8AFC-EFB9103B90A5}) (Version: 2.4.0105 - OEM) ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - ) ETDWare PS/2-X64 11.6.19.204_WHQL (HKLM\...\Elantech) (Version: 11.6.19.204 - ELAN Microelectronic Corp.) Europa Universalis IV (HKLM\...\Steam App 236850) (Version: - Paradox Development Studio) Fallout 4 (HKLM-x32\...\Steam App 377160) (Version: - Bethesda Game Studios) FastCAD (HKLM-x32\...\FastCAD) (Version: - ) FastPictureViewer Codec Pack 3.6.0.91 (HKLM-x32\...\{4F03975E-760C-464B-A3B6-4A9B11AEDFFA}) (Version: 3.6.0.91 - Axel Rietschin Software Developments) Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - ) Galactic Civilizations III (HKLM-x32\...\Steam App 226860) (Version: - Stardock Entertainment) Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.) GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden Hearts of Iron IV (HKLM\...\Steam App 394360) (Version: - Paradox Development Studio) HP Officejet 2620 series - Grundlegende Software für das Gerät (HKLM\...\{CED70530-FA0D-4A58-BBF0-1588B38247A0}) (Version: 32.2.188.47710 - Hewlett-Packard Co.) HP Officejet 2620 series Hilfe (HKLM-x32\...\{B356F70C-F1AD-4B24-B2DD-6EAABFCB1B33}) (Version: 31.0.0 - Hewlett Packard) HP Smart Printing Packages (HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\HP Smart Printing Packages) (Version: - ) <==== ACHTUNG HP Support Assistant (HKLM-x32\...\{61EB474B-67A6-47F4-B1B7-386851BAB3D0}) (Version: 8.4.14.41 - Hewlett-Packard Company) HP Support Solutions Framework (HKLM-x32\...\{8F1A441E-AD6D-4732-BD6A-F38D5F1D1E47}) (Version: 12.6.14.19 - Hewlett-Packard Company) Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3006 - Acer Incorporated) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3355 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation) Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.63463 - Intel Corporation) iSmartViewPro version 1.3 (HKLM-x32\...\{8EC13308-5065-43FA-A8E8-E985F18DAB89}_is1) (Version: 1.3 - iSmartViewPro, Inc.) Jasc Paint Shop Pro 9 (HKLM-x32\...\{F843C6A3-224D-4615-94F8-3C461BD9AEA0}) (Version: 9.00.0000 - Jasc Software Inc) Java 7 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417045FF}) (Version: 7.0.450 - Oracle) Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.550 - Oracle) Klavitomat 6.0.6.49 (HKLM-x32\...\{EFC03216-2375-4D6E-BDAF-89F4E6569DFC}_is1) (Version: - Afonso Sanz - EDV Beratung) K-Lite Mega Codec Pack 10.0.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.0.0 - ) Lagarith lossless video codec (Remove Only) (HKLM\...\LAGARITH) (Version: - ) Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.8102 - Acer Incorporated) Mass Effect™: Andromeda (HKLM-x32\...\{72BBCA87-9350-48BC-9E2F-6DBC1E80C993}) (Version: 1.0.0.7 - Electronic Arts) Master of Orion (HKLM-x32\...\Steam App 298050) (Version: - NGD Studios) Medieval II: Total War Kingdoms (HKLM-x32\...\Steam App 4780) (Version: - The Creative Assembly) Mein CEWE FOTOBUCH (HKLM-x32\...\Mein CEWE FOTOBUCH) (Version: 6.2.1 - CEWE Stiftung u Co. KGaA) MergeModule_x64 (Version: 9.3.00 - Sony Corporation) Hidden MergeModule_x86 (x32 Version: 9.3.00 - Sony Corporation) Hidden Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation) Microsoft Office 2000 Premium (HKLM-x32\...\{00000407-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2816 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Minion (HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\{Minion}}_is1) (Version: 2.0 - ZAM Network LLC) Movavi Slideshow Maker 2 (HKLM-x32\...\Movavi Slideshow Maker 2) (Version: 2.1.0 - Movavi) <==== ACHTUNG Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 53.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 53.0.3 (x86 de)) (Version: 53.0.3 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 53.0.3 - Mozilla) Mozilla Thunderbird 45.8.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 45.8.0 (x86 de)) (Version: 45.8.0 - Mozilla) MuseScore 1.3 (HKLM-x32\...\MuseScore) (Version: 1.3.0 - Werner Schweer and Others) My.com Game Center (HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\MyComGames) (Version: 3.183 - My.com B.V.) NaturalReader (HKLM-x32\...\{E8B11B05-5D7C-479B-95F0-71E311FB7982}) (Version: 6.6 - Naturalsoft Limited) NEF Codec (HKLM-x32\...\{D6506521-0959-4FA3-875F-E2E28830B0D2}) (Version: 1.00.0000 - Nikon) Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{4CA8F973-6377-4ABF-9ED5-CC2323B3C000}) (Version: 12.5.00500 - Nero AG) Neverwinter (HKLM\...\Steam App 109600) (Version: - Cryptic Studios) NextUp-Acapela Brightspeech Heather22 US English Voice (HKLM-x32\...\{511ECAD8-3F08-4A16-A808-E20E5C44D93B}) (Version: 1.00.0000 - NextUp Technologies, LLC) Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.6 - Black Tree Gaming) NVIDIA GeForce Experience 3.4.0.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.4.0.70 - NVIDIA Corporation) NVIDIA Grafiktreiber 378.78 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 378.78 - NVIDIA Corporation) NVIDIA PhysX (Legacy) (HKLM-x32\...\{FAAC26AD-73BA-40CE-86AA-C9213F9E064A}) (Version: 9.13.0604 - NVIDIA Corporation) NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NvNodejs (Version: 3.4.0.70 - NVIDIA Corporation) Hidden NvTelemetry (Version: 2.3.16.0 - NVIDIA Corporation) Hidden NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2008 - Acer) Office Addin 2003 (HKLM-x32\...\{1FCC073B-CC01-4443-AD20-E559F66E6E83}) (Version: 2.02.2008 - Acer) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) OpenOffice 4.1.3 (HKLM-x32\...\{8D5FCC56-BB9F-4122-923C-71753F50F6F5}) (Version: 4.13.9783 - Apache Software Foundation) Origin (HKLM-x32\...\Origin) (Version: 10.4.10.46586 - Electronic Arts, Inc.) PlayMemories Home (HKLM-x32\...\{94F4815B-755A-4FFA-AFDC-EE8FE776981E}) (Version: 5.2.01.06240 - Sony Corporation) PMB_ModeEditor (x32 Version: 9.3.00 - Sony Corporation) Hidden PMB_ServiceUploader (x32 Version: 10.2.01 - Sony Corporation) Hidden Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.322 - Qualcomm Atheros Communications) Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.33 - Qualcomm Atheros) Realpolitiks Demo (HKLM\...\Steam App 588740) (Version: - Jujubee S.A.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6865 - Realtek Semiconductor Corp.) Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.9200.28130 - Realtek Semiconductor Corp.) Sansa Updater (HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\Sansa Updater) (Version: 1.406 - SanDisk Corporation) SecurityCenter (HKLM-x32\...\MSC) (Version: 14.0 R13 - McAfee, Inc.) Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee) SHIELD Streaming (Version: 7.1.0351 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 3.4.0.70 - NVIDIA Corporation) Hidden Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version: - 2K Games, Inc.) Sid Meier's Civilization V SDK (HKLM-x32\...\Steam App 16830) (Version: - Firaxis Games) Sid Meier's Civilization VI (HKLM\...\Steam App 289070) (Version: - Firaxis) Sid Meier's Civilization: Beyond Earth (HKLM-x32\...\Steam App 65980) (Version: - Firaxis Games) SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.96.5684 - Electronic Arts) Sims 4 Studio (HKLM-x32\...\{81169274-8F0F-4FB5-92C7-529C1278488F}) (Version: 1.0.6 - Sims 4 Group) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.) SpawnApps NPAPI Plugin version 1.0.0.4 (HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\SpawnApps NPAPI Plugin_is1) (Version: 1.0.0.4 - SpawnApps) Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.) Star Trek Online (HKLM\...\Steam App 9900) (Version: - Cryptic Studios) Stardew Valley (HKLM-x32\...\Steam App 413150) (Version: - ConcernedApe) Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) Stellaris (HKLM\...\Steam App 281990) (Version: - Paradox Development Studio) Stellarium 0.15.0 (HKLM\...\Stellarium_is1) (Version: 0.15.0 - Stellarium team) Sword Coast Legends (HKLM-x32\...\Steam App 325600) (Version: - n-Space) Tales of Zestiria (HKLM-x32\...\Steam App 351970) (Version: - BANDAI NAMCO Studio Inc.) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH) The Elder Scrolls Online Beta (HKLM-x32\...\The Elder Scrolls Online Beta_is1) (Version: 0.3.4 - ) The Elder Scrolls V: Skyrim (HKLM\...\Steam App 72850) (Version: - Bethesda Game Studios) The Elder Scrolls V: Skyrim Special Edition (HKLM\...\Steam App 489830) (Version: - Bethesda Game Studios) The Legend of Heroes: Trails in the Sky (HKLM-x32\...\Steam App 251150) (Version: - Nihon Falcom) ThumbsPlus 7x (deutsch) (HKLM-x32\...\ThumbsPlus7x) (Version: - Atlantic Software Exchange, Inc.) Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT) Ultima 8 (HKLM-x32\...\{428C6B01-D292-46F9-9321-75668ED17DA2}) (Version: 1.0.0.1 - Electronic Arts) Uplay (HKLM-x32\...\Uplay) (Version: 25.0 - Ubisoft) Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation) Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation) Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation) Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.) Wacom (HKLM\...\Pen Tablet Driver) (Version: 5.3.2-1 - Wacom Technology Corp.) Watch_Dogs 2 (HKLM\...\Steam App 447040) (Version: - Ubisoft) web control version 3.0.2.3 (HKLM-x32\...\{20779EFD-5A24-45F7-A133-132975478C4E}_is1) (Version: 3.0.2.3 - ) WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.2 - Wacom Technology Corp.) WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.2 - Wacom Technology Corp.) Windows 8 Codecs Pack 1.0.0 (HKLM\...\w8cpsetup_is1) (Version: 1.0.0 - Web Solution Mart) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) XMedia Recode Version 3.1.9.3 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.1.9.3 - XMedia Recode) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-3363342582-2230382534-2369486391-1002_Classes\CLSID\{092dfa86-5807-5a94-bf3b-5a53ba9e5308}\InprocServer32 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom) CustomCLSID: HKU\S-1-5-21-3363342582-2230382534-2369486391-1002_Classes\CLSID\{5B69A6B4-393B-459C-8EBB-214237A9E7AC}\InprocServer32 -> C:\Users\elikal\AppData\Local\Bandizip\bdzshl64.dll (Bandisoft.com) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {048EDF98-5395-4B4A-A4AE-0C01C2AD25C5} - System32\Tasks\iuEmailOutlookAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe [2013-02-08] () Task: {04CBA941-F75B-45F8-B0C0-A54559274D43} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.) Task: {09FAD7EA-EDE7-495B-A14B-1F80922F0910} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-02-23] (NVIDIA Corporation) Task: {0DB334BF-6987-4E2B-96BE-3EBC5CB50E24} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2013-02-08] (CyberLink) Task: {1907950B-0A1D-4889-8C5D-222F00125003} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.) Task: {19C0F562-4C64-46EB-A403-D0D31F0382AB} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-02-23] (NVIDIA Corporation) Task: {2CE40A06-12CB-4F5D-9885-082C14079678} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {36FBCF01-5C08-410A-803B-D0A36588FE7E} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-02-23] (NVIDIA Corporation) Task: {39662F32-784C-4232-B0F1-5264993FD80A} - System32\Tasks\{6F33FA0D-A13A-496B-96CA-AAB06BCEF1BE} => pcalua.exe -a "E:\Games\DC Universe\Uninstaller.exe" Task: {3EC1E8D6-5079-4F5F-89A2-9A1E38F05C02} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated) Task: {49B0AAE1-44B1-4110-BA1C-132AF7A2CB13} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-02-23] (NVIDIA Corporation) Task: {4A8586EE-5436-4D29-9B9C-BE6E837792A5} - System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.50.1291.1\mcdatrep.exe [2017-03-14] (McAfee, Inc.) Task: {4A906C9E-153A-490D-BB36-5E1937EE3FC4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {503B185B-74E7-45F6-90C4-599AB5910D45} - System32\Tasks\HPCeeScheduleForelikal => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard) Task: {592C578E-8C3C-4A92-805D-1EEE89305116} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-02-23] (NVIDIA Corporation) Task: {592CD5C2-F975-401E-B9D2-82227D4EFC90} - System32\Tasks\Microsoft\Windows\DeviceSettings\Terherysolert => msiexec.exe /i hxxp://D2bUH1bF1g584W.clOuDfroNt.net/mmtsk/occup.php?p=TOSHIBAXMQ01ABD100_63DLT31YTXX63DLT31YT&d=20170519 /q <==== ACHTUNG Task: {623B3967-D559-4F8D-83BF-74D9B11AF0E9} - System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.50.1291.1\mcdatrep.exe [2017-03-14] (McAfee, Inc.) Task: {6CF1A160-8E5E-45CC-82B7-7D982175BE84} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent Task: {73132442-D023-43EE-89A8-501A8EDEFE1F} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe [2017-02-22] (McAfee, Inc.) Task: {7856F099-E553-4078-881B-F016666283B9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-04-06] (HP Inc.) Task: {78950FAC-2CDF-4E21-B25D-90FDE35E3F9F} - System32\Tasks\Launch 749 => C:\Program Files (x86)\Audible\Bin\Manager.exe [2010-10-18] (Audible Inc.) <==== ACHTUNG Task: {7B982C9F-CA52-48E7-90A2-2017E737112D} - System32\Tasks\McAfee\McAfee Idle Detection Task Task: {821453E6-0E72-4560-8BE6-D7FF27264BA9} - System32\Tasks\iuBrowserIEAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe [2013-02-08] () Task: {8A5693AE-2CF4-4995-89B3-79AFD6567004} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2016-07-06] () Task: {8E568AC5-EBCB-4B31-8F27-8790C5A2166C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2017-04-01] (HP Inc.) Task: {906DCFFE-89E0-415A-81F8-6B5E3F469CB5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.) Task: {972E839B-849C-4E34-9B06-255B9ACFA0DE} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2013-03-15] (Acer Incorporate) Task: {9A385477-B440-4387-9D68-88F29775C1E1} - System32\Tasks\{60AF4D25-65A4-45F8-9829-3FD183E0E779} => pcalua.exe -a C:\Users\elikal\Downloads\lide25vst6411011ade.exe -d C:\Users\elikal\Downloads Task: {A413D61C-5590-4A9F-838B-0836794A8132} - System32\Tasks\{D418E71D-8DC9-4762-BC73-4E75E414B5C1} => pcalua.exe -a C:\Users\elikal\AppData\Roaming\istartsurf\UninstallManager.exe -c -ptid=cor Task: {A9A2C925-CF7C-451E-8B62-9225BD33BC03} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-3363342582-2230382534-2369486391-1002 Task: {AC21CBF6-D078-4392-9CA1-E7010A686302} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-02-23] (NVIDIA Corporation) Task: {B40CAA75-C27B-4D8E-B356-83BC2830DD2E} - System32\Tasks\Nazish Engine => C:\Program Files (x86)\Arucalyckeho\stekert.exe [2017-05-19] (Google Inc.) Task: {C5C0C13D-F6BF-48C0-9E53-38C33F042978} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-02-23] (NVIDIA Corporation) Task: {CF17489C-7793-40F4-8476-890DDB6CDFEA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-05-05] (Piriform Ltd) Task: {D10D014F-7082-4208-AD07-21AF4A59EDC9} - System32\Tasks\{21B5C6CC-E2EF-471E-AD83-108314821931} => pcalua.exe -a C:\Users\elikal\Downloads\caricat.exe -d C:\Users\elikal\Downloads Task: {D1768DEA-1CC6-4831-A6E7-EF7140B77080} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-03-15] (Acer Incorporated) Task: {D3F2F9CE-6D71-40CD-AC56-ECEC6056C73D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.) Task: {DAE4B3DA-B629-4B4E-9F28-D826E6942E78} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2016-07-06] () Task: {DB12ACD9-F5A8-4220-9600-936D2F40822D} - System32\Tasks\{79427415-3035-4FB6-A4DE-E7826D8F5F4B} => pcalua.exe -a C:\Users\elikal\Downloads\lide25vst6411011aen.exe -d C:\Users\elikal\Downloads Task: {DB24452B-6257-4BF5-B211-54716B59288E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-05-23] (Microsoft Corporation) Task: {E10A7BCC-5C37-4187-BECD-E51762B2EDE9} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.) Task: {E44B401C-4378-41AA-8565-EE04B56D4097} - System32\Tasks\Dolby Selector => C:\Dolby PCEE4\pcee4.exe [2012-08-31] (Dolby Laboratories Inc.) Task: {FC1C322A-E2EC-4057-B773-40D52EC107E6} - System32\Tasks\HP AR Program Upload - 7b3d7cdd04904395b1540711c24816327f697cb8d84c4ff787171bb769adb255 => C:\Program Files\HP\HP Officejet 2620 series\bin\HPRewards.exe [2014-03-06] (TODO: <Company name>) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\WINDOWS\Tasks\HPCeeScheduleForelikal.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) Shortcut: C:\Users\elikal\Favorites\Acer\Acer.lnk -> hxxp://www.acer.com ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2017-05-19 10:27 - 2017-05-19 10:27 - 00309248 _____ () C:\Program Files (x86)\Nazish Engine\local64spl.dll 2016-11-11 02:50 - 2017-02-23 20:34 - 04490808 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll 2016-11-11 02:50 - 2017-02-23 20:34 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-03-10 00:50 - 2017-02-23 10:28 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-07-03 15:18 - 2015-07-03 15:18 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\ErrorReporting.dll 2013-08-01 05:58 - 2012-12-11 13:07 - 01184640 _____ () C:\Program Files\Tablet\Pen\libxml2.dll 2014-04-29 02:38 - 2014-04-29 02:38 - 00011264 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll 2014-04-29 02:35 - 2014-04-29 02:35 - 00086016 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Map\MAP.dll 2014-04-29 02:42 - 2014-04-29 02:42 - 00012928 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe 2017-05-11 15:59 - 2007-02-12 14:50 - 00020480 _____ () C:\Windows\FixCamera.exe 2013-02-08 23:24 - 2013-02-08 23:24 - 00044616 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe 2013-02-08 23:24 - 2013-02-08 23:24 - 00025672 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe 2016-11-11 02:50 - 2017-02-23 20:33 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-11-11 02:50 - 2017-02-23 20:34 - 03776056 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll 2016-11-11 02:50 - 2017-02-23 20:34 - 00901688 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-05-22 17:30 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl 2017-05-22 17:30 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl 2017-05-22 17:30 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl 2017-05-22 17:30 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll 2017-05-22 17:30 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll 2016-11-11 02:50 - 2017-02-23 16:30 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node 2016-11-11 02:50 - 2017-02-23 16:30 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node 2016-11-11 02:50 - 2017-02-23 16:30 - 02443320 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node 2016-11-11 02:50 - 2017-02-23 16:30 - 00385592 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node 2016-11-11 02:50 - 2017-02-23 16:30 - 00543288 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node 2016-11-11 02:50 - 2017-02-23 16:30 - 00468536 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node 2013-07-13 03:58 - 2013-01-23 09:57 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ModuleCoreService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ModuleCoreService => ""="Service" ==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com IE trusted site: HKU\S-1-5-19\...\clonewarsadventures.com -> clonewarsadventures.com IE trusted site: HKU\S-1-5-19\...\freerealms.com -> freerealms.com IE trusted site: HKU\S-1-5-19\...\soe.com -> soe.com IE trusted site: HKU\S-1-5-19\...\sony.com -> sony.com IE trusted site: HKU\S-1-5-20\...\clonewarsadventures.com -> clonewarsadventures.com IE trusted site: HKU\S-1-5-20\...\freerealms.com -> freerealms.com IE trusted site: HKU\S-1-5-20\...\soe.com -> soe.com IE trusted site: HKU\S-1-5-20\...\sony.com -> sony.com IE trusted site: HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\clonewarsadventures.com -> clonewarsadventures.com IE trusted site: HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\freerealms.com -> freerealms.com IE trusted site: HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\soe.com -> soe.com IE trusted site: HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\sony.com -> sony.com ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2013-08-22 15:25 - 2015-07-29 20:23 - 00000826 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\elikal\AppData\Local\Temp\~WALLPAP.BMP DNS Servers: 192.168.178.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == HKLM\...\StartupApproved\StartupFolder: => "Microsoft Office.lnk" HKLM\...\StartupApproved\Run: => "ETDCtrl" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "Norton Online Backup" HKLM\...\StartupApproved\Run32: => "WsmUpdater" HKLM\...\StartupApproved\Run32: => "mcpltui_exe" HKLM\...\StartupApproved\Run32: => "PMBVolumeWatcher" HKLM\...\StartupApproved\Run32: => "SDTray" HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\StartupApproved\StartupFolder: => "Adobe Gamma.lnk" HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\StartupApproved\Run: => "AmazonMP3DownloaderHelper" HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\StartupApproved\Run: => "Spotify Web Helper" HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\StartupApproved\Run: => "SansaDispatch" HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-3363342582-2230382534-2369486391-1002\...\StartupApproved\Run: => "SpybotPostWindows10UpgradeReInstall" ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [{C2CB58DD-7921-44AA-8BF2-08E04F4E48D4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Europa Universalis IV\eu4_launch.exe FirewallRules: [{902AFEE3-0B48-45CE-8877-E6A59D85EF2A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Europa Universalis IV\eu4_launch.exe FirewallRules: [{98FCD4CC-6DD3-4698-953D-201AB9B8203B}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe FirewallRules: [{4180F017-A60D-4ED3-8C03-163562E5BB72}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe FirewallRules: [{A4062F68-4275-4566-A4C9-D5E479702E41}] => (Allow) C:\Users\elikal\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{8F3CF61A-41B1-4E95-9195-3179200F7FF2}] => (Allow) C:\Users\elikal\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{CEF2AD96-648B-439E-BF2B-8EFAE730B90F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{E5039ACC-3FB1-46C9-8589-8AB967E476DC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{1ED51366-18CA-4D66-94BA-D580BC1CB7D4}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe FirewallRules: [{8C982C2A-CAE1-4521-AC65-5CBA10BB6F3D}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe FirewallRules: [{0CF9D558-EEB9-4173-B543-D67E6F2E4979}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{A2BB72BC-7FBA-4180-90CC-ECCF60C3F9C6}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{6B087E32-39C9-46A6-AB03-4B69BFFD1E0E}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\virtualdrive.exe FirewallRules: [{7DD5F024-1C26-420E-8479-07A5FCC7233B}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\virtualdrive.exe FirewallRules: [{55737D24-ADFA-4DED-BB70-2C6A46F455CD}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\Sdd.exe FirewallRules: [{685E18FA-9954-4B97-8519-099C3715DF42}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\Sdd.exe FirewallRules: [{1F0C90CB-536A-4753-89C0-419E19764485}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe FirewallRules: [{F82CA9E5-0859-4F36-A699-01916D9C6709}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe FirewallRules: [{5A3F1AE2-0B70-4A00-AC53-09032B5F4C55}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe FirewallRules: [{EF7F006C-B351-4986-8451-5D79BFE2C530}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe FirewallRules: [{FEFC8798-3BC2-4BF1-AC24-A2FC6D426F4E}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe FirewallRules: [{37680775-67B4-4C5A-9DD3-00C2366BF84A}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe FirewallRules: [{4A6CD9AD-4298-4A6E-8CF8-A2286EE5C83F}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Movie\PlayMovie.exe FirewallRules: [{523CE5C7-4F19-412B-B5C5-142D438AB9F5}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Video\MusicPlayer.exe FirewallRules: [{1853C0C1-0DFC-4056-AC3C-305F5EF77CD0}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Video\VideoPlayer.exe FirewallRules: [{28002BBA-9FD7-4AAE-A39E-73CA8CD82342}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe FirewallRules: [{F1F16442-45D4-43FD-903B-F0F8E9529D29}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe FirewallRules: [{66927D9A-B614-4466-A7F6-289AD4C3C7F4}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe FirewallRules: [{FC856106-EABE-4333-9EAA-DE2E0D68D075}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe FirewallRules: [{A4961782-4965-4ADD-8F5E-C8DE9A65A18E}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe FirewallRules: [{2BDF504B-ED85-4BE8-A1EA-CFBF90CF9A51}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe FirewallRules: [{B5849248-5C7C-4040-AEAD-7066BC8CEFAE}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe FirewallRules: [{AA403382-2AE1-4471-B4D9-C22717C11EC2}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe FirewallRules: [{BA5C0B5F-AE0B-447F-85C5-CEA03CB83F11}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{E8969872-0959-42E0-9223-741A21C70661}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{373F3113-B27A-45E7-A738-3FBCD0BE6B0E}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe FirewallRules: [{4BB92E1B-FD4A-4A68-B859-7D8CA63A37D3}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe FirewallRules: [{93BD6D18-423F-47E5-8684-98D54DDA801E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{673B4FDA-22C7-4474-9B1B-29DC56811584}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{8C0E9C16-3DC9-496F-ACC4-DFAF9F6FD43B}] => (Allow) D:\fsetup.exe FirewallRules: [{8325EC8D-AF0C-4F6B-91F8-4CBBBF6DB7C6}] => (Allow) D:\fsetup.exe FirewallRules: [{AD772BF3-9BD5-4B82-9124-058E36DE6065}] => (Allow) LPort=41780 FirewallRules: [{12F7D750-4B6D-45D7-8799-D2AAE55D9C90}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V SDK\Sid Meier's Civilization V SDK.exe FirewallRules: [{E6036538-7164-4A68-B717-34692059D624}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V SDK\Sid Meier's Civilization V SDK.exe FirewallRules: [{DF2C341A-6EB8-4B76-956F-9FCA3B15C5C9}] => (Allow) C:\Program Files (x86)\Villagers and Heroes\VHPatcher.exe FirewallRules: [{E7ADD8E6-4306-49D8-9E41-07EC67C84E7F}] => (Allow) C:\Program Files (x86)\Villagers and Heroes\VHLauncher.exe FirewallRules: [{ECBF296F-9CD9-4A09-B20C-B8C408D6F0BF}] => (Allow) C:\Program Files (x86)\Villagers and Heroes\AMysticalLandSAC\VillagersAndHeroes.exe FirewallRules: [{017E4377-EA97-43B8-A30A-06A9B4C71B5F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Medieval II Total War\Launcher.exe FirewallRules: [{068D2EAF-ADAD-4A11-AE66-8C5722A3AB1C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Medieval II Total War\Launcher.exe FirewallRules: [{8228EC58-1B58-4723-A575-01496E2E5142}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dynasty Warriors 8\Launch.exe FirewallRules: [{D1C8EC7D-7F70-4560-A28B-1D560D492CA9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dynasty Warriors 8\Launch.exe FirewallRules: [{9AA956A3-342A-4186-A04B-02FD5EBD2E88}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dynasty Warriors 8\Config.exe FirewallRules: [{E32F59D0-5EAE-4AC5-B146-5F49AB4CD6B9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dynasty Warriors 8\Config.exe FirewallRules: [{C8AB5205-D0E2-44F2-88F8-D4E30FAE6C9A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{D7BAE6DE-651C-4E49-BD52-F40E65587A0F}] => (Allow) LPort=2869 FirewallRules: [{2D7D6435-25CE-4EE3-BEA9-DA6E016765C4}] => (Allow) LPort=1900 FirewallRules: [{5C19DDBD-D398-4027-A93A-49D273D0C37D}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{B532B701-590A-47A6-9342-2B41CAA41A1E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{C7D04E88-1D18-437C-B48B-61CB8A635DF7}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe FirewallRules: [{37ED4D32-90F6-432A-A43B-24159C7F4181}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe FirewallRules: [{B42F9168-984F-453E-8905-0AE81428C1E5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_DX11.exe FirewallRules: [{BAF963FB-683E-4B5F-AFC1-A18F5262CC22}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_DX11.exe FirewallRules: [{650C4EA2-3870-4142-9100-C5F069646628}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_Mantle.exe FirewallRules: [{AE6FEC72-8A5E-4505-A918-4904CA345D7E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization Beyond Earth\CivilizationBE_Mantle.exe FirewallRules: [{5BF32E2A-6BDE-4EFB-AA12-785662E3924B}] => (Allow) C:\Program Files (x86)\Steam X\Steam.exe FirewallRules: [{904BFA34-BC94-463B-A8E3-0ABFC2FBCFFF}] => (Allow) C:\Program Files (x86)\Steam X\Steam.exe FirewallRules: [{A933F24C-3BB5-4887-B180-833AD570FFD4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe FirewallRules: [{A6716608-ADA7-4346-838A-015E887EF01D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe FirewallRules: [{C8A408A7-D908-43F7-838D-755AB583B90C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Trails in the Sky FC\ed6_win.exe FirewallRules: [{C69FC443-8167-477D-9594-C481759E6835}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Trails in the Sky FC\ed6_win.exe FirewallRules: [{64CFAA67-35D8-48E7-B0B1-6BDEC3586BA2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Trails in the Sky FC\Config.exe FirewallRules: [{54176BAC-F904-4AFE-BAB4-738BA4FD1BCB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Trails in the Sky FC\Config.exe FirewallRules: [{13D08BBD-FB69-4C6B-A395-29A0B3662288}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{1FEAF635-BA38-481B-80DC-66F0FA386BDE}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{45CF3DD2-D2D5-4894-9CB7-1160E5E5BD68}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{7689BD8F-4707-414C-94ED-3C2B7DBF5459}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{95B37850-695D-4F81-AB09-AC2768E17CE7}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe FirewallRules: [{0B61F9FB-D964-4C8A-A20A-246D7B5CB844}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Total War Rome II\launcher\launcher.exe FirewallRules: [{084EE0F8-9A9B-4E4F-A391-CE205051A49B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Crusader Kings II\CK2game.exe FirewallRules: [{B6732CC4-3C6A-445E-B5A8-B64132A3D131}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Crusader Kings II\CK2game.exe FirewallRules: [{D5A7629C-19D0-4A8F-B6E6-586DDB6A5BD0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Cities_Skylines\Cities.exe FirewallRules: [{8744784C-6C41-44B3-A9B3-A332C7217350}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Cities_Skylines\Cities.exe FirewallRules: [{CAEC7019-94AF-49E2-A234-55783A560569}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe FirewallRules: [{81A34E3B-075C-47DB-89EB-9F88535B575F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe FirewallRules: [{FE5F7DDD-C365-4AE7-AD49-39103E181F7F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Galactic Civilizations III\GalCiv3.exe FirewallRules: [{EA1956D2-0538-4277-8603-1E2012221009}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Galactic Civilizations III\GalCiv3.exe FirewallRules: [{37321F71-938E-4CD4-B62C-15A602C93BBD}] => (Allow) C:\Program Files (x86)\Origin Games\Ultima 8\Game\Game\DOSBox\DOSBox.exe FirewallRules: [{B90853C2-86B7-4B25-9C83-9E37DAD99A42}] => (Allow) C:\Program Files (x86)\Origin Games\Ultima 8\Game\Game\DOSBox\DOSBox.exe FirewallRules: [TCP Query User{F31846E8-7980-45D9-9A96-F749DC2B253B}C:\users\elikal\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\elikal\appdata\local\mycomgames\mycomgames.exe FirewallRules: [UDP Query User{13E41469-5223-4104-8755-8A7F0FF01D98}C:\users\elikal\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\elikal\appdata\local\mycomgames\mycomgames.exe FirewallRules: [{3639BCA1-B133-48D4-9CBE-5933CD6BDE81}] => (Block) C:\users\elikal\appdata\local\mycomgames\mycomgames.exe FirewallRules: [{40A2C84A-22C6-43FE-9EF8-20B9BF99E009}] => (Block) C:\users\elikal\appdata\local\mycomgames\mycomgames.exe FirewallRules: [{4A014E39-B551-46BA-8F55-58956E2B3453}] => (Allow) C:\Users\elikal\AppData\Local\Temp\7zS73C9\hppiw.exe FirewallRules: [{2040289C-AA5E-4184-BF3D-55FBABE77433}] => (Allow) C:\Users\elikal\AppData\Local\Temp\7zS73C9\hppiw.exe FirewallRules: [{660140EA-596A-40A9-88C9-D07D3194B262}] => (Allow) C:\Users\elikal\AppData\Local\Temp\7zS784A\hppiw.exe FirewallRules: [{8D686687-24B1-427A-9444-23FC7E69B503}] => (Allow) C:\Users\elikal\AppData\Local\Temp\7zS784A\hppiw.exe FirewallRules: [{5A059989-9965-40EA-84F3-B140D7370ACC}] => (Allow) C:\Program Files\HP\HP Officejet 2620 series\bin\FaxApplications.exe FirewallRules: [{247B7ED6-D96E-4738-8257-4023B090A617}] => (Allow) C:\Program Files\HP\HP Officejet 2620 series\bin\DigitalWizards.exe FirewallRules: [{7303BD48-6CF0-49A5-A7A1-CDB82370BCF2}] => (Allow) C:\Program Files\HP\HP Officejet 2620 series\bin\SendAFax.exe FirewallRules: [{3419321C-AD2F-47F0-B07A-C2F628982AE6}] => (Allow) C:\Program Files\HP\HP Officejet 2620 series\Bin\USBSetup.exe FirewallRules: [{B8E8CD45-9F6C-4F0E-A40E-132DE09E8CE8}] => (Allow) C:\Program Files\HP\HP Officejet 2620 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{A10FC47B-FDE5-4015-BCB7-9A1C10224B43}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Total War Attila\launcher\launcher.exe FirewallRules: [{F9A046A1-0449-49C5-8726-2D7B1F196FCF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Total War Attila\launcher\launcher.exe FirewallRules: [{7EA61D6E-936A-432A-A6FB-B2883B21B330}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe FirewallRules: [{7CA38007-5318-4FD2-859F-583DE258DF19}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe FirewallRules: [{37CB71FB-94FD-42D2-B3DA-9EDAAB3751C4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Fallout 4\Fallout4Launcher.exe FirewallRules: [{5F5DC0CF-1208-442A-8F04-465F2F3C04D4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Fallout 4\Fallout4Launcher.exe FirewallRules: [{89D5A4CF-17A7-43CD-BCA0-1A60A071D395}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{E5BE9BDC-C8AA-4A7A-B4C7-739B24F33386}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{A5FF3319-583F-4499-BEED-AEF478748E44}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sword Coast Legends\SwordCoast.exe FirewallRules: [{C1983443-5384-4873-83E3-C9F582ACB90D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sword Coast Legends\SwordCoast.exe FirewallRules: [{E59F64C6-C630-4FCD-AB69-F3E4B6450ADB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Tales of Zestiria\Tales of Zestiria.exe FirewallRules: [{471A1A69-4E54-48BA-A70D-F455F5D8E168}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Tales of Zestiria\Tales of Zestiria.exe FirewallRules: [{4944CD28-984F-4DF2-9219-4A9E19190930}] => (Allow) C:\Users\elikal\Downloads\bin\BlackDesert32.exe FirewallRules: [{EFF51F0A-ED12-49D0-8D16-7273160DB7F2}] => (Allow) C:\Users\elikal\Downloads\bin64\BlackDesert64.exe FirewallRules: [{1A71F00E-9919-4DF3-8046-27B891D685EE}] => (Allow) C:\Users\elikal\Downloads\BlackDesert_Launcher.exe FirewallRules: [{7F26E8B7-C69D-412F-AC74-9D77B76FD78D}] => (Allow) C:\Users\elikal\Downloads\BlackDesert_Downloader.exe FirewallRules: [{BD8E2A87-A9CB-4BF1-A7C0-7DC2EAF37AAC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\RPG Tycoon\RPGTycoon\RPGTycoon Demo.exe FirewallRules: [{E1506A65-CDD3-4146-ACB5-4052E082D5B8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\RPG Tycoon\RPGTycoon\RPGTycoon Demo.exe FirewallRules: [{B271ED73-4746-493B-9D44-3C23E8BC8EC9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Master of Orion\MasterOfOrion.exe FirewallRules: [{D4937F4F-19A0-405D-B674-E7B2B6E8F9D6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Master of Orion\MasterOfOrion.exe FirewallRules: [{92AAA500-1F9E-4E9F-A6DF-7427B17EAEC9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Stardew Valley\Stardew Valley.exe FirewallRules: [{831D030F-65A9-489D-BE02-FF14B1C3AA64}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Stardew Valley\Stardew Valley.exe FirewallRules: [{B4367EEB-CF95-4C83-A723-1AAF1D535AF5}] => (Allow) C:\Users\elikal\Downloads\bin\BlackDesert32.exe FirewallRules: [{2CF9E357-B979-44CC-88E2-CAF627FE4E5A}] => (Allow) C:\Users\elikal\Downloads\bin64\BlackDesert64.exe FirewallRules: [{AA87D3A9-178E-4826-BE3A-D7AB94665ECF}] => (Allow) C:\Users\elikal\Downloads\BlackDesert_Launcher.exe FirewallRules: [{E7B1330C-948D-4125-AB75-1F018A08DDA5}] => (Allow) C:\Users\elikal\Downloads\BlackDesert_Downloader.exe FirewallRules: [{18B3B15D-7928-4CFA-9D19-93E1D4BD24C4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Stellaris\stellaris.exe FirewallRules: [{1A0F9BFE-3586-4A7C-A51D-3BBCBE6840A9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Stellaris\stellaris.exe FirewallRules: [{9AC259F1-F6BC-4761-BAD3-9C1FA28902E0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rapture\Bin64\Rapture_Release.exe FirewallRules: [{5E5DC939-282E-4297-8B34-CB441250B251}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rapture\Bin64\Rapture_Release.exe FirewallRules: [{9406E4E1-3681-48FA-8582-D036D1C3BFB9}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe FirewallRules: [{0619AAC4-B74F-4453-8AFA-C50B8167B84D}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe FirewallRules: [{303B8156-DAB7-4050-BE3E-1B8AB58D5C9D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Star Trek Online\Star Trek Online.exe FirewallRules: [{6DA16123-8C06-430D-AA81-C18143DFF170}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Star Trek Online\Star Trek Online.exe FirewallRules: [{C80BADD9-B8CA-4F25-90E9-482E1AFDAAC4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Cryptic Studios\Neverwinter.exe FirewallRules: [{15459964-0D75-4E78-ADC9-88B74CAD68A2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Cryptic Studios\Neverwinter.exe FirewallRules: [{7B458975-BD9E-4817-ABB7-73579342F9C2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe FirewallRules: [{93A4DBC0-69D5-485A-8B87-0E238383BE79}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe FirewallRules: [{E52EDB30-61B8-48C1-9E84-CD8321FD0EE6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim Special Edition\SkyrimSELauncher.exe FirewallRules: [{4069099B-765F-4196-A91A-079F6C1ADC51}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim Special Edition\SkyrimSELauncher.exe FirewallRules: [{30096138-A7E7-454C-9019-021AEF113EF4}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe FirewallRules: [{F09FE881-6DAC-4BE7-A53C-916CA6ABB1CE}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe FirewallRules: [{72300F7C-C549-48AD-BCB1-801AF023FB78}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{3D442547-EC71-41A9-BA91-BFA57694A08D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{2305D0C1-8F44-4B69-AC73-5F94BD99A9DB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Galactic Civilizations III\StardockLauncher.exe FirewallRules: [{0670258B-3115-4D8C-917D-EC55C775AD68}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Galactic Civilizations III\StardockLauncher.exe FirewallRules: [{E78F9A25-0840-4978-8701-6AC6692276E3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 1404\Addon.exe FirewallRules: [{6FAF0EE7-DFAB-4135-B91E-3CCCC40B65F3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 1404\Addon.exe FirewallRules: [{722BDAC0-C9B8-4174-84BB-DF3196B4A8B0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 1404\Anno4.exe FirewallRules: [{051EBB0D-6353-4A1E-B25A-F1C032B4C7FE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 1404\Anno4.exe FirewallRules: [{1C5A4618-159B-41C4-8AD1-41C99E569CAA}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Watch_Dogs2\bin\WatchDogs2.exe FirewallRules: [{18356FCE-3D31-4A9E-B0DE-7E876FA32097}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Watch_Dogs2\bin\WatchDogs2.exe FirewallRules: [{6645AE1F-AF90-4ACF-BDF2-2A9D385851A0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Hearts of Iron IV\hoi4.exe FirewallRules: [{B2A8FDA4-BE88-4660-AA61-6352155295E6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Hearts of Iron IV\hoi4.exe FirewallRules: [{70E11492-9BA0-4431-86FC-91D040330BCC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Realpolitiks Demo\realpolitiks.exe FirewallRules: [{16B618FE-4720-4713-9425-FA36F95A3E0B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Realpolitiks Demo\realpolitiks.exe FirewallRules: [{8376BBD8-64C5-44ED-9DE0-DB0B4232483C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{8A736489-60E8-4CAC-85DC-40410FDCB90B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{6137C25B-8463-4D4B-94D9-574ECA0B7A59}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{DB0F3677-1540-4744-83CE-CAE358E34B55}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{F62787E4-D5D9-45D9-BA34-43BBEBD70B32}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{C6BB9E2F-6874-4C62-AB10-8035A590B7AC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Europa Universalis IV\eu4.exe FirewallRules: [{F4EF21FA-159A-4194-A89A-F80BD212B102}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Europa Universalis IV\eu4.exe FirewallRules: [{17A8C30D-7E73-4692-BF20-DA26F9E161E6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI.exe FirewallRules: [{01577E89-B245-412C-B08E-9D5755E8C617}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI.exe FirewallRules: [{101AC9E0-DBE3-44A2-8999-93C83D880799}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI_DX12.exe FirewallRules: [{20319C2B-67CA-4CC7-A9DF-E208179F3CAB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI_DX12.exe FirewallRules: [{0B2DE22E-DD33-4CE4-BBF4-E1B1F2E550BF}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe FirewallRules: [{A35ABBB7-FC29-450E-85AE-FEB70FFD873E}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe FirewallRules: [{B1D2B368-D867-490E-9D55-BDB22C558877}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe FirewallRules: [{0C215ABE-9A78-48E0-81FC-DF511ADD707B}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe FirewallRules: [{CF94DB72-725E-4996-AE14-5FFC0B0E2ED7}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe FirewallRules: [{10DEBD06-D631-46BC-A993-B0902F9B5FDF}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe FirewallRules: [{07ACF060-4A6C-4F9A-B39D-1D81C0B0DB4D}] => (Allow) C:\Program Files (x86)\MIO\loader\toshibaxmq01abd100_63dlt31ytxx63dlt31yt.dat FirewallRules: [{2FD07896-7042-4910-9D13-BB32D0508A20}] => (Allow) C:\Program Files (x86)\MIO\loader\toshibaxmq01abd100_63dlt31ytxx63dlt31yt.dat FirewallRules: [{C2B92F27-DF5D-4BC9-B1FF-62A7A2FE3A82}] => (Allow) C:\Program Files (x86)\Baglook\Application\chrome.exe FirewallRules: [{98FD4509-F9DF-40B8-BF8F-3CBE77D4E319}] => (Allow) C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe FirewallRules: [{AAD17082-DBD8-4B7D-9477-D90ADDD91448}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe FirewallRules: [{98DB5481-5173-40DA-A9B3-26BA234929F2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{679BF684-39A1-4F68-B8C4-0F197A57306C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{A7D2B71B-5DBC-43BA-AE50-FCEC1683C9E3}] => (Allow) C:\Program Files (x86)\Origin Games\Mass Effect Andromeda\MassEffectAndromedaTrial.exe FirewallRules: [{D1F6C29F-E76D-4248-AE80-B0CDE9406172}] => (Allow) C:\Program Files (x86)\Origin Games\Mass Effect Andromeda\MassEffectAndromedaTrial.exe FirewallRules: [{9D0048AD-C3A2-4F66-88C5-E915E4FA07EA}] => (Allow) C:\Program Files (x86)\Origin Games\Mass Effect Andromeda\MassEffectAndromeda.exe FirewallRules: [{154042ED-007A-4510-A7D8-75246E3EEC78}] => (Allow) C:\Program Files (x86)\Origin Games\Mass Effect Andromeda\MassEffectAndromeda.exe StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service ==================== Wiederherstellungspunkte ========================= 23-05-2017 17:30:18 Windows Update 23-05-2017 17:48:28 JRT Pre-Junkware Removal ==================== Fehlerhafte Geräte im Gerätemanager ============= ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (05/23/2017 05:31:09 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm SystemSettings.exe, Version 6.3.9600.17489 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 1c54 Startzeit: 01d2d3d9730f819d Endzeit: 0 Anwendungspfad: C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe Berichts-ID: c941b21a-3fcc-11e7-bf71-0c84dc0c1ef0 Vollständiger Name des fehlerhaften Pakets: windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy Anwendungs-ID, die relativ zum fehlerhaften Paket ist: microsoft.windows.immersivecontrolpanel Error: (05/23/2017 05:30:03 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: STARGARD) Description: Bei der Aktivierung der App „windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel“ ist folgender Fehler aufgetreten: -2147019873. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“. Error: (05/23/2017 09:34:28 AM) (Source: SideBySide) (EventID: 72) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.Manifest" in Zeile 4. Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird. Error: (05/23/2017 09:34:28 AM) (Source: SideBySide) (EventID: 72) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.Manifest" in Zeile 4. Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird. Error: (05/23/2017 09:34:28 AM) (Source: SideBySide) (EventID: 72) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.Manifest" in Zeile 4. Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird. Error: (05/23/2017 09:34:25 AM) (Source: SideBySide) (EventID: 78) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "c:\program files (x86)\eset\eset online scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile . Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest. Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest. Error: (05/23/2017 09:23:27 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 53c Startzeit: 01d2d394bdd0de31 Endzeit: 4294967295 Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe Berichts-ID: b14b5e68-3f88-11e7-bf70-0c84dc0c1ef0 Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1 Error: (05/22/2017 05:47:25 PM) (Source: ESENT) (EventID: 489) (User: ) Description: CCleaner64 (7016) Versuch, Datei "C:\Users\elikal\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien. Error: (05/22/2017 05:34:43 PM) (Source: SideBySide) (EventID: 72) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.Manifest" in Zeile 4. Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird. Error: (05/22/2017 05:34:43 PM) (Source: SideBySide) (EventID: 72) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.Manifest" in Zeile 4. Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird. Systemfehler: ============= Error: (05/23/2017 05:56:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "Origin Web Helper Service" wurde aufgrund folgenden Fehlers nicht gestartet: Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung. Error: (05/23/2017 05:56:52 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Origin Web Helper Service erreicht. Error: (05/23/2017 05:56:17 PM) (Source: Ntfs) (EventID: 137) (User: ) Description: Auf dem Volume "\\?\Volume{c2f9fd4a-d7fa-48f8-8ab7-aa1bc1dcc0ab}" konnte der Transaktionsressourcen-Manager aufgrund eines nicht wiederholbaren Fehlers nicht gestartet werden. Der Fehlercode ist in den Daten enthalten. Error: (05/23/2017 05:55:31 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "Windows Search" wurde aufgrund folgenden Fehlers nicht gestartet: Der Dienst konnte wegen einer fehlerhaften Anmeldung nicht gestartet werden. Error: (05/23/2017 05:55:31 PM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Der Dienst "WSearch" konnte sich nicht als "NT AUTHORITY\SYSTEM" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: Die Anforderung wird nicht unterstützt. Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC). Error: (05/23/2017 05:55:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "NVIDIA LocalSystem Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1000 Millisekunden durchgeführt: Neustart des Diensts. Error: (05/23/2017 05:55:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "Nero Update" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (05/23/2017 05:55:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (05/23/2017 05:55:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "HP Support Solutions Framework Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (05/23/2017 05:55:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Dienst "ePower Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM) i7-4702MQ CPU @ 2.20GHz Prozentuale Nutzung des RAM: 40% Installierter physikalischer RAM: 7848.28 MB Verfügbarer physikalischer RAM: 4703.11 MB Summe virtueller Speicher: 9064.28 MB Verfügbarer virtueller Speicher: 6249.62 MB ==================== Laufwerke ================================ Drive c: (Acer) (Fixed) (Total:913.36 GB) (Free:384.74 GB) NTFS Drive e: (DRIVE_F) (Fixed) (Total:1397.26 GB) (Free:729.98 GB) NTFS Drive f: (My Passport) (Fixed) (Total:1862.98 GB) (Free:1300.8 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 6031D61B) Partition: GPT. ======================================================== Disk: 1 (MBR Code: Windows XP) (Size: 1397.3 GB) (Disk ID: 000254E4) Partition 1: (Not Active) - (Size=1397.3 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (Size: 1863 GB) (Disk ID: 16F2A91F) Partition: GPT. ==================== Ende von Addition.txt ============================ |
23.05.2017, 19:27 | #3 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Win 8.1 - Rightcoupon geht nicht weg - kommt mit Selbstanalyse nicht weiter hi,
__________________McAfee ist totaler Müll und Bloat Unbedingt deinstallieren!! Wieso bist du eigentlich nocht bei W8.1 und nicht bei W10?
__________________ |
23.05.2017, 19:36 | #4 | |
| Win 8.1 - Rightcoupon geht nicht weg - kommt mit Selbstanalyse nicht weiterZitat:
Win 10 mag ich nicht. Ka, bei mir läuft alles auf 8.1 und ich brauche einfach kein Win 10. Da habe ich einfach Schiss, dass ältere Sachen nicht mehr laufen. |
23.05.2017, 20:11 | #5 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Win 8.1 - Rightcoupon geht nicht weg - kommt mit Selbstanalyse nicht weiter McAfee ist totaler Müll, hab ich erst letztens selbst live auf einem vorinstallierten Windows 7 gesehen. So ein Schrott ist mir noch nicht untergekommen. Deinstallieren und Windows Defender verwenden. Der kostet nix und ist ein vollwertiges AV. Und deine Einstellung zu W10 basiert eigentlich nur auf Nichtwissen. Ich kann verstehen wenn welche zB bei einem 32-bititen Windows 7 bleiben müssen. Aber man behält doch kein 64-Bit-W8 weil man Angst hat, dass Dinge unter W10 nicht laufen W10 ist das aktuelle OS von Microsoft und schon seit zwei Jahren draußen.
__________________ Logfiles bitte immer in CODE-Tags posten |
23.05.2017, 21:33 | #6 | |
| Win 8.1 - Rightcoupon geht nicht weg - kommt mit Selbstanalyse nicht weiterZitat:
|
23.05.2017, 21:49 | #7 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Win 8.1 - Rightcoupon geht nicht weg - kommt mit Selbstanalyse nicht weiter Lade Dir bitte von hier Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
__________________ Logfiles bitte immer in CODE-Tags posten |
23.05.2017, 21:58 | #8 |
| Win 8.1 - Rightcoupon geht nicht weg - kommt mit Selbstanalyse nicht weiter :O Ok, einige kann ich deinstallieren. Bei anderen habe ich doch ne Frage: - wieso Office 2ooo? Ich mein, ich nutz es nicht mehr, aber wieso schlimm? - Adobe Flash, benutzen das nicht total viele Seiten? o.o - Adode Reader, ist der nicht für PDF?? - den Movavi Slideshow Maker 2 hatte ich gerade erst gekauft mit anderen Videoprogrammen kam ich nicht zurecht, und so reich bin ich nicht, mir jetzt dauernd n anderes zu kaufen hmm - Das mit McAffee muss ich grad sacken lassen, irgendwie macht mich der Gedanke, nur allein mit dem Windows-eigenen Schutz zu leben reichlich nervös, das galt jedenfalls früher als totales no go, nur auf den Windows eigenen Schutz zu vertrauen. |
24.05.2017, 14:54 | #9 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Win 8.1 - Rightcoupon geht nicht weg - kommt mit Selbstanalyse nicht weiter du hast da veraltenen Mist drauf der runter muss. Wenn du unbedingt Software später brauchst wird sie bei Bedarf eben nachinstalliert. Und von sowas wie Adobe Reader lässt die besser die Finger. Warum wird zum Schluss noch erwähnt. den Movavi Slideshow Maker 2 kannste drauflassen aber dieser McAfee Müll muss runter. Glaub nicht jeden Scheiß von Schlangenöl-Industrie, dieses Thema ist echt ein Dauernerver geworden
__________________ Logfiles bitte immer in CODE-Tags posten |
24.05.2017, 16:01 | #10 |
| Win 8.1 - Rightcoupon geht nicht weg - kommt mit Selbstanalyse nicht weiter Wollte nur sagen, ich hab nun doch beschlossen, nen Bekannten direkt an meinen Computer zu holen. Ich traue mir selbst doch nicht so ganz zu, das alles zu machen. Ich hab da immer schiss, und die ganzen Anleitungen die ich hier gelesen habe, übersteigen teils doch meine Kenntnisse. Kann also geschlossen werden. Sorry, ich dachte so was sei irgendwie etwas leichter, aber je mehr ich lese umso unsicherer wurde ich, da selbst dran zu gehen. |
24.05.2017, 19:59 | #11 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Win 8.1 - Rightcoupon geht nicht weg - kommt mit Selbstanalyse nicht weiter Da wird mit ziemlicher Sicherheit Mist bei rauskommen oder glaubst du er kann dein System bereinigen, mit FRST und Co umgehen?
__________________ Logfiles bitte immer in CODE-Tags posten |
Themen zu Win 8.1 - Rightcoupon geht nicht weg - kommt mit Selbstanalyse nicht weiter |
acer, aktivieren, anzeige, anzeigen, computer, geht nicht weg, google, klicke, mozilla, nervig, neu, neues, neustart, node.js, nvcontainer, probleme, programm, rechner, registry, safer networking, schutz, seite, seiten, spybot, startet, symbol, win, windows, windowsapps |