| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Browser-Hijacker(?) will nicht verschwindenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
28.05.2017, 21:20
| #16 |
 |  Browser-Hijacker(?) will nicht verschwinden Addition: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 28-05-2017
durchgeführt von Hardy (28-05-2017 22:16:43)
Gestartet von C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug
Windows 8.1 (Update) (X64) (2014-09-19 02:37:11)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2570889560-1274126736-4133381010-500 - Administrator - Enabled) => C:\Users\Administrator
ASPNET (S-1-5-21-2570889560-1274126736-4133381010-1002 - Limited - Enabled)
Gast (S-1-5-21-2570889560-1274126736-4133381010-501 - Limited - Disabled)
Hardy (S-1-5-21-2570889560-1274126736-4133381010-1001 - Administrator - Enabled) => C:\Users\Hardy
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG AntiVirus Free Edition (Disabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Disabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
@BIOS B15.0713.1 (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 - GIGABYTE)
@BIOS B15.0713.1 (x32 Version: 3.00.0000 - GIGABYTE) Hidden
3DOSD (HKLM-x32\...\InstallShield_{F0D1FAA5-F9F8-4524-9B65-A5BFDDD5A29B}) (Version: 1.00.0011 - GIGABYTE)
3DOSD (x32 Version: 1.00.0011 - GIGABYTE) Hidden
7-Zip 9.34 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0934-000001000000}) (Version: 9.34.00.0 - Igor Pavlov)
ACP Application (Version: 2017.0310.1613.49 - Advanced Micro Devices, Inc.) Hidden
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Adobe Flash Player 25 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
APP Center (HKLM-x32\...\InstallShield_{B164E11B-19B5-432F-ABFA-2D50746C9E50}) (Version: 1.00.1602.2501 - GIGABYTE)
APP Center (x32 Version: 1.00.1602.2501 - GIGABYTE) Hidden
AutoGreen (HKLM-x32\...\InstallShield_{CFB76B97-0C1C-4E1A-999A-DE62FA5FEB9A}) (Version: 1.0 - GIGABYTE)
AutoGreen (x32 Version: 1.0 - GIGABYTE) Hidden
AVG (HKLM\...\AvgZen) (Version: 1.181.3.3057 - AVG Technologies)
AVG (Version: 1.181.4 - AVG Technologies) Hidden
AVG (Version: 16.151.8013 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4776 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.151.8013 - AVG Technologies)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.7.452 - AVG Technologies)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB)
BattlEye Uninstall (HKLM-x32\...\BattlEye for A1) (Version: - )
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Borderlands: The Pre-Sequel (HKLM\...\Steam App 261640) (Version: - 2K Australia)
BUSB (HKLM-x32\...\{0AADC50C-C4F8-49A7-8699-AFE46875CA67}) (Version: 1.15.0623.1 - GIGABYTE)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.6.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon MG2500 series Benutzerregistrierung (HKLM-x32\...\Canon MG2500 series Benutzerregistrierung) (Version: - *Canon Inc.)
Canon MG2500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2500_series) (Version: 1.00 - Canon Inc.)
Canon MG2500 series On-screen Manual (HKLM-x32\...\Canon MG2500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 2.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 2.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.2.1 - Canon Inc.)
Catalyst Control Center Next Localization BR (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.30 - Piriform)
Cloud Station (Server) (HKLM-x32\...\InstallShield_{5D132D9D-2A99-48CF-9DCC-775DF6F31384}) (Version: 1.00.1507.1501 - GIGABYTE)
Cloud Station (Server) (x32 Version: 1.00.1507.1501 - GIGABYTE) Hidden
CloudStation (HKLM-x32\...\InstallShield_{6D8DA122-A40A-421B-9D95-FE4C806BCDBE}) (Version: 1.00.0019 - GIGABYTE)
CloudStation (x32 Version: 1.00.0019 - GIGABYTE) Hidden
Connected Music powered by Universal Music Group version 1.0 (HKLM-x32\...\{46037DC7-F927-46DF-935F-D6F122BDD34B}_is1) (Version: 1.0 - Snowite)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.1916 - CyberLink Corp.)
CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}) (Version: 2.0.1.3109 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.1.1902 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.1.1925 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.1.4319 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Darksiders II Deathinitive Edition (HKLM\...\Steam App 388410) (Version: - Gunfire Games)
Desura (HKLM-x32\...\Desura) (Version: 100.57 - Desura)
Desura: Project Zomboid (HKLM-x32\...\Desura_62350040236064) (Version: Alpha - The Indie Stone)
Discord (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
doubleTwist Sync (HKLM-x32\...\doubleTwist) (Version: 4.0.3.0 - doubleTwist Corporation)
Dragon Age Redesigned© (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned©) (Version: - )
Dragon Age Redesigned© Leliana (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned© Leliana) (Version: - )
Dragon Age Redesigned© Sten (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned© Sten) (Version: - )
Dragon Age Redesigned© Wynne (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned© Wynne) (Version: - )
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.12 - Electronic Arts)
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.15.0805 - GIGABYTE)
EasyTune (x32 Version: 1.15.0805 - GIGABYTE) Hidden
EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.15.0805 - GIGABYTE)
EasyTuneEngineService (x32 Version: 1.15.0805 - GIGABYTE) Hidden
EAX4 Unified Redist (HKLM-x32\...\{89661B04-C646-4412-B6D3-5E19F02F1F37}) (Version: 4.001 - Creative Labs)
Else Heart Break (HKLM-x32\...\RWxzZUhlYXJ0QnJlYWs=_is1) (Version: 1 - )
EZRAID (HKLM-x32\...\InstallShield_{8F307CB5-FE1C-4BF3-8747-305D14161916}) (Version: 1.00.0000 - GIGABYTE)
EZRAID (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Fast Boot (HKLM-x32\...\InstallShield_{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.15.0626 - GIGABYTE)
Fast Boot (x32 Version: 1.15.0626 - GIGABYTE) Hidden
FMW 1 (Version: 1.202.1 - AVG Technologies) Hidden
GameMaker: Studio (HKLM\...\Steam App 214850) (Version: - YoYo Games Ltd.)
Garry's Mod (HKLM\...\Steam App 4000) (Version: - Facepunch Studios)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Guild Wars 2 (HKLM\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
HitFilm 4 Express (HKLM\...\{F8BB3662-69A1-4EF1-8674-ADD90AAD3D08}) (Version: 4.0.5723.10801 - FXHOME)
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.18.284 - SurfRight B.V.)
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: v1.0 - Meridian Audio Ltd)
HP Connected Remote (HKLM-x32\...\{F243A34B-AB7F-4065-B770-B85B767C247C}) (Version: 1.0.1206 - Hewlett-Packard)
HP Registration Service (HKLM\...\{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}) (Version: 1.0.5976.4186 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{4780AF24-213D-4187-86F2-0014A6D6077B}) (Version: 8.4.14.41 - HP Inc.)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{AAE126B3-95C5-49E1-A590-7B5F6EDC7D60}) (Version: 12.6.14.19 - HP Inc.)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.16.0.001 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.54.2 - HTC)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6418.0 - IDT)
Impulse (HKLM-x32\...\Impulse) (Version: 1.0 - Stardock)
Impulse (x32 Version: 1.0 - Stardock Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.38 - Intel(R) Corporation) Hidden
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
iTunes (HKLM\...\{554C62C7-E6BB-40F1-892B-F0AE02D3C135}) (Version: 12.5.3.17 - Apple Inc.)
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Logitech Gaming Software 8.76 (HKLM\...\Logitech Gaming Software) (Version: 8.76.155 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.578 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.578 - LogMeIn, Inc.) Hidden
Malwarebytes Version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{86CE1746-9EFF-3C9C-8755-81EA8903AC34}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.13 - Black Tree Gaming)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
ON_OFF Charge 2 B15.0709.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE)
ON_OFF Charge 2 B15.0709.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Opera Stable 45.0.2552.812 (HKLM-x32\...\Opera 45.0.2552.812) (Version: 45.0.2552.812 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.4.7.34767 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version: - )
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5875) (Version: - )
Pepakura Designer 3 (HKLM-x32\...\pepakura_designer3en) (Version: - TamaSoftware)
Pepakura Viewer 3 (HKLM-x32\...\pepakura_viewer3en) (Version: - TamaSoftware)
Pesgalaxy.com Patch 2016 (HKLM-x32\...\Pesgalaxy.com Patch 2016 3.00 Part 1) (Version: 3.00 Part 1 - Pesgalaxy)
Pesgalaxy.com Patch 2016 (HKLM-x32\...\Pesgalaxy.com Patch 2016 3.00 Part 2) (Version: 3.00 Part 2 - Pesgalaxy)
Pesgalaxy.com Patch 2016 (HKLM-x32\...\Pesgalaxy.com Patch 2016 3.01) (Version: 3.01 - Pesgalaxy)
Pesgalaxy.com Patch 2016 DLC Installer (HKLM-x32\...\Pesgalaxy.com Patch 2016 DLC Installer 4.00) (Version: 4.00 - Pesgalaxy)
PlatformPowerManagement (HKLM-x32\...\InstallShield_{7A6EB543-522C-4784-9DB5-4FC87522EBDF}) (Version: 1.15.0707 - GIGABYTE)
PlatformPowerManagement (x32 Version: 1.15.0707 - GIGABYTE) Hidden
PlayClaw 5 (HKLM-x32\...\Steam App 237370) (Version: - )
PlayClaw 5 fast codec (HKLM-x32\...\PlayClaw 5 fast codec_is1) (Version: 5 - )
PSE12 STI Installer (HKLM-x32\...\{11F9A376-342F-4297-82DA-1F6EA8ED4B6B}) (Version: 12.0 - Adobe Systems Incorporated)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Python 3.5.2 (32-bit) (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\{cf72a2ab-2f1d-49fd-a0d7-1065e6357e1e}) (Version: 3.5.2150.0 - Python Software Foundation)
Python 3.5.2 Add to Path (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Core Interpreter (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Development Libraries (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Documentation (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Executables (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 pip Bootstrap (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Standard Library (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Tcl/Tk Support (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Test Suite (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Utility Scripts (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{963ECCDD-F09F-4C24-9367-8B5D748AA7C8}) (Version: 3.5.2121.0 - Python Software Foundation)
RadeonPro 1.0 (Build 1.1.1.0) (HKLM-x32\...\RadeonPro_is1) (Version: - )
Rapoo V700 – Gaming-Tastaturtreiber v1.0.2 (HKLM-x32\...\{DF34A259-1224-4130-92AC-0C660A331C60}_is1) (Version: - Rapoo, Inc.)
Raptr (HKLM-x32\...\Raptr) (Version: 5.2.7-r116720-release - Raptr, Inc)
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 1.10.6 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.1104 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.38.115.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.0.5530 - CyberLink Corp.) Hidden
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.4 - Rockstar Games)
Shakes and Fidget (HKLM\...\Steam App 438040) (Version: - Playa Games GmbH)
SimpleRockets (HKLM\...\Steam App 343090) (Version: - Jundroo, LLC)
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.15.0811 - GIGABYTE)
SIV (x32 Version: 1.15.0811 - GIGABYTE) Hidden
Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
SleepTimer Ultimate 1.2 (HKLM-x32\...\{0EE56463-49B2-45E1-B74F-3E0139DBC986}_is1) (Version: - Christian Handorf)
Smart Backup B15.0810.1 (x64) (HKLM-x32\...\{BC1FA5CF-A36F-4C61-9638-09D0B431B006}) (Version: 1.00.0003 - GIGABYTE)
Smart TimeLock B15.0708.1 (HKLM-x32\...\InstallShield_{5D93E30A-78A3-4890-962F-56B61A5873DD}) (Version: 1.00.0001 - GIGABYTE)
Smart TimeLock B15.0708.1 (x32 Version: 1.00.0001 - GIGABYTE) Hidden
SmartKeyboard (HKLM-x32\...\InstallShield_{75B74C36-A9C6-4912-B4BB-C461AA36D01E}) (Version: 1.00.0000 - GIGABYTE)
SmartKeyboard (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Source SDK Base 2007 (HKLM-x32\...\Steam App 218) (Version: - Valve)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 12.0.0.14 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Starbound (HKLM\...\Steam App 211820) (Version: - )
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Stronghold Crusader HD (HKLM-x32\...\{8C3727F2-8E37-49E4-820C-03B1677F53B6}) (Version: 1.30.0004 - Firefly Studios)
Stronghold HD (HKLM-x32\...\{C917BA70-28A3-4C74-B163-41FD8C8E1A5A}) (Version: 1.30.0004 - Firefly Studios)
Super Hexagon (HKLM-x32\...\Steam App 221640) (Version: - Terry Cavanagh)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamSpeak 3 Client (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Lord of the Rings Online™ (HKLM\...\Steam App 212500) (Version: - Standing Stone Games, LLC)
The Lord of the Rings Online™ v03.08.00.8029 (HKLM-x32\...\12bbe590-c890-11d9-9669-0800200c9a66_is1) (Version: 03.08.00.8029 - Turbine, Inc.)
Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version: - Ubisoft Montreal)
Uplay (HKLM-x32\...\Uplay) (Version: 24.0.1 - Ubisoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Vulkan Run Time Libraries 1.0.17.0 (HKLM\...\VulkanRT1.0.17.0-4) (Version: 1.0.17.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.17.0 (Version: 1.0.17.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.21.0 (HKLM\...\VulkanRT1.0.21.0) (Version: 1.0.21.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0-3) (Version: 1.0.26.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.26.0 (Version: 1.0.26.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1) (Version: 1.0.3.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0-2) (Version: 1.0.37.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.37.0 (Version: 1.0.37.0 - LunarG, Inc.) Hidden
WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Xvid 1.2.2 final uninstall (HKLM-x32\...\Xvid_is1) (Version: 1.2 - Xvid team (Koepi))
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.72.0.388 - Zemana Ltd.)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {078BE576-665C-4D19-BAA3-D522648B1CA7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {13E383F6-B101-42BF-AF09-259B5FCB9AAB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {14B9AED9-807E-4020-ACFF-FCE51941655E} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-2570889560-1274126736-4133381010-1001
Task: {203E5BC8-6D64-48F1-84C2-955C09555B0A} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe
Task: {29AE46DB-66BB-4FD1-A023-F038A59A3E44} - System32\Tasks\{8BB75C14-B60E-4A85-A7B4-A980300AB2F1} => pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=deDE --uid=prometheus --displayname="Overwatch"
Task: {2E194BE3-52F0-4FA4-B248-0795D9AE450A} - System32\Tasks\HPCeeScheduleForHardy => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-05-12] (HP Development Company, L.P.)
Task: {314EC76A-099F-42B6-BAC6-F13B2F3B636A} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-bll-fan@hotmail.de => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-12-15] (Adobe Systems Incorporated)
Task: {32A6BC06-B5FC-4A14-9BDC-BCB925575EDD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {348CBB87-8874-484E-A6C5-5D0FB3022A9E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {35C1B9E5-C76F-482D-97D0-CD320F84E246} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [2017-04-07] (HP Inc.)
Task: {4A024925-3B1F-4665-BCFA-A718606D2ACE} - System32\Tasks\Opera scheduled Autoupdate 1423210713 => C:\Program Files (x86)\Opera\launcher.exe [2017-05-15] (Opera Software)
Task: {4F476EA5-407C-4B1D-B88E-B3699D1B5004} - System32\Tasks\{E299C8C9-0B72-457B-8A9C-90007BD552AA} => pcalua.exe -a E:\X3.exe -d E:\
Task: {5E8CA500-3AFB-4E4A-B862-AF4D62DB8D98} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\WINDOWS\system32\mrt.exe [2017-02-24] (Microsoft Corporation)
Task: {66BA70BF-BCE2-4E66-954A-C7FCB67D2FA2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2016-12-15] (HP Inc.)
Task: {6CB48E4C-761F-4C73-A762-EFB3CA811A06} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [2017-05-27] () <==== ACHTUNG
Task: {793733B3-85F0-46D8-87A2-B6E1B7F3D5B3} - \ASC10_SkipUac_Hardy -> Keine Datei <==== ACHTUNG
Task: {94D5227E-87C5-45F6-B798-991534C89458} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {9E9F3E3A-F03E-4ACB-A129-FD13E2F7E76E} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2017-03-10] (Advanced Micro Devices, Inc.)
Task: {A8AD002C-6AFB-4D7A-8DAC-4D98FD433F1E} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_171_pepper.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {B2083CC8-8431-46CF-BFA6-510160202BA4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {BB9E0F8A-5411-4FA3-9444-C77F6F26E335} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-05-05] (Piriform Ltd)
Task: {C1CF008C-4079-4B01-977B-57E4E41959EC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {D70B32EA-7DF7-4083-B34B-5E1FE6AED07A} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {E4FFACE1-97ED-4C24-AE62-ED74A919E749} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {FA691F52-FF4C-408B-AC18-58616239038E} - \Jogosh -> Keine Datei <==== ACHTUNG
Task: {FE924C14-61AD-4BB9-ACD3-597C28A895AD} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-10] (Oracle Corporation)
Task: {FEA440CF-D189-4C33-9515-8594B427572B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {FF516BB4-84C2-4C9C-A6AD-7F70B24F64BF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-04-06] (HP Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\HPCeeScheduleForHardy.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2017-04-22 00:47 - 2017-04-22 00:47 - 00154480 _____ () C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll
2015-06-25 10:45 - 2015-06-25 10:45 - 00017920 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
2014-01-21 14:36 - 2014-01-21 14:36 - 00015872 _____ () C:\Program Files (x86)\Gigabyte\CloudStation_Server\RemoteControl\grckm.exe
2014-02-26 20:22 - 2014-02-26 20:22 - 00107008 _____ () C:\Program Files (x86)\Gigabyte\CloudStation_Server\RemoteOC\ubssrv_oc_only.exe
2012-12-07 19:27 - 2012-12-07 19:27 - 00167424 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2016-09-25 01:20 - 2016-09-25 01:21 - 00189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2016-09-13 01:34 - 2016-09-13 01:34 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2016-09-13 01:34 - 2016-09-13 01:34 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-09-13 01:34 - 2016-09-13 01:34 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2016-09-13 01:34 - 2016-09-13 01:34 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2016-09-13 01:34 - 2016-09-13 01:34 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2016-09-13 01:34 - 2016-09-13 01:34 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-09-13 01:34 - 2016-09-13 01:34 - 00191488 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2017-05-26 02:02 - 2017-05-26 02:02 - 00012080 _____ () C:\WINDOWS\TEMP\BullseyeCoverage-x64-3.dll
2012-08-06 23:50 - 2012-08-06 23:50 - 00607744 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\JobCapsA.DLL
2015-07-14 15:37 - 2015-07-14 15:37 - 00821240 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
2017-04-22 00:49 - 2017-03-22 10:24 - 02271520 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2015-11-20 23:41 - 2015-11-20 23:41 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2015-11-20 23:41 - 2015-11-20 23:41 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2016-02-05 18:37 - 2016-02-05 18:37 - 00849704 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
2014-12-18 16:06 - 2014-12-18 16:06 - 00031080 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2015-07-14 15:35 - 2015-07-14 15:35 - 00607016 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2014-12-18 16:09 - 2014-12-18 16:09 - 00059752 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2014-12-18 16:08 - 2014-12-18 16:08 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2014-12-18 16:09 - 2014-12-18 16:09 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2014-12-18 16:11 - 2014-12-18 16:11 - 00129376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2014-12-18 16:14 - 2014-12-18 16:14 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2017-05-27 13:56 - 2017-05-27 13:56 - 01932800 _____ () c:\users\hardy\appdata\roaming\winsapsvc\winsap.dll
2015-06-17 17:39 - 2015-06-17 17:39 - 01974272 _____ () C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\MFCCPU.dll
2015-02-16 11:47 - 2015-02-16 11:47 - 00105472 _____ () C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\ycc.dll
2015-05-19 11:44 - 2015-05-19 11:44 - 01911296 _____ () C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\MFCSPD.dll
2016-12-09 10:01 - 2016-12-09 10:01 - 48920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
2014-01-22 14:53 - 2014-01-22 14:53 - 01607680 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\BDR_info.dll
2015-02-16 11:47 - 2015-02-16 11:47 - 00105472 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\ycc.dll
2017-05-19 15:34 - 2017-05-15 08:11 - 66244184 _____ () C:\Program Files (x86)\Opera\45.0.2552.812\opera_browser.dll
2017-05-27 13:57 - 2017-05-27 09:03 - 00347648 _____ () C:\Users\Hardy\AppData\Local\background_fault\bf.dll
2014-08-18 02:52 - 2017-03-10 02:13 - 00674592 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-01-19 23:58 - 2016-09-01 03:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2014-08-18 02:52 - 2017-04-26 01:55 - 02465056 _____ () C:\Program Files (x86)\Steam\video.dll
2015-01-19 23:58 - 2016-09-01 03:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-01-19 23:58 - 2016-09-01 03:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2014-08-28 22:08 - 2016-01-27 09:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2014-08-28 22:08 - 2016-01-27 09:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2014-08-28 22:08 - 2016-01-27 09:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2014-08-28 22:08 - 2016-01-27 09:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2014-08-28 22:08 - 2016-01-27 09:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2014-08-18 02:52 - 2017-04-26 01:55 - 00848672 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-09 12:22 - 2016-07-05 00:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2017-05-19 15:34 - 2017-05-15 08:11 - 02926680 _____ () C:\Program Files (x86)\Opera\45.0.2552.812\libglesv2.dll
2017-05-19 15:34 - 2017-05-15 08:11 - 00088152 _____ () C:\Program Files (x86)\Opera\45.0.2552.812\libegl.dll
2016-12-12 22:12 - 2017-01-30 23:41 - 68875552 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2014-08-18 02:52 - 2017-04-26 01:55 - 00383776 _____ () C:\Program Files (x86)\Steam\steam.dll
2015-01-19 23:58 - 2015-09-25 01:52 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Hardy:Heroes & Generals [38]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 15:25 - 2017-04-22 02:07 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Hardy\Desktop\jungler.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk"
HKLM\...\StartupApproved\Run: => "BeatsOSDApp"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "SaiMfd"
HKLM\...\StartupApproved\Run: => "ProfilerU"
HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp"
HKLM\...\StartupApproved\Run: => "ZAM"
HKLM\...\StartupApproved\Run32: => "CLMLServer_For_P2G8"
HKLM\...\StartupApproved\Run32: => "CLVirtualDrive"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "AvastUI.exe"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKLM\...\StartupApproved\Run32: => "EsternTimesMouseExRun"
HKLM\...\StartupApproved\Run32: => "PlaysTV"
HKLM\...\StartupApproved\Run32: => "Raptr"
HKLM\...\StartupApproved\Run32: => "ABNotify"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "CAHeadless"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "Raptr"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "NetLimiter"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [UDP Query User{000E0B09-7650-45C9-9BCA-FC4759BDF18C}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [TCP Query User{4F448818-73EB-4D0D-994F-A41283B58C72}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [{A956525B-9B0C-4BA3-A2DC-A25AC9A301C3}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{A3AC0145-B595-46CD-9C15-B257524BE888}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [UDP Query User{079C4395-3551-4717-9961-F50BDCE7A088}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{17CA77CF-772C-4A8F-A7AA-0789CA54FD6C}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{EC380FAC-E967-467E-A2C4-6ADBB14CA6D0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{2E00C8AA-1D08-4250-90EB-C4C31F5657C9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{3D4FC7BF-EA75-4ABB-BF78-E355F7141B2F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{60D49C69-2D5C-4AEC-B861-B74D6F865A0E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{FD315ABC-F5EE-4514-887E-41B42E5D0C67}] => (Allow) LPort=1900
FirewallRules: [{9EFEEAC8-CE72-49D0-93EA-18D3FAE94F0D}] => (Allow) LPort=2869
FirewallRules: [{3FB0E27B-00FF-459B-BC23-EFBF85EFE0A3}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{ADA0AFD0-1AB4-4748-9C96-4CA75573E372}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{6A303ADE-92E4-41CA-AC18-FEA684500C8A}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{9B77ADBC-39A9-4A48-8F68-EC62BA21216F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{156F2AF8-0DE8-43A6-90EA-CC24464BFB14}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{603909EB-1CEC-40E6-9C99-C237A8B3A285}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{DB8F831E-A282-47CD-B9B6-09377E69A393}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{B97A7C9C-C041-453A-A503-FDFB9F17F8E3}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [UDP Query User{0FCA91FE-D278-49CF-8E4C-A1E048EA8F12}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [TCP Query User{7E37C4AC-CCE9-4CAB-AE2A-A88621B4ADB2}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{C06F8E6D-F96F-42C7-A3A5-AA64AE5A50D4}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{EE22F491-A3CD-484E-B2F0-1AAC043F7280}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PlayClaw\PlayClawLauncher.exe
FirewallRules: [{06DEC5FF-9890-41CE-93B8-EBE129E3CED8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PlayClaw\PlayClawLauncher.exe
FirewallRules: [{419C9BE9-4320-468E-992B-2ACDE2E26FA5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base 2007\hl2.exe
FirewallRules: [{0AC47B96-5B8B-48F8-AFBC-2C027F00614B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base 2007\hl2.exe
FirewallRules: [TCP Query User{842C3416-6776-47F0-8175-F22DB66BB120}C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe] => (Allow) C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe
FirewallRules: [UDP Query User{D1973CBC-2C65-4685-AE61-FE5E178D8E74}C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe] => (Allow) C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe
FirewallRules: [{B810ADBE-50BE-41CC-9A50-E0E869263EC1}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{378D2C56-E7E5-4648-AAC6-031E9989F0E6}] => (Allow) C:\Users\Hardy\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5A269248-72A7-4CEC-8CA7-44327B01FD3E}] => (Allow) C:\Users\Hardy\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{83D4532D-433B-4B99-B685-59C6BC93EB9E}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{FC66CB7E-BA44-488D-9587-A47C95FCB514}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{12BACD40-2806-4305-A894-4BFD1F3C94CB}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{45A5E548-46E9-4105-A970-EEA1EC482897}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{9C10FDB7-3937-4238-884C-354BC765317A}] => (Block) %SystemDrive%\Games\Hotline Miami\HotlineMiami.exe
FirewallRules: [TCP Query User{1DDA251D-2A95-475F-92E9-A7959BB8420C}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [UDP Query User{D18BB324-F614-4182-8709-0D8442D8F642}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [{451BEE54-1AC5-413F-A4D1-D34DEBD0FC1F}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{4E60CBAD-06B7-4498-A2C0-AFC4672613A7}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{FF41D876-7066-48CB-AF82-797E08548954}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{0C56D103-F9DA-47BD-A1EF-DFB2630A6995}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{17FC8841-ECB6-4657-B27E-92841F40FB90}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C34FB1E8-062B-4DBA-8294-1618B66186B9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{9EFB607F-304F-4AB2-8A9C-F8821D0B380E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{9F4C8D25-9D2A-4261-8BF0-75B6F3D1814C}C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe
FirewallRules: [UDP Query User{F92FCA4F-FF43-41D2-B546-6C268FFA6CBF}C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe
FirewallRules: [TCP Query User{621EC44B-5CDD-4902-96AA-0A853C4741E1}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{82E33ACA-CD64-4EA4-A5E6-FD205A52D231}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [TCP Query User{AEB29039-D5E1-4DE8-9330-CD081603B067}C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [UDP Query User{22922129-5CE7-491F-9A8D-2D2C2E7B20E4}C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [TCP Query User{E2EE821B-E13F-45F9-9F43-F431D15917E1}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe
FirewallRules: [UDP Query User{D1F654F6-2E8F-42C2-90F6-2454B18D2EA6}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe
FirewallRules: [TCP Query User{8333E39F-F0A7-47B8-B70A-BF34B1EC0300}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe
FirewallRules: [UDP Query User{3E4B972C-B050-4F37-956A-A876085043A0}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe
FirewallRules: [TCP Query User{56CF1675-003D-461B-A526-9C5373FBB8C8}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{F3CA4507-8732-41DF-B771-B27C18A39CF6}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{50DC1D1C-BB8A-4B54-812F-DB29419A1CF2}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [UDP Query User{22E4CCDA-0CAF-42C8-8C33-6C9F2380C501}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [TCP Query User{D4A0E411-7EA6-4012-B3BD-39CD41CA7CC7}C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe] => (Allow) C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe
FirewallRules: [UDP Query User{932CF87E-5F9B-4678-825F-04BD97D75404}C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe] => (Allow) C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe
FirewallRules: [{EDE66CF5-2177-4E05-954C-A5A0ABC0BD5C}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{308FB2B0-D82D-4F36-91A8-9A3E335A8C1A}] => (Block) %USERPROFILE%\Desktop\Games\Hacknet.v4.049\Hacknet.exe
FirewallRules: [{8AF0B504-A498-40DB-A173-B598666213A9}] => (Block) %USERPROFILE%\Desktop\Games\Hacknet.v4.049\Hacknet.exe
FirewallRules: [{0B5F7D89-679B-4211-9F8C-AECF990B545C}] => (Block) %SystemDrive%\Games\Quadrilateral Cowboy\qc.exe
FirewallRules: [{24E11D93-49C5-4C3C-BD9C-ADFBCC15FF7A}] => (Block) %SystemDrive%\Games\Quadrilateral Cowboy\qc.exe
FirewallRules: [{0C1C705C-A696-4F68-970C-E1617C0171DB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\gamemaker_studio\GameMakerPlayer.exe
FirewallRules: [{3B8E0A51-3900-4BFB-ACCD-8873C2E71422}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\gamemaker_studio\GameMakerPlayer.exe
FirewallRules: [TCP Query User{DD7C0B59-30AB-4F67-9A43-C6FD9DF35ED9}C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe
FirewallRules: [UDP Query User{0B180169-0697-42F9-879E-BD9E5D0EB512}C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe
FirewallRules: [TCP Query User{B3E14D60-C398-44E5-A2F6-F74E583DD384}C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe
FirewallRules: [UDP Query User{06A6240C-D020-43EB-9F3B-3DFDC5814E1A}C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe
FirewallRules: [{BBAF0086-EEDF-45F4-89CC-F046B6DC0A5F}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{0A68F553-F18D-4713-A115-DFC8D5FE7F65}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{567C30C4-0BC8-4599-A2EB-CDD98E57C484}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSixGame.exe
FirewallRules: [{2F95BFAF-2FB6-4230-BF81-69154E005BC7}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSixGame.exe
FirewallRules: [{0B3EF0F2-3B26-406C-B59A-3EB160340124}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{D521F649-0F43-4D2F-A8E4-AA4571DB1A1C}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{CDF146D0-76BD-4685-9AF6-FDD072FFAA31}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{B58C29A3-492A-499A-9A84-744BA8632F1F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{04EA1C75-F817-4A64-A111-FC89832CD1E4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{96578E67-D1E7-46DC-859B-C92238486324}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{236AA833-2510-4336-8C5B-F460C9EEE5C8}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{6945EB1F-05E6-4C2E-B485-11AC54579B2D}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{D71BA33F-EA6A-49A4-84F6-891EC56A9E21}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{417405D0-6761-447E-92F8-C8F8D9632601}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [TCP Query User{92D48B66-C889-4870-A9A1-49CDE288DB81}C:\program files (x86)\unreal tournament 2004\system\ut2004.exe] => (Block) C:\program files (x86)\unreal tournament 2004\system\ut2004.exe
FirewallRules: [UDP Query User{FB890EBA-7455-4606-9DD7-5BE161477873}C:\program files (x86)\unreal tournament 2004\system\ut2004.exe] => (Block) C:\program files (x86)\unreal tournament 2004\system\ut2004.exe
FirewallRules: [{7498682D-65DC-465B-80FF-0445A0031EB9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{E9F5249A-1056-47D1-854C-40F02395CA2D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{0C4B6943-37EB-45C3-BC9F-726B346EE09A}] => (Allow) LPort=53000
FirewallRules: [{AFFE5FB1-0482-48D0-811E-8EF4DD24D573}] => (Allow) LPort=52000
FirewallRules: [{0B8C7D99-62C9-49CA-AE0A-A1BD551B9D38}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [{DB86DDA1-44D8-481C-B1A1-4AE136205D11}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [{893AF812-FECE-4F6F-8CF1-8FF08A0D9085}] => (Allow) C:\Program Files (x86)\Opera\43.0.2442.1144\opera.exe
FirewallRules: [{985B8896-9841-45DB-A6D8-092078B125C0}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{871568B5-1B5A-473F-A08C-E2FF22893B1C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{13E403E4-FCB2-4712-ACA5-3AF88A4CC507}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{3285D531-485A-409E-9177-C7AF06559810}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{1ADEDD41-F57D-4C0E-BCAC-0E18282AEAEE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound.exe
FirewallRules: [{29DF63D1-170B-40E2-8A0B-C9F33CDA266E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound.exe
FirewallRules: [{FAB2071B-17EA-412B-8E04-A061AE582F7C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{E31B5322-CD2D-4D3B-89BD-978479688905}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{F4831B5B-95F8-493A-8E61-927439B7E7DC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{E7572C37-6D57-4378-BE5A-D674326DEF78}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{E1ADC6CE-FB55-439C-85F8-C1113F56263D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win32\starbound.exe
FirewallRules: [{AD73812C-A874-4D11-818A-435EF9CE8AC1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win32\starbound.exe
FirewallRules: [{87DB987D-E32F-42BE-8F4D-23790043C435}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{775E2A01-DEBA-46FA-8AC1-3F78821BC3D1}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{790CEAAC-E91E-4F5B-B722-156D55422A2A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{76307A61-E3C3-43BE-884F-6D221C129EDD}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{817B7DB0-D596-4445-A8B5-21479E072A0E}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{1722850B-D263-4DC7-AA56-8F42CB8438F8}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{A3F24794-2EAC-42E1-A3CC-1B39482A95BE}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{39686367-0D8C-47B8-84B9-EF4772F05613}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [TCP Query User{B29DEBB4-A17A-4AC1-814F-33A386ED8DAB}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{E2DE3A9F-4B8A-43F4-AA64-472A1F55E809}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{EC3979B7-DFFC-443E-A275-C8FD14D65EC8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SimpleRockets\SimpleRockets.exe
FirewallRules: [{EFB89F9B-35E8-4354-B4E2-B4FAEB0D1217}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SimpleRockets\SimpleRockets.exe
FirewallRules: [TCP Query User{862BD372-C7E2-470F-96DD-8E522C571FE5}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{62804620-05F1-4789-8273-BDDED9C718F7}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{093302F0-8440-4085-9C72-8DE4A6C54B5F}] => (Allow) C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
FirewallRules: [{00A6BA1C-8046-4506-A8FD-0B789B92BA8B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Shakes & Fidget\Shakes and Fidget.exe
FirewallRules: [{1567F691-BD12-447F-8151-61B4A9728648}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Shakes & Fidget\Shakes and Fidget.exe
FirewallRules: [{647768C2-A4D9-49FB-8B51-E41ACFE6C3FA}] => (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{1A4B601A-299E-4A9B-83C8-D87F1611FD97}] => (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{342E1CDF-8AC0-400F-9F2F-7ADAC5C2338B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{9BB08BBD-DA50-4FFF-9B6D-DB6E2072FA07}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Darksiders II Deathinitive Edition\Darksiders2.exe
FirewallRules: [{513A0535-FCCD-484D-8684-56E565C64E6F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Darksiders II Deathinitive Edition\Darksiders2.exe
FirewallRules: [{6D7CDBD9-B779-4290-9153-3A48D2CF6A70}] => (Allow) C:\Program Files (x86)\Setleaf\Application\chrome.exe
FirewallRules: [{F7EAD389-C39C-4AEA-934C-4AC417FB3344}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe
FirewallRules: [{21E80125-C403-41F5-9B74-FFD73E838A22}] => (Allow) C:\Program Files (x86)\Firefly Studios\Stronghold Crusader\Stronghold_Crusader_Extreme.exe
FirewallRules: [{BC5E572D-3694-4845-A5F8-DED9582FE6C0}] => (Allow) C:\Program Files (x86)\Firefly Studios\Stronghold Crusader\Stronghold_Crusader_Extreme.exe
FirewallRules: [{E8382C07-E291-4C36-B704-C7E5977045D2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Lord of the Rings Online\TurbineInvoker.exe
FirewallRules: [{D93FF7C4-DA16-4A85-B110-7537F24F90BA}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Lord of the Rings Online\TurbineInvoker.exe
FirewallRules: [TCP Query User{CE3E230D-692E-43C2-84E5-69BC8CADE976}C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe
FirewallRules: [UDP Query User{4B4EA590-D03B-45B3-89EE-D72F5BEC27B7}C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe
FirewallRules: [{3AF8D6B7-DDA7-4BB8-85DE-BA8035B1C5B9}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation_Server\HomeCloud\HCLOUD.exe
FirewallRules: [{E432E6A9-A5C5-45FB-A9B6-BD9EF2D9C7A8}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation_Server\RemoteOC\ubssrv_oc_only.exe
FirewallRules: [{FAF15177-E9F6-46E0-990A-686B9981A388}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation_Server\RemoteControl\grckm.exe
FirewallRules: [{AC74A2FB-E16F-40AE-81F8-DE7C136CAAD6}] => (Allow) LPort=1980
FirewallRules: [{18346023-1637-4F1D-9255-84033ABDCCB9}] => (Allow) LPort=1900
FirewallRules: [{A75E43CE-F35C-48CF-8C55-09BCBD16A9BA}] => (Allow) LPort=1900
FirewallRules: [{E4458C37-27E2-48D8-85BA-8090A1B3141F}] => (Allow) LPort=8117
FirewallRules: [{A9348D40-E166-4252-AC79-BB41239C9952}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{F8F1F571-A378-4B10-800F-F4C7E9B3F14F}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{AB8E2998-8759-4CD6-9282-978E58091AC2}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{B1220E54-1EE7-4406-BE65-29ABD4E6320E}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
==================== Wiederherstellungspunkte =========================
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (05/28/2017 10:09:34 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/28/2017 10:06:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: OnlineCmdLineScanner.exe, Version: 0.0.0.0, Zeitstempel: 0x5554671d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc00000fd
Fehleroffset: 0x02b669c6
ID des fehlerhaften Prozesses: 0x1bbc
Startzeit der fehlerhaften Anwendung: 0x01d2d7cff13659db
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 1f1b455a-43e1-11e7-823c-408d5c71352e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/28/2017 09:41:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: QQIme.exe, Version: 1.0.21.1, Zeitstempel: 0x591c06a2
Name des fehlerhaften Moduls: libcef.dll, Version: 6.3.9600.18233, Zeitstempel: 0x56bb4e1d
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009d3c2
ID des fehlerhaften Prozesses: 0x2394
Startzeit der fehlerhaften Anwendung: 0x01d2d7ea3963c9f8
Pfad der fehlerhaften Anwendung: C:\Users\Hardy\AppData\Local\background_fault\QQIme.exe
Pfad des fehlerhaften Moduls: libcef.dll
Berichtskennung: a47bf8d9-43dd-11e7-823c-408d5c71352e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/28/2017 09:41:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: QQIme.exe, Version: 1.0.21.1, Zeitstempel: 0x591c0689
Name des fehlerhaften Moduls: SQLITE3.dll, Version: 6.3.9600.18233, Zeitstempel: 0x56bb4e1d
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009d3c2
ID des fehlerhaften Prozesses: 0x222c
Startzeit der fehlerhaften Anwendung: 0x01d2d7ea39588fe7
Pfad der fehlerhaften Anwendung: C:\Users\Hardy\AppData\Local\background_fault\QQIme.exe
Pfad des fehlerhaften Moduls: SQLITE3.dll
Berichtskennung: a46a4797-43dd-11e7-823c-408d5c71352e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/28/2017 08:15:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: QQIme.exe, Version: 1.0.21.1, Zeitstempel: 0x591c0689
Name des fehlerhaften Moduls: SQLITE3.dll, Version: 6.3.9600.18233, Zeitstempel: 0x56bb4e1d
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009d3c2
ID des fehlerhaften Prozesses: 0xbc4
Startzeit der fehlerhaften Anwendung: 0x01d2d7dcd013ee14
Pfad der fehlerhaften Anwendung: C:\Users\Hardy\AppData\Local\background_fault\QQIme.exe
Pfad des fehlerhaften Moduls: SQLITE3.dll
Berichtskennung: 97edd02f-43d1-11e7-823c-408d5c71352e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/28/2017 08:15:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: QQIme.exe, Version: 1.0.21.1, Zeitstempel: 0x591c06a2
Name des fehlerhaften Moduls: libcef.dll, Version: 6.3.9600.18233, Zeitstempel: 0x56bb4e1d
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009d3c2
ID des fehlerhaften Prozesses: 0x2438
Startzeit der fehlerhaften Anwendung: 0x01d2d7dcd0228075
Pfad der fehlerhaften Anwendung: C:\Users\Hardy\AppData\Local\background_fault\QQIme.exe
Pfad des fehlerhaften Moduls: libcef.dll
Berichtskennung: 97eda91f-43d1-11e7-823c-408d5c71352e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/28/2017 06:31:54 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/28/2017 06:31:12 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/28/2017 06:31:05 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Hardy\Desktop\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/28/2017 06:31:05 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Hardy\Desktop\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Systemfehler:
=============
Error: (05/28/2017 06:32:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (05/28/2017 06:32:06 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Hardy\AppData\Local\Temp\ehdrv.sys
Error: (05/28/2017 06:32:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (05/28/2017 06:32:05 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Hardy\AppData\Local\Temp\ehdrv.sys
Error: (05/28/2017 06:32:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (05/28/2017 06:32:05 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Hardy\AppData\Local\Temp\ehdrv.sys
Error: (05/28/2017 03:38:06 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.
Error: (05/28/2017 12:10:48 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "terana" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (05/28/2017 12:06:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Google Update-Dienst (gupdate)" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (05/28/2017 12:03:11 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "EasyTune Engine" hat einen ungültigen aktuellen Status gemeldet: 0
CodeIntegrity:
===================================
Date: 2017-05-28 16:48:48.275
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-28 16:48:48.070
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-28 16:21:43.268
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-28 16:21:43.069
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-28 16:21:42.877
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-28 16:21:42.686
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-28 16:21:42.493
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-28 16:21:42.300
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-28 16:21:42.066
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-28 12:05:28.715
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Prozentuale Nutzung des RAM: 49%
Installierter physikalischer RAM: 8144.59 MB
Verfügbarer physikalischer RAM: 4114.62 MB
Summe virtueller Speicher: 8638.49 MB
Verfügbarer virtueller Speicher: 3818.3 MB
==================== Laufwerke ================================
Drive c: (OS) (Fixed) (Total:918.27 GB) (Free:47.35 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (Recovery Image) (Fixed) (Total:10.98 GB) (Free:0.19 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive e: (LOTR_TWO_TOWERS_D1) (CDROM) (Total:7.63 GB) (Free:0 GB) UDF
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt ============================
|
|
29.05.2017, 04:03
| #17 |
| /// Malwareteam   | Browser-Hijacker(?) will nicht verschwinden Also wer so viele Cracks und Hacks auf den PC läd wie du darf sich ned wundern dass seine Kiste so verseucht is
__________________Schritt: 1 FRST Fix
Schritt: 2 Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.
__________________ |
|
29.05.2017, 06:26
| #18 |
| | Browser-Hijacker(?) will nicht verschwinden Sollte ich den COde noch irgendwohin kopieren?
__________________Fixlog: Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 28-05-2017
durchgeführt von Hardy (29-05-2017 07:03:42) Run:1
Gestartet von C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug
Geladene Profile: Hardy (Verfügbare Profile: Hardy & Administrator)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
closeprocesses:
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Run: [background_fault] => C:\Users\Hardy\AppData\Local\background_fault\aswRD.exe [1419576 2017-05-27] (AVAST Software) <===== ACHTUNG
IFEO\GoogleUpdate.exe: [Debugger] 324095823984.exe
IFEO\GoogleUpdaterService.exe: [Debugger] 8736459873644.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
Toolbar: HKU\S-1-5-21-2570889560-1274126736-4133381010-1001 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Keine Datei
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\lxdrst7r.default -> Search
FF Extension: (TLS 1.3 A/B Test Experiment) - C:\Users\Hardy\AppData\Roaming\Mozilla\Firefox\Profiles\lxdrst7r.default\features\{3d15c9f6-c448-4e7d-953a-bfc7814ca1c3}\tls13-comparison-all-v1@mozilla.org.xpi [2017-03-27]
FF HKLM-x32\...\Firefox\Extensions: [dnshelp@dnshelp.com] - C:\Users\Hardy\AppData\Roaming\Helper
FF Extension: (Helper) - C:\Users\Hardy\AppData\Roaming\Helper [2014-08-15] [ist nicht signiert]
CHR DefaultSearchURL: ChromeDefaultData -> hxxp://www.mystarting123.com/search/index.php?z=c6b1474d1208226a98e6fabg1z0tew2q0o0o1c7e8c&q={searchTerms}
CHR DefaultSearchKeyword: ChromeDefaultData -> mystarting123
CHR Profile: C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-05-28] <==== ACHTUNG
R2 BIT; C:\ProgramData\BIT\BIT.dll [1812992 2017-05-27] (TODO: <公司名>) [Datei ist nicht signiert] <==== ACHTUNG
S2 terana; C:\Users\Hardy\AppData\Local\terana\terana.dll [908288 2017-05-27] (IntertSect Alliance Pty Ltd) [Datei ist nicht signiert] <==== ACHTUNG
R2 WinSAPSvc; C:\Users\Hardy\AppData\Roaming\WinSAPSvc\WinSAP.dll [1932800 2017-05-27] () [Datei ist nicht signiert] <==== ACHTUNG
2017-05-28 14:56 - 2017-05-28 14:57 - 00000000 _____ C:\end
2017-05-27 18:39 - 2017-05-28 19:39 - 00000000 _____ C:\WINDOWS\SysWOW64\1
2017-05-27 13:57 - 2017-05-27 13:57 - 00000000 ____D C:\Users\Hardy\AppData\Local\background_fault
2017-05-27 13:57 - 2017-05-27 13:57 - 00000000 ____D C:\ProgramData\BIT
2017-05-27 13:56 - 2017-05-27 13:57 - 00000000 ____D C:\Program Files (x86)\MIO
2017-05-27 13:56 - 2017-05-27 13:56 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\WinSAPSvc
2017-05-27 13:56 - 2017-05-27 13:56 - 00000000 ____D C:\Users\Hardy\AppData\Local\terana
2017-05-27 13:56 - 2017-05-27 13:56 - 00000000 ____D C:\Pipisy
2017-05-24 14:35 - 2017-05-24 14:35 - 00000000 _____ C:\WINDOWS\SysWOW64\1111
2017-05-26 01:54 - 2015-12-02 02:08 - 00000000 ____D C:\Users\Hardy\Downloads\Pepakura.Designer.v3.0.3b.Incl.Keymaker-CORE
2017-04-28 14:11 - 2017-04-27 13:31 - 00000000 _____ C:\WINDOWS\SysWOW64\22
2017-04-28 14:11 - 2017-04-27 13:31 - 00000000 _____ C:\WINDOWS\SysWOW64\11
Task: {4F476EA5-407C-4B1D-B88E-B3699D1B5004} - System32\Tasks\{E299C8C9-0B72-457B-8A9C-90007BD552AA} => pcalua.exe -a E:\X3.exe -d E:\
Task: {6CB48E4C-761F-4C73-A762-EFB3CA811A06} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [2017-05-27] () <==== ACHTUNG
Task: {793733B3-85F0-46D8-87A2-B6E1B7F3D5B3} - \ASC10_SkipUac_Hardy -> Keine Datei <==== ACHTUNG
Task: {FA691F52-FF4C-408B-AC18-58616239038E} - \Jogosh -> Keine Datei <==== ACHTUNG
HKLM\...\StartupApproved\Run: => "SaiMfd"
HKLM\...\StartupApproved\Run: => "ProfilerU"
HKLM\...\StartupApproved\Run32: => "CLMLServer_For_P2G8"
HKLM\...\StartupApproved\Run32: => "AvastUI.exe"
HKLM\...\StartupApproved\Run32: => "EsternTimesMouseExRun"
HKLM\...\StartupApproved\Run32: => "ABNotify"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "CAHeadless"
FirewallRules: [TCP Query User{50DC1D1C-BB8A-4B54-812F-DB29419A1CF2}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [UDP Query User{22E4CCDA-0CAF-42C8-8C33-6C9F2380C501}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [{6D7CDBD9-B779-4290-9153-3A48D2CF6A70}] => (Allow) C:\Program Files (x86)\Setleaf\Application\chrome.exe
emptytemp:
*****************
Prozesse erfolgreich geschlossen.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Wert erfolgreich entfernt
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\Software\Microsoft\Windows\CurrentVersion\Run\\background_fault => Wert erfolgreich entfernt
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\GoogleUpdate.exe => Schlüssel erfolgreich entfernt
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\GoogleUpdaterService.exe => Schlüssel erfolgreich entfernt
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast => Schlüssel erfolgreich entfernt
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => Schlüssel nicht gefunden.
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => Wert erfolgreich entfernt
HKCR\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => Schlüssel nicht gefunden.
Firefox SelectedSearchEngine erfolgreich entfernt
C:\Users\Hardy\AppData\Roaming\Mozilla\Firefox\Profiles\lxdrst7r.default\features\{3d15c9f6-c448-4e7d-953a-bfc7814ca1c3}\tls13-comparison-all-v1@mozilla.org.xpi => erfolgreich verschoben
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\dnshelp@dnshelp.com => Wert erfolgreich entfernt
C:\Users\Hardy\AppData\Roaming\Helper => erfolgreich verschoben
Chrome DefaultSearchURL => erfolgreich entfernt
Chrome DefaultSearchKeyword => erfolgreich entfernt
C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData => erfolgreich verschoben
BIT => Dienst konnte nicht gestoppt werden.
HKLM\System\CurrentControlSet\Services\BIT => Schlüssel erfolgreich entfernt
BIT => Dienst erfolgreich entfernt
HKLM\System\CurrentControlSet\Services\terana => Schlüssel erfolgreich entfernt
terana => Dienst erfolgreich entfernt
WinSAPSvc => Dienst konnte nicht gestoppt werden.
HKLM\System\CurrentControlSet\Services\WinSAPSvc => Schlüssel erfolgreich entfernt
WinSAPSvc => Dienst erfolgreich entfernt
C:\end => erfolgreich verschoben
C:\WINDOWS\SysWOW64\1 => erfolgreich verschoben
C:\Users\Hardy\AppData\Local\background_fault => erfolgreich verschoben
C:\ProgramData\BIT => erfolgreich verschoben
C:\Program Files (x86)\MIO => erfolgreich verschoben
C:\Users\Hardy\AppData\Roaming\WinSAPSvc => erfolgreich verschoben
C:\Users\Hardy\AppData\Local\terana => erfolgreich verschoben
C:\Pipisy => erfolgreich verschoben
C:\WINDOWS\SysWOW64\1111 => erfolgreich verschoben
C:\Users\Hardy\Downloads\Pepakura.Designer.v3.0.3b.Incl.Keymaker-CORE => erfolgreich verschoben
C:\WINDOWS\SysWOW64\22 => erfolgreich verschoben
C:\WINDOWS\SysWOW64\11 => erfolgreich verschoben
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4F476EA5-407C-4B1D-B88E-B3699D1B5004} => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4F476EA5-407C-4B1D-B88E-B3699D1B5004} => Schlüssel erfolgreich entfernt
C:\WINDOWS\System32\Tasks\{E299C8C9-0B72-457B-8A9C-90007BD552AA} => erfolgreich verschoben
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E299C8C9-0B72-457B-8A9C-90007BD552AA} => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6CB48E4C-761F-4C73-A762-EFB3CA811A06} => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6CB48E4C-761F-4C73-A762-EFB3CA811A06} => Schlüssel erfolgreich entfernt
C:\WINDOWS\System32\Tasks\Milimili => erfolgreich verschoben
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Milimili => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{793733B3-85F0-46D8-87A2-B6E1B7F3D5B3} => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{793733B3-85F0-46D8-87A2-B6E1B7F3D5B3} => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASC10_SkipUac_Hardy => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FA691F52-FF4C-408B-AC18-58616239038E} => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FA691F52-FF4C-408B-AC18-58616239038E} => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Jogosh => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\SaiMfd => Wert erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\SaiMfd => Wert nicht gefunden.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\ProfilerU => Wert erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\ProfilerU => Wert nicht gefunden.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32\\CLMLServer_For_P2G8 => Wert erfolgreich entfernt
HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\CLMLServer_For_P2G8 => Wert nicht gefunden.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32\\AvastUI.exe => Wert erfolgreich entfernt
HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\AvastUI.exe => Wert nicht gefunden.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32\\EsternTimesMouseExRun => Wert erfolgreich entfernt
HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\EsternTimesMouseExRun => Wert nicht gefunden.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32\\ABNotify => Wert erfolgreich entfernt
HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ABNotify => Wert nicht gefunden.
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\CAHeadless => Wert erfolgreich entfernt
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\CAHeadless => Wert nicht gefunden.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{50DC1D1C-BB8A-4B54-812F-DB29419A1CF2}C:\windows\syswow64\dplaysvr.exe => Wert erfolgreich entfernt
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{22E4CCDA-0CAF-42C8-8C33-6C9F2380C501}C:\windows\syswow64\dplaysvr.exe => Wert erfolgreich entfernt
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6D7CDBD9-B779-4290-9153-3A48D2CF6A70} => Wert erfolgreich entfernt
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 17064895 B
Java, Flash, Steam htmlcache => 619209744 B
Windows/system/drivers => 121622 B
Edge => 0 B
Chrome => 0 B
Firefox => 12488493 B
Opera => 436340236 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 10811038 B
LocalService => 6546 B
NetworkService => 0 B
Hardy => 97380567 B
Administrator => 4503501 B
RecycleBin => 0 B
EmptyTemp: => 1.1 GB temporäre Dateien entfernt.
================================
Das System musste neu gestartet werden.
==== Ende von Fixlog 07:08:04 ====
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 28-05-2017
durchgeführt von Hardy (Administrator) auf JAMES (29-05-2017 07:16:37)
Gestartet von C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug
Geladene Profile: Hardy (Verfügbare Profile: Hardy & Administrator)
Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Opera)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
(Microsoft) C:\Program Files (x86)\GIGABYTE\CloudStation_Server\HomeCloud\GCloud.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft) C:\Program Files (x86)\GIGABYTE\CloudStation_Server\HomeCloud\HCLOUD.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
() C:\Program Files (x86)\GIGABYTE\CloudStation_Server\RemoteControl\grckm.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
() C:\Program Files (x86)\GIGABYTE\CloudStation_Server\RemoteOC\ubssrv_oc_only.exe
(Mr. John aka japamd) C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
(Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Gigabyte Technology CO., LTD.) C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe
(Gigabyte Technology CO., LTD.) C:\Program Files (x86)\GIGABYTE\Smart TimeLock\AlarmClock.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
() C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\livecomm.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Rapoo) C:\Program Files (x86)\Rapoo\V700\V700Config.exe
() C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.812\opera_crashreporter.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [478984 2012-12-15] (Adobe Systems Incorporated)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15033976 2015-11-20] (Logitech Inc.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-11-20] (IDT, Inc.)
HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [41664 2013-11-20] (Hewlett-Packard )
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-11-01] (Apple Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9197568 2017-05-22] (Realtek Semiconductor)
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-05-23] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [ZAM] => C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [14522512 2017-04-03] (Copyright 2017.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-04-10] (Oracle Corporation)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-05-23] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1282120 2013-05-02] (CANON INC.)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2016-11-04] (Razer Inc.)
HKLM-x32\...\Run: [Rapoo V700] => C:\Program Files (x86)\Rapoo\V700\load.exe [808760 2014-04-30] ()
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58584 2016-09-29] (Raptr, Inc)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-05-23] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [6153128 2017-05-22] (LogMeIn Inc.)
HKLM-x32\...\RunOnce: [EasyTuneEngineService] => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EngineRunOnce.exe [8192 2015-08-05] (GIGA-BYTE TECHNOLOGY CO., LTD.)
HKLM-x32\...\RunOnce: [SIV] => C:\Program Files (x86)\GIGABYTE\SIV\sivro.exe [12096 2015-08-11] (GIGA-BYTE TECHNOLOGY CO., LTD.)
HKLM-x32\...\RunOnce: [EasyTune] => C:\Program Files (x86)\GIGABYTE\EasyTune\etro.exe [5632 2015-08-05] (GIGA-BYTE TECHNOLOGY CO., LTD.)
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [8192 2013-04-29] ()
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9772248 2017-05-05] (Piriform Ltd)
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {182bb6d7-7546-11e3-bf81-b4b52fd91f16} - "H:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {292e2fcd-3875-11e6-80d8-b4b52fd91f16} - "I:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {858bc1f3-5612-11e5-bfcd-b4b52fd91f16} - "I:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {882e6f95-ead9-11e6-81b3-b4b52fd91f16} - "E:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {a0968113-b115-11e4-bf1d-b4b52fd91f16} - "H:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {bce95545-5557-11e5-bfcc-b4b52fd91f16} - "I:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {bce95547-5557-11e5-bfcc-b4b52fd91f16} - "I:\HTC_Sync_Manager_PC.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2014-08-20]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7A68117C-CA3D-4CD2-93E3-92CA12B9A7C3}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{7A68117C-CA3D-4CD2-93E3-92CA12B9A7C3}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{C155D1A7-613D-45C6-9A05-87C4F655EEA6}: [DhcpNameServer] 192.168.0.1
ManualProxies:
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKLM -> {43F6ABD5-68C5-4060-A10F-AEAA1B6C98A7} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\S-1-5-21-2570889560-1274126736-4133381010-1001 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-2570889560-1274126736-4133381010-1001 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKU\S-1-5-21-2570889560-1274126736-4133381010-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-05-17] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-17] (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (HP Inc.)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\Hardy\AppData\Roaming\Mozilla\Firefox\Profiles\lxdrst7r.default [2017-05-29]
FF NewTab: Mozilla\Firefox\Profiles\lxdrst7r.default -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\lxdrst7r.default -> www.google.de/
FF Extension: (AVG Web TuneUp) - C:\Users\Hardy\AppData\Roaming\Mozilla\Firefox\Profiles\lxdrst7r.default\Extensions\avg@toolbar.xpi [2017-05-09]
FF Extension: (MEGA) - C:\Users\Hardy\AppData\Roaming\Mozilla\Firefox\Profiles\lxdrst7r.default\Extensions\firefox@mega.co.nz.xpi [2017-05-04]
FF Extension: (Adblock Plus) - C:\Users\Hardy\AppData\Roaming\Mozilla\Firefox\Profiles\lxdrst7r.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-24]
FF HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: (McAfee Security Scan Plus) - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-09] ()
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-17] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-17] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-30] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-12-15] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.17.2 -> C:\WINDOWS\SysWOW64\npDeployJava1.dll [2014-12-04] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome - Chrome.exe
Opera:
=======
OPR Extension: (Video Downloader Pro) - C:\Users\Hardy\AppData\Roaming\Opera Software\Opera Stable\Extensions\ibehiiilehaakkhkigckfjfknboalpbe [2017-02-03]
StartMenuInternet: (HKLM) OperaStable - Opera.exe
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AppleChargerSrv; C:\WINDOWS\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [1002552 2017-04-11] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [5334432 2017-04-11] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428656 2017-05-23] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [729048 2017-04-11] (AVG Technologies CZ, s.r.o.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1486344 2017-02-07] ()
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2017-05-28] (BitRaider, LLC)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [138240 2015-08-05] (GIGA-BYTE TECHNOLOGY CO., LTD.) [Datei ist nicht signiert]
R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [Datei ist nicht signiert]
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [284736 2017-02-23] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6625856 2016-12-04] (GOG.com)
R2 GCloud; C:\Program Files (x86)\GIGABYTE\CloudStation_Server\HomeCloud\GCloud.exe [19776 2015-03-23] (Microsoft)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3760040 2017-05-22] (LogMeIn Inc.)
S4 HPConnectedRemote; c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35232 2012-08-29] (Hewlett-Packard)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [33640 2017-04-07] (HP Inc.)
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-06-27] (Nero AG)
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [62784 2015-08-11] (GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc.)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193144 2015-11-20] (Logitech Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
S4 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
S2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [117760 2015-08-05] (GIGA-BYTE TECHNOLOGY CO., LTD.) [Datei ist nicht signiert]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2145288 2017-04-04] (Electronic Arts)
S3 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3114512 2017-04-04] (Electronic Arts)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [Datei ist nicht signiert]
S3 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2016-10-04] ()
S3 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2017-03-07] ()
R2 RadeonPro Support Service; C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe [20608 2013-11-04] (Mr. John aka japamd) [Datei ist nicht signiert]
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [69744 2016-10-18] (Razer Inc.)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-25] ()
R2 Smart TimeLock; C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe [102400 2013-02-22] (Gigabyte Technology CO., LTD.) [Datei ist nicht signiert]
S2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [339456 2013-11-20] (IDT, Inc.) [Datei ist nicht signiert]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 ZAMSvc; C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [14522512 2017-04-03] (Copyright 2017.)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 amdacpksd; C:\WINDOWS\system32\drivers\amdacpksd.sys [305544 2017-05-22] (Advanced Micro Devices)
S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R1 AppleCharger; C:\WINDOWS\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] ()
S3 ASPI; C:\WINDOWS\SysWOW64\DRIVERS\ASPI32.sys [84832 2002-07-17] (Adaptec) [Datei ist nicht signiert]
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWB6.sys [118848 2016-08-09] (Advanced Micro Devices)
S2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [303616 2014-09-28] () [Datei ist nicht signiert]
S0 Avgboota; C:\WINDOWS\System32\DRIVERS\avgboota.sys [21632 2016-01-07] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\WINDOWS\System32\DRIVERS\avgdiska.sys [163072 2016-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdrivera.sys [313088 2017-02-20] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\WINDOWS\System32\DRIVERS\avgidsha.sys [267008 2016-10-05] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\WINDOWS\System32\DRIVERS\avgldx64.sys [298240 2016-11-30] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\WINDOWS\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\WINDOWS\System32\DRIVERS\avgmfx64.sys [253184 2017-04-11] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\WINDOWS\System32\DRIVERS\avgrkx64.sys [52992 2016-06-01] (AVG Technologies CZ, s.r.o.)
R0 avguniva; C:\WINDOWS\System32\DRIVERS\avguniva.sys [77056 2016-06-20] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\WINDOWS\system32\DRIVERS\avgwfpa.sys [313096 2016-08-04] (AVG Technologies CZ, s.r.o.)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2017-05-28] (BitRaider)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R1 dtsoftbus01; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [283064 2014-09-22] (Disc Soft Ltd)
R1 epp; C:\EEK\bin64\epp.sys [124552 2016-11-23] (Emsisoft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77440 2017-03-22] ()
S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2017-05-22] (LogMeIn Inc.)
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [54736 2017-04-22] ()
S3 HtcVCom32; C:\WINDOWS\system32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated) [Datei ist nicht signiert]
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-05-22] (REALiX(tm))
R3 iusb3adp; C:\WINDOWS\System32\drivers\iusb3adp.sys [37472 2017-05-22] (Intel)
S3 ladfGSS; C:\WINDOWS\system32\drivers\ladfGSS.sys [45208 2017-05-22] (Logitech Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [68384 2015-06-11] (Logitech Inc.)
S3 lgLowAudio; C:\WINDOWS\system32\drivers\lgLowAudio.sys [26264 2015-11-20] (Logitech Inc.)
S2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [35328 2014-09-28] () [Datei ist nicht signiert]
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [186304 2017-05-04] (Malwarebytes)
S3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [111544 2017-05-04] (Malwarebytes)
S3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [43968 2017-05-04] (Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [251832 2017-05-29] (Malwarebytes)
S3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [92096 2017-05-04] (Malwarebytes)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] ()
R3 rpvmsd; C:\WINDOWS\system32\drivers\rpvmsd.sys [22016 2013-07-05] (RAPOO)
R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [51736 2016-06-22] (Razer Inc)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [44144 2016-09-17] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [137840 2016-09-07] (Razer, Inc.)
R3 SaiMini; C:\WINDOWS\System32\drivers\SaiMini.sys [24152 2016-07-18] (Saitek)
R3 SaiNtBus; C:\WINDOWS\system32\drivers\SaiBus.sys [59736 2016-07-18] (Saitek)
S3 STHDA; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [551936 2013-11-20] (IDT, Inc.) [Datei ist nicht signiert]
S1 UsbCharger; C:\WINDOWS\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
R1 ZAM; C:\WINDOWS\System32\drivers\zam64.sys [203680 2017-04-22] (Zemana Ltd.)
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard64.sys [203680 2017-04-22] (Zemana Ltd.)
S3 _hid_0738_1703; C:\WINDOWS\system32\DRIVERS\_hid_0738_1703.sys [210408 2016-07-18] (Saitek)
S3 _usb_0738_1703; C:\WINDOWS\System32\drivers\_usb_0738_1703.sys [46824 2016-07-18] (Saitek)
S3 dcdbas; \SystemRoot\System32\drivers\dcdbas64.sys [X]
S3 xhunter1; \??\C:\WINDOWS\xhunter1.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-28 18:28 - 2017-05-28 18:28 - 02870984 _____ (ESET) C:\Users\Hardy\Desktop\esetsmartinstaller_deu.exe
2017-05-28 16:18 - 2017-05-28 16:26 - 00000000 ____D C:\Users\Hardy\Documents\Stronghold
2017-05-28 15:12 - 2017-05-28 15:12 - 00000000 ____D C:\ProgramData\BitRaider
2017-05-28 14:57 - 2017-05-28 14:57 - 00000852 _____ C:\Users\Public\Desktop\Star Wars - The Old Republic.lnk
2017-05-27 14:12 - 2017-05-27 14:12 - 00000000 ____D C:\Users\Hardy\AppData\Local\The Lord of the Rings Online
2017-05-27 06:27 - 2017-05-27 07:13 - 00000000 ____D C:\Users\Hardy\AppData\Local\Turbine
2017-05-27 06:27 - 2017-05-27 06:27 - 00000093 _____ C:\Users\Hardy\AppData\Local\fusioncache.dat
2017-05-27 06:27 - 2017-05-27 06:27 - 00000000 ____D C:\Users\Hardy\AppData\Local\ApplicationHistory
2017-05-27 06:23 - 2017-05-27 06:23 - 00000000 ____D C:\WINDOWS\SysWOW64\URTTEMP
2017-05-26 22:57 - 2017-05-26 23:25 - 00000000 ____D C:\Users\Hardy\Documents\NCSOFT
2017-05-26 21:08 - 2017-05-28 04:28 - 00000000 ____D C:\Users\Hardy\Documents\Stronghold Crusader
2017-05-26 21:06 - 2017-05-26 21:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefly Studios
2017-05-26 21:05 - 2017-05-26 21:05 - 00001922 _____ C:\Users\Public\Desktop\Stronghold.lnk
2017-05-26 21:02 - 2017-05-26 21:03 - 116773320 _____ (Acresso Software Inc. ) C:\Users\Hardy\Downloads\Stronghold_HD_Update.exe
2017-05-26 20:58 - 2017-05-26 20:58 - 00002120 _____ C:\Users\Public\Desktop\Stronghold Crusader Extreme.lnk
2017-05-26 20:58 - 2017-05-26 20:58 - 00002064 _____ C:\Users\Public\Desktop\Stronghold Crusader.lnk
2017-05-26 20:56 - 2017-05-26 21:03 - 00000000 ____D C:\Program Files (x86)\Firefly Studios
2017-05-26 20:45 - 2017-05-26 21:01 - 150844400 _____ (Acresso Software Inc. ) C:\Users\Hardy\Downloads\Stronghold_Crusader_HD_Update.exe
2017-05-26 20:05 - 2017-05-26 23:25 - 00000000 ____D C:\Program Files (x86)\NCSOFT
2017-05-26 20:04 - 2017-05-26 23:25 - 00000000 ____D C:\Users\Hardy\AppData\Local\NCSOFT
2017-05-26 20:04 - 2017-05-26 20:04 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\NCSOFT
2017-05-26 20:03 - 2017-05-26 20:04 - 02428616 _____ (NCSOFT) C:\Users\Hardy\Downloads\Wildstar.exe
2017-05-26 18:02 - 2017-05-26 18:02 - 00493127 _____ C:\Users\Hardy\Desktop\Malwarebytes.txt
2017-05-26 02:11 - 2017-05-26 02:14 - 00074425 _____ C:\Users\Hardy\Downloads\Addition.txt
2017-05-26 02:06 - 2017-05-26 02:14 - 00068646 _____ C:\Users\Hardy\Downloads\FRST.txt
2017-05-26 02:05 - 2017-05-29 07:16 - 00000000 ____D C:\FRST
2017-05-26 02:02 - 2017-05-29 07:12 - 00000176 _____ C:\Users\Hardy\BullseyeCoverageError.txt
2017-05-26 02:02 - 2017-05-26 02:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2017-05-26 02:02 - 2017-05-26 02:02 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2017-05-26 02:01 - 2017-05-26 02:02 - 00000176 _____ C:\Users\Default\BullseyeCoverageError.txt
2017-05-26 01:54 - 2017-05-26 01:54 - 00184136 _____ (Emsisoft Ltd) C:\WINDOWS\system32\eamclean.exe
2017-05-26 01:54 - 2017-05-26 01:54 - 00000300 _____ C:\WINDOWS\system32\eamclean.dat
2017-05-25 22:21 - 2017-05-25 22:21 - 00000000 ____D C:\ProgramData\Emsisoft
2017-05-25 22:20 - 2017-05-26 01:53 - 00000000 ____D C:\EEK
2017-05-25 22:11 - 2017-05-25 22:11 - 00005726 _____ C:\Users\Hardy\Desktop\JRT.txt
2017-05-25 14:41 - 2017-05-25 15:16 - 00000000 ____D C:\Users\Hardy\Desktop\SICHERUNG
2017-05-25 13:50 - 2017-05-26 17:12 - 00000000 ____D C:\AdwCleaner
2017-05-25 12:44 - 2017-05-25 12:44 - 00000000 ____D C:\Cosusp
2017-05-25 00:06 - 2017-05-25 00:07 - 149781056 _____ (Zenimax Online Studios) C:\Users\Hardy\Downloads\Install_ESO.exe
2017-05-24 17:42 - 2017-05-24 17:42 - 00000939 _____ C:\Users\Public\Desktop\Guild Wars 2.lnk
2017-05-24 17:42 - 2017-05-24 17:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
2017-05-24 17:42 - 2017-05-24 17:42 - 00000000 ____D C:\Program Files\Guild Wars 2
2017-05-24 16:34 - 2017-05-24 16:34 - 00000000 ____D C:\Users\Hardy\Downloads\totalRP3-1.2.8
2017-05-24 16:33 - 2017-05-24 16:33 - 00661440 _____ C:\Users\Hardy\Downloads\totalRP3-1.2.8.zip
2017-05-24 14:36 - 2017-05-25 11:39 - 00002018 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-05-22 19:15 - 2017-05-22 19:16 - 112206656 _____ (SQUARE ENIX CO., LTD.) C:\Users\Hardy\Downloads\ffxivsetup_ft.exe
2017-05-22 16:12 - 2017-05-22 16:12 - 00045680 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2017-05-22 13:31 - 2017-05-22 13:31 - 00957440 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2017-05-22 13:31 - 2017-05-22 13:31 - 00082536 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 59237256 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 46456712 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 36547976 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2017-05-22 13:29 - 2017-05-22 13:29 - 32732552 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 28797832 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 26826120 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 22739336 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 15728008 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 14318984 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 10311560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdvlk64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 09899912 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 09446336 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 08470408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdvlk32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 07955848 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2017-05-22 13:29 - 2017-05-22 13:29 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2017-05-22 13:29 - 2017-05-22 13:29 - 02527624 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 02189704 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 01032072 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00942858 _____ C:\WINDOWS\system32\amdicdxx.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00915848 _____ (AMD) C:\WINDOWS\system32\coinst_17.10.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00855432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00791456 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2017-05-22 13:29 - 2017-05-22 13:29 - 00791456 _____ C:\WINDOWS\system32\atiapfxx.blb
2017-05-22 13:29 - 2017-05-22 13:29 - 00687496 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00559984 _____ C:\WINDOWS\system32\amdmiracast.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00544136 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00543112 _____ C:\WINDOWS\system32\dgtrayicon.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00537992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00522632 _____ C:\WINDOWS\system32\GameManager64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00520072 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2017-05-22 13:29 - 2017-05-22 13:29 - 00505736 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00475016 _____ C:\WINDOWS\system32\atieah64.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00469384 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00458632 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00456584 _____ C:\WINDOWS\system32\amdhdl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00402312 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00369792 _____ C:\WINDOWS\system32\ativvaxy_gl_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00368832 _____ C:\WINDOWS\system32\ativvaxy_el_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00356744 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00351624 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00349064 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00325512 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00325316 _____ C:\WINDOWS\system32\ativvaxy_vi.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00325056 _____ C:\WINDOWS\system32\ativvaxy_vi_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00311176 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00305544 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdacpksd.sys
2017-05-22 13:29 - 2017-05-22 13:29 - 00276960 _____ C:\WINDOWS\system32\ativvaxy_stn_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00271456 _____ C:\WINDOWS\system32\ativvaxy_cz_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00269704 _____ C:\WINDOWS\system32\clinfo.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00266772 _____ C:\WINDOWS\system32\ativvaxy_FJ.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00266512 _____ C:\WINDOWS\system32\ativvaxy_FJ_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00236424 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00234292 _____ C:\WINDOWS\system32\ativvaxy_cik.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00234032 _____ C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00194952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00185600 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00185088 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00182664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00166560 _____ C:\WINDOWS\system32\amde34b.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00166560 _____ C:\WINDOWS\system32\amde34a.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00166280 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amduve64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00164960 _____ C:\WINDOWS\system32\amde40a.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00161160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00160768 _____ C:\WINDOWS\system32\ativce03.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00159112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00159072 _____ C:\WINDOWS\system32\amde31a.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00155528 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00154152 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00142216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00135560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amduve32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00128968 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00126344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00124808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00124808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00124808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00121240 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00121240 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00120368 _____ C:\WINDOWS\system32\kapp_ci.sbin
2017-05-22 13:29 - 2017-05-22 13:29 - 00114056 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00112520 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00106248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00103304 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00100832 _____ C:\WINDOWS\system32\ativce02.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00092840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00092840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00082824 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00078728 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00072072 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00068488 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00067464 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00066952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00066440 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00065416 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00060296 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00054664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00036232 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00033672 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00020360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00020360 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2017-05-22 13:28 - 2017-05-22 13:28 - 00891392 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2017-05-22 13:27 - 2017-05-22 13:27 - 72520712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2017-05-22 13:27 - 2017-05-22 13:27 - 09124224 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2017-05-22 13:27 - 2017-05-22 13:27 - 07172912 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 07096184 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 05545512 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2017-05-22 13:27 - 2017-05-22 13:27 - 03503048 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 03203584 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 03203424 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 03014144 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2017-05-22 13:27 - 2017-05-22 13:27 - 02201600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01965808 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01780616 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01591056 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01508928 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01353824 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00743960 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00727432 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00708312 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00689880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00504304 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00447720 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00445400 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00441264 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00343704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00327456 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00272712 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00253896 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00253864 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00252872 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00192976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00151784 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00134200 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00118592 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00105304 _____ C:\WINDOWS\system32\audioLibVc.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00084616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00037472 _____ (Intel) C:\WINDOWS\system32\Drivers\iusb3adp.sys
2017-05-22 13:27 - 2017-05-22 13:27 - 00023688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2017-05-22 13:26 - 2017-05-22 13:26 - 03569816 _____ (Logitech Inc.) C:\WINDOWS\system32\RenderAPO.dll
2017-05-22 13:26 - 2017-05-22 13:26 - 02121056 _____ (Logitech Inc.) C:\WINDOWS\system32\CaptureAPO.dll
2017-05-22 13:26 - 2017-05-22 13:26 - 00045208 _____ (Logitech Inc.) C:\WINDOWS\system32\Drivers\ladfGSS.sys
2017-05-22 13:25 - 2017-05-22 13:25 - 00204920 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2017-05-22 13:14 - 2017-05-22 13:14 - 00000000 ____D C:\WINDOWS\IObit
2017-05-22 13:13 - 2017-05-22 13:13 - 00027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2017-05-22 13:12 - 2017-05-22 13:12 - 15721672 _____ (IObit ) C:\Users\Hardy\Downloads\driver_booster_setup(4.4.0.512).exe
2017-05-20 23:24 - 2017-05-20 23:24 - 30871208 _____ (ArenaNet) C:\Users\Hardy\Downloads\Gw2Setup-64.tmp
2017-05-20 23:24 - 2017-05-20 23:24 - 00000000 ____D C:\Users\Hardy\Downloads\bin64
2017-05-20 23:24 - 2017-05-20 23:24 - 00000000 _____ C:\Users\Hardy\Downloads\Gw2.tmp
2017-05-20 23:24 - 2017-05-20 23:24 - 00000000 _____ C:\Users\Hardy\Downloads\Gw2.dat
2017-05-20 22:41 - 2017-05-20 23:24 - 30871208 _____ (ArenaNet) C:\Users\Hardy\Downloads\Gw2Setup-64.exe
2017-05-20 19:39 - 2017-05-20 19:39 - 29719936 _____ C:\Users\Hardy\Downloads\SWTOR_setup.exe
2017-05-20 01:38 - 2017-05-20 01:38 - 00000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2017-05-20 01:38 - 2017-05-20 01:38 - 00000000 ____D C:\Users\Hardy\AppData\LocalLow\IObit
2017-05-20 01:38 - 2017-05-20 01:38 - 00000000 ____D C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}
2017-05-20 01:37 - 2017-05-25 13:59 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\IObit
2017-05-20 01:35 - 2017-05-20 01:36 - 39658392 _____ (IObit ) C:\Users\Hardy\Downloads\advanced-systemcare-setup(10.3.0.745).exe
2017-05-20 01:31 - 2017-05-25 14:30 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\GlarySoft
2017-05-20 01:31 - 2017-05-20 01:31 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\DiskDefrag
2017-05-20 01:29 - 2017-05-20 01:29 - 16788744 _____ C:\Users\Hardy\Downloads\gu5setup.exe
2017-05-20 01:28 - 2017-05-20 01:28 - 00000000 ____D C:\Users\Hardy\Downloads\geek-1.4.4.115
2017-05-20 01:26 - 2017-05-26 17:07 - 00000000 ____D C:\Users\Hardy\Desktop\NÜTZLICH
2017-05-20 01:25 - 2017-05-20 01:25 - 02777872 _____ C:\Users\Hardy\Downloads\geek-1.4.4.115.zip
2017-05-20 01:15 - 2017-05-20 01:15 - 00002784 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-05-20 01:15 - 2017-05-20 01:15 - 00000000 ____D C:\Program Files\CCleaner
2017-05-20 01:14 - 2017-05-20 01:14 - 09548112 _____ (Piriform Ltd) C:\Users\Hardy\Downloads\ccsetup530.exe
2017-05-19 18:49 - 2017-05-19 18:49 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\com.playa-games.sfgame
2017-05-11 02:14 - 2017-05-11 02:18 - 00000000 ____D C:\Users\Hardy\Downloads\Xenoblade Chronicles X
2017-05-11 02:12 - 2017-05-11 02:12 - 02735233 _____ C:\Users\Hardy\Downloads\Xenoblade Chronicles X.7z
2017-05-08 13:16 - 2017-05-08 13:16 - 00000000 ____D C:\Program Files (x86)\5910538D_jumpeasy
2017-05-05 20:00 - 2017-05-05 20:00 - 00044528 _____ C:\Users\Hardy\Downloads\Sildurs Vibrant Shaders v1.141 Extreme.zip
2017-05-05 19:52 - 2017-05-05 19:52 - 00044530 _____ C:\Users\Hardy\Downloads\Sildurs Vibrant Shaders v1.141 Medium.zip
2017-05-04 14:46 - 2017-05-05 15:39 - 00000000 ____D C:\Users\Hardy\Downloads\The Legend of Zelda Breath of the Wild
2017-05-04 14:45 - 2017-05-04 14:45 - 00043963 _____ C:\Users\Hardy\Downloads\The-legend-of-zelda-breath-of-the-wild-Update-v1-1-2-EUR-Loadiine-GX2.rar
2017-05-04 14:36 - 2017-05-04 14:36 - 00028354 _____ C:\Users\Hardy\Downloads\11780F9C79BB903471A7A96E4F8D2A973E604FD0.torrent
2017-05-04 10:40 - 2017-05-04 10:40 - 00000000 ____D C:\Users\Public\Documents\Google
2017-05-04 08:52 - 2017-05-04 08:52 - 00000000 ____D C:\Users\Hardy\Desktop\2912eb2f
2017-05-04 08:51 - 2017-05-04 08:51 - 06572885 _____ C:\Users\Hardy\Desktop\2912eb2f.7z
2017-05-03 20:25 - 2017-05-03 20:25 - 00002272 _____ C:\Users\Hardy\Desktop\Andi-Circus_anküdnigung.wlmp
2017-05-03 20:20 - 2017-05-03 14:24 - 32413449 ____N C:\Users\Hardy\Desktop\VID-20170503-WA0004.mp4
2017-05-03 15:32 - 2017-05-03 15:32 - 00000000 ____D C:\Users\Hardy\Desktop\BOTW STUFF
2017-05-03 15:31 - 2017-05-03 15:32 - 11333777 _____ C:\Users\Hardy\Desktop\BOTW STUFF.rar
2017-05-03 15:19 - 2017-05-03 15:19 - 04966218 _____ C:\Users\Hardy\Downloads\cemuhook_174d_0410.zip
2017-05-03 15:19 - 2017-05-03 15:19 - 00000000 ____D C:\Users\Hardy\Downloads\cemuhook_174d_0410
2017-05-02 17:10 - 2017-05-05 11:28 - 00001028 _____ C:\Users\Public\Desktop\AVG.lnk
2017-04-30 21:24 - 2017-04-30 21:24 - 05731656 _____ C:\Users\Hardy\Downloads\BotW.7z
2017-04-30 21:24 - 2017-04-30 21:24 - 00000000 ____D C:\Users\Hardy\Downloads\BotW
2017-04-30 19:09 - 2017-05-08 17:42 - 00000000 ____D C:\Users\Hardy\Desktop\cemu_1.7.5
2017-04-30 19:08 - 2017-04-30 19:08 - 02309750 _____ C:\Users\Hardy\Downloads\cemu_1.7.5.zip
2017-04-30 18:25 - 2017-05-26 16:57 - 00002300 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-04-30 18:25 - 2017-05-25 11:44 - 00002258 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-04-30 18:25 - 2017-04-30 18:25 - 01130328 _____ (Google Inc.) C:\Users\Hardy\Downloads\ChromeSetup.exe
2017-04-30 16:14 - 2017-04-30 16:14 - 00000000 ____D C:\Users\Hardy\Downloads\cemu_1.7.5
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-29 07:20 - 2017-04-22 00:47 - 00055708 _____ C:\WINDOWS\ZAM.krnl.trace
2017-05-29 07:20 - 2017-04-22 00:47 - 00026240 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2017-05-29 07:15 - 2014-09-19 04:40 - 00000000 ___DO C:\Users\Hardy\OneDrive.old
2017-05-29 07:14 - 2015-01-02 04:14 - 00000000 ____D C:\Users\Hardy\AppData\Local\LogMeIn Hamachi
2017-05-29 07:13 - 2017-02-24 13:59 - 00026192 _____ (Windows (R) Server 2003 DDK provider) C:\WINDOWS\gdrv.sys
2017-05-29 07:12 - 2017-04-22 00:49 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-05-29 07:12 - 2015-06-28 14:20 - 00000000 ____D C:\ProgramData\MFAData
2017-05-29 07:12 - 2014-12-21 16:18 - 00000000 ____D C:\Users\Hardy\AppData\Local\HTC MediaHub
2017-05-29 07:09 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-05-29 07:08 - 2016-09-25 21:14 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2017-05-29 07:08 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2017-05-29 07:00 - 2014-09-25 20:25 - 00000000 ____D C:\Users\Hardy\AppData\Local\Adobe
2017-05-28 22:06 - 2014-08-15 22:39 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2570889560-1274126736-4133381010-1001
2017-05-28 17:03 - 2016-12-09 10:01 - 00003600 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2017-05-28 14:57 - 2014-11-14 00:14 - 00000000 ____D C:\Games
2017-05-28 14:40 - 2014-08-18 02:50 - 00000000 ____D C:\Program Files (x86)\Steam
2017-05-28 12:02 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2017-05-28 01:37 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf
2017-05-27 22:47 - 2014-08-16 13:27 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\TS3Client
2017-05-27 21:20 - 2015-09-20 17:50 - 00003158 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForHardy
2017-05-27 21:20 - 2015-09-20 17:50 - 00000344 _____ C:\WINDOWS\Tasks\HPCeeScheduleForHardy.job
2017-05-27 13:56 - 2017-04-26 09:03 - 00000000 ____D C:\Program Files\MK
2017-05-27 13:56 - 2017-04-21 11:44 - 00000000 ____D C:\Program Files (x86)\Cludeing
2017-05-27 06:32 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Registration
2017-05-27 06:26 - 2014-09-19 03:58 - 02008488 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2017-05-27 06:26 - 2014-03-18 11:25 - 00851332 _____ C:\WINDOWS\system32\perfh007.dat
2017-05-27 06:26 - 2014-03-18 11:25 - 00195966 _____ C:\WINDOWS\system32\perfc007.dat
2017-05-27 00:52 - 2014-09-03 17:38 - 00000000 ____D C:\Users\Hardy\AppData\Local\Battle.net
2017-05-27 00:36 - 2014-09-03 17:39 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2017-05-26 23:47 - 2014-09-03 17:38 - 00000000 ____D C:\Program Files (x86)\Battle.net
2017-05-26 23:39 - 2016-12-18 23:58 - 00000000 ____D C:\Program Files (x86)\Zenimax Online
2017-05-26 23:39 - 2014-09-19 04:00 - 00000000 ____D C:\Users\Hardy
2017-05-26 21:03 - 2012-11-19 17:50 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-05-26 16:59 - 2016-07-19 13:01 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2017-05-26 16:59 - 2016-07-19 13:01 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2017-05-26 02:02 - 2017-03-11 14:38 - 00000940 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2017-05-26 01:54 - 2017-04-26 09:03 - 00000000 ____D C:\Insist
2017-05-25 14:50 - 2016-11-21 14:12 - 00000000 ____D C:\Program Files (x86)\Uplink
2017-05-25 14:47 - 2015-08-22 00:15 - 00000000 ____D C:\Users\Hardy\AppData\Local\Unity
2017-05-25 14:42 - 2015-05-30 17:08 - 00000000 ____D C:\GOG Games
2017-05-25 14:32 - 2016-11-22 05:30 - 00000000 ____D C:\Program Files (x86)\Onlink
2017-05-25 14:29 - 2014-09-26 03:57 - 00000000 ____D C:\Program Files (x86)\FreeTime
2017-05-25 14:28 - 2012-11-19 17:56 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2017-05-25 14:28 - 2012-11-19 17:56 - 00000000 ____D C:\Program Files (x86)\CyberLink
2017-05-25 14:25 - 2014-08-18 23:42 - 00000000 ____D C:\Program Files\Common Files\Apple
2017-05-25 14:24 - 2012-11-19 17:58 - 00000000 ____D C:\ProgramData\Apple
2017-05-25 14:20 - 2017-02-23 18:08 - 00000082 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2017-05-25 14:20 - 2016-01-30 17:27 - 00000000 ____D C:\Program Files (x86)\Anker Precision Laser Gaming Mouse
2017-05-25 14:18 - 2014-09-25 20:29 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-05-25 14:18 - 2014-08-15 22:33 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\Adobe
2017-05-25 14:17 - 2015-08-03 14:40 - 00000000 ____D C:\Program Files (x86)\4Musics OGG to MP3 Converter
2017-05-25 14:09 - 2014-12-28 21:24 - 00000000 ____D C:\Program Files (x86)\IObit
2017-05-25 14:06 - 2017-04-22 02:32 - 00000000 ____D C:\WINDOWS\Update
2017-05-25 13:59 - 2014-12-28 21:24 - 00000000 ____D C:\ProgramData\IObit
2017-05-25 11:40 - 2016-09-23 12:01 - 00000000 ____D C:\Users\Hardy\AppData\LocalLow\Mozilla
2017-05-24 15:11 - 2014-09-19 04:37 - 00001456 _____ C:\Users\Hardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-05-24 14:37 - 2014-09-19 03:54 - 00000000 ____D C:\ProgramData\Package Cache
2017-05-24 02:41 - 2015-06-11 21:31 - 00000000 ____D C:\Program Files (x86)\StarCraft II
2017-05-22 19:16 - 2013-04-08 22:25 - 00000000 ____D C:\Users\Hardy\Documents\My Games
2017-05-22 18:06 - 2014-03-18 12:03 - 01980934 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-22 17:58 - 2017-03-18 15:31 - 00000000 ____D C:\WINDOWS\LastGood
2017-05-22 13:29 - 2017-03-10 23:34 - 00161344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2017-05-22 13:29 - 2017-03-10 23:33 - 00768392 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2017-05-22 13:29 - 2017-03-10 23:33 - 00543112 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2017-05-22 13:29 - 2017-03-10 23:32 - 14413536 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2017-05-22 13:29 - 2017-03-10 23:32 - 10088520 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2017-05-22 13:29 - 2017-03-10 23:32 - 01507720 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2017-05-22 13:29 - 2017-03-10 23:32 - 01032072 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2017-05-22 13:29 - 2017-02-10 16:23 - 07663888 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2017-05-22 13:29 - 2017-02-10 16:23 - 01342784 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2017-05-22 13:29 - 2017-02-10 16:23 - 00143864 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2017-05-22 13:29 - 2017-02-10 16:22 - 13254256 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2017-05-22 13:29 - 2016-10-05 04:20 - 00207760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2017-05-22 13:29 - 2016-10-05 04:19 - 12139760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2017-05-22 13:29 - 2016-10-05 04:19 - 01649736 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2017-05-22 13:28 - 2017-02-24 10:23 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-05-22 13:09 - 2016-10-08 13:55 - 00000000 ____D C:\Users\Hardy\Desktop\DESKTOP-LAN2
2017-05-22 13:09 - 2016-05-05 02:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch
2017-05-22 13:09 - 2016-03-21 20:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Life Is Strange
2017-05-22 13:09 - 2015-06-11 21:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
2017-05-22 13:09 - 2015-03-17 03:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Online
2017-05-22 13:09 - 2014-09-19 04:50 - 00000000 ___DC C:\WINDOWS\Panther
2017-05-21 18:37 - 2017-04-23 16:45 - 00000000 ____D C:\Users\Hardy\.litwrl
2017-05-20 23:31 - 2014-08-24 00:24 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\Skype
2017-05-20 20:11 - 2014-08-18 01:58 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\vlc
2017-05-20 01:52 - 2015-05-30 03:21 - 00000000 ____D C:\Users\Hardy\AppData\Local\Ubisoft Game Launcher
2017-05-20 01:51 - 2014-09-22 19:38 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\DAEMON Tools Lite
2017-05-20 01:49 - 2015-01-13 16:33 - 00000000 ____D C:\WINDOWS\Minidump
2017-05-19 16:18 - 2014-08-15 22:28 - 00000000 ____D C:\Users\Hardy\AppData\Local\Packages
2017-05-19 16:18 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-05-19 15:57 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2017-05-19 15:34 - 2015-02-06 10:18 - 00003862 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1423210713
2017-05-19 15:34 - 2015-02-06 10:18 - 00000000 ____D C:\Program Files (x86)\Opera
2017-05-19 15:28 - 2014-09-19 04:00 - 00000000 ____D C:\Users\Administrator
2017-05-11 11:19 - 2016-09-23 07:52 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-05-11 11:19 - 2014-08-15 01:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-09 21:54 - 2016-04-08 03:54 - 00004474 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-05-09 21:54 - 2014-12-12 02:37 - 00004342 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-05-09 21:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-05-09 21:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-05-09 17:02 - 2015-09-11 15:08 - 00000000 ____D C:\Users\Hardy\AppData\Local\ElevatedDiagnostics
2017-05-08 21:24 - 2017-04-21 13:51 - 00001267 _____ C:\Users\Hardy\Desktop\nativelog.txt
2017-05-08 21:24 - 2017-04-21 09:30 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\.minecraft
2017-05-08 17:42 - 2017-01-16 14:31 - 00000000 ____D C:\Users\Hardy\Desktop\cemu_1.7.2
2017-05-05 11:28 - 2015-06-28 14:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2017-05-04 08:23 - 2017-04-22 00:50 - 00186304 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-05-04 08:20 - 2017-04-22 00:50 - 00111544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-05-04 08:20 - 2017-04-22 00:50 - 00092096 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-05-04 08:20 - 2017-04-22 00:50 - 00043968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2017-05-27 06:27 - 2017-05-27 06:27 - 0000093 _____ () C:\Users\Hardy\AppData\Local\fusioncache.dat
2014-09-25 21:23 - 2014-12-21 19:22 - 0001480 _____ () C:\Users\Hardy\AppData\Local\RecConfig.xml
2017-02-24 10:23 - 2017-02-24 10:23 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-08-15 22:32 - 2014-08-15 22:32 - 0000141 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
2015-03-04 04:29 - 2015-03-04 04:29 - 0000040 _____ () C:\ProgramData\ra3.ini
Einige Dateien in TEMP:
====================
2017-05-29 07:12 - 2017-05-29 07:12 - 0010520 _____ () C:\Users\Hardy\AppData\Local\Temp\BullseyeCoverage-x86-3.dll
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-05-26 18:20
==================== Ende von FRST.txt ============================
|
|
29.05.2017, 06:27
| #19 |
| | Browser-Hijacker(?) will nicht verschwinden Addition: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 28-05-2017
durchgeführt von Hardy (29-05-2017 07:21:22)
Gestartet von C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug
Windows 8.1 (Update) (X64) (2014-09-19 02:37:11)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2570889560-1274126736-4133381010-500 - Administrator - Enabled) => C:\Users\Administrator
ASPNET (S-1-5-21-2570889560-1274126736-4133381010-1002 - Limited - Enabled)
Gast (S-1-5-21-2570889560-1274126736-4133381010-501 - Limited - Disabled)
Hardy (S-1-5-21-2570889560-1274126736-4133381010-1001 - Administrator - Enabled) => C:\Users\Hardy
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
@BIOS B15.0713.1 (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 - GIGABYTE)
@BIOS B15.0713.1 (x32 Version: 3.00.0000 - GIGABYTE) Hidden
3DOSD (HKLM-x32\...\InstallShield_{F0D1FAA5-F9F8-4524-9B65-A5BFDDD5A29B}) (Version: 1.00.0011 - GIGABYTE)
3DOSD (x32 Version: 1.00.0011 - GIGABYTE) Hidden
7-Zip 9.34 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0934-000001000000}) (Version: 9.34.00.0 - Igor Pavlov)
ACP Application (Version: 2017.0310.1613.49 - Advanced Micro Devices, Inc.) Hidden
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Adobe Flash Player 25 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
APP Center (HKLM-x32\...\InstallShield_{B164E11B-19B5-432F-ABFA-2D50746C9E50}) (Version: 1.00.1602.2501 - GIGABYTE)
APP Center (x32 Version: 1.00.1602.2501 - GIGABYTE) Hidden
AutoGreen (HKLM-x32\...\InstallShield_{CFB76B97-0C1C-4E1A-999A-DE62FA5FEB9A}) (Version: 1.0 - GIGABYTE)
AutoGreen (x32 Version: 1.0 - GIGABYTE) Hidden
AVG (HKLM\...\AvgZen) (Version: 1.181.3.3057 - AVG Technologies)
AVG (Version: 1.181.4 - AVG Technologies) Hidden
AVG (Version: 16.151.8013 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4776 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.151.8013 - AVG Technologies)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.7.452 - AVG Technologies)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB)
BattlEye Uninstall (HKLM-x32\...\BattlEye for A1) (Version: - )
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Borderlands: The Pre-Sequel (HKLM\...\Steam App 261640) (Version: - 2K Australia)
BUSB (HKLM-x32\...\{0AADC50C-C4F8-49A7-8699-AFE46875CA67}) (Version: 1.15.0623.1 - GIGABYTE)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.6.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon MG2500 series Benutzerregistrierung (HKLM-x32\...\Canon MG2500 series Benutzerregistrierung) (Version: - *Canon Inc.)
Canon MG2500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2500_series) (Version: 1.00 - Canon Inc.)
Canon MG2500 series On-screen Manual (HKLM-x32\...\Canon MG2500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 2.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 2.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.2.1 - Canon Inc.)
Catalyst Control Center Next Localization BR (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.30 - Piriform)
Cloud Station (Server) (HKLM-x32\...\InstallShield_{5D132D9D-2A99-48CF-9DCC-775DF6F31384}) (Version: 1.00.1507.1501 - GIGABYTE)
Cloud Station (Server) (x32 Version: 1.00.1507.1501 - GIGABYTE) Hidden
CloudStation (HKLM-x32\...\InstallShield_{6D8DA122-A40A-421B-9D95-FE4C806BCDBE}) (Version: 1.00.0019 - GIGABYTE)
CloudStation (x32 Version: 1.00.0019 - GIGABYTE) Hidden
Connected Music powered by Universal Music Group version 1.0 (HKLM-x32\...\{46037DC7-F927-46DF-935F-D6F122BDD34B}_is1) (Version: 1.0 - Snowite)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.1916 - CyberLink Corp.)
CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}) (Version: 2.0.1.3109 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.1.1902 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.1.1925 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.1.4319 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Darksiders II Deathinitive Edition (HKLM\...\Steam App 388410) (Version: - Gunfire Games)
Desura (HKLM-x32\...\Desura) (Version: 100.57 - Desura)
Desura: Project Zomboid (HKLM-x32\...\Desura_62350040236064) (Version: Alpha - The Indie Stone)
Discord (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
doubleTwist Sync (HKLM-x32\...\doubleTwist) (Version: 4.0.3.0 - doubleTwist Corporation)
Dragon Age Redesigned© (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned©) (Version: - )
Dragon Age Redesigned© Leliana (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned© Leliana) (Version: - )
Dragon Age Redesigned© Sten (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned© Sten) (Version: - )
Dragon Age Redesigned© Wynne (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned© Wynne) (Version: - )
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.12 - Electronic Arts)
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.15.0805 - GIGABYTE)
EasyTune (x32 Version: 1.15.0805 - GIGABYTE) Hidden
EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.15.0805 - GIGABYTE)
EasyTuneEngineService (x32 Version: 1.15.0805 - GIGABYTE) Hidden
EAX4 Unified Redist (HKLM-x32\...\{89661B04-C646-4412-B6D3-5E19F02F1F37}) (Version: 4.001 - Creative Labs)
Else Heart Break (HKLM-x32\...\RWxzZUhlYXJ0QnJlYWs=_is1) (Version: 1 - )
EZRAID (HKLM-x32\...\InstallShield_{8F307CB5-FE1C-4BF3-8747-305D14161916}) (Version: 1.00.0000 - GIGABYTE)
EZRAID (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Fast Boot (HKLM-x32\...\InstallShield_{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.15.0626 - GIGABYTE)
Fast Boot (x32 Version: 1.15.0626 - GIGABYTE) Hidden
FMW 1 (Version: 1.202.1 - AVG Technologies) Hidden
GameMaker: Studio (HKLM\...\Steam App 214850) (Version: - YoYo Games Ltd.)
Garry's Mod (HKLM\...\Steam App 4000) (Version: - Facepunch Studios)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Guild Wars 2 (HKLM\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
HitFilm 4 Express (HKLM\...\{F8BB3662-69A1-4EF1-8674-ADD90AAD3D08}) (Version: 4.0.5723.10801 - FXHOME)
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.18.284 - SurfRight B.V.)
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: v1.0 - Meridian Audio Ltd)
HP Connected Remote (HKLM-x32\...\{F243A34B-AB7F-4065-B770-B85B767C247C}) (Version: 1.0.1206 - Hewlett-Packard)
HP Registration Service (HKLM\...\{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}) (Version: 1.0.5976.4186 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{4780AF24-213D-4187-86F2-0014A6D6077B}) (Version: 8.4.14.41 - HP Inc.)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{AAE126B3-95C5-49E1-A590-7B5F6EDC7D60}) (Version: 12.6.14.19 - HP Inc.)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.16.0.001 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.54.2 - HTC)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6418.0 - IDT)
Impulse (HKLM-x32\...\Impulse) (Version: 1.0 - Stardock)
Impulse (x32 Version: 1.0 - Stardock Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.38 - Intel(R) Corporation) Hidden
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
iTunes (HKLM\...\{554C62C7-E6BB-40F1-892B-F0AE02D3C135}) (Version: 12.5.3.17 - Apple Inc.)
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Logitech Gaming Software 8.76 (HKLM\...\Logitech Gaming Software) (Version: 8.76.155 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.578 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.578 - LogMeIn, Inc.) Hidden
Malwarebytes Version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{86CE1746-9EFF-3C9C-8755-81EA8903AC34}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.13 - Black Tree Gaming)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
ON_OFF Charge 2 B15.0709.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE)
ON_OFF Charge 2 B15.0709.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Opera Stable 45.0.2552.812 (HKLM-x32\...\Opera 45.0.2552.812) (Version: 45.0.2552.812 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.4.7.34767 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version: - )
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5875) (Version: - )
Pepakura Designer 3 (HKLM-x32\...\pepakura_designer3en) (Version: - TamaSoftware)
Pepakura Viewer 3 (HKLM-x32\...\pepakura_viewer3en) (Version: - TamaSoftware)
Pesgalaxy.com Patch 2016 (HKLM-x32\...\Pesgalaxy.com Patch 2016 3.00 Part 1) (Version: 3.00 Part 1 - Pesgalaxy)
Pesgalaxy.com Patch 2016 (HKLM-x32\...\Pesgalaxy.com Patch 2016 3.00 Part 2) (Version: 3.00 Part 2 - Pesgalaxy)
Pesgalaxy.com Patch 2016 (HKLM-x32\...\Pesgalaxy.com Patch 2016 3.01) (Version: 3.01 - Pesgalaxy)
Pesgalaxy.com Patch 2016 DLC Installer (HKLM-x32\...\Pesgalaxy.com Patch 2016 DLC Installer 4.00) (Version: 4.00 - Pesgalaxy)
PlatformPowerManagement (HKLM-x32\...\InstallShield_{7A6EB543-522C-4784-9DB5-4FC87522EBDF}) (Version: 1.15.0707 - GIGABYTE)
PlatformPowerManagement (x32 Version: 1.15.0707 - GIGABYTE) Hidden
PlayClaw 5 (HKLM-x32\...\Steam App 237370) (Version: - )
PlayClaw 5 fast codec (HKLM-x32\...\PlayClaw 5 fast codec_is1) (Version: 5 - )
PSE12 STI Installer (HKLM-x32\...\{11F9A376-342F-4297-82DA-1F6EA8ED4B6B}) (Version: 12.0 - Adobe Systems Incorporated)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Python 3.5.2 (32-bit) (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\{cf72a2ab-2f1d-49fd-a0d7-1065e6357e1e}) (Version: 3.5.2150.0 - Python Software Foundation)
Python 3.5.2 Add to Path (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Core Interpreter (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Development Libraries (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Documentation (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Executables (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 pip Bootstrap (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Standard Library (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Tcl/Tk Support (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Test Suite (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Utility Scripts (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{963ECCDD-F09F-4C24-9367-8B5D748AA7C8}) (Version: 3.5.2121.0 - Python Software Foundation)
RadeonPro 1.0 (Build 1.1.1.0) (HKLM-x32\...\RadeonPro_is1) (Version: - )
Rapoo V700 – Gaming-Tastaturtreiber v1.0.2 (HKLM-x32\...\{DF34A259-1224-4130-92AC-0C660A331C60}_is1) (Version: - Rapoo, Inc.)
Raptr (HKLM-x32\...\Raptr) (Version: 5.2.7-r116720-release - Raptr, Inc)
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 1.10.6 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.1104 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.38.115.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.0.5530 - CyberLink Corp.) Hidden
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.4 - Rockstar Games)
Shakes and Fidget (HKLM\...\Steam App 438040) (Version: - Playa Games GmbH)
SimpleRockets (HKLM\...\Steam App 343090) (Version: - Jundroo, LLC)
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.15.0811 - GIGABYTE)
SIV (x32 Version: 1.15.0811 - GIGABYTE) Hidden
Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
SleepTimer Ultimate 1.2 (HKLM-x32\...\{0EE56463-49B2-45E1-B74F-3E0139DBC986}_is1) (Version: - Christian Handorf)
Smart Backup B15.0810.1 (x64) (HKLM-x32\...\{BC1FA5CF-A36F-4C61-9638-09D0B431B006}) (Version: 1.00.0003 - GIGABYTE)
Smart TimeLock B15.0708.1 (HKLM-x32\...\InstallShield_{5D93E30A-78A3-4890-962F-56B61A5873DD}) (Version: 1.00.0001 - GIGABYTE)
Smart TimeLock B15.0708.1 (x32 Version: 1.00.0001 - GIGABYTE) Hidden
SmartKeyboard (HKLM-x32\...\InstallShield_{75B74C36-A9C6-4912-B4BB-C461AA36D01E}) (Version: 1.00.0000 - GIGABYTE)
SmartKeyboard (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Source SDK Base 2007 (HKLM-x32\...\Steam App 218) (Version: - Valve)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 12.0.0.14 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Starbound (HKLM\...\Steam App 211820) (Version: - )
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Stronghold Crusader HD (HKLM-x32\...\{8C3727F2-8E37-49E4-820C-03B1677F53B6}) (Version: 1.30.0004 - Firefly Studios)
Stronghold HD (HKLM-x32\...\{C917BA70-28A3-4C74-B163-41FD8C8E1A5A}) (Version: 1.30.0004 - Firefly Studios)
Super Hexagon (HKLM-x32\...\Steam App 221640) (Version: - Terry Cavanagh)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamSpeak 3 Client (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Lord of the Rings Online™ (HKLM\...\Steam App 212500) (Version: - Standing Stone Games, LLC)
The Lord of the Rings Online™ v03.08.00.8029 (HKLM-x32\...\12bbe590-c890-11d9-9669-0800200c9a66_is1) (Version: 03.08.00.8029 - Turbine, Inc.)
Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version: - Ubisoft Montreal)
Uplay (HKLM-x32\...\Uplay) (Version: 24.0.1 - Ubisoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Vulkan Run Time Libraries 1.0.17.0 (HKLM\...\VulkanRT1.0.17.0-4) (Version: 1.0.17.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.17.0 (Version: 1.0.17.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.21.0 (HKLM\...\VulkanRT1.0.21.0) (Version: 1.0.21.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0-3) (Version: 1.0.26.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.26.0 (Version: 1.0.26.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1) (Version: 1.0.3.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0-2) (Version: 1.0.37.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.37.0 (Version: 1.0.37.0 - LunarG, Inc.) Hidden
WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Xvid 1.2.2 final uninstall (HKLM-x32\...\Xvid_is1) (Version: 1.2 - Xvid team (Koepi))
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.72.0.388 - Zemana Ltd.)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {078BE576-665C-4D19-BAA3-D522648B1CA7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {13E383F6-B101-42BF-AF09-259B5FCB9AAB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {14B9AED9-807E-4020-ACFF-FCE51941655E} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-2570889560-1274126736-4133381010-1001
Task: {203E5BC8-6D64-48F1-84C2-955C09555B0A} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe
Task: {29AE46DB-66BB-4FD1-A023-F038A59A3E44} - System32\Tasks\{8BB75C14-B60E-4A85-A7B4-A980300AB2F1} => pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=deDE --uid=prometheus --displayname="Overwatch"
Task: {2E194BE3-52F0-4FA4-B248-0795D9AE450A} - System32\Tasks\HPCeeScheduleForHardy => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-05-12] (HP Development Company, L.P.)
Task: {314EC76A-099F-42B6-BAC6-F13B2F3B636A} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-bll-fan@hotmail.de => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-12-15] (Adobe Systems Incorporated)
Task: {32A6BC06-B5FC-4A14-9BDC-BCB925575EDD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {348CBB87-8874-484E-A6C5-5D0FB3022A9E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {35C1B9E5-C76F-482D-97D0-CD320F84E246} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [2017-04-07] (HP Inc.)
Task: {4A024925-3B1F-4665-BCFA-A718606D2ACE} - System32\Tasks\Opera scheduled Autoupdate 1423210713 => C:\Program Files (x86)\Opera\launcher.exe [2017-05-15] (Opera Software)
Task: {5E8CA500-3AFB-4E4A-B862-AF4D62DB8D98} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\WINDOWS\system32\mrt.exe [2017-02-24] (Microsoft Corporation)
Task: {66BA70BF-BCE2-4E66-954A-C7FCB67D2FA2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2016-12-15] (HP Inc.)
Task: {94D5227E-87C5-45F6-B798-991534C89458} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {9E9F3E3A-F03E-4ACB-A129-FD13E2F7E76E} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2017-03-10] (Advanced Micro Devices, Inc.)
Task: {A8AD002C-6AFB-4D7A-8DAC-4D98FD433F1E} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_171_pepper.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {B2083CC8-8431-46CF-BFA6-510160202BA4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {BB9E0F8A-5411-4FA3-9444-C77F6F26E335} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-05-05] (Piriform Ltd)
Task: {C1CF008C-4079-4B01-977B-57E4E41959EC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {D70B32EA-7DF7-4083-B34B-5E1FE6AED07A} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {E4FFACE1-97ED-4C24-AE62-ED74A919E749} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {FE924C14-61AD-4BB9-ACD3-597C28A895AD} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-10] (Oracle Corporation)
Task: {FEA440CF-D189-4C33-9515-8594B427572B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {FF516BB4-84C2-4C9C-A6AD-7F70B24F64BF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-04-06] (HP Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\HPCeeScheduleForHardy.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-06-25 10:45 - 2015-06-25 10:45 - 00017920 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
2014-01-21 14:36 - 2014-01-21 14:36 - 00015872 _____ () C:\Program Files (x86)\Gigabyte\CloudStation_Server\RemoteControl\grckm.exe
2012-12-07 19:27 - 2012-12-07 19:27 - 00167424 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2014-02-26 20:22 - 2014-02-26 20:22 - 00107008 _____ () C:\Program Files (x86)\Gigabyte\CloudStation_Server\RemoteOC\ubssrv_oc_only.exe
2016-09-25 01:20 - 2016-09-25 01:21 - 00189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2015-07-14 15:37 - 2015-07-14 15:37 - 00821240 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
2017-05-29 07:12 - 2017-05-29 07:12 - 00012080 _____ () C:\WINDOWS\TEMP\BullseyeCoverage-x64-3.dll
2017-04-22 00:49 - 2017-03-22 10:24 - 02271520 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2015-11-20 23:41 - 2015-11-20 23:41 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2015-11-20 23:41 - 2015-11-20 23:41 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2016-02-05 18:37 - 2016-02-05 18:37 - 00849704 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
2014-12-18 16:06 - 2014-12-18 16:06 - 00031080 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2015-07-14 15:35 - 2015-07-14 15:35 - 00607016 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2014-12-18 16:09 - 2014-12-18 16:09 - 00059752 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2014-12-18 16:08 - 2014-12-18 16:08 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2014-12-18 16:09 - 2014-12-18 16:09 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2014-12-18 16:11 - 2014-12-18 16:11 - 00129376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2014-12-18 16:14 - 2014-12-18 16:14 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2017-05-29 07:12 - 2017-05-29 07:12 - 00010520 _____ () C:\Users\Hardy\AppData\Local\Temp\BullseyeCoverage-x86-3.dll
2015-06-17 17:39 - 2015-06-17 17:39 - 01974272 _____ () C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\MFCCPU.dll
2015-02-16 11:47 - 2015-02-16 11:47 - 00105472 _____ () C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\ycc.dll
2015-05-19 11:44 - 2015-05-19 11:44 - 01911296 _____ () C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\MFCSPD.dll
2016-12-09 10:01 - 2016-12-09 10:01 - 48920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
2014-01-22 14:53 - 2014-01-22 14:53 - 01607680 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\BDR_info.dll
2015-02-16 11:47 - 2015-02-16 11:47 - 00105472 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\ycc.dll
2017-05-19 15:34 - 2017-05-15 08:11 - 66244184 _____ () C:\Program Files (x86)\Opera\45.0.2552.812\opera_browser.dll
2017-05-19 15:34 - 2017-05-15 08:11 - 02926680 _____ () C:\Program Files (x86)\Opera\45.0.2552.812\libglesv2.dll
2017-05-19 15:34 - 2017-05-15 08:11 - 00088152 _____ () C:\Program Files (x86)\Opera\45.0.2552.812\libegl.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Hardy:Heroes & Generals [38]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 15:25 - 2017-04-22 02:07 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Hardy\Desktop\jungler.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk"
HKLM\...\StartupApproved\Run: => "BeatsOSDApp"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp"
HKLM\...\StartupApproved\Run: => "ZAM"
HKLM\...\StartupApproved\Run32: => "CLVirtualDrive"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKLM\...\StartupApproved\Run32: => "PlaysTV"
HKLM\...\StartupApproved\Run32: => "Raptr"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "Raptr"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "NetLimiter"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [UDP Query User{000E0B09-7650-45C9-9BCA-FC4759BDF18C}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [TCP Query User{4F448818-73EB-4D0D-994F-A41283B58C72}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [{A956525B-9B0C-4BA3-A2DC-A25AC9A301C3}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{A3AC0145-B595-46CD-9C15-B257524BE888}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [UDP Query User{079C4395-3551-4717-9961-F50BDCE7A088}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{17CA77CF-772C-4A8F-A7AA-0789CA54FD6C}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{EC380FAC-E967-467E-A2C4-6ADBB14CA6D0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{2E00C8AA-1D08-4250-90EB-C4C31F5657C9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{3D4FC7BF-EA75-4ABB-BF78-E355F7141B2F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{60D49C69-2D5C-4AEC-B861-B74D6F865A0E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{FD315ABC-F5EE-4514-887E-41B42E5D0C67}] => (Allow) LPort=1900
FirewallRules: [{9EFEEAC8-CE72-49D0-93EA-18D3FAE94F0D}] => (Allow) LPort=2869
FirewallRules: [{3FB0E27B-00FF-459B-BC23-EFBF85EFE0A3}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{ADA0AFD0-1AB4-4748-9C96-4CA75573E372}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{6A303ADE-92E4-41CA-AC18-FEA684500C8A}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{9B77ADBC-39A9-4A48-8F68-EC62BA21216F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{156F2AF8-0DE8-43A6-90EA-CC24464BFB14}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{603909EB-1CEC-40E6-9C99-C237A8B3A285}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{DB8F831E-A282-47CD-B9B6-09377E69A393}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{B97A7C9C-C041-453A-A503-FDFB9F17F8E3}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [UDP Query User{0FCA91FE-D278-49CF-8E4C-A1E048EA8F12}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [TCP Query User{7E37C4AC-CCE9-4CAB-AE2A-A88621B4ADB2}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{C06F8E6D-F96F-42C7-A3A5-AA64AE5A50D4}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{EE22F491-A3CD-484E-B2F0-1AAC043F7280}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PlayClaw\PlayClawLauncher.exe
FirewallRules: [{06DEC5FF-9890-41CE-93B8-EBE129E3CED8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PlayClaw\PlayClawLauncher.exe
FirewallRules: [{419C9BE9-4320-468E-992B-2ACDE2E26FA5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base 2007\hl2.exe
FirewallRules: [{0AC47B96-5B8B-48F8-AFBC-2C027F00614B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base 2007\hl2.exe
FirewallRules: [TCP Query User{842C3416-6776-47F0-8175-F22DB66BB120}C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe] => (Allow) C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe
FirewallRules: [UDP Query User{D1973CBC-2C65-4685-AE61-FE5E178D8E74}C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe] => (Allow) C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe
FirewallRules: [{B810ADBE-50BE-41CC-9A50-E0E869263EC1}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{378D2C56-E7E5-4648-AAC6-031E9989F0E6}] => (Allow) C:\Users\Hardy\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5A269248-72A7-4CEC-8CA7-44327B01FD3E}] => (Allow) C:\Users\Hardy\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{83D4532D-433B-4B99-B685-59C6BC93EB9E}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{FC66CB7E-BA44-488D-9587-A47C95FCB514}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{12BACD40-2806-4305-A894-4BFD1F3C94CB}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{45A5E548-46E9-4105-A970-EEA1EC482897}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{9C10FDB7-3937-4238-884C-354BC765317A}] => (Block) %SystemDrive%\Games\Hotline Miami\HotlineMiami.exe
FirewallRules: [TCP Query User{1DDA251D-2A95-475F-92E9-A7959BB8420C}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [UDP Query User{D18BB324-F614-4182-8709-0D8442D8F642}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [{451BEE54-1AC5-413F-A4D1-D34DEBD0FC1F}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{4E60CBAD-06B7-4498-A2C0-AFC4672613A7}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{FF41D876-7066-48CB-AF82-797E08548954}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{0C56D103-F9DA-47BD-A1EF-DFB2630A6995}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{17FC8841-ECB6-4657-B27E-92841F40FB90}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C34FB1E8-062B-4DBA-8294-1618B66186B9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{9EFB607F-304F-4AB2-8A9C-F8821D0B380E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{9F4C8D25-9D2A-4261-8BF0-75B6F3D1814C}C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe
FirewallRules: [UDP Query User{F92FCA4F-FF43-41D2-B546-6C268FFA6CBF}C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe
FirewallRules: [TCP Query User{621EC44B-5CDD-4902-96AA-0A853C4741E1}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{82E33ACA-CD64-4EA4-A5E6-FD205A52D231}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [TCP Query User{AEB29039-D5E1-4DE8-9330-CD081603B067}C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [UDP Query User{22922129-5CE7-491F-9A8D-2D2C2E7B20E4}C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [TCP Query User{E2EE821B-E13F-45F9-9F43-F431D15917E1}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe
FirewallRules: [UDP Query User{D1F654F6-2E8F-42C2-90F6-2454B18D2EA6}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe
FirewallRules: [TCP Query User{8333E39F-F0A7-47B8-B70A-BF34B1EC0300}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe
FirewallRules: [UDP Query User{3E4B972C-B050-4F37-956A-A876085043A0}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe
FirewallRules: [TCP Query User{56CF1675-003D-461B-A526-9C5373FBB8C8}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{F3CA4507-8732-41DF-B771-B27C18A39CF6}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{D4A0E411-7EA6-4012-B3BD-39CD41CA7CC7}C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe] => (Allow) C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe
FirewallRules: [UDP Query User{932CF87E-5F9B-4678-825F-04BD97D75404}C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe] => (Allow) C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe
FirewallRules: [{EDE66CF5-2177-4E05-954C-A5A0ABC0BD5C}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{308FB2B0-D82D-4F36-91A8-9A3E335A8C1A}] => (Block) %USERPROFILE%\Desktop\Games\Hacknet.v4.049\Hacknet.exe
FirewallRules: [{8AF0B504-A498-40DB-A173-B598666213A9}] => (Block) %USERPROFILE%\Desktop\Games\Hacknet.v4.049\Hacknet.exe
FirewallRules: [{0B5F7D89-679B-4211-9F8C-AECF990B545C}] => (Block) %SystemDrive%\Games\Quadrilateral Cowboy\qc.exe
FirewallRules: [{24E11D93-49C5-4C3C-BD9C-ADFBCC15FF7A}] => (Block) %SystemDrive%\Games\Quadrilateral Cowboy\qc.exe
FirewallRules: [{0C1C705C-A696-4F68-970C-E1617C0171DB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\gamemaker_studio\GameMakerPlayer.exe
FirewallRules: [{3B8E0A51-3900-4BFB-ACCD-8873C2E71422}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\gamemaker_studio\GameMakerPlayer.exe
FirewallRules: [TCP Query User{DD7C0B59-30AB-4F67-9A43-C6FD9DF35ED9}C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe
FirewallRules: [UDP Query User{0B180169-0697-42F9-879E-BD9E5D0EB512}C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe
FirewallRules: [TCP Query User{B3E14D60-C398-44E5-A2F6-F74E583DD384}C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe
FirewallRules: [UDP Query User{06A6240C-D020-43EB-9F3B-3DFDC5814E1A}C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe
FirewallRules: [{BBAF0086-EEDF-45F4-89CC-F046B6DC0A5F}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{0A68F553-F18D-4713-A115-DFC8D5FE7F65}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{567C30C4-0BC8-4599-A2EB-CDD98E57C484}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSixGame.exe
FirewallRules: [{2F95BFAF-2FB6-4230-BF81-69154E005BC7}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSixGame.exe
FirewallRules: [{0B3EF0F2-3B26-406C-B59A-3EB160340124}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{D521F649-0F43-4D2F-A8E4-AA4571DB1A1C}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{CDF146D0-76BD-4685-9AF6-FDD072FFAA31}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{B58C29A3-492A-499A-9A84-744BA8632F1F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{04EA1C75-F817-4A64-A111-FC89832CD1E4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{96578E67-D1E7-46DC-859B-C92238486324}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{236AA833-2510-4336-8C5B-F460C9EEE5C8}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{6945EB1F-05E6-4C2E-B485-11AC54579B2D}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{D71BA33F-EA6A-49A4-84F6-891EC56A9E21}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{417405D0-6761-447E-92F8-C8F8D9632601}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [TCP Query User{92D48B66-C889-4870-A9A1-49CDE288DB81}C:\program files (x86)\unreal tournament 2004\system\ut2004.exe] => (Block) C:\program files (x86)\unreal tournament 2004\system\ut2004.exe
FirewallRules: [UDP Query User{FB890EBA-7455-4606-9DD7-5BE161477873}C:\program files (x86)\unreal tournament 2004\system\ut2004.exe] => (Block) C:\program files (x86)\unreal tournament 2004\system\ut2004.exe
FirewallRules: [{7498682D-65DC-465B-80FF-0445A0031EB9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{E9F5249A-1056-47D1-854C-40F02395CA2D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{0C4B6943-37EB-45C3-BC9F-726B346EE09A}] => (Allow) LPort=53000
FirewallRules: [{AFFE5FB1-0482-48D0-811E-8EF4DD24D573}] => (Allow) LPort=52000
FirewallRules: [{0B8C7D99-62C9-49CA-AE0A-A1BD551B9D38}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [{DB86DDA1-44D8-481C-B1A1-4AE136205D11}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [{893AF812-FECE-4F6F-8CF1-8FF08A0D9085}] => (Allow) C:\Program Files (x86)\Opera\43.0.2442.1144\opera.exe
FirewallRules: [{985B8896-9841-45DB-A6D8-092078B125C0}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{871568B5-1B5A-473F-A08C-E2FF22893B1C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{13E403E4-FCB2-4712-ACA5-3AF88A4CC507}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{3285D531-485A-409E-9177-C7AF06559810}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{1ADEDD41-F57D-4C0E-BCAC-0E18282AEAEE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound.exe
FirewallRules: [{29DF63D1-170B-40E2-8A0B-C9F33CDA266E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound.exe
FirewallRules: [{FAB2071B-17EA-412B-8E04-A061AE582F7C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{E31B5322-CD2D-4D3B-89BD-978479688905}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{F4831B5B-95F8-493A-8E61-927439B7E7DC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{E7572C37-6D57-4378-BE5A-D674326DEF78}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{E1ADC6CE-FB55-439C-85F8-C1113F56263D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win32\starbound.exe
FirewallRules: [{AD73812C-A874-4D11-818A-435EF9CE8AC1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win32\starbound.exe
FirewallRules: [{87DB987D-E32F-42BE-8F4D-23790043C435}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{775E2A01-DEBA-46FA-8AC1-3F78821BC3D1}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{790CEAAC-E91E-4F5B-B722-156D55422A2A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{76307A61-E3C3-43BE-884F-6D221C129EDD}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{817B7DB0-D596-4445-A8B5-21479E072A0E}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{1722850B-D263-4DC7-AA56-8F42CB8438F8}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{A3F24794-2EAC-42E1-A3CC-1B39482A95BE}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{39686367-0D8C-47B8-84B9-EF4772F05613}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [TCP Query User{B29DEBB4-A17A-4AC1-814F-33A386ED8DAB}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{E2DE3A9F-4B8A-43F4-AA64-472A1F55E809}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{EC3979B7-DFFC-443E-A275-C8FD14D65EC8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SimpleRockets\SimpleRockets.exe
FirewallRules: [{EFB89F9B-35E8-4354-B4E2-B4FAEB0D1217}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SimpleRockets\SimpleRockets.exe
FirewallRules: [TCP Query User{862BD372-C7E2-470F-96DD-8E522C571FE5}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{62804620-05F1-4789-8273-BDDED9C718F7}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{093302F0-8440-4085-9C72-8DE4A6C54B5F}] => (Allow) C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
FirewallRules: [{00A6BA1C-8046-4506-A8FD-0B789B92BA8B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Shakes & Fidget\Shakes and Fidget.exe
FirewallRules: [{1567F691-BD12-447F-8151-61B4A9728648}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Shakes & Fidget\Shakes and Fidget.exe
FirewallRules: [{647768C2-A4D9-49FB-8B51-E41ACFE6C3FA}] => (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{1A4B601A-299E-4A9B-83C8-D87F1611FD97}] => (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{342E1CDF-8AC0-400F-9F2F-7ADAC5C2338B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{9BB08BBD-DA50-4FFF-9B6D-DB6E2072FA07}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Darksiders II Deathinitive Edition\Darksiders2.exe
FirewallRules: [{513A0535-FCCD-484D-8684-56E565C64E6F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Darksiders II Deathinitive Edition\Darksiders2.exe
FirewallRules: [{F7EAD389-C39C-4AEA-934C-4AC417FB3344}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe
FirewallRules: [{21E80125-C403-41F5-9B74-FFD73E838A22}] => (Allow) C:\Program Files (x86)\Firefly Studios\Stronghold Crusader\Stronghold_Crusader_Extreme.exe
FirewallRules: [{BC5E572D-3694-4845-A5F8-DED9582FE6C0}] => (Allow) C:\Program Files (x86)\Firefly Studios\Stronghold Crusader\Stronghold_Crusader_Extreme.exe
FirewallRules: [{E8382C07-E291-4C36-B704-C7E5977045D2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Lord of the Rings Online\TurbineInvoker.exe
FirewallRules: [{D93FF7C4-DA16-4A85-B110-7537F24F90BA}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Lord of the Rings Online\TurbineInvoker.exe
FirewallRules: [TCP Query User{CE3E230D-692E-43C2-84E5-69BC8CADE976}C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe
FirewallRules: [UDP Query User{4B4EA590-D03B-45B3-89EE-D72F5BEC27B7}C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe
FirewallRules: [{A9348D40-E166-4252-AC79-BB41239C9952}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{F8F1F571-A378-4B10-800F-F4C7E9B3F14F}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{AB8E2998-8759-4CD6-9282-978E58091AC2}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{B1220E54-1EE7-4406-BE65-29ABD4E6320E}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{9FF809D4-A457-4F34-A285-DE92F39FA858}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation_Server\HomeCloud\HCLOUD.exe
FirewallRules: [{D8C7322F-828A-4E75-AAC7-DA5717C2DD69}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation_Server\RemoteOC\ubssrv_oc_only.exe
FirewallRules: [{F8E70079-62A0-4DA7-873E-E4CCA2E3070B}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation_Server\RemoteControl\grckm.exe
FirewallRules: [{B3523012-15D4-43B7-B257-8EF61A6F206E}] => (Allow) LPort=1980
FirewallRules: [{B3A05D41-5221-4CEA-A1FF-EB5D06D0CEE5}] => (Allow) LPort=1900
FirewallRules: [{293CB3C6-CDCA-4730-8D8E-F3D13178A20B}] => (Allow) LPort=1900
FirewallRules: [{86B4262D-C3C6-46AE-AA8D-D9B49DCCF0A1}] => (Allow) LPort=8117
==================== Wiederherstellungspunkte =========================
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (05/29/2017 07:17:45 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20413 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 8b0
Startzeit: 01d2d83a2fb3c9bf
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 21e38cb3-442e-11e7-823d-408d5c71352e
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (05/29/2017 06:58:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: QQIme.exe, Version: 1.0.21.1, Zeitstempel: 0x591c06a2
Name des fehlerhaften Moduls: libcef.dll, Version: 6.3.9600.18233, Zeitstempel: 0x56bb4e1d
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009d3c2
ID des fehlerhaften Prozesses: 0x3ac
Startzeit der fehlerhaften Anwendung: 0x01d2d83830e04e4c
Pfad der fehlerhaften Anwendung: C:\Users\Hardy\AppData\Local\background_fault\QQIme.exe
Pfad des fehlerhaften Moduls: libcef.dll
Berichtskennung: 72a132af-442b-11e7-823c-408d5c71352e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/29/2017 06:58:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: QQIme.exe, Version: 1.0.21.1, Zeitstempel: 0x591c0689
Name des fehlerhaften Moduls: SQLITE3.dll, Version: 6.3.9600.18233, Zeitstempel: 0x56bb4e1d
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009d3c2
ID des fehlerhaften Prozesses: 0x1fac
Startzeit der fehlerhaften Anwendung: 0x01d2d83830c3abd1
Pfad der fehlerhaften Anwendung: C:\Users\Hardy\AppData\Local\background_fault\QQIme.exe
Pfad des fehlerhaften Moduls: SQLITE3.dll
Berichtskennung: 72a159bf-442b-11e7-823c-408d5c71352e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/28/2017 11:24:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: QQIme.exe, Version: 1.0.21.1, Zeitstempel: 0x591c06a2
Name des fehlerhaften Moduls: libcef.dll, Version: 6.3.9600.18233, Zeitstempel: 0x56bb4e1d
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009d3c2
ID des fehlerhaften Prozesses: 0x26b0
Startzeit der fehlerhaften Anwendung: 0x01d2d7f7a2ba1360
Pfad der fehlerhaften Anwendung: C:\Users\Hardy\AppData\Local\background_fault\QQIme.exe
Pfad des fehlerhaften Moduls: libcef.dll
Berichtskennung: 0d89b8f1-43ec-11e7-823c-408d5c71352e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/28/2017 11:24:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: QQIme.exe, Version: 1.0.21.1, Zeitstempel: 0x591c0689
Name des fehlerhaften Moduls: SQLITE3.dll, Version: 6.3.9600.18233, Zeitstempel: 0x56bb4e1d
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009d3c2
ID des fehlerhaften Prozesses: 0x774
Startzeit der fehlerhaften Anwendung: 0x01d2d7f7a2b330a8
Pfad der fehlerhaften Anwendung: C:\Users\Hardy\AppData\Local\background_fault\QQIme.exe
Pfad des fehlerhaften Moduls: SQLITE3.dll
Berichtskennung: 0d4b7423-43ec-11e7-823c-408d5c71352e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/28/2017 10:09:34 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/28/2017 10:06:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: OnlineCmdLineScanner.exe, Version: 0.0.0.0, Zeitstempel: 0x5554671d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc00000fd
Fehleroffset: 0x02b669c6
ID des fehlerhaften Prozesses: 0x1bbc
Startzeit der fehlerhaften Anwendung: 0x01d2d7cff13659db
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 1f1b455a-43e1-11e7-823c-408d5c71352e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/28/2017 09:41:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: QQIme.exe, Version: 1.0.21.1, Zeitstempel: 0x591c06a2
Name des fehlerhaften Moduls: libcef.dll, Version: 6.3.9600.18233, Zeitstempel: 0x56bb4e1d
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009d3c2
ID des fehlerhaften Prozesses: 0x2394
Startzeit der fehlerhaften Anwendung: 0x01d2d7ea3963c9f8
Pfad der fehlerhaften Anwendung: C:\Users\Hardy\AppData\Local\background_fault\QQIme.exe
Pfad des fehlerhaften Moduls: libcef.dll
Berichtskennung: a47bf8d9-43dd-11e7-823c-408d5c71352e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/28/2017 09:41:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: QQIme.exe, Version: 1.0.21.1, Zeitstempel: 0x591c0689
Name des fehlerhaften Moduls: SQLITE3.dll, Version: 6.3.9600.18233, Zeitstempel: 0x56bb4e1d
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009d3c2
ID des fehlerhaften Prozesses: 0x222c
Startzeit der fehlerhaften Anwendung: 0x01d2d7ea39588fe7
Pfad der fehlerhaften Anwendung: C:\Users\Hardy\AppData\Local\background_fault\QQIme.exe
Pfad des fehlerhaften Moduls: SQLITE3.dll
Berichtskennung: a46a4797-43dd-11e7-823c-408d5c71352e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/28/2017 08:15:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: QQIme.exe, Version: 1.0.21.1, Zeitstempel: 0x591c0689
Name des fehlerhaften Moduls: SQLITE3.dll, Version: 6.3.9600.18233, Zeitstempel: 0x56bb4e1d
Ausnahmecode: 0xc0000135
Fehleroffset: 0x0009d3c2
ID des fehlerhaften Prozesses: 0xbc4
Startzeit der fehlerhaften Anwendung: 0x01d2d7dcd013ee14
Pfad der fehlerhaften Anwendung: C:\Users\Hardy\AppData\Local\background_fault\QQIme.exe
Pfad des fehlerhaften Moduls: SQLITE3.dll
Berichtskennung: 97edd02f-43d1-11e7-823c-408d5c71352e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Systemfehler:
=============
Error: (05/29/2017 07:16:34 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Dateiversionsverlauf-Dienst" wurde nicht richtig gestartet.
Error: (05/29/2017 07:12:48 AM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "EasyTune Engine" hat einen ungültigen aktuellen Status gemeldet: 0
Error: (05/29/2017 07:12:15 AM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "EasyTune Engine" hat einen ungültigen aktuellen Status gemeldet: 0
Error: (05/29/2017 07:11:25 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "lirsgt" wurde aufgrund folgenden Fehlers nicht gestartet:
Die digitale Signatur dieser Datei kann nicht überprüft werden. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um böswillige Software aus einer unbekannten Quelle handelt, installiert.
Error: (05/29/2017 07:11:04 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "atksgt" wurde aufgrund folgenden Fehlers nicht gestartet:
Die digitale Signatur dieser Datei kann nicht überprüft werden. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um böswillige Software aus einer unbekannten Quelle handelt, installiert.
Error: (05/29/2017 07:08:56 AM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI5
Error: (05/29/2017 07:04:15 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
Es wird bereits eine Instanz des Dienstes ausgeführt.
Error: (05/29/2017 07:03:45 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Razer Chroma SDK Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (05/29/2017 07:03:45 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "RadeonPro Support Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (05/29/2017 07:03:45 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Logitech Gaming Registry Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
CodeIntegrity:
===================================
Date: 2017-05-29 07:12:15.387
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-29 07:12:14.293
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-29 07:12:13.871
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-29 07:12:12.043
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-29 07:12:11.293
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-29 07:12:10.965
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-29 07:12:03.167
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-29 07:11:25.898
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-29 07:11:22.147
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\msvcp140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-29 07:11:20.538
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\msvcp140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Prozentuale Nutzung des RAM: 30%
Installierter physikalischer RAM: 8144.59 MB
Verfügbarer physikalischer RAM: 5679.13 MB
Summe virtueller Speicher: 8544.59 MB
Verfügbarer virtueller Speicher: 6062.5 MB
==================== Laufwerke ================================
Drive c: (OS) (Fixed) (Total:918.27 GB) (Free:48.59 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (Recovery Image) (Fixed) (Total:10.98 GB) (Free:0.19 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive e: (LOTR_TWO_TOWERS_D1) (CDROM) (Total:7.63 GB) (Free:0 GB) UDF
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt ============================
|
|
29.05.2017, 18:13
| #20 |
| /// Malwareteam | Browser-Hijacker(?) will nicht verschwinden Okay jetzt noch mal zur Kontrolle: Schritt: 1 Bitte starte wieder  AdwCleaner.
Schritt: 2  Starte bitte wieder Malwarebytes Anti-Malware
Schritt: 3 ESET Online Scanner
Hinweis: Dieser Scan kann schon einmal mehrere Stunden dauern... Schritt: 4 Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen. Bitte poste in deiner nächsten Antwort also:
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~  Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
30.05.2017, 00:00
| #21 |
| | Browser-Hijacker(?) will nicht verschwinden AdwCleaner: Code:
ATTFilter # AdwCleaner v6.047 - Bericht erstellt am 29/05/2017 um 20:10:24
# Aktualisiert am 19/05/2017 von Malwarebytes
# Datenbank : 2017-05-26.6 [Server]
# Betriebssystem : Windows 8.1 (X64)
# Benutzername : Hardy - JAMES
# Gestartet von : C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug\adwcleaner_6.047.exe
# Modus: Löschen
# Unterstützung : https://www.malwarebytes.com/support
***** [ Dienste ] *****
***** [ Ordner ] *****
***** [ Dateien ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel gelöscht: HKLM\SOFTWARE\ScreenShot
[-] Schlüssel gelöscht: [x64] HKLM\SOFTWARE\InterSect Alliance
[-] Wert gelöscht: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost [WinSAPSvc]
[-] Wert gelöscht: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost [BIT]
***** [ Browser ] *****
[-] [C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Web data] [Search Provider] Gelöscht: mystarting123
*************************
:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: "Prefetch" Dateien gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [15585 Bytes] - [25/05/2017 14:07:21]
C:\AdwCleaner\AdwCleaner[C2].txt - [1458 Bytes] - [25/05/2017 21:59:26]
C:\AdwCleaner\AdwCleaner[C3].txt - [1494 Bytes] - [26/05/2017 17:12:09]
C:\AdwCleaner\AdwCleaner[C4].txt - [1615 Bytes] - [29/05/2017 20:10:24]
C:\AdwCleaner\AdwCleaner[S0].txt - [14593 Bytes] - [25/05/2017 13:54:23]
C:\AdwCleaner\AdwCleaner[S1].txt - [1566 Bytes] - [25/05/2017 21:58:23]
C:\AdwCleaner\AdwCleaner[S2].txt - [1649 Bytes] - [26/05/2017 17:11:48]
C:\AdwCleaner\AdwCleaner[S3].txt - [2281 Bytes] - [29/05/2017 20:08:43]
########## EOF - C:\AdwCleaner\AdwCleaner[C4].txt - [1981 Bytes] ##########
Code:
ATTFilter Malwarebytes
www.malwarebytes.com
-Protokolldetails-
Scan-Datum: 29.05.17
Scan-Zeit: 20:18
Protokolldatei: mbam.txt
Administrator: Ja
-Softwaredaten-
Version: 3.0.6.1469
Komponentenversion: 1.0.103
Version des Aktualisierungspakets: 1.0.2045
Lizenz: Kostenlos
-Systemdaten-
Betriebssystem: Windows 8.1
CPU: x64
Dateisystem: NTFS
Benutzer: JAMES\Hardy
-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Ergebnis: Abgeschlossen
Gescannte Objekte: 429239
Abgelaufene Zeit: 24 Min., 11 Sek.
-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert
-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)
Modul: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 1
Adware.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\terana, In Quarantäne, [2], [402768],1.0.2045
Registrierungswert: 0
(keine bösartigen Elemente erkannt)
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Daten-Stream: 0
(keine bösartigen Elemente erkannt)
Ordner: 0
(keine bösartigen Elemente erkannt)
Datei: 0
(keine bösartigen Elemente erkannt)
Physischer Sektor: 0
(keine bösartigen Elemente erkannt)
(end)
Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=12d2b69f3985ef4096d8cfbd80cc4e36
# end=init
# utc_time=2017-05-29 06:51:31
# local_time=2017-05-29 08:51:31 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
Update Init
Update Download
Update Finalize
Updated modules version: 33547
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=12d2b69f3985ef4096d8cfbd80cc4e36
# end=updated
# utc_time=2017-05-29 06:53:46
# local_time=2017-05-29 08:53:46 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=12d2b69f3985ef4096d8cfbd80cc4e36
# engine=33547
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2017-05-29 10:44:05
# local_time=2017-05-30 12:44:05 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 66 85 56656605 59887415 0 0
# scanned=772583
# found=7
# cleaned=0
# scan_time=13818
sh=3CD6407DD0E5D613FF6C56B0AC6AE070BF17B170 ft=0 fh=0000000000000000 vn="JS/Adware.Agent.O Anwendung" ac=I fn="C:\AdwCleaner\quarantine\files\hpvaxawovephimwvwnzkfqfhnvlnnejp\browser\features\@H99KV4DO-UCCF-9PFO-9ZLK-8RRP4FVOKD9O.xpi"
sh=07C80F1C2F9AE88CAF83CE328EFDC1EFEF9216C9 ft=1 fh=1a708cc788fe3554 vn="Variante von Win32/GenKryptik.AIFB Trojaner" ac=I fn="C:\Cosusp\Aramory.lqe"
sh=6FE15E483A62CAA745FC02E7106BF01B6C1D6579 ft=1 fh=d0d30a2fa6e25312 vn="Variante von Win32/GenKryptik.AIFB Trojaner" ac=I fn="C:\FRST\Quarantine\C\Pipisy\Aramory.lqe"
sh=8804007DC261615E83BAD6289FC74EE6C10B9532 ft=1 fh=0b2354e572e1d442 vn="Win32/Tencent.I eventuell unerwünschte Anwendung" ac=I fn="C:\FRST\Quarantine\C\Program Files (x86)\MIO\MIO.exe"
sh=2EA7735DDC36F065653F38DB8769455AABBA59A2 ft=1 fh=1e8bf453cc3580b2 vn="Variante von Win32/Adware.ELEX.NL Anwendung" ac=I fn="C:\Insist\qft.cr7"
sh=884761BA30FFC11137847031BF33201FD60B2720 ft=1 fh=8f02eb9869a73ed6 vn="Variante von Win32/HackTool.Crack.BQ potenziell unsichere Anwendung" ac=I fn="C:\Program Files (x86)\Sins of a Solar Empire Rebellion\steam_api.dll"
sh=E41262ECA487382EA4390484DEBABDB79D5CED30 ft=1 fh=8bbd1c9b1fdbdb0e vn="Win32/Bundled.Toolbar.Google.D potenziell unsichere Anwendung" ac=I fn="C:\Users\Hardy\Downloads\ccsetup530.exe"
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 28-05-2017
durchgeführt von Hardy (Administrator) auf JAMES (30-05-2017 00:46:20)
Gestartet von C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug
Geladene Profile: Hardy (Verfügbare Profile: Hardy & Administrator)
Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Opera)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Mr. John aka japamd) C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe
(Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
() C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Rapoo) C:\Program Files (x86)\Rapoo\V700\V700Config.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [478984 2012-12-15] (Adobe Systems Incorporated)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15033976 2015-11-20] (Logitech Inc.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-11-20] (IDT, Inc.)
HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [41664 2013-11-20] (Hewlett-Packard )
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-11-01] (Apple Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9197568 2017-05-22] (Realtek Semiconductor)
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-05-23] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [ZAM] => C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [14522512 2017-04-03] (Copyright 2017.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-04-10] (Oracle Corporation)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-05-23] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1282120 2013-05-02] (CANON INC.)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2016-11-04] (Razer Inc.)
HKLM-x32\...\Run: [Rapoo V700] => C:\Program Files (x86)\Rapoo\V700\load.exe [808760 2014-04-30] ()
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58584 2016-09-29] (Raptr, Inc)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-05-23] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [6153128 2017-05-22] (LogMeIn Inc.)
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9772248 2017-05-05] (Piriform Ltd)
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {182bb6d7-7546-11e3-bf81-b4b52fd91f16} - "H:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {292e2fcd-3875-11e6-80d8-b4b52fd91f16} - "I:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {858bc1f3-5612-11e5-bfcd-b4b52fd91f16} - "I:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {882e6f95-ead9-11e6-81b3-b4b52fd91f16} - "E:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {a0968113-b115-11e4-bf1d-b4b52fd91f16} - "H:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {bce95545-5557-11e5-bfcc-b4b52fd91f16} - "I:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {bce95547-5557-11e5-bfcc-b4b52fd91f16} - "I:\HTC_Sync_Manager_PC.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2014-08-20]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7A68117C-CA3D-4CD2-93E3-92CA12B9A7C3}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{7A68117C-CA3D-4CD2-93E3-92CA12B9A7C3}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{C155D1A7-613D-45C6-9A05-87C4F655EEA6}: [DhcpNameServer] 192.168.0.1
ManualProxies:
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKLM -> {43F6ABD5-68C5-4060-A10F-AEAA1B6C98A7} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\S-1-5-21-2570889560-1274126736-4133381010-1001 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-2570889560-1274126736-4133381010-1001 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKU\S-1-5-21-2570889560-1274126736-4133381010-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-05-17] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-17] (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (HP Inc.)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\Hardy\AppData\Roaming\Mozilla\Firefox\Profiles\lxdrst7r.default [2017-05-29]
FF NewTab: Mozilla\Firefox\Profiles\lxdrst7r.default -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\lxdrst7r.default -> www.google.de/
FF Extension: (AVG Web TuneUp) - C:\Users\Hardy\AppData\Roaming\Mozilla\Firefox\Profiles\lxdrst7r.default\Extensions\avg@toolbar.xpi [2017-05-09]
FF Extension: (MEGA) - C:\Users\Hardy\AppData\Roaming\Mozilla\Firefox\Profiles\lxdrst7r.default\Extensions\firefox@mega.co.nz.xpi [2017-05-04]
FF Extension: (Adblock Plus) - C:\Users\Hardy\AppData\Roaming\Mozilla\Firefox\Profiles\lxdrst7r.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-24]
FF HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: (McAfee Security Scan Plus) - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-09] ()
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-17] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-17] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-30] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-12-15] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.17.2 -> C:\WINDOWS\SysWOW64\npDeployJava1.dll [2014-12-04] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR DefaultSearchURL: ChromeDefaultData -> hxxp://www.mystarting123.com/search/index.php?z=c6b1474d1208226a98e6fabg1z0tew2q0o0o1c7e8c&q={searchTerms}
CHR DefaultSearchKeyword: ChromeDefaultData -> mystarting123
CHR Profile: C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-05-29] <==== ACHTUNG
CHR Extension: (Google Präsentationen) - C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-05-29]
CHR Extension: (Google Docs) - C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2017-05-29]
CHR Extension: (Google Drive) - C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-29]
CHR Extension: (YouTube) - C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-29]
CHR Extension: (Google Tabellen) - C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-05-29]
CHR Extension: (Google Docs Offline) - C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-05-29]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-29]
CHR Extension: (Google Mail) - C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-05-29]
CHR Extension: (Chrome Media Router) - C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-29]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome - Chrome.exe
Opera:
=======
OPR Extension: (Video Downloader Pro) - C:\Users\Hardy\AppData\Roaming\Opera Software\Opera Stable\Extensions\ibehiiilehaakkhkigckfjfknboalpbe [2017-02-03]
StartMenuInternet: (HKLM) OperaStable - Opera.exe
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [1002552 2017-04-11] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [5334432 2017-04-11] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428656 2017-05-23] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [729048 2017-04-11] (AVG Technologies CZ, s.r.o.)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2017-05-28] (BitRaider, LLC)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [284736 2017-02-23] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6625856 2016-12-04] (GOG.com)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3760040 2017-05-22] (LogMeIn Inc.)
S4 HPConnectedRemote; c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35232 2012-08-29] (Hewlett-Packard)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [33640 2017-04-07] (HP Inc.)
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-06-27] (Nero AG)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc.)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193144 2015-11-20] (Logitech Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
S4 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2145288 2017-04-04] (Electronic Arts)
S3 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3114512 2017-04-04] (Electronic Arts)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [Datei ist nicht signiert]
S3 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2016-10-04] ()
S3 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2017-03-07] ()
R2 RadeonPro Support Service; C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe [20608 2013-11-04] (Mr. John aka japamd) [Datei ist nicht signiert]
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [69744 2016-10-18] (Razer Inc.)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-25] ()
S2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [339456 2013-11-20] (IDT, Inc.) [Datei ist nicht signiert]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 ZAMSvc; C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [14522512 2017-04-03] (Copyright 2017.)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 amdacpksd; C:\WINDOWS\system32\drivers\amdacpksd.sys [305544 2017-05-22] (Advanced Micro Devices)
S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
S3 ASPI; C:\WINDOWS\SysWOW64\DRIVERS\ASPI32.sys [84832 2002-07-17] (Adaptec) [Datei ist nicht signiert]
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWB6.sys [118848 2016-08-09] (Advanced Micro Devices)
S2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [303616 2014-09-28] () [Datei ist nicht signiert]
S0 Avgboota; C:\WINDOWS\System32\DRIVERS\avgboota.sys [21632 2016-01-07] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\WINDOWS\System32\DRIVERS\avgdiska.sys [163072 2016-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdrivera.sys [313088 2017-02-20] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\WINDOWS\System32\DRIVERS\avgidsha.sys [267008 2016-10-05] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\WINDOWS\System32\DRIVERS\avgldx64.sys [298240 2016-11-30] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\WINDOWS\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\WINDOWS\System32\DRIVERS\avgmfx64.sys [253184 2017-04-11] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\WINDOWS\System32\DRIVERS\avgrkx64.sys [52992 2016-06-01] (AVG Technologies CZ, s.r.o.)
R0 avguniva; C:\WINDOWS\System32\DRIVERS\avguniva.sys [77056 2016-06-20] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\WINDOWS\system32\DRIVERS\avgwfpa.sys [313096 2016-08-04] (AVG Technologies CZ, s.r.o.)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2017-05-28] (BitRaider)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R1 dtsoftbus01; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [283064 2014-09-22] (Disc Soft Ltd)
R1 epp; C:\EEK\bin64\epp.sys [124552 2016-11-23] (Emsisoft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77440 2017-03-22] ()
S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2017-05-22] (LogMeIn Inc.)
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [54736 2017-04-22] ()
S3 HtcVCom32; C:\WINDOWS\system32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated) [Datei ist nicht signiert]
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-05-22] (REALiX(tm))
R3 iusb3adp; C:\WINDOWS\System32\drivers\iusb3adp.sys [37472 2017-05-22] (Intel)
S3 ladfGSS; C:\WINDOWS\system32\drivers\ladfGSS.sys [45208 2017-05-22] (Logitech Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [68384 2015-06-11] (Logitech Inc.)
S3 lgLowAudio; C:\WINDOWS\system32\drivers\lgLowAudio.sys [26264 2015-11-20] (Logitech Inc.)
S2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [35328 2014-09-28] () [Datei ist nicht signiert]
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [186304 2017-05-04] (Malwarebytes)
S3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [111544 2017-05-04] (Malwarebytes)
S3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [43968 2017-05-04] (Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [251832 2017-05-29] (Malwarebytes)
S3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [92096 2017-05-04] (Malwarebytes)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] ()
R3 rpvmsd; C:\WINDOWS\system32\drivers\rpvmsd.sys [22016 2013-07-05] (RAPOO)
R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [51736 2016-06-22] (Razer Inc)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [44144 2016-09-17] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [137840 2016-09-07] (Razer, Inc.)
R3 SaiMini; C:\WINDOWS\System32\drivers\SaiMini.sys [24152 2016-07-18] (Saitek)
R3 SaiNtBus; C:\WINDOWS\system32\drivers\SaiBus.sys [59736 2016-07-18] (Saitek)
S3 STHDA; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [551936 2013-11-20] (IDT, Inc.) [Datei ist nicht signiert]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
R1 ZAM; C:\WINDOWS\System32\drivers\zam64.sys [203680 2017-04-22] (Zemana Ltd.)
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard64.sys [203680 2017-04-22] (Zemana Ltd.)
S3 _hid_0738_1703; C:\WINDOWS\system32\DRIVERS\_hid_0738_1703.sys [210408 2016-07-18] (Saitek)
S3 _usb_0738_1703; C:\WINDOWS\System32\drivers\_usb_0738_1703.sys [46824 2016-07-18] (Saitek)
S3 dcdbas; \SystemRoot\System32\drivers\dcdbas64.sys [X]
S3 xhunter1; \??\C:\WINDOWS\xhunter1.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-29 20:51 - 2017-05-29 20:51 - 00001313 _____ C:\Users\Hardy\Desktop\mbam.txt
2017-05-29 20:51 - 2017-05-29 20:51 - 00000000 ____D C:\Program Files (x86)\ESET
2017-05-29 12:44 - 2017-05-29 12:44 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\Google
2017-05-28 16:18 - 2017-05-28 16:26 - 00000000 ____D C:\Users\Hardy\Documents\Stronghold
2017-05-28 15:12 - 2017-05-28 15:12 - 00000000 ____D C:\ProgramData\BitRaider
2017-05-28 14:57 - 2017-05-28 14:57 - 00000852 _____ C:\Users\Public\Desktop\Star Wars - The Old Republic.lnk
2017-05-27 14:12 - 2017-05-27 14:12 - 00000000 ____D C:\Users\Hardy\AppData\Local\The Lord of the Rings Online
2017-05-27 06:27 - 2017-05-27 07:13 - 00000000 ____D C:\Users\Hardy\AppData\Local\Turbine
2017-05-27 06:27 - 2017-05-27 06:27 - 00000093 _____ C:\Users\Hardy\AppData\Local\fusioncache.dat
2017-05-27 06:27 - 2017-05-27 06:27 - 00000000 ____D C:\Users\Hardy\AppData\Local\ApplicationHistory
2017-05-27 06:23 - 2017-05-27 06:23 - 00000000 ____D C:\WINDOWS\SysWOW64\URTTEMP
2017-05-26 22:57 - 2017-05-26 23:25 - 00000000 ____D C:\Users\Hardy\Documents\NCSOFT
2017-05-26 21:08 - 2017-05-28 04:28 - 00000000 ____D C:\Users\Hardy\Documents\Stronghold Crusader
2017-05-26 21:06 - 2017-05-26 21:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefly Studios
2017-05-26 21:05 - 2017-05-26 21:05 - 00001922 _____ C:\Users\Public\Desktop\Stronghold.lnk
2017-05-26 21:02 - 2017-05-26 21:03 - 116773320 _____ (Acresso Software Inc. ) C:\Users\Hardy\Downloads\Stronghold_HD_Update.exe
2017-05-26 20:58 - 2017-05-26 20:58 - 00002120 _____ C:\Users\Public\Desktop\Stronghold Crusader Extreme.lnk
2017-05-26 20:58 - 2017-05-26 20:58 - 00002064 _____ C:\Users\Public\Desktop\Stronghold Crusader.lnk
2017-05-26 20:56 - 2017-05-26 21:03 - 00000000 ____D C:\Program Files (x86)\Firefly Studios
2017-05-26 20:45 - 2017-05-26 21:01 - 150844400 _____ (Acresso Software Inc. ) C:\Users\Hardy\Downloads\Stronghold_Crusader_HD_Update.exe
2017-05-26 20:05 - 2017-05-26 23:25 - 00000000 ____D C:\Program Files (x86)\NCSOFT
2017-05-26 20:04 - 2017-05-26 23:25 - 00000000 ____D C:\Users\Hardy\AppData\Local\NCSOFT
2017-05-26 20:04 - 2017-05-26 20:04 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\NCSOFT
2017-05-26 18:02 - 2017-05-26 18:02 - 00493127 _____ C:\Users\Hardy\Desktop\Malwarebytes.txt
2017-05-26 02:11 - 2017-05-26 02:14 - 00074425 _____ C:\Users\Hardy\Downloads\Addition.txt
2017-05-26 02:06 - 2017-05-26 02:14 - 00068646 _____ C:\Users\Hardy\Downloads\FRST.txt
2017-05-26 02:05 - 2017-05-30 00:46 - 00000000 ____D C:\FRST
2017-05-26 02:02 - 2017-05-29 20:48 - 00000176 _____ C:\Users\Hardy\BullseyeCoverageError.txt
2017-05-26 02:02 - 2017-05-26 02:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2017-05-26 02:02 - 2017-05-26 02:02 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2017-05-26 02:01 - 2017-05-26 02:02 - 00000176 _____ C:\Users\Default\BullseyeCoverageError.txt
2017-05-26 01:54 - 2017-05-26 01:54 - 00184136 _____ (Emsisoft Ltd) C:\WINDOWS\system32\eamclean.exe
2017-05-26 01:54 - 2017-05-26 01:54 - 00000300 _____ C:\WINDOWS\system32\eamclean.dat
2017-05-25 22:21 - 2017-05-25 22:21 - 00000000 ____D C:\ProgramData\Emsisoft
2017-05-25 22:20 - 2017-05-26 01:53 - 00000000 ____D C:\EEK
2017-05-25 22:11 - 2017-05-25 22:11 - 00005726 _____ C:\Users\Hardy\Desktop\JRT.txt
2017-05-25 14:41 - 2017-05-25 15:16 - 00000000 ____D C:\Users\Hardy\Desktop\SICHERUNG
2017-05-25 13:50 - 2017-05-29 20:10 - 00000000 ____D C:\AdwCleaner
2017-05-25 12:44 - 2017-05-25 12:44 - 00000000 ____D C:\Cosusp
2017-05-24 14:36 - 2017-05-25 11:39 - 00002018 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-05-22 16:12 - 2017-05-22 16:12 - 00045680 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2017-05-22 13:31 - 2017-05-22 13:31 - 00957440 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2017-05-22 13:31 - 2017-05-22 13:31 - 00082536 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 59237256 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 46456712 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 36547976 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2017-05-22 13:29 - 2017-05-22 13:29 - 32732552 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 28797832 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 26826120 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 22739336 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 15728008 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 14318984 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 10311560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdvlk64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 09899912 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 09446336 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 08470408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdvlk32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 07955848 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2017-05-22 13:29 - 2017-05-22 13:29 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2017-05-22 13:29 - 2017-05-22 13:29 - 02527624 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 02189704 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 01032072 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00942858 _____ C:\WINDOWS\system32\amdicdxx.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00915848 _____ (AMD) C:\WINDOWS\system32\coinst_17.10.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00855432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00791456 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2017-05-22 13:29 - 2017-05-22 13:29 - 00791456 _____ C:\WINDOWS\system32\atiapfxx.blb
2017-05-22 13:29 - 2017-05-22 13:29 - 00687496 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00559984 _____ C:\WINDOWS\system32\amdmiracast.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00544136 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00543112 _____ C:\WINDOWS\system32\dgtrayicon.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00537992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00522632 _____ C:\WINDOWS\system32\GameManager64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00520072 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2017-05-22 13:29 - 2017-05-22 13:29 - 00505736 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00475016 _____ C:\WINDOWS\system32\atieah64.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00469384 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00458632 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00456584 _____ C:\WINDOWS\system32\amdhdl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00402312 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00369792 _____ C:\WINDOWS\system32\ativvaxy_gl_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00368832 _____ C:\WINDOWS\system32\ativvaxy_el_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00356744 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00351624 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00349064 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00325512 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00325316 _____ C:\WINDOWS\system32\ativvaxy_vi.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00325056 _____ C:\WINDOWS\system32\ativvaxy_vi_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00311176 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00305544 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdacpksd.sys
2017-05-22 13:29 - 2017-05-22 13:29 - 00276960 _____ C:\WINDOWS\system32\ativvaxy_stn_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00271456 _____ C:\WINDOWS\system32\ativvaxy_cz_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00269704 _____ C:\WINDOWS\system32\clinfo.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00266772 _____ C:\WINDOWS\system32\ativvaxy_FJ.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00266512 _____ C:\WINDOWS\system32\ativvaxy_FJ_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00236424 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00234292 _____ C:\WINDOWS\system32\ativvaxy_cik.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00234032 _____ C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00194952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00185600 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00185088 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00182664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00166560 _____ C:\WINDOWS\system32\amde34b.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00166560 _____ C:\WINDOWS\system32\amde34a.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00166280 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amduve64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00164960 _____ C:\WINDOWS\system32\amde40a.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00161160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00160768 _____ C:\WINDOWS\system32\ativce03.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00159112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00159072 _____ C:\WINDOWS\system32\amde31a.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00155528 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00154152 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00142216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00135560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amduve32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00128968 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00126344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00124808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00124808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00124808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00121240 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00121240 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00120368 _____ C:\WINDOWS\system32\kapp_ci.sbin
2017-05-22 13:29 - 2017-05-22 13:29 - 00114056 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00112520 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00106248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00103304 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00100832 _____ C:\WINDOWS\system32\ativce02.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00092840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00092840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00082824 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00078728 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00072072 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00068488 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00067464 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00066952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00066440 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00065416 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00060296 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00054664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00036232 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00033672 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00020360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00020360 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2017-05-22 13:28 - 2017-05-22 13:28 - 00891392 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2017-05-22 13:27 - 2017-05-22 13:27 - 72520712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2017-05-22 13:27 - 2017-05-22 13:27 - 09124224 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2017-05-22 13:27 - 2017-05-22 13:27 - 07172912 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 07096184 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 05545512 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2017-05-22 13:27 - 2017-05-22 13:27 - 03503048 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 03203584 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 03203424 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 03014144 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2017-05-22 13:27 - 2017-05-22 13:27 - 02201600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01965808 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01780616 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01591056 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01508928 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01353824 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00743960 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00727432 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00708312 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00689880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00504304 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00447720 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00445400 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00441264 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00343704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00327456 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00272712 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00253896 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00253864 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00252872 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00192976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00151784 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00134200 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00118592 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00105304 _____ C:\WINDOWS\system32\audioLibVc.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00084616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00037472 _____ (Intel) C:\WINDOWS\system32\Drivers\iusb3adp.sys
2017-05-22 13:27 - 2017-05-22 13:27 - 00023688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2017-05-22 13:26 - 2017-05-22 13:26 - 03569816 _____ (Logitech Inc.) C:\WINDOWS\system32\RenderAPO.dll
2017-05-22 13:26 - 2017-05-22 13:26 - 02121056 _____ (Logitech Inc.) C:\WINDOWS\system32\CaptureAPO.dll
2017-05-22 13:26 - 2017-05-22 13:26 - 00045208 _____ (Logitech Inc.) C:\WINDOWS\system32\Drivers\ladfGSS.sys
2017-05-22 13:25 - 2017-05-22 13:25 - 00204920 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2017-05-22 13:14 - 2017-05-22 13:14 - 00000000 ____D C:\WINDOWS\IObit
2017-05-22 13:13 - 2017-05-22 13:13 - 00027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2017-05-20 19:39 - 2017-05-20 19:39 - 29719936 _____ C:\Users\Hardy\Downloads\SWTOR_setup.exe
2017-05-20 01:38 - 2017-05-20 01:38 - 00000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2017-05-20 01:38 - 2017-05-20 01:38 - 00000000 ____D C:\Users\Hardy\AppData\LocalLow\IObit
2017-05-20 01:38 - 2017-05-20 01:38 - 00000000 ____D C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}
2017-05-20 01:37 - 2017-05-25 13:59 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\IObit
2017-05-20 01:31 - 2017-05-25 14:30 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\GlarySoft
2017-05-20 01:31 - 2017-05-20 01:31 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\DiskDefrag
2017-05-20 01:29 - 2017-05-20 01:29 - 16788744 _____ C:\Users\Hardy\Downloads\gu5setup.exe
2017-05-20 01:26 - 2017-05-26 17:07 - 00000000 ____D C:\Users\Hardy\Desktop\NÜTZLICH
2017-05-20 01:15 - 2017-05-20 01:15 - 00002784 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-05-20 01:15 - 2017-05-20 01:15 - 00000000 ____D C:\Program Files\CCleaner
2017-05-20 01:14 - 2017-05-20 01:14 - 09548112 _____ (Piriform Ltd) C:\Users\Hardy\Downloads\ccsetup530.exe
2017-05-19 18:49 - 2017-05-19 18:49 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\com.playa-games.sfgame
2017-05-08 13:16 - 2017-05-08 13:16 - 00000000 ____D C:\Program Files (x86)\5910538D_jumpeasy
2017-05-04 14:46 - 2017-05-05 15:39 - 00000000 ____D C:\Users\Hardy\Downloads\The Legend of Zelda Breath of the Wild
2017-05-04 14:36 - 2017-05-04 14:36 - 00028354 _____ C:\Users\Hardy\Downloads\11780F9C79BB903471A7A96E4F8D2A973E604FD0.torrent
2017-05-04 10:40 - 2017-05-04 10:40 - 00000000 ____D C:\Users\Public\Documents\Google
2017-05-04 08:52 - 2017-05-04 08:52 - 00000000 ____D C:\Users\Hardy\Desktop\2912eb2f
2017-05-04 08:51 - 2017-05-04 08:51 - 06572885 _____ C:\Users\Hardy\Desktop\2912eb2f.7z
2017-05-03 20:25 - 2017-05-03 20:25 - 00002272 _____ C:\Users\Hardy\Desktop\Andi-Circus_anküdnigung.wlmp
2017-05-03 20:20 - 2017-05-03 14:24 - 32413449 ____N C:\Users\Hardy\Desktop\VID-20170503-WA0004.mp4
2017-05-03 15:32 - 2017-05-03 15:32 - 00000000 ____D C:\Users\Hardy\Desktop\BOTW STUFF
2017-05-03 15:31 - 2017-05-03 15:32 - 11333777 _____ C:\Users\Hardy\Desktop\BOTW STUFF.rar
2017-04-30 19:09 - 2017-05-08 17:42 - 00000000 ____D C:\Users\Hardy\Desktop\cemu_1.7.5
2017-04-30 18:25 - 2017-05-26 16:57 - 00002300 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-04-30 18:25 - 2017-05-25 11:44 - 00002258 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-04-30 18:25 - 2017-04-30 18:25 - 01130328 _____ (Google Inc.) C:\Users\Hardy\Downloads\ChromeSetup.exe
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-30 00:47 - 2017-04-22 00:47 - 00066279 _____ C:\WINDOWS\ZAM.krnl.trace
2017-05-30 00:46 - 2017-04-22 00:47 - 00037863 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2017-05-29 20:54 - 2014-03-18 12:03 - 02008172 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-29 20:54 - 2014-03-18 11:25 - 00851332 _____ C:\WINDOWS\system32\perfh007.dat
2017-05-29 20:54 - 2014-03-18 11:25 - 00195966 _____ C:\WINDOWS\system32\perfc007.dat
2017-05-29 20:54 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf
2017-05-29 20:49 - 2014-09-19 04:40 - 00000000 __RDO C:\Users\Hardy\OneDrive.old
2017-05-29 20:48 - 2017-04-22 00:49 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-05-29 20:48 - 2015-01-02 04:14 - 00000000 ____D C:\Users\Hardy\AppData\Local\LogMeIn Hamachi
2017-05-29 20:48 - 2014-12-21 16:18 - 00000000 ____D C:\Users\Hardy\AppData\Local\HTC MediaHub
2017-05-29 20:45 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-05-29 20:44 - 2016-09-25 21:14 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2017-05-29 20:11 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2017-05-29 20:11 - 2012-11-19 17:50 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-05-29 20:00 - 2015-06-28 14:20 - 00000000 ____D C:\ProgramData\MFAData
2017-05-29 19:57 - 2014-08-15 22:39 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2570889560-1274126736-4133381010-1001
2017-05-29 19:56 - 2017-02-24 13:38 - 00000000 ____D C:\Program Files\Gigabyte
2017-05-29 19:56 - 2017-02-24 13:35 - 00000000 ____D C:\Program Files (x86)\GIGABYTE
2017-05-29 19:54 - 2014-08-18 02:50 - 00000000 ____D C:\Program Files (x86)\Steam
2017-05-29 19:53 - 2015-05-30 03:21 - 00000000 ____D C:\Users\Hardy\AppData\Local\Ubisoft Game Launcher
2017-05-29 19:51 - 2014-09-03 17:38 - 00000000 ____D C:\Users\Hardy\AppData\Local\Battle.net
2017-05-29 19:49 - 2014-09-03 17:38 - 00000000 ____D C:\Program Files (x86)\Battle.net
2017-05-29 19:47 - 2015-04-17 22:26 - 00000000 ____D C:\Program Files\Rockstar Games
2017-05-29 19:47 - 2015-04-15 16:54 - 00000000 ____D C:\Users\Hardy\AppData\Local\Rockstar Games
2017-05-29 17:49 - 2016-11-11 14:10 - 00000000 ____D C:\ProgramData\Avg
2017-05-29 17:49 - 2015-06-28 14:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2017-05-29 17:49 - 2015-06-28 14:23 - 00000000 ____D C:\Program Files (x86)\AVG
2017-05-29 17:47 - 2016-12-09 10:01 - 00003600 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2017-05-29 07:13 - 2017-02-24 13:59 - 00026192 _____ (Windows (R) Server 2003 DDK provider) C:\WINDOWS\gdrv.sys
2017-05-29 07:00 - 2014-09-25 20:25 - 00000000 ____D C:\Users\Hardy\AppData\Local\Adobe
2017-05-28 14:57 - 2014-11-14 00:14 - 00000000 ____D C:\Games
2017-05-28 12:02 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2017-05-27 22:47 - 2014-08-16 13:27 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\TS3Client
2017-05-27 21:20 - 2015-09-20 17:50 - 00003158 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForHardy
2017-05-27 21:20 - 2015-09-20 17:50 - 00000344 _____ C:\WINDOWS\Tasks\HPCeeScheduleForHardy.job
2017-05-27 13:56 - 2017-04-26 09:03 - 00000000 ____D C:\Program Files\MK
2017-05-27 13:56 - 2017-04-21 11:44 - 00000000 ____D C:\Program Files (x86)\Cludeing
2017-05-27 06:32 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Registration
2017-05-27 06:26 - 2014-09-19 03:58 - 02008488 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2017-05-27 00:36 - 2014-09-03 17:39 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2017-05-26 23:39 - 2016-12-18 23:58 - 00000000 ____D C:\Program Files (x86)\Zenimax Online
2017-05-26 23:39 - 2014-09-19 04:00 - 00000000 ____D C:\Users\Hardy
2017-05-26 16:59 - 2016-07-19 13:01 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2017-05-26 16:59 - 2016-07-19 13:01 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2017-05-26 02:02 - 2017-03-11 14:38 - 00000940 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2017-05-26 01:54 - 2017-04-26 09:03 - 00000000 ____D C:\Insist
2017-05-25 14:50 - 2016-11-21 14:12 - 00000000 ____D C:\Program Files (x86)\Uplink
2017-05-25 14:47 - 2015-08-22 00:15 - 00000000 ____D C:\Users\Hardy\AppData\Local\Unity
2017-05-25 14:42 - 2015-05-30 17:08 - 00000000 ____D C:\GOG Games
2017-05-25 14:32 - 2016-11-22 05:30 - 00000000 ____D C:\Program Files (x86)\Onlink
2017-05-25 14:29 - 2014-09-26 03:57 - 00000000 ____D C:\Program Files (x86)\FreeTime
2017-05-25 14:28 - 2012-11-19 17:56 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2017-05-25 14:28 - 2012-11-19 17:56 - 00000000 ____D C:\Program Files (x86)\CyberLink
2017-05-25 14:25 - 2014-08-18 23:42 - 00000000 ____D C:\Program Files\Common Files\Apple
2017-05-25 14:24 - 2012-11-19 17:58 - 00000000 ____D C:\ProgramData\Apple
2017-05-25 14:20 - 2017-02-23 18:08 - 00000082 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2017-05-25 14:20 - 2016-01-30 17:27 - 00000000 ____D C:\Program Files (x86)\Anker Precision Laser Gaming Mouse
2017-05-25 14:18 - 2014-09-25 20:29 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-05-25 14:18 - 2014-08-15 22:33 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\Adobe
2017-05-25 14:17 - 2015-08-03 14:40 - 00000000 ____D C:\Program Files (x86)\4Musics OGG to MP3 Converter
2017-05-25 14:09 - 2014-12-28 21:24 - 00000000 ____D C:\Program Files (x86)\IObit
2017-05-25 14:06 - 2017-04-22 02:32 - 00000000 ____D C:\WINDOWS\Update
2017-05-25 13:59 - 2014-12-28 21:24 - 00000000 ____D C:\ProgramData\IObit
2017-05-25 11:40 - 2016-09-23 12:01 - 00000000 ____D C:\Users\Hardy\AppData\LocalLow\Mozilla
2017-05-24 15:11 - 2014-09-19 04:37 - 00001456 _____ C:\Users\Hardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-05-24 14:37 - 2014-09-19 03:54 - 00000000 ____D C:\ProgramData\Package Cache
2017-05-22 19:16 - 2013-04-08 22:25 - 00000000 ____D C:\Users\Hardy\Documents\My Games
2017-05-22 17:58 - 2017-03-18 15:31 - 00000000 ____D C:\WINDOWS\LastGood
2017-05-22 13:29 - 2017-03-10 23:34 - 00161344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2017-05-22 13:29 - 2017-03-10 23:33 - 00768392 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2017-05-22 13:29 - 2017-03-10 23:33 - 00543112 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2017-05-22 13:29 - 2017-03-10 23:32 - 14413536 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2017-05-22 13:29 - 2017-03-10 23:32 - 10088520 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2017-05-22 13:29 - 2017-03-10 23:32 - 01507720 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2017-05-22 13:29 - 2017-03-10 23:32 - 01032072 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2017-05-22 13:29 - 2017-02-10 16:23 - 07663888 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2017-05-22 13:29 - 2017-02-10 16:23 - 01342784 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2017-05-22 13:29 - 2017-02-10 16:23 - 00143864 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2017-05-22 13:29 - 2017-02-10 16:22 - 13254256 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2017-05-22 13:29 - 2016-10-05 04:20 - 00207760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2017-05-22 13:29 - 2016-10-05 04:19 - 12139760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2017-05-22 13:29 - 2016-10-05 04:19 - 01649736 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2017-05-22 13:28 - 2017-02-24 10:23 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-05-22 13:09 - 2016-10-08 13:55 - 00000000 ____D C:\Users\Hardy\Desktop\DESKTOP-LAN2
2017-05-22 13:09 - 2016-05-05 02:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch
2017-05-22 13:09 - 2016-03-21 20:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Life Is Strange
2017-05-22 13:09 - 2015-03-17 03:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Online
2017-05-22 13:09 - 2014-09-19 04:50 - 00000000 ___DC C:\WINDOWS\Panther
2017-05-21 18:37 - 2017-04-23 16:45 - 00000000 ____D C:\Users\Hardy\.litwrl
2017-05-20 23:31 - 2014-08-24 00:24 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\Skype
2017-05-20 20:11 - 2014-08-18 01:58 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\vlc
2017-05-20 01:51 - 2014-09-22 19:38 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\DAEMON Tools Lite
2017-05-20 01:49 - 2015-01-13 16:33 - 00000000 ____D C:\WINDOWS\Minidump
2017-05-19 16:18 - 2014-08-15 22:28 - 00000000 ____D C:\Users\Hardy\AppData\Local\Packages
2017-05-19 16:18 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-05-19 15:57 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2017-05-19 15:34 - 2015-02-06 10:18 - 00003862 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1423210713
2017-05-19 15:34 - 2015-02-06 10:18 - 00000000 ____D C:\Program Files (x86)\Opera
2017-05-19 15:28 - 2014-09-19 04:00 - 00000000 ____D C:\Users\Administrator
2017-05-11 11:19 - 2016-09-23 07:52 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-05-11 11:19 - 2014-08-15 01:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-09 21:54 - 2016-04-08 03:54 - 00004474 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-05-09 21:54 - 2014-12-12 02:37 - 00004342 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-05-09 21:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-05-09 21:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-05-09 17:02 - 2015-09-11 15:08 - 00000000 ____D C:\Users\Hardy\AppData\Local\ElevatedDiagnostics
2017-05-08 21:24 - 2017-04-21 13:51 - 00001267 _____ C:\Users\Hardy\Desktop\nativelog.txt
2017-05-08 21:24 - 2017-04-21 09:30 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\.minecraft
2017-05-08 17:42 - 2017-01-16 14:31 - 00000000 ____D C:\Users\Hardy\Desktop\cemu_1.7.2
2017-05-04 08:23 - 2017-04-22 00:50 - 00186304 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-05-04 08:20 - 2017-04-22 00:50 - 00111544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-05-04 08:20 - 2017-04-22 00:50 - 00092096 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-05-04 08:20 - 2017-04-22 00:50 - 00043968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2017-05-27 06:27 - 2017-05-27 06:27 - 0000093 _____ () C:\Users\Hardy\AppData\Local\fusioncache.dat
2014-09-25 21:23 - 2014-12-21 19:22 - 0001480 _____ () C:\Users\Hardy\AppData\Local\RecConfig.xml
2017-02-24 10:23 - 2017-02-24 10:23 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-08-15 22:32 - 2014-08-15 22:32 - 0000141 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
2015-03-04 04:29 - 2015-03-04 04:29 - 0000040 _____ () C:\ProgramData\ra3.ini
Einige Dateien in TEMP:
====================
2017-05-29 07:12 - 2017-05-29 07:12 - 0010520 _____ () C:\Users\Hardy\AppData\Local\Temp\BullseyeCoverage-x86-3.dll
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-05-29 07:45
==================== Ende von FRST.txt ============================
|
|
30.05.2017, 00:01
| #22 |
| | Browser-Hijacker(?) will nicht verschwinden Addition: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 28-05-2017
durchgeführt von Hardy (30-05-2017 00:49:16)
Gestartet von C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug
Windows 8.1 (Update) (X64) (2014-09-19 02:37:11)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2570889560-1274126736-4133381010-500 - Administrator - Enabled) => C:\Users\Administrator
ASPNET (S-1-5-21-2570889560-1274126736-4133381010-1002 - Limited - Enabled)
Gast (S-1-5-21-2570889560-1274126736-4133381010-501 - Limited - Disabled)
Hardy (S-1-5-21-2570889560-1274126736-4133381010-1001 - Administrator - Enabled) => C:\Users\Hardy
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.34 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0934-000001000000}) (Version: 9.34.00.0 - Igor Pavlov)
ACP Application (Version: 2017.0310.1613.49 - Advanced Micro Devices, Inc.) Hidden
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Adobe Flash Player 25 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
AVG (Version: 16.151.8013 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4776 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.151.8013 - AVG Technologies)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.7.452 - AVG Technologies)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB)
BattlEye Uninstall (HKLM-x32\...\BattlEye for A1) (Version: - )
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.6.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon MG2500 series Benutzerregistrierung (HKLM-x32\...\Canon MG2500 series Benutzerregistrierung) (Version: - *Canon Inc.)
Canon MG2500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2500_series) (Version: 1.00 - Canon Inc.)
Canon MG2500 series On-screen Manual (HKLM-x32\...\Canon MG2500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 2.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 2.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.2.1 - Canon Inc.)
Catalyst Control Center Next Localization BR (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.30 - Piriform)
Connected Music powered by Universal Music Group version 1.0 (HKLM-x32\...\{46037DC7-F927-46DF-935F-D6F122BDD34B}_is1) (Version: 1.0 - Snowite)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.1916 - CyberLink Corp.)
CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}) (Version: 2.0.1.3109 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.1.1902 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.1.1925 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.1.4319 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Darksiders II Deathinitive Edition (HKLM\...\Steam App 388410) (Version: - Gunfire Games)
Desura (HKLM-x32\...\Desura) (Version: 100.57 - Desura)
Desura: Project Zomboid (HKLM-x32\...\Desura_62350040236064) (Version: Alpha - The Indie Stone)
Discord (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
doubleTwist Sync (HKLM-x32\...\doubleTwist) (Version: 4.0.3.0 - doubleTwist Corporation)
Dragon Age Redesigned© (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned©) (Version: - )
Dragon Age Redesigned© Leliana (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned© Leliana) (Version: - )
Dragon Age Redesigned© Sten (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned© Sten) (Version: - )
Dragon Age Redesigned© Wynne (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned© Wynne) (Version: - )
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.12 - Electronic Arts)
EAX4 Unified Redist (HKLM-x32\...\{89661B04-C646-4412-B6D3-5E19F02F1F37}) (Version: 4.001 - Creative Labs)
Else Heart Break (HKLM-x32\...\RWxzZUhlYXJ0QnJlYWs=_is1) (Version: 1 - )
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
FMW 1 (Version: 1.202.1 - AVG Technologies) Hidden
Garry's Mod (HKLM\...\Steam App 4000) (Version: - Facepunch Studios)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
HitFilm 4 Express (HKLM\...\{F8BB3662-69A1-4EF1-8674-ADD90AAD3D08}) (Version: 4.0.5723.10801 - FXHOME)
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.18.284 - SurfRight B.V.)
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: v1.0 - Meridian Audio Ltd)
HP Connected Remote (HKLM-x32\...\{F243A34B-AB7F-4065-B770-B85B767C247C}) (Version: 1.0.1206 - Hewlett-Packard)
HP Registration Service (HKLM\...\{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}) (Version: 1.0.5976.4186 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{4780AF24-213D-4187-86F2-0014A6D6077B}) (Version: 8.4.14.41 - HP Inc.)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{AAE126B3-95C5-49E1-A590-7B5F6EDC7D60}) (Version: 12.6.14.19 - HP Inc.)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.16.0.001 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.54.2 - HTC)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6418.0 - IDT)
Impulse (HKLM-x32\...\Impulse) (Version: 1.0 - Stardock)
Impulse (x32 Version: 1.0 - Stardock Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.38 - Intel(R) Corporation) Hidden
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
iTunes (HKLM\...\{554C62C7-E6BB-40F1-892B-F0AE02D3C135}) (Version: 12.5.3.17 - Apple Inc.)
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Logitech Gaming Software 8.76 (HKLM\...\Logitech Gaming Software) (Version: 8.76.155 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.578 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.578 - LogMeIn, Inc.) Hidden
Malwarebytes Version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{86CE1746-9EFF-3C9C-8755-81EA8903AC34}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.13 - Black Tree Gaming)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Opera Stable 45.0.2552.812 (HKLM-x32\...\Opera 45.0.2552.812) (Version: 45.0.2552.812 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.4.7.34767 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version: - )
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5875) (Version: - )
Pepakura Designer 3 (HKLM-x32\...\pepakura_designer3en) (Version: - TamaSoftware)
Pepakura Viewer 3 (HKLM-x32\...\pepakura_viewer3en) (Version: - TamaSoftware)
Pesgalaxy.com Patch 2016 (HKLM-x32\...\Pesgalaxy.com Patch 2016 3.00 Part 1) (Version: 3.00 Part 1 - Pesgalaxy)
Pesgalaxy.com Patch 2016 (HKLM-x32\...\Pesgalaxy.com Patch 2016 3.00 Part 2) (Version: 3.00 Part 2 - Pesgalaxy)
Pesgalaxy.com Patch 2016 (HKLM-x32\...\Pesgalaxy.com Patch 2016 3.01) (Version: 3.01 - Pesgalaxy)
Pesgalaxy.com Patch 2016 DLC Installer (HKLM-x32\...\Pesgalaxy.com Patch 2016 DLC Installer 4.00) (Version: 4.00 - Pesgalaxy)
PlayClaw 5 fast codec (HKLM-x32\...\PlayClaw 5 fast codec_is1) (Version: 5 - )
PSE12 STI Installer (HKLM-x32\...\{11F9A376-342F-4297-82DA-1F6EA8ED4B6B}) (Version: 12.0 - Adobe Systems Incorporated)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Python 3.5.2 (32-bit) (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\{cf72a2ab-2f1d-49fd-a0d7-1065e6357e1e}) (Version: 3.5.2150.0 - Python Software Foundation)
Python 3.5.2 Add to Path (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Core Interpreter (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Development Libraries (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Documentation (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Executables (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 pip Bootstrap (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Standard Library (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Tcl/Tk Support (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Test Suite (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Utility Scripts (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{963ECCDD-F09F-4C24-9367-8B5D748AA7C8}) (Version: 3.5.2121.0 - Python Software Foundation)
RadeonPro 1.0 (Build 1.1.1.0) (HKLM-x32\...\RadeonPro_is1) (Version: - )
Rapoo V700 – Gaming-Tastaturtreiber v1.0.2 (HKLM-x32\...\{DF34A259-1224-4130-92AC-0C660A331C60}_is1) (Version: - Rapoo, Inc.)
Raptr (HKLM-x32\...\Raptr) (Version: 5.2.7-r116720-release - Raptr, Inc)
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 1.10.6 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.1104 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.38.115.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.0.5530 - CyberLink Corp.) Hidden
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.4 - Rockstar Games)
Shakes and Fidget (HKLM\...\Steam App 438040) (Version: - Playa Games GmbH)
SimpleRockets (HKLM\...\Steam App 343090) (Version: - Jundroo, LLC)
Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
SleepTimer Ultimate 1.2 (HKLM-x32\...\{0EE56463-49B2-45E1-B74F-3E0139DBC986}_is1) (Version: - Christian Handorf)
Source SDK Base 2007 (HKLM-x32\...\Steam App 218) (Version: - Valve)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 12.0.0.14 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Starbound (HKLM\...\Steam App 211820) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Stronghold Crusader HD (HKLM-x32\...\{8C3727F2-8E37-49E4-820C-03B1677F53B6}) (Version: 1.30.0004 - Firefly Studios)
Stronghold HD (HKLM-x32\...\{C917BA70-28A3-4C74-B163-41FD8C8E1A5A}) (Version: 1.30.0004 - Firefly Studios)
Super Hexagon (HKLM-x32\...\Steam App 221640) (Version: - Terry Cavanagh)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamSpeak 3 Client (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Lord of the Rings Online™ (HKLM\...\Steam App 212500) (Version: - Standing Stone Games, LLC)
The Lord of the Rings Online™ v03.08.00.8029 (HKLM-x32\...\12bbe590-c890-11d9-9669-0800200c9a66_is1) (Version: 03.08.00.8029 - Turbine, Inc.)
Uplay (HKLM-x32\...\Uplay) (Version: 24.0.1 - Ubisoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Vulkan Run Time Libraries 1.0.17.0 (HKLM\...\VulkanRT1.0.17.0-4) (Version: 1.0.17.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.17.0 (Version: 1.0.17.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.21.0 (HKLM\...\VulkanRT1.0.21.0) (Version: 1.0.21.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0-3) (Version: 1.0.26.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.26.0 (Version: 1.0.26.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1) (Version: 1.0.3.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0-2) (Version: 1.0.37.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.37.0 (Version: 1.0.37.0 - LunarG, Inc.) Hidden
WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Xvid 1.2.2 final uninstall (HKLM-x32\...\Xvid_is1) (Version: 1.2 - Xvid team (Koepi))
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.72.0.388 - Zemana Ltd.)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {078BE576-665C-4D19-BAA3-D522648B1CA7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {13E383F6-B101-42BF-AF09-259B5FCB9AAB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {14B9AED9-807E-4020-ACFF-FCE51941655E} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-2570889560-1274126736-4133381010-1001
Task: {203E5BC8-6D64-48F1-84C2-955C09555B0A} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe
Task: {29AE46DB-66BB-4FD1-A023-F038A59A3E44} - System32\Tasks\{8BB75C14-B60E-4A85-A7B4-A980300AB2F1} => pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=deDE --uid=prometheus --displayname="Overwatch"
Task: {2E194BE3-52F0-4FA4-B248-0795D9AE450A} - System32\Tasks\HPCeeScheduleForHardy => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-05-12] (HP Development Company, L.P.)
Task: {314EC76A-099F-42B6-BAC6-F13B2F3B636A} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-bll-fan@hotmail.de => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-12-15] (Adobe Systems Incorporated)
Task: {32A6BC06-B5FC-4A14-9BDC-BCB925575EDD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {348CBB87-8874-484E-A6C5-5D0FB3022A9E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {35C1B9E5-C76F-482D-97D0-CD320F84E246} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [2017-04-07] (HP Inc.)
Task: {4A024925-3B1F-4665-BCFA-A718606D2ACE} - System32\Tasks\Opera scheduled Autoupdate 1423210713 => C:\Program Files (x86)\Opera\launcher.exe [2017-05-15] (Opera Software)
Task: {5E8CA500-3AFB-4E4A-B862-AF4D62DB8D98} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\WINDOWS\system32\mrt.exe [2017-02-24] (Microsoft Corporation)
Task: {66BA70BF-BCE2-4E66-954A-C7FCB67D2FA2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2016-12-15] (HP Inc.)
Task: {94D5227E-87C5-45F6-B798-991534C89458} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {9E9F3E3A-F03E-4ACB-A129-FD13E2F7E76E} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2017-03-10] (Advanced Micro Devices, Inc.)
Task: {A8AD002C-6AFB-4D7A-8DAC-4D98FD433F1E} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_171_pepper.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {B2083CC8-8431-46CF-BFA6-510160202BA4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {BB9E0F8A-5411-4FA3-9444-C77F6F26E335} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-05-05] (Piriform Ltd)
Task: {C1CF008C-4079-4B01-977B-57E4E41959EC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {D70B32EA-7DF7-4083-B34B-5E1FE6AED07A} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {E4FFACE1-97ED-4C24-AE62-ED74A919E749} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {FE924C14-61AD-4BB9-ACD3-597C28A895AD} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-10] (Oracle Corporation)
Task: {FEA440CF-D189-4C33-9515-8594B427572B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {FF516BB4-84C2-4C9C-A6AD-7F70B24F64BF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-04-06] (HP Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\HPCeeScheduleForHardy.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2017-04-22 00:47 - 2017-04-22 00:47 - 00154480 _____ () C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll
2012-12-07 19:27 - 2012-12-07 19:27 - 00167424 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2016-09-25 01:20 - 2016-09-25 01:21 - 00189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2015-07-14 15:37 - 2015-07-14 15:37 - 00821240 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
2017-05-29 07:12 - 2017-05-29 07:12 - 00012080 _____ () C:\WINDOWS\TEMP\BullseyeCoverage-x64-3.dll
2017-04-22 00:49 - 2017-03-22 10:24 - 02271520 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2016-09-13 01:34 - 2016-09-13 01:34 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2016-09-13 01:34 - 2016-09-13 01:34 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-09-13 01:34 - 2016-09-13 01:34 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2016-09-13 01:34 - 2016-09-13 01:34 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2016-09-13 01:34 - 2016-09-13 01:34 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2016-09-13 01:34 - 2016-09-13 01:34 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-09-13 01:34 - 2016-09-13 01:34 - 00191488 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2015-11-20 23:41 - 2015-11-20 23:41 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2015-11-20 23:41 - 2015-11-20 23:41 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2014-12-18 16:06 - 2014-12-18 16:06 - 00031080 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2015-07-14 15:35 - 2015-07-14 15:35 - 00607016 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2014-12-18 16:09 - 2014-12-18 16:09 - 00059752 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2014-12-18 16:08 - 2014-12-18 16:08 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2014-12-18 16:09 - 2014-12-18 16:09 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2014-12-18 16:11 - 2014-12-18 16:11 - 00129376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2014-12-18 16:14 - 2014-12-18 16:14 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2017-05-29 07:12 - 2017-05-29 07:12 - 00010520 _____ () C:\Users\Hardy\AppData\Local\Temp\BullseyeCoverage-x86-3.dll
2016-12-09 10:01 - 2016-12-09 10:01 - 48920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Hardy:Heroes & Generals [38]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 15:25 - 2017-04-22 02:07 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Hardy\Desktop\jungler.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk"
HKLM\...\StartupApproved\Run: => "BeatsOSDApp"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp"
HKLM\...\StartupApproved\Run: => "ZAM"
HKLM\...\StartupApproved\Run32: => "CLVirtualDrive"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKLM\...\StartupApproved\Run32: => "PlaysTV"
HKLM\...\StartupApproved\Run32: => "Raptr"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "Raptr"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "NetLimiter"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [UDP Query User{000E0B09-7650-45C9-9BCA-FC4759BDF18C}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [TCP Query User{4F448818-73EB-4D0D-994F-A41283B58C72}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [{A956525B-9B0C-4BA3-A2DC-A25AC9A301C3}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{A3AC0145-B595-46CD-9C15-B257524BE888}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [UDP Query User{079C4395-3551-4717-9961-F50BDCE7A088}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{17CA77CF-772C-4A8F-A7AA-0789CA54FD6C}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{EC380FAC-E967-467E-A2C4-6ADBB14CA6D0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{2E00C8AA-1D08-4250-90EB-C4C31F5657C9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{3D4FC7BF-EA75-4ABB-BF78-E355F7141B2F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{60D49C69-2D5C-4AEC-B861-B74D6F865A0E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{FD315ABC-F5EE-4514-887E-41B42E5D0C67}] => (Allow) LPort=1900
FirewallRules: [{9EFEEAC8-CE72-49D0-93EA-18D3FAE94F0D}] => (Allow) LPort=2869
FirewallRules: [{3FB0E27B-00FF-459B-BC23-EFBF85EFE0A3}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{ADA0AFD0-1AB4-4748-9C96-4CA75573E372}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{6A303ADE-92E4-41CA-AC18-FEA684500C8A}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{9B77ADBC-39A9-4A48-8F68-EC62BA21216F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{156F2AF8-0DE8-43A6-90EA-CC24464BFB14}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{603909EB-1CEC-40E6-9C99-C237A8B3A285}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{DB8F831E-A282-47CD-B9B6-09377E69A393}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{B97A7C9C-C041-453A-A503-FDFB9F17F8E3}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [UDP Query User{0FCA91FE-D278-49CF-8E4C-A1E048EA8F12}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [TCP Query User{7E37C4AC-CCE9-4CAB-AE2A-A88621B4ADB2}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{C06F8E6D-F96F-42C7-A3A5-AA64AE5A50D4}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{419C9BE9-4320-468E-992B-2ACDE2E26FA5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base 2007\hl2.exe
FirewallRules: [{0AC47B96-5B8B-48F8-AFBC-2C027F00614B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base 2007\hl2.exe
FirewallRules: [TCP Query User{842C3416-6776-47F0-8175-F22DB66BB120}C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe] => (Allow) C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe
FirewallRules: [UDP Query User{D1973CBC-2C65-4685-AE61-FE5E178D8E74}C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe] => (Allow) C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe
FirewallRules: [{B810ADBE-50BE-41CC-9A50-E0E869263EC1}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{378D2C56-E7E5-4648-AAC6-031E9989F0E6}] => (Allow) C:\Users\Hardy\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5A269248-72A7-4CEC-8CA7-44327B01FD3E}] => (Allow) C:\Users\Hardy\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{83D4532D-433B-4B99-B685-59C6BC93EB9E}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{FC66CB7E-BA44-488D-9587-A47C95FCB514}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{12BACD40-2806-4305-A894-4BFD1F3C94CB}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{45A5E548-46E9-4105-A970-EEA1EC482897}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{9C10FDB7-3937-4238-884C-354BC765317A}] => (Block) %SystemDrive%\Games\Hotline Miami\HotlineMiami.exe
FirewallRules: [TCP Query User{1DDA251D-2A95-475F-92E9-A7959BB8420C}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [UDP Query User{D18BB324-F614-4182-8709-0D8442D8F642}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [{451BEE54-1AC5-413F-A4D1-D34DEBD0FC1F}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{4E60CBAD-06B7-4498-A2C0-AFC4672613A7}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{FF41D876-7066-48CB-AF82-797E08548954}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{0C56D103-F9DA-47BD-A1EF-DFB2630A6995}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{17FC8841-ECB6-4657-B27E-92841F40FB90}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C34FB1E8-062B-4DBA-8294-1618B66186B9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{9EFB607F-304F-4AB2-8A9C-F8821D0B380E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{9F4C8D25-9D2A-4261-8BF0-75B6F3D1814C}C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe
FirewallRules: [UDP Query User{F92FCA4F-FF43-41D2-B546-6C268FFA6CBF}C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe
FirewallRules: [TCP Query User{621EC44B-5CDD-4902-96AA-0A853C4741E1}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{82E33ACA-CD64-4EA4-A5E6-FD205A52D231}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [TCP Query User{AEB29039-D5E1-4DE8-9330-CD081603B067}C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [UDP Query User{22922129-5CE7-491F-9A8D-2D2C2E7B20E4}C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [TCP Query User{E2EE821B-E13F-45F9-9F43-F431D15917E1}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe
FirewallRules: [UDP Query User{D1F654F6-2E8F-42C2-90F6-2454B18D2EA6}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe
FirewallRules: [TCP Query User{8333E39F-F0A7-47B8-B70A-BF34B1EC0300}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe
FirewallRules: [UDP Query User{3E4B972C-B050-4F37-956A-A876085043A0}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe
FirewallRules: [TCP Query User{56CF1675-003D-461B-A526-9C5373FBB8C8}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{F3CA4507-8732-41DF-B771-B27C18A39CF6}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{D4A0E411-7EA6-4012-B3BD-39CD41CA7CC7}C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe] => (Allow) C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe
FirewallRules: [UDP Query User{932CF87E-5F9B-4678-825F-04BD97D75404}C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe] => (Allow) C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe
FirewallRules: [{EDE66CF5-2177-4E05-954C-A5A0ABC0BD5C}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{308FB2B0-D82D-4F36-91A8-9A3E335A8C1A}] => (Block) %USERPROFILE%\Desktop\Games\Hacknet.v4.049\Hacknet.exe
FirewallRules: [{8AF0B504-A498-40DB-A173-B598666213A9}] => (Block) %USERPROFILE%\Desktop\Games\Hacknet.v4.049\Hacknet.exe
FirewallRules: [{0B5F7D89-679B-4211-9F8C-AECF990B545C}] => (Block) %SystemDrive%\Games\Quadrilateral Cowboy\qc.exe
FirewallRules: [{24E11D93-49C5-4C3C-BD9C-ADFBCC15FF7A}] => (Block) %SystemDrive%\Games\Quadrilateral Cowboy\qc.exe
FirewallRules: [TCP Query User{DD7C0B59-30AB-4F67-9A43-C6FD9DF35ED9}C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe
FirewallRules: [UDP Query User{0B180169-0697-42F9-879E-BD9E5D0EB512}C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe
FirewallRules: [TCP Query User{B3E14D60-C398-44E5-A2F6-F74E583DD384}C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe
FirewallRules: [UDP Query User{06A6240C-D020-43EB-9F3B-3DFDC5814E1A}C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe
FirewallRules: [{BBAF0086-EEDF-45F4-89CC-F046B6DC0A5F}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{0A68F553-F18D-4713-A115-DFC8D5FE7F65}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{567C30C4-0BC8-4599-A2EB-CDD98E57C484}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSixGame.exe
FirewallRules: [{2F95BFAF-2FB6-4230-BF81-69154E005BC7}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSixGame.exe
FirewallRules: [{0B3EF0F2-3B26-406C-B59A-3EB160340124}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{D521F649-0F43-4D2F-A8E4-AA4571DB1A1C}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{CDF146D0-76BD-4685-9AF6-FDD072FFAA31}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{B58C29A3-492A-499A-9A84-744BA8632F1F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{04EA1C75-F817-4A64-A111-FC89832CD1E4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{96578E67-D1E7-46DC-859B-C92238486324}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{236AA833-2510-4336-8C5B-F460C9EEE5C8}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{6945EB1F-05E6-4C2E-B485-11AC54579B2D}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{D71BA33F-EA6A-49A4-84F6-891EC56A9E21}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{417405D0-6761-447E-92F8-C8F8D9632601}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [TCP Query User{92D48B66-C889-4870-A9A1-49CDE288DB81}C:\program files (x86)\unreal tournament 2004\system\ut2004.exe] => (Block) C:\program files (x86)\unreal tournament 2004\system\ut2004.exe
FirewallRules: [UDP Query User{FB890EBA-7455-4606-9DD7-5BE161477873}C:\program files (x86)\unreal tournament 2004\system\ut2004.exe] => (Block) C:\program files (x86)\unreal tournament 2004\system\ut2004.exe
FirewallRules: [{0C4B6943-37EB-45C3-BC9F-726B346EE09A}] => (Allow) LPort=53000
FirewallRules: [{AFFE5FB1-0482-48D0-811E-8EF4DD24D573}] => (Allow) LPort=52000
FirewallRules: [{0B8C7D99-62C9-49CA-AE0A-A1BD551B9D38}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [{DB86DDA1-44D8-481C-B1A1-4AE136205D11}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [{893AF812-FECE-4F6F-8CF1-8FF08A0D9085}] => (Allow) C:\Program Files (x86)\Opera\43.0.2442.1144\opera.exe
FirewallRules: [{985B8896-9841-45DB-A6D8-092078B125C0}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{871568B5-1B5A-473F-A08C-E2FF22893B1C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{13E403E4-FCB2-4712-ACA5-3AF88A4CC507}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{3285D531-485A-409E-9177-C7AF06559810}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{1ADEDD41-F57D-4C0E-BCAC-0E18282AEAEE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound.exe
FirewallRules: [{29DF63D1-170B-40E2-8A0B-C9F33CDA266E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound.exe
FirewallRules: [{FAB2071B-17EA-412B-8E04-A061AE582F7C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{E31B5322-CD2D-4D3B-89BD-978479688905}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{F4831B5B-95F8-493A-8E61-927439B7E7DC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{E7572C37-6D57-4378-BE5A-D674326DEF78}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{E1ADC6CE-FB55-439C-85F8-C1113F56263D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win32\starbound.exe
FirewallRules: [{AD73812C-A874-4D11-818A-435EF9CE8AC1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win32\starbound.exe
FirewallRules: [{87DB987D-E32F-42BE-8F4D-23790043C435}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{775E2A01-DEBA-46FA-8AC1-3F78821BC3D1}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{790CEAAC-E91E-4F5B-B722-156D55422A2A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{76307A61-E3C3-43BE-884F-6D221C129EDD}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{817B7DB0-D596-4445-A8B5-21479E072A0E}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{1722850B-D263-4DC7-AA56-8F42CB8438F8}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{A3F24794-2EAC-42E1-A3CC-1B39482A95BE}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{39686367-0D8C-47B8-84B9-EF4772F05613}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [TCP Query User{B29DEBB4-A17A-4AC1-814F-33A386ED8DAB}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{E2DE3A9F-4B8A-43F4-AA64-472A1F55E809}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{EC3979B7-DFFC-443E-A275-C8FD14D65EC8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SimpleRockets\SimpleRockets.exe
FirewallRules: [{EFB89F9B-35E8-4354-B4E2-B4FAEB0D1217}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SimpleRockets\SimpleRockets.exe
FirewallRules: [TCP Query User{862BD372-C7E2-470F-96DD-8E522C571FE5}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{62804620-05F1-4789-8273-BDDED9C718F7}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{093302F0-8440-4085-9C72-8DE4A6C54B5F}] => (Allow) C:\Program Files (x86)\Opera\45.0.2552.812\opera.exe
FirewallRules: [{00A6BA1C-8046-4506-A8FD-0B789B92BA8B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Shakes & Fidget\Shakes and Fidget.exe
FirewallRules: [{1567F691-BD12-447F-8151-61B4A9728648}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Shakes & Fidget\Shakes and Fidget.exe
FirewallRules: [{647768C2-A4D9-49FB-8B51-E41ACFE6C3FA}] => (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{1A4B601A-299E-4A9B-83C8-D87F1611FD97}] => (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{342E1CDF-8AC0-400F-9F2F-7ADAC5C2338B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{9BB08BBD-DA50-4FFF-9B6D-DB6E2072FA07}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Darksiders II Deathinitive Edition\Darksiders2.exe
FirewallRules: [{513A0535-FCCD-484D-8684-56E565C64E6F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Darksiders II Deathinitive Edition\Darksiders2.exe
FirewallRules: [{F7EAD389-C39C-4AEA-934C-4AC417FB3344}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe
FirewallRules: [{21E80125-C403-41F5-9B74-FFD73E838A22}] => (Allow) C:\Program Files (x86)\Firefly Studios\Stronghold Crusader\Stronghold_Crusader_Extreme.exe
FirewallRules: [{BC5E572D-3694-4845-A5F8-DED9582FE6C0}] => (Allow) C:\Program Files (x86)\Firefly Studios\Stronghold Crusader\Stronghold_Crusader_Extreme.exe
FirewallRules: [{E8382C07-E291-4C36-B704-C7E5977045D2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Lord of the Rings Online\TurbineInvoker.exe
FirewallRules: [{D93FF7C4-DA16-4A85-B110-7537F24F90BA}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Lord of the Rings Online\TurbineInvoker.exe
FirewallRules: [TCP Query User{CE3E230D-692E-43C2-84E5-69BC8CADE976}C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe
FirewallRules: [UDP Query User{4B4EA590-D03B-45B3-89EE-D72F5BEC27B7}C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe
FirewallRules: [{A9348D40-E166-4252-AC79-BB41239C9952}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{F8F1F571-A378-4B10-800F-F4C7E9B3F14F}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{AB8E2998-8759-4CD6-9282-978E58091AC2}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{B1220E54-1EE7-4406-BE65-29ABD4E6320E}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{9FF809D4-A457-4F34-A285-DE92F39FA858}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation_Server\HomeCloud\HCLOUD.exe
FirewallRules: [{D8C7322F-828A-4E75-AAC7-DA5717C2DD69}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation_Server\RemoteOC\ubssrv_oc_only.exe
FirewallRules: [{F8E70079-62A0-4DA7-873E-E4CCA2E3070B}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation_Server\RemoteControl\grckm.exe
FirewallRules: [{B3523012-15D4-43B7-B257-8EF61A6F206E}] => (Allow) LPort=1980
FirewallRules: [{B3A05D41-5221-4CEA-A1FF-EB5D06D0CEE5}] => (Allow) LPort=1900
FirewallRules: [{293CB3C6-CDCA-4730-8D8E-F3D13178A20B}] => (Allow) LPort=1900
FirewallRules: [{86B4262D-C3C6-46AE-AA8D-D9B49DCCF0A1}] => (Allow) LPort=8117
==================== Wiederherstellungspunkte =========================
29-05-2017 09:38:13 Geplanter Prüfpunkt
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (05/30/2017 12:48:07 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/30/2017 12:45:48 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\program files (x86)\eset\eset online scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/30/2017 12:44:54 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\users\hardy\desktop\nÜtzlich\antivir-zeug\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/29/2017 08:53:44 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/29/2017 08:52:06 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/29/2017 08:51:27 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/29/2017 08:51:26 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/29/2017 08:51:16 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/29/2017 08:51:15 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/29/2017 08:51:14 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Systemfehler:
=============
Error: (05/29/2017 08:52:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (05/29/2017 08:52:08 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Hardy\AppData\Local\Temp\ehdrv.sys
Error: (05/29/2017 08:52:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (05/29/2017 08:52:07 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Hardy\AppData\Local\Temp\ehdrv.sys
Error: (05/29/2017 08:52:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (05/29/2017 08:52:07 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Hardy\AppData\Local\Temp\ehdrv.sys
Error: (05/29/2017 08:47:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "lirsgt" wurde aufgrund folgenden Fehlers nicht gestartet:
Die digitale Signatur dieser Datei kann nicht überprüft werden. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um böswillige Software aus einer unbekannten Quelle handelt, installiert.
Error: (05/29/2017 08:46:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "atksgt" wurde aufgrund folgenden Fehlers nicht gestartet:
Die digitale Signatur dieser Datei kann nicht überprüft werden. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um böswillige Software aus einer unbekannten Quelle handelt, installiert.
Error: (05/29/2017 08:44:50 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI5
Error: (05/29/2017 08:43:55 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen:
Zugriff verweigert
CodeIntegrity:
===================================
Date: 2017-05-30 00:47:00.933
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-30 00:47:00.715
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-29 20:47:17.397
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\msvcp140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-29 20:47:16.162
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\msvcp140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-29 20:47:14.381
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-29 20:47:06.989
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-29 20:46:59.942
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-29 20:16:30.615
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-29 20:16:30.443
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-29 20:14:00.942
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\msvcp140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Prozentuale Nutzung des RAM: 34%
Installierter physikalischer RAM: 8144.59 MB
Verfügbarer physikalischer RAM: 5324.39 MB
Summe virtueller Speicher: 8608.59 MB
Verfügbarer virtueller Speicher: 5451.79 MB
==================== Laufwerke ================================
Drive c: (OS) (Fixed) (Total:918.27 GB) (Free:241.37 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (Recovery Image) (Fixed) (Total:10.98 GB) (Free:0.19 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive e: (LOTR_TWO_TOWERS_D1) (CDROM) (Total:7.63 GB) (Free:0 GB) UDF
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt ============================
|
|
31.05.2017, 16:32
| #23 |
| /// Malwareteam | Browser-Hijacker(?) will nicht verschwinden Schritt: 1 FRST Fix
Schritt: Frage  Hast du noch irgendwelche Probleme mit deinem Rechner?
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
31.05.2017, 17:35
| #24 |
| | Browser-Hijacker(?) will nicht verschwinden Fixlog: Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 28-05-2017
durchgeführt von Hardy (31-05-2017 18:14:41) Run:2
Gestartet von C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug
Geladene Profile: Hardy (Verfügbare Profile: Hardy & Administrator)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
cmd: reg query "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost"
C:\Cosusp
C:\Insist
C:\Users\Hardy\Downloads\ccsetup530.exe
emptytemp:
*****************
========= reg query "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost" =========
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost
RPCSS REG_MULTI_SZ RpcEptMapper\0RpcSs
LocalService REG_MULTI_SZ nsi\0WdiServiceHost\0w32time\0EventSystem\0WinHttpAutoProxySvc\0SstpSvc\0netprofm\0lltdsvc\0THREADORDER\0FontCache\0fdphost\0bthserv\0WebClient\0workfolderssvc\0RemoteRegistry
WepHostSvcGroup REG_MULTI_SZ WepHostSvc
defragsvc REG_MULTI_SZ defragsvc
LocalServiceAndNoImpersonation REG_MULTI_SZ TimeBroker\0SSDPSRV\0upnphost\0SCardSvr\0BthHFSrv\0QWAVE\0fdrespub\0wcncsvc\0SensrSvc
DcomLaunch REG_MULTI_SZ Power\0LSM\0BrokerInfrastructure\0PlugPlay\0DcomLaunch\0DeviceInstall\0SystemEventsBroker
LocalSystemNetworkRestricted REG_MULTI_SZ WdiSystemHost\0ScDeviceEnum\0WiaRpc\0trkwks\0AudioEndpointBuilder\0WUDFSvc\0hidserv\0dot3svc\0NcbService\0svsvc\0sysmain\0StorSvc\0TabletInputService\0fhsvc\0PcaSvc\0DeviceAssociationService\0homegrouplistener\0wlansvc\0WPDBusEnum\0vmickvpexchange\0vmicshutdown\0vmicvss\0vmicguestinterface\0irmon\0Netman\0UmRdpService
netsvcs REG_MULTI_SZ AeLookupSvc\0CertPropSvc\0SCPolicySvc\0lanmanserver\0gpsvc\0IKEEXT\0iphlpsvc\0seclogon\0AppInfo\0msiscsi\0EapHost\0schedule\0winmgmt\0MMCSS\0browser\0ProfSvc\0SessionEnv\0wercplsupport\0hkmsvc\0BDESVC\0lfsvc\0wlidsvc\0Themes\0DsmSvc\0NcaSvc\0FastUserSwitchingCompatibility\0Ias\0Irmon\0Nla\0Ntmssvc\0NWCWorkstation\0Nwsapagent\0Rasauto\0Rasman\0Remoteaccess\0SENS\0Sharedaccess\0SRService\0Tapisrv\0Wmi\0WmdmPmSp\0wuauserv\0BITS\0ShellHWDetection\0LogonHours\0PCAudit\0helpsvc\0uploadmgr
WerSvcGroup REG_MULTI_SZ wersvc
WbioSvcGroup REG_MULTI_SZ WbioSrvc
LocalServiceNoNetwork REG_MULTI_SZ DPS\0PLA\0BFE\0mpssvc\0NcdAutoSetup\0WwanSvc
imgsvc REG_MULTI_SZ StiSvc
termsvcs REG_MULTI_SZ TermService
swprv REG_MULTI_SZ swprv
wsappx REG_MULTI_SZ WSService\0AppXSvc
smphost REG_MULTI_SZ smphost
ICService REG_MULTI_SZ vmicheartbeat\0vmicrdv
LocalServiceNetworkRestricted REG_MULTI_SZ DHCP\0eventlog\0AudioSrv\0wscsvc\0LmHosts\0AppIDSvc\0wcmsvc\0homegroupprovider\0WPCSvc\0vmictimesync
LocalServicePeerNet REG_MULTI_SZ PNRPSvc\0p2pimsvc\0p2psvc\0PnrpAutoReg
NetworkServiceAndNoImpersonation REG_MULTI_SZ KtmRm
regsvc REG_MULTI_SZ RemoteRegistry
wcssvc REG_MULTI_SZ WcsPlugInService
NetworkServiceNetworkRestricted REG_MULTI_SZ PolicyAgent
AxInstSVGroup REG_MULTI_SZ AxInstSV
AppReadiness REG_MULTI_SZ AppReadiness
NetworkService REG_MULTI_SZ CryptSvc\0nlasvc\0lanmanworkstation\0NapAgent\0WinRM\0WECSVC\0DNSCache\0Tapisrv\0DHCP\0TermService
print REG_MULTI_SZ PrintNotify
apphost REG_MULTI_SZ apphostsvc\0w3logsvc
iissvcs REG_MULTI_SZ w3svc\0was
bthaudiosvc REG_MULTI_SZ BthHFSrv
utcsvc REG_MULTI_SZ DiagTrack
SNARE REG_MULTI_SZ snare
SNAREA REG_MULTI_SZ SNAREA
WANARE REG_MULTI_SZ WANARE
ANSARE REG_MULTI_SZ ANSARE
VNASRE REG_MULTI_SZ VNASRE
NPASRE REG_MULTI_SZ NPASRE
terana REG_MULTI_SZ terana
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\apphost
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\defragsvc
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\ICService
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\iissvcs
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\LocalService
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\LocalServiceAndNoImpersonation
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\LocalServiceNetworkRestricted
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\LocalServiceNoNetwork
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\LocalSystemNetworkRestricted
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\netsvcs
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\NetworkService
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\NetworkServiceRemoteDesktopHyperVAgent
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\NetworkServiceRemoteDesktopPublishing
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\print
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\swprv
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\termsvcs
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\utcsvc
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\wcssvc
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\WepHostSvcGroup
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\wercplsupport
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\wsappx
========= Ende von CMD: =========
C:\Cosusp => erfolgreich verschoben
C:\Insist => erfolgreich verschoben
C:\Users\Hardy\Downloads\ccsetup530.exe => erfolgreich verschoben
=========== EmptyTemp: ==========
BITS transfer queue => 16777216 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 16144710 B
Java, Flash, Steam htmlcache => 14375173 B
Windows/system/drivers => 151699129 B
Edge => 0 B
Chrome => 1510630 B
Firefox => 0 B
Opera => 380094836 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 6546 B
NetworkService => 0 B
Hardy => 6973604 B
Administrator => 0 B
RecycleBin => 2868330900 B
EmptyTemp: => 3.2 GB temporäre Dateien entfernt.
================================
Das System musste neu gestartet werden.
==== Ende von Fixlog 18:15:53 ====
Offensichtliche Probleme habe ich keine mehr. Diese "QQlme.exe" meldet sich nicht mehr, auch kommt nicht die Fehlermeldung das selbige nicht korrekt ausgeführt werden kann.. Mein Bildschirm is nach dem Log-In ne Weile schwarz,bis der Desktop erscheint. Aber das war auch schon vorher so. Das einzige was mir jetzt noch aufgefallen ist, ist das in Chrome bei "Suchen" noch "mystarting123.com" als Suchmaschinenstandard festgelegt ist und sich unter keinen Umständen entfernen oder ändern lässt. |
|
31.05.2017, 18:47
| #25 |
| /// Malwareteam | Browser-Hijacker(?) will nicht verschwinden Ich möchte gerne bei dir etwas nachschauen: Schritt: 1 FRST Fix
Schritt: 2 Bitte starte wieder FRST, entferne den Haken unter "Ausnahmen" nur bei Dienste drücke auf Untersuchen. Poste bitte wieder die Textdatei, die so entsteht. Cave: Die Anweisung ist diesmal anders.
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
31.05.2017, 18:56
| #26 |
| | Browser-Hijacker(?) will nicht verschwinden Fixlog: Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 31-05-2017
durchgeführt von Hardy (31-05-2017 19:50:15) Run:3
Gestartet von C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug
Geladene Profile: Hardy (Verfügbare Profile: Hardy & Administrator)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
ExportKey: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost
*****************
================== ExportKey: ===================
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost]
"RPCSS"="RpcEptMapper
RpcSs"
"LocalService"="nsi
WdiServiceHost
w32time
EventSystem
WinHttpAutoProxySvc
SstpSvc
netprofm
lltdsvc
THREADORDER
FontCache
fdphost
bthserv
WebClient
workfolderssvc
RemoteRegistry"
"WepHostSvcGroup"="WepHostSvc"
"defragsvc"="defragsvc"
"LocalServiceAndNoImpersonation"="TimeBroker
SSDPSRV
upnphost
SCardSvr
BthHFSrv
QWAVE
fdrespub
wcncsvc
SensrSvc"
"DcomLaunch"="Power
LSM
BrokerInfrastructure
PlugPlay
DcomLaunch
DeviceInstall
SystemEventsBroker"
"LocalSystemNetworkRestricted"="WdiSystemHost
ScDeviceEnum
WiaRpc
trkwks
AudioEndpointBuilder
WUDFSvc
hidserv
dot3svc
NcbService
svsvc
sysmain
StorSvc
TabletInputService
fhsvc
PcaSvc
DeviceAssociationService
homegrouplistener
wlansv (Der Dateneintrag hat 94 mehr Zeichen)."
"netsvcs"="AeLookupSvc
CertPropSvc
SCPolicySvc
lanmanserver
gpsvc
IKEEXT
iphlpsvc
seclogon
AppInfo
msiscsi
EapHost
schedule
winmgmt
MMCSS
browser
ProfSvc
SessionEnv
wercplsupport
hkmsvc
BDESVC
lfsvc
wlidsvc
Them (Der Dateneintrag hat 240 mehr Zeichen)."
"WerSvcGroup"="wersvc"
"WbioSvcGroup"="WbioSrvc"
"LocalServiceNoNetwork"="DPS
PLA
BFE
mpssvc
NcdAutoSetup
WwanSvc"
"imgsvc"="StiSvc"
"termsvcs"="TermService"
"swprv"="swprv"
"wsappx"="WSService
AppXSvc"
"smphost"="smphost"
"ICService"="vmicheartbeat
vmicrdv"
"LocalServiceNetworkRestricted"="DHCP
eventlog
AudioSrv
wscsvc
LmHosts
AppIDSvc
wcmsvc
homegroupprovider
WPCSvc
vmictimesync"
"LocalServicePeerNet"="PNRPSvc
p2pimsvc
p2psvc
PnrpAutoReg"
"NetworkServiceAndNoImpersonation"="KtmRm"
"regsvc"="RemoteRegistry"
"wcssvc"="WcsPlugInService"
"NetworkServiceNetworkRestricted"="PolicyAgent"
"AxInstSVGroup"="AxInstSV"
"AppReadiness"="AppReadiness"
"NetworkService"="CryptSvc
nlasvc
lanmanworkstation
NapAgent
WinRM
WECSVC
DNSCache
Tapisrv
DHCP
TermService"
"print"="PrintNotify"
"apphost"="apphostsvc
w3logsvc"
"iissvcs"="w3svc
was"
"bthaudiosvc"="BthHFSrv"
"utcsvc"="DiagTrack"
"SNARE"="snare
"
"SNAREA"="SNAREA
"
"WANARE"="WANARE
"
"ANSARE"="ANSARE
"
"VNASRE"="VNASRE
"
"NPASRE"="NPASRE
"
"terana"="terana
"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\apphost]
"CoInitializeSecurityParam"="0"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\defragsvc]
"CoInitializeSecurityParam"="0"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\ICService]
"CoInitializeSecurityParam"="1"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\iissvcs]
"CoInitializeSecurityParam"="0"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\LocalService]
"CoInitializeSecurityParam"="1"
"AuthenticationCapabilities"="8192"
"CoInitializeSecurityAllowLowBox"="1"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\LocalServiceAndNoImpersonation]
"CoInitializeSecurityParam"="1"
"AuthenticationCapabilities"="8192"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\LocalServiceNetworkRestricted]
"CoInitializeSecurityParam"="1"
"DefaultRpcStackSize"="64"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\LocalServiceNoNetwork]
"CoInitializeSecurityParam"="1"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\LocalSystemNetworkRestricted]
"CoInitializeSecurityParam"="1"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\netsvcs]
"CoInitializeSecurityParam"="1"
"AuthenticationCapabilities"="12320"
"CoInitializeSecurityAllowLowBox"="1"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\NetworkService]
"CoInitializeSecurityParam"="1"
"DefaultRpcStackSize"="28"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\NetworkServiceRemoteDesktopHyperVAgent]
"AuthenticationLevel"="6"
"CoInitializeSecurityParam"="1"
"AuthenticationCapabilities"="8192"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\NetworkServiceRemoteDesktopPublishing]
"AuthenticationLevel"="6"
"CoInitializeSecurityParam"="1"
"AuthenticationCapabilities"="8192"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\print]
"AuthenticationCapabilities"="12320"
"CoInitializeSecurityParam"="1"
"AuthenticationLevel"="5"
"ImpersonationLevel"="3"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\swprv]
"CoInitializeSecurityParam"="0"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\termsvcs]
"CoInitializeSecurityParam"="1"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\utcsvc]
"CoInitializeSecurityParam"="1"
"AuthenticationCapabilities"="12320"
"CoInitializeSecurityAllowLowBox"="1"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\wcssvc]
"CoInitializeSecurityParam"="1"
"CoInitializeSecurityAppID"="{CD11FAB6-1C0E-45e1-BA31-5C6008EF2607}"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\WepHostSvcGroup]
"CoInitializeSecurityParam"="0"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\wercplsupport]
"CoInitializeSecurityParam"="1"
"AuthenticationCapabilities"="12320"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost\wsappx]
"AuthenticationLevel"="3"
"CoInitializeSecurityParam"="1"
"AuthenticationCapabilities"="0"
=== Ende von ExportKey ===
==== Ende von Fixlog 19:50:16 ====
FRST: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 31-05-2017
durchgeführt von Hardy (Administrator) auf JAMES (31-05-2017 19:51:59)
Gestartet von C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug
Geladene Profile: Hardy (Verfügbare Profile: Hardy & Administrator)
Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Opera)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Mr. John aka japamd) C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe
(Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
() C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe
(Rapoo) C:\Program Files (x86)\Rapoo\V700\V700Config.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
(HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
(Steven Mayall) C:\Program Files (x86)\MusicBee\MusicBee.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [478984 2012-12-15] (Adobe Systems Incorporated)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15033976 2015-11-20] (Logitech Inc.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-11-20] (IDT, Inc.)
HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [41664 2013-11-20] (Hewlett-Packard )
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-11-01] (Apple Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9197568 2017-05-22] (Realtek Semiconductor)
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-05-23] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [ZAM] => C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [14522512 2017-04-03] (Copyright 2017.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-04-10] (Oracle Corporation)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-05-23] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1282120 2013-05-02] (CANON INC.)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2016-11-04] (Razer Inc.)
HKLM-x32\...\Run: [Rapoo V700] => C:\Program Files (x86)\Rapoo\V700\load.exe [808760 2014-04-30] ()
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58584 2016-09-29] (Raptr, Inc)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-05-23] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [6153128 2017-05-22] (LogMeIn Inc.)
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9772248 2017-05-05] (Piriform Ltd)
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {182bb6d7-7546-11e3-bf81-b4b52fd91f16} - "H:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {292e2fcd-3875-11e6-80d8-b4b52fd91f16} - "I:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {858bc1f3-5612-11e5-bfcd-b4b52fd91f16} - "I:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {882e6f95-ead9-11e6-81b3-b4b52fd91f16} - "E:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {a0968113-b115-11e4-bf1d-b4b52fd91f16} - "H:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {bce95545-5557-11e5-bfcc-b4b52fd91f16} - "I:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {bce95547-5557-11e5-bfcc-b4b52fd91f16} - "I:\HTC_Sync_Manager_PC.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2014-08-20]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7A68117C-CA3D-4CD2-93E3-92CA12B9A7C3}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{7A68117C-CA3D-4CD2-93E3-92CA12B9A7C3}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{C155D1A7-613D-45C6-9A05-87C4F655EEA6}: [DhcpNameServer] 192.168.0.1
ManualProxies:
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKLM -> {43F6ABD5-68C5-4060-A10F-AEAA1B6C98A7} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\S-1-5-21-2570889560-1274126736-4133381010-1001 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-2570889560-1274126736-4133381010-1001 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKU\S-1-5-21-2570889560-1274126736-4133381010-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-05-17] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-17] (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (HP Inc.)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\Hardy\AppData\Roaming\Mozilla\Firefox\Profiles\lxdrst7r.default [2017-05-29]
FF NewTab: Mozilla\Firefox\Profiles\lxdrst7r.default -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\lxdrst7r.default -> www.google.de/
FF Extension: (AVG Web TuneUp) - C:\Users\Hardy\AppData\Roaming\Mozilla\Firefox\Profiles\lxdrst7r.default\Extensions\avg@toolbar.xpi [2017-05-09]
FF Extension: (MEGA) - C:\Users\Hardy\AppData\Roaming\Mozilla\Firefox\Profiles\lxdrst7r.default\Extensions\firefox@mega.co.nz.xpi [2017-05-04]
FF Extension: (Adblock Plus) - C:\Users\Hardy\AppData\Roaming\Mozilla\Firefox\Profiles\lxdrst7r.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-24]
FF HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: (McAfee Security Scan Plus) - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-09] ()
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-17] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-17] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-30] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-12-15] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.17.2 -> C:\WINDOWS\SysWOW64\npDeployJava1.dll [2014-12-04] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR DefaultSearchURL: ChromeDefaultData -> hxxp://www.mystarting123.com/search/index.php?z=c6b1474d1208226a98e6fabg1z0tew2q0o0o1c7e8c&q={searchTerms}
CHR DefaultSearchKeyword: ChromeDefaultData -> mystarting123
CHR Profile: C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-05-31] <==== ACHTUNG
CHR Extension: (Google Präsentationen) - C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-05-29]
CHR Extension: (Google Docs) - C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2017-05-29]
CHR Extension: (Google Drive) - C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-29]
CHR Extension: (YouTube) - C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-29]
CHR Extension: (Google Tabellen) - C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-05-29]
CHR Extension: (Google Docs Offline) - C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-05-30]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-29]
CHR Extension: (Google Mail) - C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-05-29]
CHR Extension: (Chrome Media Router) - C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-29]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome - Chrome.exe
Opera:
=======
OPR Extension: (Video Downloader Pro) - C:\Users\Hardy\AppData\Roaming\Opera Software\Opera Stable\Extensions\ibehiiilehaakkhkigckfjfknboalpbe [2017-02-03]
OPR Extension: (AdBlocker Ultimate) - C:\Users\Hardy\AppData\Roaming\Opera Software\Opera Stable\Extensions\pmpmnoinbkdojlnknogfeoagmhmhgakc [2017-05-31]
==================== Dienste (Alle) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [271864 2017-05-09] (Adobe Systems Incorporated)
R3 AeLookupSvc; C:\WINDOWS\System32\aelupsvc.dll [214528 2014-10-29] (Microsoft Corporation)
S3 ALG; C:\WINDOWS\System32\alg.exe [96768 2014-10-29] (Microsoft Corporation)
R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [543112 2017-05-22] (AMD)
R2 AppHostSvc; C:\WINDOWS\system32\inetsrv\apphostsvc.dll [66048 2014-09-19] (Microsoft Corporation)
R2 AppHostSvc; C:\WINDOWS\SysWOW64\inetsrv\apphostsvc.dll [62464 2014-09-19] (Microsoft Corporation)
S3 AppIDSvc; C:\WINDOWS\System32\appidsvc.dll [39936 2015-08-01] (Microsoft Corporation)
R3 Appinfo; C:\WINDOWS\System32\appinfo.dll [110080 2016-01-31] (Microsoft Corporation)
S3 AppReadiness; C:\WINDOWS\system32\AppReadiness.dll [562688 2014-10-29] (Microsoft Corporation)
S3 AppXSvc; C:\WINDOWS\system32\appxdeploymentserver.dll [1348096 2016-02-08] (Microsoft Corporation)
S3 aspnet_state; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [51384 2016-11-30] (Microsoft Corporation)
R2 AudioEndpointBuilder; C:\WINDOWS\System32\AudioEndpointBuilder.dll [230400 2015-05-30] (Microsoft Corporation)
R2 Audiosrv; C:\WINDOWS\System32\Audiosrv.dll [911360 2015-05-30] (Microsoft Corporation)
S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [1002552 2017-04-11] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [5334432 2017-04-11] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428656 2017-05-23] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [729048 2017-04-11] (AVG Technologies CZ, s.r.o.)
S3 AxInstSV; C:\WINDOWS\System32\AxInstSV.dll [111104 2014-10-29] (Microsoft Corporation)
S3 BDESVC; C:\WINDOWS\System32\bdesvc.dll [348672 2016-04-01] (Microsoft Corporation)
R2 BFE; C:\WINDOWS\System32\bfe.dll [845312 2016-02-05] (Microsoft Corporation)
R2 BITS; C:\WINDOWS\System32\qmgr.dll [933376 2014-10-29] (Microsoft Corporation)
R2 Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [462096 2015-08-12] (Apple Inc.)
R2 BrokerInfrastructure; C:\WINDOWS\System32\bisrv.dll [270336 2014-10-29] (Microsoft Corporation)
R3 Browser; C:\WINDOWS\System32\browser.dll [135168 2014-10-29] (Microsoft Corporation)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2017-05-28] (BitRaider, LLC)
S3 BthHFSrv; C:\WINDOWS\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
S3 bthserv; C:\WINDOWS\system32\bthserv.dll [94720 2014-10-29] (Microsoft Corporation)
S3 CertPropSvc; C:\WINDOWS\System32\certprop.dll [156160 2014-10-29] (Microsoft Corporation)
R2 CryptSvc; C:\WINDOWS\system32\cryptsvc.dll [131584 2014-10-29] (Microsoft Corporation)
R2 DcomLaunch; C:\WINDOWS\system32\rpcss.dll [816128 2016-04-10] (Microsoft Corporation)
S3 defragsvc; C:\WINDOWS\System32\defragsvc.dll [524288 2014-10-29] (Microsoft Corporation)
S3 Desura Install Service; C:\Program Files (x86)\Common Files\Desura\desura_service.exe [1051088 2014-12-04] (Desura Net Pty Ltd)
R3 DeviceAssociationService; C:\WINDOWS\system32\das.dll [407040 2014-10-29] (Microsoft Corporation)
S3 DeviceInstall; C:\WINDOWS\system32\umpnpmgr.dll [116736 2014-10-29] (Microsoft Corporation)
R2 Dhcp; C:\WINDOWS\system32\dhcpcore.dll [365056 2014-10-29] (Microsoft Corporation)
R2 Dhcp; C:\WINDOWS\SysWOW64\dhcpcore.dll [292864 2014-10-29] (Microsoft Corporation)
R2 DiagTrack; C:\WINDOWS\system32\diagtrack.dll [1628672 2016-08-22] (Microsoft Corporation)
R2 Dnscache; C:\WINDOWS\System32\dnsrslvr.dll [252416 2016-01-10] (Microsoft Corporation)
S3 dot3svc; C:\WINDOWS\System32\dot3svc.dll [262144 2014-10-29] (Microsoft Corporation)
R2 DPS; C:\WINDOWS\system32\dps.dll [174080 2014-10-29] (Microsoft Corporation)
S3 DsmSvc; C:\WINDOWS\System32\DeviceSetupManager.dll [206848 2014-10-29] (Microsoft Corporation)
S3 Eaphost; C:\WINDOWS\System32\eapsvc.dll [110592 2014-10-29] (Microsoft Corporation)
S3 EFS; C:\WINDOWS\system32\efssvc.dll [41472 2014-10-29] (Microsoft Corporation)
R2 EventLog; C:\WINDOWS\System32\wevtsvc.dll [1696256 2015-03-06] (Microsoft Corporation)
R2 EventSystem; C:\WINDOWS\system32\es.dll [516608 2014-10-29] (Microsoft Corporation)
R2 EventSystem; C:\WINDOWS\SysWOW64\es.dll [367616 2014-10-29] (Microsoft Corporation)
S3 Fax; C:\WINDOWS\system32\fxssvc.exe [658944 2014-10-29] (Microsoft Corporation)
S3 fdPHost; C:\WINDOWS\system32\fdPHost.dll [22016 2014-10-29] (Microsoft Corporation)
S3 FDResPub; C:\WINDOWS\system32\fdrespub.dll [34816 2014-10-29] (Microsoft Corporation)
R2 fhsvc; C:\WINDOWS\system32\fhsvc.dll [121856 2014-10-29] (Microsoft Corporation)
R2 FontCache; C:\WINDOWS\system32\FntCache.dll [1377792 2016-09-07] (Microsoft Corporation)
S3 FontCache3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [43696 2013-08-03] (Microsoft Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [284736 2017-02-23] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6625856 2016-12-04] (GOG.com)
S2 gpsvc; C:\WINDOWS\System32\gpsvc.dll [1360896 2016-05-12] (Microsoft Corporation)
S2 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc.)
S3 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc.)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3760040 2017-05-22] (LogMeIn Inc.)
R3 hidserv; C:\WINDOWS\system32\hidserv.dll [33792 2014-10-29] (Microsoft Corporation)
R3 hidserv; C:\WINDOWS\SysWOW64\hidserv.dll [30720 2014-10-29] (Microsoft Corporation)
S3 hkmsvc; C:\WINDOWS\system32\kmsvc.dll [101376 2014-10-29] (Microsoft Corporation)
S3 HomeGroupListener; C:\WINDOWS\system32\ListSvc.dll [275968 2014-10-29] (Microsoft Corporation)
S3 HomeGroupProvider; C:\WINDOWS\system32\provsvc.dll [445952 2014-10-29] (Microsoft Corporation)
S3 HomeGroupProvider; C:\WINDOWS\SysWOW64\provsvc.dll [366080 2014-10-29] (Microsoft Corporation)
S4 HPConnectedRemote; c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35232 2012-08-29] (Hewlett-Packard)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [33640 2017-04-07] (HP Inc.)
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-06-27] (Nero AG)
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [217888 2015-06-03] (Intel Corporation)
S3 IEEtwCollectorService; C:\WINDOWS\system32\IEEtwCollector.exe [114688 2014-10-31] (Microsoft Corporation)
R2 IKEEXT; C:\WINDOWS\System32\ikeext.dll [1080320 2016-07-07] (Microsoft Corporation)
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [635104 2012-04-20] (Intel(R) Corporation)
R2 iphlpsvc; C:\WINDOWS\System32\iphlpsvc.dll [927744 2016-04-07] (Microsoft Corporation)
S3 iPod Service; C:\Program Files\iPod\bin\iPodService.exe [651576 2016-11-01] (Apple Inc.)
S3 KeyIso; C:\WINDOWS\system32\keyiso.dll [62464 2014-10-29] (Microsoft Corporation)
S3 KeyIso; C:\WINDOWS\SysWOW64\keyiso.dll [46592 2014-10-29] (Microsoft Corporation)
S3 KtmRm; C:\WINDOWS\system32\msdtckrm.dll [373248 2014-10-29] (Microsoft Corporation)
R2 LanmanServer; C:\WINDOWS\system32\srvsvc.dll [329216 2014-10-29] (Microsoft Corporation)
R2 LanmanWorkstation; C:\WINDOWS\System32\wkssvc.dll [289280 2014-10-29] (Microsoft Corporation)
S3 lfsvc; C:\WINDOWS\System32\GeofenceMonitorService.dll [522240 2015-05-07] (Microsoft Corporation)
S3 lfsvc; C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll [367104 2015-05-07] (Microsoft Corporation)
S3 lltdsvc; C:\WINDOWS\System32\lltdsvc.dll [279040 2014-10-29] (Microsoft Corporation)
R2 lmhosts; C:\WINDOWS\System32\lmhsvc.dll [24576 2014-10-29] (Microsoft Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc.)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193144 2015-11-20] (Logitech Inc.)
R2 LSM; C:\WINDOWS\System32\lsm.dll [780800 2015-02-21] (Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
S4 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
R2 MMCSS; C:\WINDOWS\system32\mmcss.dll [71168 2014-10-29] (Microsoft Corporation)
R2 MpsSvc; C:\WINDOWS\system32\mpssvc.dll [881152 2016-04-09] (Microsoft Corporation)
S3 MSDTC; C:\WINDOWS\System32\msdtc.exe [144384 2014-10-29] (Microsoft Corporation)
S3 MSiSCSI; C:\WINDOWS\system32\iscsiexe.dll [151040 2016-09-03] (Microsoft Corporation)
S3 msiserver; C:\WINDOWS\System32\msiexec.exe [65024 2016-05-05] (Microsoft Corporation)
S3 msiserver; C:\WINDOWS\SysWOW64\msiexec.exe [59904 2016-05-05] (Microsoft Corporation)
S3 napagent; C:\WINDOWS\system32\qagentRT.dll [446464 2014-10-29] (Microsoft Corporation)
S3 NcaSvc; C:\WINDOWS\System32\ncasvc.dll [166400 2014-10-29] (Microsoft Corporation)
R3 NcbService; C:\WINDOWS\System32\ncbservice.dll [154112 2014-10-29] (Microsoft Corporation)
S3 NcdAutoSetup; C:\WINDOWS\System32\NcdAutoSetup.dll [74752 2015-07-16] (Microsoft Corporation)
S3 Netlogon; C:\WINDOWS\system32\netlogon.dll [840704 2016-10-09] (Microsoft Corporation)
S3 Netlogon; C:\WINDOWS\SysWOW64\netlogon.dll [696832 2016-07-08] (Microsoft Corporation)
S3 Netman; C:\WINDOWS\System32\netman.dll [266752 2014-10-29] (Microsoft Corporation)
R3 netprofm; C:\WINDOWS\System32\netprofmsvc.dll [550912 2014-10-29] (Microsoft Corporation)
S4 NetTcpPortSharing; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139856 2013-08-10] (Microsoft Corporation)
R2 NlaSvc; C:\WINDOWS\System32\nlasvc.dll [391680 2014-12-06] (Microsoft Corporation)
R2 nsi; C:\WINDOWS\system32\nsisvc.dll [28672 2014-10-29] (Microsoft Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2145288 2017-04-04] (Electronic Arts)
S3 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3114512 2017-04-04] (Electronic Arts)
S3 p2pimsvc; C:\WINDOWS\system32\pnrpsvc.dll [380416 2014-10-29] (Microsoft Corporation)
S3 p2psvc; C:\WINDOWS\system32\p2psvc.dll [440832 2014-10-29] (Microsoft Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [Datei ist nicht signiert]
R2 PcaSvc; C:\WINDOWS\System32\pcasvc.dll [474112 2016-10-12] (Microsoft Corporation)
S3 PerfHost; C:\WINDOWS\SysWow64\perfhost.exe [21504 2013-08-22] (Microsoft Corporation)
S3 pla; C:\WINDOWS\system32\pla.dll [1526784 2014-10-29] (Microsoft Corporation)
S3 pla; C:\WINDOWS\SysWOW64\pla.dll [1534464 2014-10-29] (Microsoft Corporation)
R3 PlugPlay; C:\WINDOWS\system32\umpnpmgr.dll [116736 2014-10-29] (Microsoft Corporation)
S3 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2016-10-04] ()
S3 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2017-03-07] ()
S3 PNRPAutoReg; C:\WINDOWS\system32\pnrpauto.dll [26624 2014-10-29] (Microsoft Corporation)
S3 PNRPsvc; C:\WINDOWS\system32\pnrpsvc.dll [380416 2014-10-29] (Microsoft Corporation)
R3 PolicyAgent; C:\WINDOWS\System32\ipsecsvc.dll [398848 2016-05-12] (Microsoft Corporation)
R2 Power; C:\WINDOWS\system32\umpo.dll [80384 2014-10-29] (Microsoft Corporation)
S3 PrintNotify; C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll [2987520 2014-10-29] (Microsoft Corporation)
R2 ProfSvc; C:\WINDOWS\system32\profsvc.dll [228864 2015-07-09] (Microsoft Corporation)
S3 QWAVE; C:\WINDOWS\system32\qwave.dll [303104 2014-10-29] (Microsoft Corporation)
S3 QWAVE; C:\WINDOWS\SysWOW64\qwave.dll [261632 2014-10-29] (Microsoft Corporation)
R2 RadeonPro Support Service; C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe [20608 2013-11-04] (Mr. John aka japamd) [Datei ist nicht signiert]
S3 RasAuto; C:\WINDOWS\System32\rasauto.dll [102912 2014-10-29] (Microsoft Corporation)
S3 RasMan; C:\WINDOWS\System32\rasmans.dll [542720 2016-07-07] (Microsoft Corporation)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [69744 2016-10-18] (Razer Inc.)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-25] ()
S4 RemoteAccess; C:\WINDOWS\System32\mprdim.dll [233472 2016-07-08] (Microsoft Corporation)
S4 RemoteAccess; C:\WINDOWS\SysWOW64\mprdim.dll [187392 2016-07-07] (Microsoft Corporation)
S4 RemoteRegistry; C:\WINDOWS\system32\regsvc.dll [166400 2014-10-29] (Microsoft Corporation)
R2 RpcEptMapper; C:\WINDOWS\System32\RpcEpMap.dll [80896 2014-10-29] (Microsoft Corporation)
S3 RpcLocator; C:\WINDOWS\system32\locator.exe [10240 2014-10-29] (Microsoft Corporation)
R2 RpcSs; C:\WINDOWS\system32\rpcss.dll [816128 2016-04-10] (Microsoft Corporation)
R2 SamSs; C:\WINDOWS\system32\lsass.exe [47024 2014-10-29] (Microsoft Corporation)
S4 SCardSvr; C:\WINDOWS\System32\SCardSvr.dll [194048 2014-10-29] (Microsoft Corporation)
S3 ScDeviceEnum; C:\WINDOWS\System32\ScDeviceEnum.dll [131072 2014-10-29] (Microsoft Corporation)
R2 Schedule; C:\WINDOWS\system32\schedsvc.dll [1265152 2015-08-01] (Microsoft Corporation)
S3 SCPolicySvc; C:\WINDOWS\System32\certprop.dll [156160 2014-10-29] (Microsoft Corporation)
S3 seclogon; C:\WINDOWS\system32\seclogon.dll [31744 2016-02-06] (Microsoft Corporation)
R2 SENS; C:\WINDOWS\System32\sens.dll [73728 2014-10-29] (Microsoft Corporation)
S3 SensrSvc; C:\WINDOWS\system32\sensrsvc.dll [243200 2014-10-29] (Microsoft Corporation)
S3 SessionEnv; C:\WINDOWS\system32\sessenv.dll [342528 2016-09-01] (Microsoft Corporation)
S3 SessionEnv; C:\WINDOWS\SysWOW64\sessenv.dll [296960 2016-09-01] (Microsoft Corporation)
S4 SharedAccess; C:\WINDOWS\System32\ipnathlp.dll [452608 2014-10-29] (Microsoft Corporation)
R2 ShellHWDetection; C:\WINDOWS\System32\shsvcs.dll [640000 2014-10-29] (Microsoft Corporation)
R2 ShellHWDetection; C:\WINDOWS\SysWOW64\shsvcs.dll [576512 2014-10-29] (Microsoft Corporation)
S3 SkypeUpdate; C:\Program Files (x86)\Skype\Updater\Updater.exe [317400 2017-02-27] (Skype Technologies)
S3 smphost; C:\WINDOWS\System32\smphost.dll [13312 2014-10-29] (Microsoft Corporation)
S3 smphost; C:\WINDOWS\SysWOW64\smphost.dll [11776 2014-10-29] (Microsoft Corporation)
S3 SNMPTRAP; C:\WINDOWS\System32\snmptrap.exe [14848 2014-10-29] (Microsoft Corporation)
R2 Spooler; C:\WINDOWS\System32\spoolsv.exe [827392 2014-10-29] (Microsoft Corporation)
S2 sppsvc; C:\WINDOWS\system32\sppsvc.exe [6521800 2016-06-10] (Microsoft Corporation)
R3 SSDPSRV; C:\WINDOWS\System32\ssdpsrv.dll [249344 2014-10-29] (Microsoft Corporation)
S3 SstpSvc; C:\WINDOWS\system32\sstpsvc.dll [142848 2014-10-29] (Microsoft Corporation)
S2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [339456 2013-11-20] (IDT, Inc.) [Datei ist nicht signiert]
S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [1464096 2017-01-19] (Valve Corporation)
R2 stisvc; C:\WINDOWS\System32\wiaservc.dll [670720 2014-10-29] (Microsoft Corporation)
S3 StorSvc; C:\WINDOWS\system32\storsvc.dll [20480 2014-10-29] (Microsoft Corporation)
S3 StorSvc; C:\WINDOWS\SysWOW64\storsvc.dll [17920 2014-10-29] (Microsoft Corporation)
S3 svsvc; C:\WINDOWS\system32\svsvc.dll [13312 2014-10-29] (Microsoft Corporation)
S3 swprv; C:\WINDOWS\System32\swprv.dll [706048 2014-10-29] (Microsoft Corporation)
S4 SysMain; C:\WINDOWS\system32\sysmain.dll [1217024 2015-07-10] (Microsoft Corporation)
R2 SystemEventsBroker; C:\WINDOWS\System32\SystemEventsBrokerServer.dll [294912 2015-05-12] (Microsoft Corporation)
S3 TabletInputService; C:\WINDOWS\System32\TabSvc.dll [154624 2014-10-29] (Microsoft Corporation)
S3 TapiSrv; C:\WINDOWS\System32\tapisrv.dll [313344 2014-10-29] (Microsoft Corporation)
S3 TapiSrv; C:\WINDOWS\SysWOW64\tapisrv.dll [254464 2014-10-29] (Microsoft Corporation)
S3 TermService; C:\WINDOWS\System32\termsrv.dll [1114624 2014-10-29] (Microsoft Corporation)
R2 Themes; C:\WINDOWS\system32\themeservice.dll [59392 2014-10-29] (Microsoft Corporation)
S3 THREADORDER; C:\WINDOWS\system32\mmcss.dll [71168 2014-10-29] (Microsoft Corporation)
R3 TimeBroker; C:\WINDOWS\System32\TimeBrokerServer.dll [262656 2014-10-29] (Microsoft Corporation)
R2 TrkWks; C:\WINDOWS\System32\trkwks.dll [124416 2014-10-29] (Microsoft Corporation)
S3 TrustedInstaller; C:\WINDOWS\servicing\TrustedInstaller.exe [106496 2014-10-29] (Microsoft Corporation)
S3 UI0Detect; C:\WINDOWS\system32\UI0Detect.exe [41984 2014-10-29] (Microsoft Corporation)
S3 UmRdpService; C:\WINDOWS\System32\umrdp.dll [300032 2014-10-29] (Microsoft Corporation)
S3 upnphost; C:\WINDOWS\System32\upnphost.dll [457728 2014-10-29] (Microsoft Corporation)
S3 upnphost; C:\WINDOWS\SysWOW64\upnphost.dll [331776 2014-10-29] (Microsoft Corporation)
R3 VaultSvc; C:\Windows\System32\vaultsvc.dll [260608 2014-10-29] (Microsoft Corporation)
S3 vds; C:\WINDOWS\System32\vds.exe [1313792 2014-10-29] (Microsoft Corporation)
S3 vmicguestinterface; C:\WINDOWS\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 vmicheartbeat; C:\WINDOWS\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 vmickvpexchange; C:\WINDOWS\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 vmicrdv; C:\WINDOWS\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 vmicshutdown; C:\WINDOWS\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 vmictimesync; C:\WINDOWS\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 vmicvss; C:\WINDOWS\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 VSS; C:\WINDOWS\system32\vssvc.exe [1455104 2016-02-05] (Microsoft Corporation)
S3 W32Time; C:\WINDOWS\system32\w32time.dll [411648 2014-10-29] (Microsoft Corporation)
S3 w3logsvc; C:\WINDOWS\system32\inetsrv\w3logsvc.dll [76800 2014-09-19] (Microsoft Corporation)
S3 w3logsvc; C:\WINDOWS\SysWOW64\inetsrv\w3logsvc.dll [66560 2014-09-19] (Microsoft Corporation)
S3 WAS; C:\WINDOWS\system32\inetsrv\iisw3adm.dll [546304 2014-09-19] (Microsoft Corporation)
S3 WAS; C:\WINDOWS\SysWOW64\inetsrv\iisw3adm.dll [475648 2014-09-19] (Microsoft Corporation)
S3 wbengine; C:\WINDOWS\system32\wbengine.exe [1574912 2016-08-11] (Microsoft Corporation)
S3 WbioSrvc; C:\WINDOWS\System32\wbiosrvc.dll [465920 2014-10-29] (Microsoft Corporation)
R2 Wcmsvc; C:\WINDOWS\System32\wcmsvc.dll [374784 2014-10-29] (Microsoft Corporation)
S3 wcncsvc; C:\WINDOWS\System32\wcncsvc.dll [465920 2014-10-29] (Microsoft Corporation)
S3 WcsPlugInService; C:\WINDOWS\System32\WcsPlugInService.dll [43520 2014-10-29] (Microsoft Corporation)
S3 WcsPlugInService; C:\WINDOWS\SysWOW64\WcsPlugInService.dll [34304 2014-10-29] (Microsoft Corporation)
R3 WdiServiceHost; C:\WINDOWS\system32\wdi.dll [95744 2014-10-29] (Microsoft Corporation)
R3 WdiServiceHost; C:\WINDOWS\SysWOW64\wdi.dll [84992 2014-10-29] (Microsoft Corporation)
R3 WdiSystemHost; C:\WINDOWS\system32\wdi.dll [95744 2014-10-29] (Microsoft Corporation)
R3 WdiSystemHost; C:\WINDOWS\SysWOW64\wdi.dll [84992 2014-10-29] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WebClient; C:\WINDOWS\System32\webclnt.dll [228864 2016-06-09] (Microsoft Corporation)
S3 WebClient; C:\WINDOWS\SysWOW64\webclnt.dll [199168 2016-06-09] (Microsoft Corporation)
S3 Wecsvc; C:\WINDOWS\system32\wecsvc.dll [209408 2014-10-29] (Microsoft Corporation)
S3 WEPHOSTSVC; C:\WINDOWS\system32\wephostsvc.dll [26112 2014-10-29] (Microsoft Corporation)
S3 wercplsupport; C:\WINDOWS\System32\wercplsupport.dll [84992 2014-10-29] (Microsoft Corporation)
S3 WerSvc; C:\WINDOWS\System32\WerSvc.dll [108544 2014-10-29] (Microsoft Corporation)
S3 WiaRpc; C:\WINDOWS\System32\wiarpc.dll [67584 2014-10-29] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R3 WinHttpAutoProxySvc; C:\WINDOWS\system32\winhttp.dll [796672 2016-06-11] (Microsoft Corporation)
R3 WinHttpAutoProxySvc; C:\WINDOWS\SysWOW64\winhttp.dll [626176 2016-06-11] (Microsoft Corporation)
R2 Winmgmt; C:\WINDOWS\system32\wbem\WMIsvc.dll [230400 2014-10-29] (Microsoft Corporation)
S3 WinRM; C:\WINDOWS\system32\WsmSvc.dll [2609152 2016-02-02] (Microsoft Corporation)
S3 WinRM; C:\WINDOWS\SysWOW64\WsmSvc.dll [2170880 2016-02-02] (Microsoft Corporation)
S3 WlanSvc; C:\WINDOWS\System32\wlansvc.dll [1547264 2014-10-29] (Microsoft Corporation)
R3 wlidsvc; C:\WINDOWS\system32\wlidsvc.dll [1639424 2014-10-29] (Microsoft Corporation)
S3 wmiApSrv; C:\WINDOWS\system32\wbem\WmiApSrv.exe [201728 2014-10-29] (Microsoft Corporation)
S3 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1478144 2014-10-29] (Microsoft Corporation)
S3 workfolderssvc; C:\WINDOWS\system32\workfolderssvc.dll [1673728 2016-02-03] (Microsoft Corporation)
S3 WPCSvc; C:\WINDOWS\System32\wpcsvc.dll [12288 2014-10-29] (Microsoft Corporation)
S3 WPCSvc; C:\WINDOWS\SysWOW64\wpcsvc.dll [10240 2014-10-29] (Microsoft Corporation)
S3 WPDBusEnum; C:\WINDOWS\system32\wpdbusenum.dll [87040 2016-07-09] (Microsoft Corporation)
R2 wscsvc; C:\WINDOWS\System32\wscsvc.dll [146944 2016-01-06] (Microsoft Corporation)
R2 WSearch; C:\WINDOWS\system32\SearchIndexer.exe [903168 2015-04-01] (Microsoft Corporation)
R2 WSearch; C:\WINDOWS\SysWOW64\SearchIndexer.exe [710144 2015-04-01] (Microsoft Corporation)
S3 WSService; C:\WINDOWS\System32\WSService.dll [3460472 2014-10-29] (Microsoft Corporation)
S3 wuauserv; C:\WINDOWS\system32\wuaueng.dll [3667968 2016-05-13] (Microsoft Corporation)
S3 wudfsvc; C:\WINDOWS\System32\WUDFSvc.dll [104960 2014-10-29] (Microsoft Corporation)
S3 WwanSvc; C:\WINDOWS\System32\wwansvc.dll [513536 2014-10-29] (Microsoft Corporation)
R2 ZAMSvc; C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [14522512 2017-04-03] (Copyright 2017.)
S3 COMSysApp; %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 amdacpksd; C:\WINDOWS\system32\drivers\amdacpksd.sys [305544 2017-05-22] (Advanced Micro Devices)
S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
S3 ASPI; C:\WINDOWS\SysWOW64\DRIVERS\ASPI32.sys [84832 2002-07-17] (Adaptec) [Datei ist nicht signiert]
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWB6.sys [118848 2016-08-09] (Advanced Micro Devices)
S2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [303616 2014-09-28] () [Datei ist nicht signiert]
S0 Avgboota; C:\WINDOWS\System32\DRIVERS\avgboota.sys [21632 2016-01-07] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\WINDOWS\System32\DRIVERS\avgdiska.sys [163072 2016-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdrivera.sys [313088 2017-02-20] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\WINDOWS\System32\DRIVERS\avgidsha.sys [267008 2016-10-05] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\WINDOWS\System32\DRIVERS\avgldx64.sys [298240 2016-11-30] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\WINDOWS\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\WINDOWS\System32\DRIVERS\avgmfx64.sys [253184 2017-04-11] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\WINDOWS\System32\DRIVERS\avgrkx64.sys [52992 2016-06-01] (AVG Technologies CZ, s.r.o.)
R0 avguniva; C:\WINDOWS\System32\DRIVERS\avguniva.sys [77056 2016-06-20] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\WINDOWS\system32\DRIVERS\avgwfpa.sys [313096 2016-08-04] (AVG Technologies CZ, s.r.o.)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2017-05-28] (BitRaider)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R1 dtsoftbus01; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [283064 2014-09-22] (Disc Soft Ltd)
R1 epp; C:\EEK\bin64\epp.sys [124552 2016-11-23] (Emsisoft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77440 2017-03-22] ()
S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2017-05-22] (LogMeIn Inc.)
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [54736 2017-04-22] ()
S3 HtcVCom32; C:\WINDOWS\system32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated) [Datei ist nicht signiert]
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-05-22] (REALiX(tm))
R3 iusb3adp; C:\WINDOWS\System32\drivers\iusb3adp.sys [37472 2017-05-22] (Intel)
S3 ladfGSS; C:\WINDOWS\system32\drivers\ladfGSS.sys [45208 2017-05-22] (Logitech Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [68384 2015-06-11] (Logitech Inc.)
S3 lgLowAudio; C:\WINDOWS\system32\drivers\lgLowAudio.sys [26264 2015-11-20] (Logitech Inc.)
S2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [35328 2014-09-28] () [Datei ist nicht signiert]
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [186304 2017-05-04] (Malwarebytes)
S3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [111544 2017-05-04] (Malwarebytes)
S3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [43968 2017-05-04] (Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [251832 2017-05-31] (Malwarebytes)
S3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [92096 2017-05-04] (Malwarebytes)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] ()
R3 rpvmsd; C:\WINDOWS\system32\drivers\rpvmsd.sys [22016 2013-07-05] (RAPOO)
R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [51736 2016-06-22] (Razer Inc)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [44144 2016-09-17] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [137840 2016-09-07] (Razer, Inc.)
R3 SaiMini; C:\WINDOWS\System32\drivers\SaiMini.sys [24152 2016-07-18] (Saitek)
R3 SaiNtBus; C:\WINDOWS\system32\drivers\SaiBus.sys [59736 2016-07-18] (Saitek)
S3 STHDA; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [551936 2013-11-20] (IDT, Inc.) [Datei ist nicht signiert]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
R1 ZAM; C:\WINDOWS\System32\drivers\zam64.sys [203680 2017-04-22] (Zemana Ltd.)
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard64.sys [203680 2017-04-22] (Zemana Ltd.)
S3 _hid_0738_1703; C:\WINDOWS\system32\DRIVERS\_hid_0738_1703.sys [210408 2016-07-18] (Saitek)
S3 _usb_0738_1703; C:\WINDOWS\System32\drivers\_usb_0738_1703.sys [46824 2016-07-18] (Saitek)
S3 dcdbas; \SystemRoot\System32\drivers\dcdbas64.sys [X]
S3 xhunter1; \??\C:\WINDOWS\xhunter1.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-31 15:50 - 2017-05-31 15:50 - 02311611 _____ C:\Users\Hardy\Downloads\cemu_1.8.0.zip
2017-05-31 15:50 - 2017-05-31 15:50 - 00000000 ____D C:\Users\Hardy\Downloads\cemu_1.8.0
2017-05-31 15:50 - 2017-05-31 15:50 - 00000000 ____D C:\Users\Hardy\Desktop\cemu_1.8.0
2017-05-30 17:42 - 2017-05-31 18:14 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\MusicBee
2017-05-30 17:32 - 2017-05-30 17:32 - 00001043 _____ C:\Users\Hardy\Desktop\MusicBee.lnk
2017-05-30 17:32 - 2017-05-30 17:32 - 00001043 _____ C:\Users\Administrator\Desktop\MusicBee.lnk
2017-05-30 17:31 - 2017-05-30 17:31 - 00000000 ____D C:\Users\Hardy\Downloads\MusicBeeSetup_3_0_Update5
2017-05-30 17:31 - 2017-05-30 17:31 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MusicBee
2017-05-30 17:31 - 2017-05-30 17:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MusicBee
2017-05-30 17:31 - 2017-05-30 17:31 - 00000000 ____D C:\Program Files (x86)\MusicBee
2017-05-30 17:24 - 2017-05-30 17:24 - 12153541 _____ C:\Users\Hardy\Downloads\MusicBeeSetup_3_0_Update5.zip
2017-05-30 17:08 - 2017-05-30 17:08 - 00000000 ____D C:\Users\Hardy\Downloads\Uya
2017-05-30 15:55 - 2017-05-30 16:32 - 134170060 _____ C:\Users\Hardy\Downloads\Uya.rar
2017-05-30 15:49 - 2017-05-30 15:49 - 00000000 ____D C:\Users\Hardy\Downloads\Nomak_-_Calm_-_2007_by_YyyF
2017-05-30 15:49 - 2017-05-30 15:49 - 00000000 ____D C:\Users\Hardy\Downloads\Fat Jon - Repaint Tomorrow (2008)
2017-05-30 15:49 - 2012-02-15 09:38 - 00000000 ____D C:\Users\Hardy\Downloads\2004. Fat Jon - Afterthought
2017-05-30 15:43 - 2017-05-30 15:44 - 88972317 _____ C:\Users\Hardy\Downloads\Fat Jon - Repaint Tomorrow (2008) .rar
2017-05-30 15:14 - 2017-05-30 15:22 - 89742404 _____ C:\Users\Hardy\Downloads\Nomak_-_Calm_-_2007_by_YyyF.rar
2017-05-30 15:13 - 2017-05-30 15:39 - 77560006 _____ C:\Users\Hardy\Downloads\2004. Fat Jon - Afterthought.rar
2017-05-29 20:51 - 2017-05-29 20:51 - 00001313 _____ C:\Users\Hardy\Desktop\mbam.txt
2017-05-29 20:51 - 2017-05-29 20:51 - 00000000 ____D C:\Program Files (x86)\ESET
2017-05-29 12:44 - 2017-05-29 12:44 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\Google
2017-05-28 16:18 - 2017-05-28 16:26 - 00000000 ____D C:\Users\Hardy\Documents\Stronghold
2017-05-28 15:12 - 2017-05-28 15:12 - 00000000 ____D C:\ProgramData\BitRaider
2017-05-28 14:57 - 2017-05-28 14:57 - 00000852 _____ C:\Users\Public\Desktop\Star Wars - The Old Republic.lnk
2017-05-27 14:12 - 2017-05-27 14:12 - 00000000 ____D C:\Users\Hardy\AppData\Local\The Lord of the Rings Online
2017-05-27 06:27 - 2017-05-27 07:13 - 00000000 ____D C:\Users\Hardy\AppData\Local\Turbine
2017-05-27 06:27 - 2017-05-27 06:27 - 00000093 _____ C:\Users\Hardy\AppData\Local\fusioncache.dat
2017-05-27 06:27 - 2017-05-27 06:27 - 00000000 ____D C:\Users\Hardy\AppData\Local\ApplicationHistory
2017-05-27 06:23 - 2017-05-27 06:23 - 00000000 ____D C:\WINDOWS\SysWOW64\URTTEMP
2017-05-26 22:57 - 2017-05-26 23:25 - 00000000 ____D C:\Users\Hardy\Documents\NCSOFT
2017-05-26 21:08 - 2017-05-28 04:28 - 00000000 ____D C:\Users\Hardy\Documents\Stronghold Crusader
2017-05-26 21:06 - 2017-05-26 21:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefly Studios
2017-05-26 21:05 - 2017-05-26 21:05 - 00001922 _____ C:\Users\Public\Desktop\Stronghold.lnk
2017-05-26 21:02 - 2017-05-26 21:03 - 116773320 _____ (Acresso Software Inc. ) C:\Users\Hardy\Downloads\Stronghold_HD_Update.exe
2017-05-26 20:58 - 2017-05-26 20:58 - 00002120 _____ C:\Users\Public\Desktop\Stronghold Crusader Extreme.lnk
2017-05-26 20:58 - 2017-05-26 20:58 - 00002064 _____ C:\Users\Public\Desktop\Stronghold Crusader.lnk
2017-05-26 20:56 - 2017-05-26 21:03 - 00000000 ____D C:\Program Files (x86)\Firefly Studios
2017-05-26 20:45 - 2017-05-26 21:01 - 150844400 _____ (Acresso Software Inc. ) C:\Users\Hardy\Downloads\Stronghold_Crusader_HD_Update.exe
2017-05-26 20:05 - 2017-05-26 23:25 - 00000000 ____D C:\Program Files (x86)\NCSOFT
2017-05-26 20:04 - 2017-05-26 23:25 - 00000000 ____D C:\Users\Hardy\AppData\Local\NCSOFT
2017-05-26 20:04 - 2017-05-26 20:04 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\NCSOFT
2017-05-26 18:02 - 2017-05-26 18:02 - 00493127 _____ C:\Users\Hardy\Desktop\Malwarebytes.txt
2017-05-26 02:11 - 2017-05-26 02:14 - 00074425 _____ C:\Users\Hardy\Downloads\Addition.txt
2017-05-26 02:06 - 2017-05-26 02:14 - 00068646 _____ C:\Users\Hardy\Downloads\FRST.txt
2017-05-26 02:05 - 2017-05-31 19:51 - 00000000 ____D C:\FRST
2017-05-26 02:02 - 2017-05-31 18:24 - 00000176 _____ C:\Users\Hardy\BullseyeCoverageError.txt
2017-05-26 02:02 - 2017-05-26 02:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2017-05-26 02:02 - 2017-05-26 02:02 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2017-05-26 02:01 - 2017-05-26 02:02 - 00000176 _____ C:\Users\Default\BullseyeCoverageError.txt
2017-05-26 01:54 - 2017-05-26 01:54 - 00184136 _____ (Emsisoft Ltd) C:\WINDOWS\system32\eamclean.exe
2017-05-26 01:54 - 2017-05-26 01:54 - 00000300 _____ C:\WINDOWS\system32\eamclean.dat
2017-05-25 22:21 - 2017-05-25 22:21 - 00000000 ____D C:\ProgramData\Emsisoft
2017-05-25 22:20 - 2017-05-26 01:53 - 00000000 ____D C:\EEK
2017-05-25 22:11 - 2017-05-25 22:11 - 00005726 _____ C:\Users\Hardy\Desktop\JRT.txt
2017-05-25 14:41 - 2017-05-25 15:16 - 00000000 ____D C:\Users\Hardy\Desktop\SICHERUNG
2017-05-25 13:50 - 2017-05-29 20:10 - 00000000 ____D C:\AdwCleaner
2017-05-24 14:36 - 2017-05-25 11:39 - 00002018 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-05-22 16:12 - 2017-05-22 16:12 - 00045680 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2017-05-22 13:31 - 2017-05-22 13:31 - 00957440 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2017-05-22 13:31 - 2017-05-22 13:31 - 00082536 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 59237256 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 46456712 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 36547976 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2017-05-22 13:29 - 2017-05-22 13:29 - 32732552 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 28797832 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 26826120 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 22739336 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 15728008 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 14318984 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 10311560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdvlk64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 09899912 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 09446336 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 08470408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdvlk32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 07955848 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2017-05-22 13:29 - 2017-05-22 13:29 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2017-05-22 13:29 - 2017-05-22 13:29 - 02527624 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 02189704 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 01032072 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00942858 _____ C:\WINDOWS\system32\amdicdxx.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00915848 _____ (AMD) C:\WINDOWS\system32\coinst_17.10.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00855432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00791456 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2017-05-22 13:29 - 2017-05-22 13:29 - 00791456 _____ C:\WINDOWS\system32\atiapfxx.blb
2017-05-22 13:29 - 2017-05-22 13:29 - 00687496 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00559984 _____ C:\WINDOWS\system32\amdmiracast.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00544136 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00543112 _____ C:\WINDOWS\system32\dgtrayicon.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00537992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00522632 _____ C:\WINDOWS\system32\GameManager64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00520072 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2017-05-22 13:29 - 2017-05-22 13:29 - 00505736 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00475016 _____ C:\WINDOWS\system32\atieah64.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00469384 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00458632 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00456584 _____ C:\WINDOWS\system32\amdhdl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00402312 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00369792 _____ C:\WINDOWS\system32\ativvaxy_gl_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00368832 _____ C:\WINDOWS\system32\ativvaxy_el_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00356744 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00351624 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00349064 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00325512 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00325316 _____ C:\WINDOWS\system32\ativvaxy_vi.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00325056 _____ C:\WINDOWS\system32\ativvaxy_vi_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00311176 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00305544 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdacpksd.sys
2017-05-22 13:29 - 2017-05-22 13:29 - 00276960 _____ C:\WINDOWS\system32\ativvaxy_stn_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00271456 _____ C:\WINDOWS\system32\ativvaxy_cz_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00269704 _____ C:\WINDOWS\system32\clinfo.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00266772 _____ C:\WINDOWS\system32\ativvaxy_FJ.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00266512 _____ C:\WINDOWS\system32\ativvaxy_FJ_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00236424 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00234292 _____ C:\WINDOWS\system32\ativvaxy_cik.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00234032 _____ C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00194952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00185600 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00185088 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00182664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00166560 _____ C:\WINDOWS\system32\amde34b.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00166560 _____ C:\WINDOWS\system32\amde34a.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00166280 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amduve64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00164960 _____ C:\WINDOWS\system32\amde40a.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00161160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00160768 _____ C:\WINDOWS\system32\ativce03.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00159112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00159072 _____ C:\WINDOWS\system32\amde31a.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00155528 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00154152 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00142216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00135560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amduve32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00128968 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00126344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00124808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00124808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00124808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00121240 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00121240 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00120368 _____ C:\WINDOWS\system32\kapp_ci.sbin
2017-05-22 13:29 - 2017-05-22 13:29 - 00114056 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00112520 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00106248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00103304 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00100832 _____ C:\WINDOWS\system32\ativce02.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00092840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00092840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00082824 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00078728 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00072072 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00068488 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00067464 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00066952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00066440 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00065416 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00060296 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00054664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00036232 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00033672 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00020360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00020360 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2017-05-22 13:28 - 2017-05-22 13:28 - 00891392 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2017-05-22 13:27 - 2017-05-22 13:27 - 72520712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2017-05-22 13:27 - 2017-05-22 13:27 - 09124224 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2017-05-22 13:27 - 2017-05-22 13:27 - 07172912 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 07096184 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 05545512 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2017-05-22 13:27 - 2017-05-22 13:27 - 03503048 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 03203584 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 03203424 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 03014144 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2017-05-22 13:27 - 2017-05-22 13:27 - 02201600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01965808 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01780616 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01591056 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01508928 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01353824 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00743960 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00727432 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00708312 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00689880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00504304 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00447720 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00445400 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00441264 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00343704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00327456 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00272712 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00253896 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00253864 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00252872 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00192976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00151784 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00134200 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00118592 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00105304 _____ C:\WINDOWS\system32\audioLibVc.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00084616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00037472 _____ (Intel) C:\WINDOWS\system32\Drivers\iusb3adp.sys
2017-05-22 13:27 - 2017-05-22 13:27 - 00023688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2017-05-22 13:26 - 2017-05-22 13:26 - 03569816 _____ (Logitech Inc.) C:\WINDOWS\system32\RenderAPO.dll
2017-05-22 13:26 - 2017-05-22 13:26 - 02121056 _____ (Logitech Inc.) C:\WINDOWS\system32\CaptureAPO.dll
2017-05-22 13:26 - 2017-05-22 13:26 - 00045208 _____ (Logitech Inc.) C:\WINDOWS\system32\Drivers\ladfGSS.sys
2017-05-22 13:25 - 2017-05-22 13:25 - 00204920 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2017-05-22 13:14 - 2017-05-22 13:14 - 00000000 ____D C:\WINDOWS\IObit
2017-05-22 13:13 - 2017-05-22 13:13 - 00027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2017-05-20 19:39 - 2017-05-20 19:39 - 29719936 _____ C:\Users\Hardy\Downloads\SWTOR_setup.exe
2017-05-20 01:38 - 2017-05-20 01:38 - 00000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2017-05-20 01:38 - 2017-05-20 01:38 - 00000000 ____D C:\Users\Hardy\AppData\LocalLow\IObit
2017-05-20 01:38 - 2017-05-20 01:38 - 00000000 ____D C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}
2017-05-20 01:37 - 2017-05-25 13:59 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\IObit
2017-05-20 01:31 - 2017-05-25 14:30 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\GlarySoft
2017-05-20 01:31 - 2017-05-20 01:31 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\DiskDefrag
2017-05-20 01:29 - 2017-05-20 01:29 - 16788744 _____ C:\Users\Hardy\Downloads\gu5setup.exe
2017-05-20 01:26 - 2017-05-26 17:07 - 00000000 ____D C:\Users\Hardy\Desktop\NÜTZLICH
2017-05-20 01:15 - 2017-05-20 01:15 - 00002784 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-05-20 01:15 - 2017-05-20 01:15 - 00000000 ____D C:\Program Files\CCleaner
2017-05-19 18:49 - 2017-05-19 18:49 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\com.playa-games.sfgame
2017-05-08 13:16 - 2017-05-08 13:16 - 00000000 ____D C:\Program Files (x86)\5910538D_jumpeasy
2017-05-04 14:46 - 2017-05-05 15:39 - 00000000 ____D C:\Users\Hardy\Downloads\The Legend of Zelda Breath of the Wild
2017-05-04 14:36 - 2017-05-04 14:36 - 00028354 _____ C:\Users\Hardy\Downloads\11780F9C79BB903471A7A96E4F8D2A973E604FD0.torrent
2017-05-04 10:40 - 2017-05-04 10:40 - 00000000 ____D C:\Users\Public\Documents\Google
2017-05-04 08:52 - 2017-05-04 08:52 - 00000000 ____D C:\Users\Hardy\Desktop\2912eb2f
2017-05-04 08:51 - 2017-05-04 08:51 - 06572885 _____ C:\Users\Hardy\Desktop\2912eb2f.7z
2017-05-03 20:25 - 2017-05-03 20:25 - 00002272 _____ C:\Users\Hardy\Desktop\Andi-Circus_anküdnigung.wlmp
2017-05-03 20:20 - 2017-05-03 14:24 - 32413449 ____N C:\Users\Hardy\Desktop\VID-20170503-WA0004.mp4
2017-05-03 15:32 - 2017-05-03 15:32 - 00000000 ____D C:\Users\Hardy\Desktop\BOTW STUFF
2017-05-03 15:31 - 2017-05-03 15:32 - 11333777 _____ C:\Users\Hardy\Desktop\BOTW STUFF.rar
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-31 19:52 - 2017-04-22 00:47 - 00068021 _____ C:\WINDOWS\ZAM.krnl.trace
2017-05-31 19:52 - 2017-04-22 00:47 - 00039717 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2017-05-31 18:36 - 2016-12-09 10:01 - 00003600 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2017-05-31 18:26 - 2015-01-02 04:14 - 00000000 ____D C:\Users\Hardy\AppData\Local\LogMeIn Hamachi
2017-05-31 18:26 - 2014-09-19 04:40 - 00000000 ___DO C:\Users\Hardy\OneDrive.old
2017-05-31 18:24 - 2017-04-22 00:49 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-05-31 18:24 - 2014-12-21 16:18 - 00000000 ____D C:\Users\Hardy\AppData\Local\HTC MediaHub
2017-05-31 18:21 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-05-31 18:20 - 2016-09-25 21:14 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2017-05-31 18:20 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2017-05-31 17:52 - 2014-08-18 01:58 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\vlc
2017-05-31 15:36 - 2015-02-06 10:18 - 00003862 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1423210713
2017-05-31 15:36 - 2015-02-06 10:18 - 00000000 ____D C:\Program Files (x86)\Opera
2017-05-31 12:00 - 2015-06-28 14:20 - 00000000 ____D C:\ProgramData\MFAData
2017-05-31 03:08 - 2014-08-15 22:39 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2570889560-1274126736-4133381010-1001
2017-05-31 02:00 - 2014-09-25 20:25 - 00000000 ____D C:\Users\Hardy\AppData\Local\Adobe
2017-05-31 01:10 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf
2017-05-31 01:03 - 2014-03-18 12:03 - 02008172 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-31 01:03 - 2014-03-18 11:25 - 00851332 _____ C:\WINDOWS\system32\perfh007.dat
2017-05-31 01:03 - 2014-03-18 11:25 - 00195966 _____ C:\WINDOWS\system32\perfc007.dat
2017-05-29 20:11 - 2012-11-19 17:50 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-05-29 19:56 - 2017-02-24 13:38 - 00000000 ____D C:\Program Files\Gigabyte
2017-05-29 19:56 - 2017-02-24 13:35 - 00000000 ____D C:\Program Files (x86)\GIGABYTE
2017-05-29 19:54 - 2014-08-18 02:50 - 00000000 ____D C:\Program Files (x86)\Steam
2017-05-29 19:53 - 2015-05-30 03:21 - 00000000 ____D C:\Users\Hardy\AppData\Local\Ubisoft Game Launcher
2017-05-29 19:51 - 2014-09-03 17:38 - 00000000 ____D C:\Users\Hardy\AppData\Local\Battle.net
2017-05-29 19:49 - 2014-09-03 17:38 - 00000000 ____D C:\Program Files (x86)\Battle.net
2017-05-29 19:47 - 2015-04-17 22:26 - 00000000 ____D C:\Program Files\Rockstar Games
2017-05-29 19:47 - 2015-04-15 16:54 - 00000000 ____D C:\Users\Hardy\AppData\Local\Rockstar Games
2017-05-29 17:49 - 2016-11-11 14:10 - 00000000 ____D C:\ProgramData\Avg
2017-05-29 17:49 - 2015-06-28 14:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2017-05-29 17:49 - 2015-06-28 14:23 - 00000000 ____D C:\Program Files (x86)\AVG
2017-05-29 07:13 - 2017-02-24 13:59 - 00026192 _____ (Windows (R) Server 2003 DDK provider) C:\WINDOWS\gdrv.sys
2017-05-28 14:57 - 2014-11-14 00:14 - 00000000 ____D C:\Games
2017-05-28 12:02 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2017-05-27 22:47 - 2014-08-16 13:27 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\TS3Client
2017-05-27 21:20 - 2015-09-20 17:50 - 00003158 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForHardy
2017-05-27 21:20 - 2015-09-20 17:50 - 00000344 _____ C:\WINDOWS\Tasks\HPCeeScheduleForHardy.job
2017-05-27 13:56 - 2017-04-26 09:03 - 00000000 ____D C:\Program Files\MK
2017-05-27 13:56 - 2017-04-21 11:44 - 00000000 ____D C:\Program Files (x86)\Cludeing
2017-05-27 06:32 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Registration
2017-05-27 06:26 - 2014-09-19 03:58 - 02008488 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2017-05-27 00:36 - 2014-09-03 17:39 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2017-05-26 23:39 - 2016-12-18 23:58 - 00000000 ____D C:\Program Files (x86)\Zenimax Online
2017-05-26 23:39 - 2014-09-19 04:00 - 00000000 ____D C:\Users\Hardy
2017-05-26 16:59 - 2016-07-19 13:01 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2017-05-26 16:59 - 2016-07-19 13:01 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2017-05-26 16:57 - 2017-04-30 18:25 - 00002300 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-05-26 02:02 - 2017-03-11 14:38 - 00000940 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2017-05-25 14:50 - 2016-11-21 14:12 - 00000000 ____D C:\Program Files (x86)\Uplink
2017-05-25 14:47 - 2015-08-22 00:15 - 00000000 ____D C:\Users\Hardy\AppData\Local\Unity
2017-05-25 14:42 - 2015-05-30 17:08 - 00000000 ____D C:\GOG Games
2017-05-25 14:32 - 2016-11-22 05:30 - 00000000 ____D C:\Program Files (x86)\Onlink
2017-05-25 14:29 - 2014-09-26 03:57 - 00000000 ____D C:\Program Files (x86)\FreeTime
2017-05-25 14:28 - 2012-11-19 17:56 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2017-05-25 14:28 - 2012-11-19 17:56 - 00000000 ____D C:\Program Files (x86)\CyberLink
2017-05-25 14:25 - 2014-08-18 23:42 - 00000000 ____D C:\Program Files\Common Files\Apple
2017-05-25 14:24 - 2012-11-19 17:58 - 00000000 ____D C:\ProgramData\Apple
2017-05-25 14:20 - 2017-02-23 18:08 - 00000082 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2017-05-25 14:20 - 2016-01-30 17:27 - 00000000 ____D C:\Program Files (x86)\Anker Precision Laser Gaming Mouse
2017-05-25 14:18 - 2014-09-25 20:29 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-05-25 14:18 - 2014-08-15 22:33 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\Adobe
2017-05-25 14:17 - 2015-08-03 14:40 - 00000000 ____D C:\Program Files (x86)\4Musics OGG to MP3 Converter
2017-05-25 14:09 - 2014-12-28 21:24 - 00000000 ____D C:\Program Files (x86)\IObit
2017-05-25 14:06 - 2017-04-22 02:32 - 00000000 ____D C:\WINDOWS\Update
2017-05-25 13:59 - 2014-12-28 21:24 - 00000000 ____D C:\ProgramData\IObit
2017-05-25 11:44 - 2017-04-30 18:25 - 00002258 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-25 11:40 - 2016-09-23 12:01 - 00000000 ____D C:\Users\Hardy\AppData\LocalLow\Mozilla
2017-05-24 15:11 - 2014-09-19 04:37 - 00001456 _____ C:\Users\Hardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-05-24 14:37 - 2014-09-19 03:54 - 00000000 ____D C:\ProgramData\Package Cache
2017-05-22 19:16 - 2013-04-08 22:25 - 00000000 ____D C:\Users\Hardy\Documents\My Games
2017-05-22 17:58 - 2017-03-18 15:31 - 00000000 ____D C:\WINDOWS\LastGood
2017-05-22 13:29 - 2017-03-10 23:34 - 00161344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2017-05-22 13:29 - 2017-03-10 23:33 - 00768392 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2017-05-22 13:29 - 2017-03-10 23:33 - 00543112 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2017-05-22 13:29 - 2017-03-10 23:32 - 14413536 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2017-05-22 13:29 - 2017-03-10 23:32 - 10088520 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2017-05-22 13:29 - 2017-03-10 23:32 - 01507720 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2017-05-22 13:29 - 2017-03-10 23:32 - 01032072 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2017-05-22 13:29 - 2017-02-10 16:23 - 07663888 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2017-05-22 13:29 - 2017-02-10 16:23 - 01342784 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2017-05-22 13:29 - 2017-02-10 16:23 - 00143864 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2017-05-22 13:29 - 2017-02-10 16:22 - 13254256 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2017-05-22 13:29 - 2016-10-05 04:20 - 00207760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2017-05-22 13:29 - 2016-10-05 04:19 - 12139760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2017-05-22 13:29 - 2016-10-05 04:19 - 01649736 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2017-05-22 13:28 - 2017-02-24 10:23 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-05-22 13:09 - 2016-10-08 13:55 - 00000000 ____D C:\Users\Hardy\Desktop\DESKTOP-LAN2
2017-05-22 13:09 - 2016-05-05 02:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch
2017-05-22 13:09 - 2016-03-21 20:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Life Is Strange
2017-05-22 13:09 - 2015-03-17 03:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Online
2017-05-22 13:09 - 2014-09-19 04:50 - 00000000 ___DC C:\WINDOWS\Panther
2017-05-21 18:37 - 2017-04-23 16:45 - 00000000 ____D C:\Users\Hardy\.litwrl
2017-05-20 23:31 - 2014-08-24 00:24 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\Skype
2017-05-20 01:51 - 2014-09-22 19:38 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\DAEMON Tools Lite
2017-05-20 01:49 - 2015-01-13 16:33 - 00000000 ____D C:\WINDOWS\Minidump
2017-05-19 16:18 - 2014-08-15 22:28 - 00000000 ____D C:\Users\Hardy\AppData\Local\Packages
2017-05-19 16:18 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-05-19 15:57 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2017-05-19 15:28 - 2014-09-19 04:00 - 00000000 ____D C:\Users\Administrator
2017-05-11 11:19 - 2016-09-23 07:52 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-05-11 11:19 - 2014-08-15 01:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-09 21:54 - 2016-04-08 03:54 - 00004474 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-05-09 21:54 - 2014-12-12 02:37 - 00004342 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-05-09 21:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-05-09 21:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-05-09 17:02 - 2015-09-11 15:08 - 00000000 ____D C:\Users\Hardy\AppData\Local\ElevatedDiagnostics
2017-05-08 21:24 - 2017-04-21 13:51 - 00001267 _____ C:\Users\Hardy\Desktop\nativelog.txt
2017-05-08 21:24 - 2017-04-21 09:30 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\.minecraft
2017-05-08 17:42 - 2017-04-30 19:09 - 00000000 ____D C:\Users\Hardy\Desktop\cemu_1.7.5
2017-05-08 17:42 - 2017-01-16 14:31 - 00000000 ____D C:\Users\Hardy\Desktop\cemu_1.7.2
2017-05-04 08:23 - 2017-04-22 00:50 - 00186304 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-05-04 08:20 - 2017-04-22 00:50 - 00111544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-05-04 08:20 - 2017-04-22 00:50 - 00092096 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-05-04 08:20 - 2017-04-22 00:50 - 00043968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2017-05-27 06:27 - 2017-05-27 06:27 - 0000093 _____ () C:\Users\Hardy\AppData\Local\fusioncache.dat
2014-09-25 21:23 - 2014-12-21 19:22 - 0001480 _____ () C:\Users\Hardy\AppData\Local\RecConfig.xml
2017-02-24 10:23 - 2017-02-24 10:23 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-08-15 22:32 - 2014-08-15 22:32 - 0000141 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
2015-03-04 04:29 - 2015-03-04 04:29 - 0000040 _____ () C:\ProgramData\ra3.ini
Einige Dateien in TEMP:
====================
2017-05-31 18:24 - 2017-05-31 18:24 - 0010520 _____ () C:\Users\Hardy\AppData\Local\Temp\BullseyeCoverage-x86-3.dll
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-05-31 03:08
==================== Ende von FRST.txt ============================
|
|
31.05.2017, 18:57
| #27 |
| | Browser-Hijacker(?) will nicht verschwinden Addition: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 31-05-2017
durchgeführt von Hardy (31-05-2017 19:53:27)
Gestartet von C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug
Windows 8.1 (Update) (X64) (2014-09-19 02:37:11)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2570889560-1274126736-4133381010-500 - Administrator - Enabled) => C:\Users\Administrator
ASPNET (S-1-5-21-2570889560-1274126736-4133381010-1002 - Limited - Enabled)
Gast (S-1-5-21-2570889560-1274126736-4133381010-501 - Limited - Disabled)
Hardy (S-1-5-21-2570889560-1274126736-4133381010-1001 - Administrator - Enabled) => C:\Users\Hardy
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.34 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0934-000001000000}) (Version: 9.34.00.0 - Igor Pavlov)
ACP Application (Version: 2017.0310.1613.49 - Advanced Micro Devices, Inc.) Hidden
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Adobe Flash Player 25 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
AVG (Version: 16.151.8013 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4776 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.151.8013 - AVG Technologies)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.7.452 - AVG Technologies)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB)
BattlEye Uninstall (HKLM-x32\...\BattlEye for A1) (Version: - )
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.6.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon MG2500 series Benutzerregistrierung (HKLM-x32\...\Canon MG2500 series Benutzerregistrierung) (Version: - *Canon Inc.)
Canon MG2500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2500_series) (Version: 1.00 - Canon Inc.)
Canon MG2500 series On-screen Manual (HKLM-x32\...\Canon MG2500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 2.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 2.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.2.1 - Canon Inc.)
Catalyst Control Center Next Localization BR (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.30 - Piriform)
Connected Music powered by Universal Music Group version 1.0 (HKLM-x32\...\{46037DC7-F927-46DF-935F-D6F122BDD34B}_is1) (Version: 1.0 - Snowite)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.1916 - CyberLink Corp.)
CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}) (Version: 2.0.1.3109 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.1.1902 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.1.1925 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.1.4319 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Darksiders II Deathinitive Edition (HKLM\...\Steam App 388410) (Version: - Gunfire Games)
Desura (HKLM-x32\...\Desura) (Version: 100.57 - Desura)
Desura: Project Zomboid (HKLM-x32\...\Desura_62350040236064) (Version: Alpha - The Indie Stone)
Discord (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
doubleTwist Sync (HKLM-x32\...\doubleTwist) (Version: 4.0.3.0 - doubleTwist Corporation)
Dragon Age Redesigned© (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned©) (Version: - )
Dragon Age Redesigned© Leliana (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned© Leliana) (Version: - )
Dragon Age Redesigned© Sten (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned© Sten) (Version: - )
Dragon Age Redesigned© Wynne (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned© Wynne) (Version: - )
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.12 - Electronic Arts)
EAX4 Unified Redist (HKLM-x32\...\{89661B04-C646-4412-B6D3-5E19F02F1F37}) (Version: 4.001 - Creative Labs)
Else Heart Break (HKLM-x32\...\RWxzZUhlYXJ0QnJlYWs=_is1) (Version: 1 - )
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
FMW 1 (Version: 1.202.1 - AVG Technologies) Hidden
Garry's Mod (HKLM\...\Steam App 4000) (Version: - Facepunch Studios)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
HitFilm 4 Express (HKLM\...\{F8BB3662-69A1-4EF1-8674-ADD90AAD3D08}) (Version: 4.0.5723.10801 - FXHOME)
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.18.284 - SurfRight B.V.)
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: v1.0 - Meridian Audio Ltd)
HP Connected Remote (HKLM-x32\...\{F243A34B-AB7F-4065-B770-B85B767C247C}) (Version: 1.0.1206 - Hewlett-Packard)
HP Registration Service (HKLM\...\{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}) (Version: 1.0.5976.4186 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{4780AF24-213D-4187-86F2-0014A6D6077B}) (Version: 8.4.14.41 - HP Inc.)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{AAE126B3-95C5-49E1-A590-7B5F6EDC7D60}) (Version: 12.6.14.19 - HP Inc.)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.16.0.001 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.54.2 - HTC)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6418.0 - IDT)
Impulse (HKLM-x32\...\Impulse) (Version: 1.0 - Stardock)
Impulse (x32 Version: 1.0 - Stardock Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.38 - Intel(R) Corporation) Hidden
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
iTunes (HKLM\...\{554C62C7-E6BB-40F1-892B-F0AE02D3C135}) (Version: 12.5.3.17 - Apple Inc.)
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Logitech Gaming Software 8.76 (HKLM\...\Logitech Gaming Software) (Version: 8.76.155 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.578 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.578 - LogMeIn, Inc.) Hidden
Malwarebytes Version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{86CE1746-9EFF-3C9C-8755-81EA8903AC34}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MusicBee 3.0 (HKLM-x32\...\MusicBee) (Version: 3.0 - Steven Mayall)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.13 - Black Tree Gaming)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Opera Stable 45.0.2552.888 (HKLM-x32\...\Opera 45.0.2552.888) (Version: 45.0.2552.888 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.4.7.34767 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version: - )
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5875) (Version: - )
Pepakura Designer 3 (HKLM-x32\...\pepakura_designer3en) (Version: - TamaSoftware)
Pepakura Viewer 3 (HKLM-x32\...\pepakura_viewer3en) (Version: - TamaSoftware)
Pesgalaxy.com Patch 2016 (HKLM-x32\...\Pesgalaxy.com Patch 2016 3.00 Part 1) (Version: 3.00 Part 1 - Pesgalaxy)
Pesgalaxy.com Patch 2016 (HKLM-x32\...\Pesgalaxy.com Patch 2016 3.00 Part 2) (Version: 3.00 Part 2 - Pesgalaxy)
Pesgalaxy.com Patch 2016 (HKLM-x32\...\Pesgalaxy.com Patch 2016 3.01) (Version: 3.01 - Pesgalaxy)
Pesgalaxy.com Patch 2016 DLC Installer (HKLM-x32\...\Pesgalaxy.com Patch 2016 DLC Installer 4.00) (Version: 4.00 - Pesgalaxy)
PlayClaw 5 fast codec (HKLM-x32\...\PlayClaw 5 fast codec_is1) (Version: 5 - )
PSE12 STI Installer (HKLM-x32\...\{11F9A376-342F-4297-82DA-1F6EA8ED4B6B}) (Version: 12.0 - Adobe Systems Incorporated)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Python 3.5.2 (32-bit) (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\{cf72a2ab-2f1d-49fd-a0d7-1065e6357e1e}) (Version: 3.5.2150.0 - Python Software Foundation)
Python 3.5.2 Add to Path (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Core Interpreter (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Development Libraries (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Documentation (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Executables (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 pip Bootstrap (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Standard Library (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Tcl/Tk Support (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Test Suite (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Utility Scripts (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{963ECCDD-F09F-4C24-9367-8B5D748AA7C8}) (Version: 3.5.2121.0 - Python Software Foundation)
RadeonPro 1.0 (Build 1.1.1.0) (HKLM-x32\...\RadeonPro_is1) (Version: - )
Rapoo V700 – Gaming-Tastaturtreiber v1.0.2 (HKLM-x32\...\{DF34A259-1224-4130-92AC-0C660A331C60}_is1) (Version: - Rapoo, Inc.)
Raptr (HKLM-x32\...\Raptr) (Version: 5.2.7-r116720-release - Raptr, Inc)
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 1.10.6 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.1104 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.38.115.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.0.5530 - CyberLink Corp.) Hidden
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.4 - Rockstar Games)
Shakes and Fidget (HKLM\...\Steam App 438040) (Version: - Playa Games GmbH)
SimpleRockets (HKLM\...\Steam App 343090) (Version: - Jundroo, LLC)
Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
SleepTimer Ultimate 1.2 (HKLM-x32\...\{0EE56463-49B2-45E1-B74F-3E0139DBC986}_is1) (Version: - Christian Handorf)
Source SDK Base 2007 (HKLM-x32\...\Steam App 218) (Version: - Valve)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 12.0.0.14 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Starbound (HKLM\...\Steam App 211820) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Stronghold Crusader HD (HKLM-x32\...\{8C3727F2-8E37-49E4-820C-03B1677F53B6}) (Version: 1.30.0004 - Firefly Studios)
Stronghold HD (HKLM-x32\...\{C917BA70-28A3-4C74-B163-41FD8C8E1A5A}) (Version: 1.30.0004 - Firefly Studios)
Super Hexagon (HKLM-x32\...\Steam App 221640) (Version: - Terry Cavanagh)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamSpeak 3 Client (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Lord of the Rings Online™ (HKLM\...\Steam App 212500) (Version: - Standing Stone Games, LLC)
The Lord of the Rings Online™ v03.08.00.8029 (HKLM-x32\...\12bbe590-c890-11d9-9669-0800200c9a66_is1) (Version: 03.08.00.8029 - Turbine, Inc.)
Uplay (HKLM-x32\...\Uplay) (Version: 24.0.1 - Ubisoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Vulkan Run Time Libraries 1.0.17.0 (HKLM\...\VulkanRT1.0.17.0-4) (Version: 1.0.17.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.17.0 (Version: 1.0.17.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.21.0 (HKLM\...\VulkanRT1.0.21.0) (Version: 1.0.21.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0-3) (Version: 1.0.26.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.26.0 (Version: 1.0.26.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1) (Version: 1.0.3.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0-2) (Version: 1.0.37.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.37.0 (Version: 1.0.37.0 - LunarG, Inc.) Hidden
WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Xvid 1.2.2 final uninstall (HKLM-x32\...\Xvid_is1) (Version: 1.2 - Xvid team (Koepi))
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.72.0.388 - Zemana Ltd.)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {078BE576-665C-4D19-BAA3-D522648B1CA7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {13E383F6-B101-42BF-AF09-259B5FCB9AAB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {14B9AED9-807E-4020-ACFF-FCE51941655E} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-2570889560-1274126736-4133381010-1001
Task: {203E5BC8-6D64-48F1-84C2-955C09555B0A} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe
Task: {29AE46DB-66BB-4FD1-A023-F038A59A3E44} - System32\Tasks\{8BB75C14-B60E-4A85-A7B4-A980300AB2F1} => pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=deDE --uid=prometheus --displayname="Overwatch"
Task: {2E194BE3-52F0-4FA4-B248-0795D9AE450A} - System32\Tasks\HPCeeScheduleForHardy => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-05-12] (HP Development Company, L.P.)
Task: {314EC76A-099F-42B6-BAC6-F13B2F3B636A} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-bll-fan@hotmail.de => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-12-15] (Adobe Systems Incorporated)
Task: {32A6BC06-B5FC-4A14-9BDC-BCB925575EDD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {348CBB87-8874-484E-A6C5-5D0FB3022A9E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {35C1B9E5-C76F-482D-97D0-CD320F84E246} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [2017-04-07] (HP Inc.)
Task: {47154059-6C19-4DD1-8918-58034F17AC63} - System32\Tasks\Opera scheduled Autoupdate 1423210713 => C:\Program Files (x86)\Opera\launcher.exe [2017-05-31] (Opera Software)
Task: {4BE63108-51AB-4EC8-8273-C845E33E44AC} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {5E8CA500-3AFB-4E4A-B862-AF4D62DB8D98} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\WINDOWS\system32\mrt.exe [2017-02-24] (Microsoft Corporation)
Task: {66BA70BF-BCE2-4E66-954A-C7FCB67D2FA2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2016-12-15] (HP Inc.)
Task: {94D5227E-87C5-45F6-B798-991534C89458} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {9E9F3E3A-F03E-4ACB-A129-FD13E2F7E76E} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2017-03-10] (Advanced Micro Devices, Inc.)
Task: {A8AD002C-6AFB-4D7A-8DAC-4D98FD433F1E} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_171_pepper.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {B2083CC8-8431-46CF-BFA6-510160202BA4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {BB9E0F8A-5411-4FA3-9444-C77F6F26E335} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-05-05] (Piriform Ltd)
Task: {C1CF008C-4079-4B01-977B-57E4E41959EC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {E4FFACE1-97ED-4C24-AE62-ED74A919E749} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {FE924C14-61AD-4BB9-ACD3-597C28A895AD} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-10] (Oracle Corporation)
Task: {FEA440CF-D189-4C33-9515-8594B427572B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {FF516BB4-84C2-4C9C-A6AD-7F70B24F64BF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-04-06] (HP Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\HPCeeScheduleForHardy.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2016-09-13 01:34 - 2016-09-13 01:34 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2016-09-13 01:34 - 2016-09-13 01:34 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-09-13 01:34 - 2016-09-13 01:34 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2016-09-13 01:34 - 2016-09-13 01:34 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2016-09-13 01:34 - 2016-09-13 01:34 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2016-09-13 01:34 - 2016-09-13 01:34 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-09-13 01:34 - 2016-09-13 01:34 - 00191488 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2012-12-07 19:27 - 2012-12-07 19:27 - 00167424 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2016-09-25 01:20 - 2016-09-25 01:21 - 00189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2015-07-14 15:37 - 2015-07-14 15:37 - 00821240 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
2017-05-31 18:24 - 2017-05-31 18:24 - 00012080 _____ () C:\WINDOWS\TEMP\BullseyeCoverage-x64-3.dll
2017-04-22 00:49 - 2017-03-22 10:24 - 02271520 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2015-11-20 23:41 - 2015-11-20 23:41 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2015-11-20 23:41 - 2015-11-20 23:41 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2014-12-18 16:06 - 2014-12-18 16:06 - 00031080 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2015-07-14 15:35 - 2015-07-14 15:35 - 00607016 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2014-12-18 16:09 - 2014-12-18 16:09 - 00059752 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2014-12-18 16:08 - 2014-12-18 16:08 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2014-12-18 16:09 - 2014-12-18 16:09 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2014-12-18 16:11 - 2014-12-18 16:11 - 00129376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2014-12-18 16:14 - 2014-12-18 16:14 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2017-05-31 18:24 - 2017-05-31 18:24 - 00010520 _____ () C:\Users\Hardy\AppData\Local\Temp\BullseyeCoverage-x86-3.dll
2016-12-09 10:01 - 2016-12-09 10:01 - 48920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
2017-05-31 15:36 - 2017-05-31 15:35 - 66272856 _____ () C:\Program Files (x86)\Opera\45.0.2552.888\opera_browser.dll
2017-05-31 15:35 - 2017-05-31 15:35 - 02926680 _____ () C:\Program Files (x86)\Opera\45.0.2552.888\libglesv2.dll
2017-05-31 15:35 - 2017-05-31 15:35 - 00088152 _____ () C:\Program Files (x86)\Opera\45.0.2552.888\libegl.dll
2017-04-18 23:09 - 2017-04-18 23:09 - 00101888 _____ () C:\Program Files (x86)\MusicBee\MusicBeeBass.dll
2017-05-25 13:50 - 2017-05-25 13:50 - 04110280 _____ () C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug\adwcleaner_6.047.exe
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Hardy:Heroes & Generals [38]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 15:25 - 2017-04-22 02:07 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Hardy\Desktop\jungler.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk"
HKLM\...\StartupApproved\Run: => "BeatsOSDApp"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp"
HKLM\...\StartupApproved\Run: => "ZAM"
HKLM\...\StartupApproved\Run32: => "CLVirtualDrive"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKLM\...\StartupApproved\Run32: => "PlaysTV"
HKLM\...\StartupApproved\Run32: => "Raptr"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "Raptr"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "NetLimiter"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [UDP Query User{000E0B09-7650-45C9-9BCA-FC4759BDF18C}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [TCP Query User{4F448818-73EB-4D0D-994F-A41283B58C72}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [{A956525B-9B0C-4BA3-A2DC-A25AC9A301C3}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{A3AC0145-B595-46CD-9C15-B257524BE888}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [UDP Query User{079C4395-3551-4717-9961-F50BDCE7A088}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{17CA77CF-772C-4A8F-A7AA-0789CA54FD6C}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{EC380FAC-E967-467E-A2C4-6ADBB14CA6D0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{2E00C8AA-1D08-4250-90EB-C4C31F5657C9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{3D4FC7BF-EA75-4ABB-BF78-E355F7141B2F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{60D49C69-2D5C-4AEC-B861-B74D6F865A0E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{FD315ABC-F5EE-4514-887E-41B42E5D0C67}] => (Allow) LPort=1900
FirewallRules: [{9EFEEAC8-CE72-49D0-93EA-18D3FAE94F0D}] => (Allow) LPort=2869
FirewallRules: [{3FB0E27B-00FF-459B-BC23-EFBF85EFE0A3}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{ADA0AFD0-1AB4-4748-9C96-4CA75573E372}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{6A303ADE-92E4-41CA-AC18-FEA684500C8A}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{9B77ADBC-39A9-4A48-8F68-EC62BA21216F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{156F2AF8-0DE8-43A6-90EA-CC24464BFB14}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{603909EB-1CEC-40E6-9C99-C237A8B3A285}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{DB8F831E-A282-47CD-B9B6-09377E69A393}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{B97A7C9C-C041-453A-A503-FDFB9F17F8E3}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [UDP Query User{0FCA91FE-D278-49CF-8E4C-A1E048EA8F12}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [TCP Query User{7E37C4AC-CCE9-4CAB-AE2A-A88621B4ADB2}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{C06F8E6D-F96F-42C7-A3A5-AA64AE5A50D4}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{419C9BE9-4320-468E-992B-2ACDE2E26FA5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base 2007\hl2.exe
FirewallRules: [{0AC47B96-5B8B-48F8-AFBC-2C027F00614B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base 2007\hl2.exe
FirewallRules: [TCP Query User{842C3416-6776-47F0-8175-F22DB66BB120}C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe] => (Allow) C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe
FirewallRules: [UDP Query User{D1973CBC-2C65-4685-AE61-FE5E178D8E74}C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe] => (Allow) C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe
FirewallRules: [{B810ADBE-50BE-41CC-9A50-E0E869263EC1}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{378D2C56-E7E5-4648-AAC6-031E9989F0E6}] => (Allow) C:\Users\Hardy\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5A269248-72A7-4CEC-8CA7-44327B01FD3E}] => (Allow) C:\Users\Hardy\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{83D4532D-433B-4B99-B685-59C6BC93EB9E}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{FC66CB7E-BA44-488D-9587-A47C95FCB514}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{12BACD40-2806-4305-A894-4BFD1F3C94CB}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{45A5E548-46E9-4105-A970-EEA1EC482897}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{9C10FDB7-3937-4238-884C-354BC765317A}] => (Block) %SystemDrive%\Games\Hotline Miami\HotlineMiami.exe
FirewallRules: [TCP Query User{1DDA251D-2A95-475F-92E9-A7959BB8420C}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [UDP Query User{D18BB324-F614-4182-8709-0D8442D8F642}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [{451BEE54-1AC5-413F-A4D1-D34DEBD0FC1F}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{4E60CBAD-06B7-4498-A2C0-AFC4672613A7}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{FF41D876-7066-48CB-AF82-797E08548954}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{0C56D103-F9DA-47BD-A1EF-DFB2630A6995}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{17FC8841-ECB6-4657-B27E-92841F40FB90}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C34FB1E8-062B-4DBA-8294-1618B66186B9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{9EFB607F-304F-4AB2-8A9C-F8821D0B380E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{9F4C8D25-9D2A-4261-8BF0-75B6F3D1814C}C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe
FirewallRules: [UDP Query User{F92FCA4F-FF43-41D2-B546-6C268FFA6CBF}C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe
FirewallRules: [TCP Query User{621EC44B-5CDD-4902-96AA-0A853C4741E1}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{82E33ACA-CD64-4EA4-A5E6-FD205A52D231}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [TCP Query User{AEB29039-D5E1-4DE8-9330-CD081603B067}C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [UDP Query User{22922129-5CE7-491F-9A8D-2D2C2E7B20E4}C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [TCP Query User{E2EE821B-E13F-45F9-9F43-F431D15917E1}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe
FirewallRules: [UDP Query User{D1F654F6-2E8F-42C2-90F6-2454B18D2EA6}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe
FirewallRules: [TCP Query User{8333E39F-F0A7-47B8-B70A-BF34B1EC0300}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe
FirewallRules: [UDP Query User{3E4B972C-B050-4F37-956A-A876085043A0}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe
FirewallRules: [TCP Query User{56CF1675-003D-461B-A526-9C5373FBB8C8}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{F3CA4507-8732-41DF-B771-B27C18A39CF6}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{D4A0E411-7EA6-4012-B3BD-39CD41CA7CC7}C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe] => (Allow) C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe
FirewallRules: [UDP Query User{932CF87E-5F9B-4678-825F-04BD97D75404}C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe] => (Allow) C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe
FirewallRules: [{EDE66CF5-2177-4E05-954C-A5A0ABC0BD5C}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{308FB2B0-D82D-4F36-91A8-9A3E335A8C1A}] => (Block) %USERPROFILE%\Desktop\Games\Hacknet.v4.049\Hacknet.exe
FirewallRules: [{8AF0B504-A498-40DB-A173-B598666213A9}] => (Block) %USERPROFILE%\Desktop\Games\Hacknet.v4.049\Hacknet.exe
FirewallRules: [{0B5F7D89-679B-4211-9F8C-AECF990B545C}] => (Block) %SystemDrive%\Games\Quadrilateral Cowboy\qc.exe
FirewallRules: [{24E11D93-49C5-4C3C-BD9C-ADFBCC15FF7A}] => (Block) %SystemDrive%\Games\Quadrilateral Cowboy\qc.exe
FirewallRules: [TCP Query User{DD7C0B59-30AB-4F67-9A43-C6FD9DF35ED9}C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe
FirewallRules: [UDP Query User{0B180169-0697-42F9-879E-BD9E5D0EB512}C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe
FirewallRules: [TCP Query User{B3E14D60-C398-44E5-A2F6-F74E583DD384}C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe
FirewallRules: [UDP Query User{06A6240C-D020-43EB-9F3B-3DFDC5814E1A}C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe
FirewallRules: [{BBAF0086-EEDF-45F4-89CC-F046B6DC0A5F}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{0A68F553-F18D-4713-A115-DFC8D5FE7F65}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{567C30C4-0BC8-4599-A2EB-CDD98E57C484}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSixGame.exe
FirewallRules: [{2F95BFAF-2FB6-4230-BF81-69154E005BC7}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSixGame.exe
FirewallRules: [{0B3EF0F2-3B26-406C-B59A-3EB160340124}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{D521F649-0F43-4D2F-A8E4-AA4571DB1A1C}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{CDF146D0-76BD-4685-9AF6-FDD072FFAA31}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{B58C29A3-492A-499A-9A84-744BA8632F1F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{04EA1C75-F817-4A64-A111-FC89832CD1E4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{96578E67-D1E7-46DC-859B-C92238486324}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{236AA833-2510-4336-8C5B-F460C9EEE5C8}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{6945EB1F-05E6-4C2E-B485-11AC54579B2D}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{D71BA33F-EA6A-49A4-84F6-891EC56A9E21}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{417405D0-6761-447E-92F8-C8F8D9632601}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [TCP Query User{92D48B66-C889-4870-A9A1-49CDE288DB81}C:\program files (x86)\unreal tournament 2004\system\ut2004.exe] => (Block) C:\program files (x86)\unreal tournament 2004\system\ut2004.exe
FirewallRules: [UDP Query User{FB890EBA-7455-4606-9DD7-5BE161477873}C:\program files (x86)\unreal tournament 2004\system\ut2004.exe] => (Block) C:\program files (x86)\unreal tournament 2004\system\ut2004.exe
FirewallRules: [{0C4B6943-37EB-45C3-BC9F-726B346EE09A}] => (Allow) LPort=53000
FirewallRules: [{AFFE5FB1-0482-48D0-811E-8EF4DD24D573}] => (Allow) LPort=52000
FirewallRules: [{0B8C7D99-62C9-49CA-AE0A-A1BD551B9D38}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [{DB86DDA1-44D8-481C-B1A1-4AE136205D11}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [{985B8896-9841-45DB-A6D8-092078B125C0}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{871568B5-1B5A-473F-A08C-E2FF22893B1C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{13E403E4-FCB2-4712-ACA5-3AF88A4CC507}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{3285D531-485A-409E-9177-C7AF06559810}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{1ADEDD41-F57D-4C0E-BCAC-0E18282AEAEE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound.exe
FirewallRules: [{29DF63D1-170B-40E2-8A0B-C9F33CDA266E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound.exe
FirewallRules: [{FAB2071B-17EA-412B-8E04-A061AE582F7C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{E31B5322-CD2D-4D3B-89BD-978479688905}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{F4831B5B-95F8-493A-8E61-927439B7E7DC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{E7572C37-6D57-4378-BE5A-D674326DEF78}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{E1ADC6CE-FB55-439C-85F8-C1113F56263D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win32\starbound.exe
FirewallRules: [{AD73812C-A874-4D11-818A-435EF9CE8AC1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win32\starbound.exe
FirewallRules: [{87DB987D-E32F-42BE-8F4D-23790043C435}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{775E2A01-DEBA-46FA-8AC1-3F78821BC3D1}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{790CEAAC-E91E-4F5B-B722-156D55422A2A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{76307A61-E3C3-43BE-884F-6D221C129EDD}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{817B7DB0-D596-4445-A8B5-21479E072A0E}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{1722850B-D263-4DC7-AA56-8F42CB8438F8}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{A3F24794-2EAC-42E1-A3CC-1B39482A95BE}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{39686367-0D8C-47B8-84B9-EF4772F05613}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [TCP Query User{B29DEBB4-A17A-4AC1-814F-33A386ED8DAB}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{E2DE3A9F-4B8A-43F4-AA64-472A1F55E809}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{EC3979B7-DFFC-443E-A275-C8FD14D65EC8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SimpleRockets\SimpleRockets.exe
FirewallRules: [{EFB89F9B-35E8-4354-B4E2-B4FAEB0D1217}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SimpleRockets\SimpleRockets.exe
FirewallRules: [TCP Query User{862BD372-C7E2-470F-96DD-8E522C571FE5}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{62804620-05F1-4789-8273-BDDED9C718F7}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{00A6BA1C-8046-4506-A8FD-0B789B92BA8B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Shakes & Fidget\Shakes and Fidget.exe
FirewallRules: [{1567F691-BD12-447F-8151-61B4A9728648}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Shakes & Fidget\Shakes and Fidget.exe
FirewallRules: [{647768C2-A4D9-49FB-8B51-E41ACFE6C3FA}] => (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{1A4B601A-299E-4A9B-83C8-D87F1611FD97}] => (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{342E1CDF-8AC0-400F-9F2F-7ADAC5C2338B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{9BB08BBD-DA50-4FFF-9B6D-DB6E2072FA07}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Darksiders II Deathinitive Edition\Darksiders2.exe
FirewallRules: [{513A0535-FCCD-484D-8684-56E565C64E6F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Darksiders II Deathinitive Edition\Darksiders2.exe
FirewallRules: [{F7EAD389-C39C-4AEA-934C-4AC417FB3344}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe
FirewallRules: [{21E80125-C403-41F5-9B74-FFD73E838A22}] => (Allow) C:\Program Files (x86)\Firefly Studios\Stronghold Crusader\Stronghold_Crusader_Extreme.exe
FirewallRules: [{BC5E572D-3694-4845-A5F8-DED9582FE6C0}] => (Allow) C:\Program Files (x86)\Firefly Studios\Stronghold Crusader\Stronghold_Crusader_Extreme.exe
FirewallRules: [{E8382C07-E291-4C36-B704-C7E5977045D2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Lord of the Rings Online\TurbineInvoker.exe
FirewallRules: [{D93FF7C4-DA16-4A85-B110-7537F24F90BA}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Lord of the Rings Online\TurbineInvoker.exe
FirewallRules: [TCP Query User{CE3E230D-692E-43C2-84E5-69BC8CADE976}C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe
FirewallRules: [UDP Query User{4B4EA590-D03B-45B3-89EE-D72F5BEC27B7}C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe
FirewallRules: [{A9348D40-E166-4252-AC79-BB41239C9952}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{F8F1F571-A378-4B10-800F-F4C7E9B3F14F}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{AB8E2998-8759-4CD6-9282-978E58091AC2}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{B1220E54-1EE7-4406-BE65-29ABD4E6320E}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{9FF809D4-A457-4F34-A285-DE92F39FA858}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation_Server\HomeCloud\HCLOUD.exe
FirewallRules: [{D8C7322F-828A-4E75-AAC7-DA5717C2DD69}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation_Server\RemoteOC\ubssrv_oc_only.exe
FirewallRules: [{F8E70079-62A0-4DA7-873E-E4CCA2E3070B}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation_Server\RemoteControl\grckm.exe
FirewallRules: [{B3523012-15D4-43B7-B257-8EF61A6F206E}] => (Allow) LPort=1980
FirewallRules: [{B3A05D41-5221-4CEA-A1FF-EB5D06D0CEE5}] => (Allow) LPort=1900
FirewallRules: [{293CB3C6-CDCA-4730-8D8E-F3D13178A20B}] => (Allow) LPort=1900
FirewallRules: [{86B4262D-C3C6-46AE-AA8D-D9B49DCCF0A1}] => (Allow) LPort=8117
FirewallRules: [{71F11BB9-3F9C-4A6F-8D8D-9CAE81F9971E}] => (Allow) C:\Program Files (x86)\Opera\45.0.2552.881\opera.exe
FirewallRules: [{E1C15878-1777-4C80-B8BE-291C98B1ED1B}] => (Allow) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
==================== Wiederherstellungspunkte =========================
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (05/31/2017 07:49:48 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/31/2017 06:32:46 PM) (Source: MsiInstaller) (EventID: 1002) (User: JAMES)
Description: Nicht erwarteter oder fehlender Wert (Name: "PackageName", Wert: "") für Schlüssel "HKLM\Software\Classes\Installer\Products\D139E7FE48CDB174D86B8A3385904547\SourceList".
Error: (05/31/2017 04:37:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: vlc.exe, Version: 2.1.5.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.18438, Zeitstempel: 0x57ae642e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000546fb
ID des fehlerhaften Prozesses: 0x3f68
Startzeit der fehlerhaften Anwendung: 0x01d2da1b591eb58b
Pfad der fehlerhaften Anwendung: C:\Program Files\VideoLAN\VLC\vlc.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: 9ac1ae1c-460e-11e7-8240-408d5c71352e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/31/2017 04:14:15 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20413 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 16f0
Startzeit: 01d2da176fdef975
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 68b348a3-460b-11e7-8240-408d5c71352e
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (05/30/2017 06:37:45 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/30/2017 05:34:54 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/30/2017 05:13:48 PM) (Source: MsiInstaller) (EventID: 1002) (User: JAMES)
Description: Nicht erwarteter oder fehlender Wert (Name: "PackageName", Wert: "") für Schlüssel "HKLM\Software\Classes\Installer\Products\D139E7FE48CDB174D86B8A3385904547\SourceList".
Error: (05/30/2017 12:48:07 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/30/2017 12:45:48 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\program files (x86)\eset\eset online scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/30/2017 12:44:54 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\users\hardy\desktop\nÜtzlich\antivir-zeug\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Systemfehler:
=============
Error: (05/31/2017 06:23:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "lirsgt" wurde aufgrund folgenden Fehlers nicht gestartet:
Die digitale Signatur dieser Datei kann nicht überprüft werden. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um böswillige Software aus einer unbekannten Quelle handelt, installiert.
Error: (05/31/2017 06:23:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "atksgt" wurde aufgrund folgenden Fehlers nicht gestartet:
Die digitale Signatur dieser Datei kann nicht überprüft werden. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um böswillige Software aus einer unbekannten Quelle handelt, installiert.
Error: (05/31/2017 06:20:32 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen:
Zugriff verweigert
Error: (05/31/2017 04:04:33 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.
Error: (05/31/2017 10:59:21 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung vom Remoteendpunkt empfangen. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40.
Error: (05/31/2017 10:59:03 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung vom Remoteendpunkt empfangen. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 70.
Error: (05/31/2017 10:38:34 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung vom Remoteendpunkt empfangen. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40.
Error: (05/31/2017 12:57:32 AM) (Source: DCOM) (EventID: 10010) (User: JAMES)
Description: Der Server "{1B1F472E-3221-4826-97DB-2C2324D389AE}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/31/2017 12:56:26 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "lirsgt" wurde aufgrund folgenden Fehlers nicht gestartet:
Die digitale Signatur dieser Datei kann nicht überprüft werden. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um böswillige Software aus einer unbekannten Quelle handelt, installiert.
Error: (05/31/2017 12:56:23 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "atksgt" wurde aufgrund folgenden Fehlers nicht gestartet:
Die digitale Signatur dieser Datei kann nicht überprüft werden. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um böswillige Software aus einer unbekannten Quelle handelt, installiert.
CodeIntegrity:
===================================
Date: 2017-05-31 19:55:33.353
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-31 19:55:33.182
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-31 19:51:18.315
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-31 19:51:18.138
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-31 18:23:27.064
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\msvcp140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-31 18:23:25.861
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\msvcp140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-31 18:23:23.017
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-31 18:23:16.860
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-31 18:23:09.922
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-31 18:16:30.011
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Prozentuale Nutzung des RAM: 33%
Installierter physikalischer RAM: 8144.59 MB
Verfügbarer physikalischer RAM: 5408.55 MB
Summe virtueller Speicher: 8544.59 MB
Verfügbarer virtueller Speicher: 5281.67 MB
==================== Laufwerke ================================
Drive c: (OS) (Fixed) (Total:918.27 GB) (Free:225.45 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (Recovery Image) (Fixed) (Total:10.98 GB) (Free:0.19 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt ============================
|
|
31.05.2017, 20:15
| #28 | |
| /// Malwareteam | Browser-Hijacker(?) will nicht verschwinden Das kriegen wir alles hin  Zitat:
Schritt: 1 Downloade Dir bitte neu AdwCleaner auf deinen Desktop herunter.
Schritt: 2 Bitte starte wieder FRST, setze den Haken bei Addition und setzte wieder alle Haken bei "Ausnahmen" und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
31.05.2017, 21:50
| #29 |
| | Browser-Hijacker(?) will nicht verschwinden AdwCleaner: Code:
ATTFilter # AdwCleaner v6.047 - Bericht erstellt am 31/05/2017 um 22:39:02
# Aktualisiert am 19/05/2017 von Malwarebytes
# Datenbank : 2017-05-31.2 [Server]
# Betriebssystem : Windows 8.1 (X64)
# Benutzername : Hardy - JAMES
# Gestartet von : C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug\adwcleaner_6.047.exe
# Modus: Löschen
# Unterstützung : https://www.malwarebytes.com/support
***** [ Dienste ] *****
***** [ Ordner ] *****
***** [ Dateien ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Browser ] *****
[-] [C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Web data] [Search Provider] Gelöscht: mystarting123
*************************
:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: "Prefetch" Dateien gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
:: Chrome Einstellungen zurückgesetzt: C:\Users\Hardy\AppData\Local\Google\Chrome\User Data\ChromeDefaultData
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [15585 Bytes] - [25/05/2017 14:07:21]
C:\AdwCleaner\AdwCleaner[C2].txt - [1458 Bytes] - [25/05/2017 21:59:26]
C:\AdwCleaner\AdwCleaner[C3].txt - [1494 Bytes] - [26/05/2017 17:12:09]
C:\AdwCleaner\AdwCleaner[C4].txt - [2064 Bytes] - [29/05/2017 20:10:24]
C:\AdwCleaner\AdwCleaner[C5].txt - [1510 Bytes] - [31/05/2017 22:39:02]
C:\AdwCleaner\AdwCleaner[S0].txt - [14593 Bytes] - [25/05/2017 13:54:23]
C:\AdwCleaner\AdwCleaner[S1].txt - [1566 Bytes] - [25/05/2017 21:58:23]
C:\AdwCleaner\AdwCleaner[S2].txt - [1649 Bytes] - [26/05/2017 17:11:48]
C:\AdwCleaner\AdwCleaner[S3].txt - [2281 Bytes] - [29/05/2017 20:08:43]
C:\AdwCleaner\AdwCleaner[S4].txt - [2223 Bytes] - [31/05/2017 22:38:21]
########## EOF - C:\AdwCleaner\AdwCleaner[C5].txt - [1949 Bytes] ##########
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 31-05-2017
durchgeführt von Hardy (Administrator) auf JAMES (31-05-2017 22:43:50)
Gestartet von C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug
Geladene Profile: Hardy (Verfügbare Profile: Hardy & Administrator)
Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Opera)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
(Opera Software) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Mr. John aka japamd) C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe
(Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
() C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.18384_none_fa1d93c39b41b41a\TiWorker.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [478984 2012-12-15] (Adobe Systems Incorporated)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15033976 2015-11-20] (Logitech Inc.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-11-20] (IDT, Inc.)
HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [41664 2013-11-20] (Hewlett-Packard )
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-11-01] (Apple Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9197568 2017-05-22] (Realtek Semiconductor)
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-05-23] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [ZAM] => C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [14522512 2017-04-03] (Copyright 2017.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-04-10] (Oracle Corporation)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-05-23] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1282120 2013-05-02] (CANON INC.)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2016-11-04] (Razer Inc.)
HKLM-x32\...\Run: [Rapoo V700] => C:\Program Files (x86)\Rapoo\V700\load.exe [808760 2014-04-30] ()
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58584 2016-09-29] (Raptr, Inc)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239592 2017-05-23] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [6153128 2017-05-22] (LogMeIn Inc.)
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9772248 2017-05-05] (Piriform Ltd)
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\RunOnce: [Report] => C:\AdwCleaner\AdwCleaner[C5].txt [2028 2017-05-31] ()
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {182bb6d7-7546-11e3-bf81-b4b52fd91f16} - "H:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {292e2fcd-3875-11e6-80d8-b4b52fd91f16} - "I:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {858bc1f3-5612-11e5-bfcd-b4b52fd91f16} - "I:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {882e6f95-ead9-11e6-81b3-b4b52fd91f16} - "E:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {a0968113-b115-11e4-bf1d-b4b52fd91f16} - "H:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {bce95545-5557-11e5-bfcc-b4b52fd91f16} - "I:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\MountPoints2: {bce95547-5557-11e5-bfcc-b4b52fd91f16} - "I:\HTC_Sync_Manager_PC.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2014-08-20]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7A68117C-CA3D-4CD2-93E3-92CA12B9A7C3}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{7A68117C-CA3D-4CD2-93E3-92CA12B9A7C3}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{C155D1A7-613D-45C6-9A05-87C4F655EEA6}: [DhcpNameServer] 192.168.0.1
ManualProxies:
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKLM -> {43F6ABD5-68C5-4060-A10F-AEAA1B6C98A7} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\S-1-5-21-2570889560-1274126736-4133381010-1001 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-2570889560-1274126736-4133381010-1001 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKU\S-1-5-21-2570889560-1274126736-4133381010-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-05-17] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-17] (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (HP Inc.)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\Hardy\AppData\Roaming\Mozilla\Firefox\Profiles\lxdrst7r.default [2017-05-29]
FF NewTab: Mozilla\Firefox\Profiles\lxdrst7r.default -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\lxdrst7r.default -> www.google.de/
FF Extension: (AVG Web TuneUp) - C:\Users\Hardy\AppData\Roaming\Mozilla\Firefox\Profiles\lxdrst7r.default\Extensions\avg@toolbar.xpi [2017-05-09]
FF Extension: (MEGA) - C:\Users\Hardy\AppData\Roaming\Mozilla\Firefox\Profiles\lxdrst7r.default\Extensions\firefox@mega.co.nz.xpi [2017-05-04]
FF Extension: (Adblock Plus) - C:\Users\Hardy\AppData\Roaming\Mozilla\Firefox\Profiles\lxdrst7r.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-24]
FF HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: (McAfee Security Scan Plus) - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-09] ()
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-17] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-17] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-30] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-12-15] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-09] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.17.2 -> C:\WINDOWS\SysWOW64\npDeployJava1.dll [2014-12-04] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome - Chrome.exe
Opera:
=======
OPR Extension: (Video Downloader Pro) - C:\Users\Hardy\AppData\Roaming\Opera Software\Opera Stable\Extensions\ibehiiilehaakkhkigckfjfknboalpbe [2017-02-03]
OPR Extension: (AdBlocker Ultimate) - C:\Users\Hardy\AppData\Roaming\Opera Software\Opera Stable\Extensions\pmpmnoinbkdojlnknogfeoagmhmhgakc [2017-05-31]
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [1002552 2017-04-11] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagenta.exe [5334432 2017-04-11] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428656 2017-05-23] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [729048 2017-04-11] (AVG Technologies CZ, s.r.o.)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2017-05-28] (BitRaider, LLC)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [284736 2017-02-23] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6625856 2016-12-04] (GOG.com)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3760040 2017-05-22] (LogMeIn Inc.)
S4 HPConnectedRemote; c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35232 2012-08-29] (Hewlett-Packard)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (HP)
S2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [33640 2017-04-07] (HP Inc.)
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-06-27] (Nero AG)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc.)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193144 2015-11-20] (Logitech Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
S4 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2145288 2017-04-04] (Electronic Arts)
S3 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3114512 2017-04-04] (Electronic Arts)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [Datei ist nicht signiert]
S3 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2016-10-04] ()
S3 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2017-03-07] ()
R2 RadeonPro Support Service; C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe [20608 2013-11-04] (Mr. John aka japamd) [Datei ist nicht signiert]
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [69744 2016-10-18] (Razer Inc.)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-25] ()
S2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [339456 2013-11-20] (IDT, Inc.) [Datei ist nicht signiert]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 ZAMSvc; C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [14522512 2017-04-03] (Copyright 2017.)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 amdacpksd; C:\WINDOWS\system32\drivers\amdacpksd.sys [305544 2017-05-22] (Advanced Micro Devices)
S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
S3 ASPI; C:\WINDOWS\SysWOW64\DRIVERS\ASPI32.sys [84832 2002-07-17] (Adaptec) [Datei ist nicht signiert]
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWB6.sys [118848 2016-08-09] (Advanced Micro Devices)
S2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [303616 2014-09-28] () [Datei ist nicht signiert]
S0 Avgboota; C:\WINDOWS\System32\DRIVERS\avgboota.sys [21632 2016-01-07] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\WINDOWS\System32\DRIVERS\avgdiska.sys [163072 2016-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdrivera.sys [313088 2017-02-20] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\WINDOWS\System32\DRIVERS\avgidsha.sys [267008 2016-10-05] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\WINDOWS\System32\DRIVERS\avgldx64.sys [298240 2016-11-30] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\WINDOWS\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\WINDOWS\System32\DRIVERS\avgmfx64.sys [253184 2017-04-11] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\WINDOWS\System32\DRIVERS\avgrkx64.sys [52992 2016-06-01] (AVG Technologies CZ, s.r.o.)
R0 avguniva; C:\WINDOWS\System32\DRIVERS\avguniva.sys [77056 2016-06-20] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\WINDOWS\system32\DRIVERS\avgwfpa.sys [313096 2016-08-04] (AVG Technologies CZ, s.r.o.)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2017-05-28] (BitRaider)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R1 dtsoftbus01; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [283064 2014-09-22] (Disc Soft Ltd)
R1 epp; C:\EEK\bin64\epp.sys [124552 2016-11-23] (Emsisoft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77440 2017-03-22] ()
S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2017-05-22] (LogMeIn Inc.)
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [54736 2017-04-22] ()
S3 HtcVCom32; C:\WINDOWS\system32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated) [Datei ist nicht signiert]
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-05-22] (REALiX(tm))
R3 iusb3adp; C:\WINDOWS\System32\drivers\iusb3adp.sys [37472 2017-05-22] (Intel)
S3 ladfGSS; C:\WINDOWS\system32\drivers\ladfGSS.sys [45208 2017-05-22] (Logitech Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [68384 2015-06-11] (Logitech Inc.)
S3 lgLowAudio; C:\WINDOWS\system32\drivers\lgLowAudio.sys [26264 2015-11-20] (Logitech Inc.)
S2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [35328 2014-09-28] () [Datei ist nicht signiert]
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [186304 2017-05-04] (Malwarebytes)
S3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [111544 2017-05-04] (Malwarebytes)
S3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [43968 2017-05-04] (Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [251832 2017-05-31] (Malwarebytes)
S3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [92096 2017-05-04] (Malwarebytes)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] ()
R3 rpvmsd; C:\WINDOWS\system32\drivers\rpvmsd.sys [22016 2013-07-05] (RAPOO)
R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [51736 2016-06-22] (Razer Inc)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [44144 2016-09-17] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [137840 2016-09-07] (Razer, Inc.)
R3 SaiMini; C:\WINDOWS\System32\drivers\SaiMini.sys [24152 2016-07-18] (Saitek)
R3 SaiNtBus; C:\WINDOWS\system32\drivers\SaiBus.sys [59736 2016-07-18] (Saitek)
S3 STHDA; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [551936 2013-11-20] (IDT, Inc.) [Datei ist nicht signiert]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
R1 ZAM; C:\WINDOWS\System32\drivers\zam64.sys [203680 2017-04-22] (Zemana Ltd.)
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard64.sys [203680 2017-04-22] (Zemana Ltd.)
S3 _hid_0738_1703; C:\WINDOWS\system32\DRIVERS\_hid_0738_1703.sys [210408 2016-07-18] (Saitek)
S3 _usb_0738_1703; C:\WINDOWS\System32\drivers\_usb_0738_1703.sys [46824 2016-07-18] (Saitek)
S3 dcdbas; \SystemRoot\System32\drivers\dcdbas64.sys [X]
S3 xhunter1; \??\C:\WINDOWS\xhunter1.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-31 22:35 - 2017-05-31 22:35 - 04110280 _____ C:\Users\Hardy\Desktop\AdwCleaner.exe
2017-05-31 19:59 - 2017-05-31 19:59 - 18357776 _____ (Microsoft Corporation) C:\Users\Hardy\Desktop\MediaCreationTool.exe
2017-05-31 19:59 - 2017-05-31 19:59 - 00000000 ___HD C:\$Windows.~WS
2017-05-31 19:59 - 2017-05-31 19:59 - 00000000 ____D C:\$WINDOWS.~BT
2017-05-31 15:50 - 2017-05-31 15:50 - 02311611 _____ C:\Users\Hardy\Downloads\cemu_1.8.0.zip
2017-05-31 15:50 - 2017-05-31 15:50 - 00000000 ____D C:\Users\Hardy\Downloads\cemu_1.8.0
2017-05-31 15:50 - 2017-05-31 15:50 - 00000000 ____D C:\Users\Hardy\Desktop\cemu_1.8.0
2017-05-30 17:42 - 2017-05-31 22:36 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\MusicBee
2017-05-30 17:32 - 2017-05-30 17:32 - 00001043 _____ C:\Users\Hardy\Desktop\MusicBee.lnk
2017-05-30 17:32 - 2017-05-30 17:32 - 00001043 _____ C:\Users\Administrator\Desktop\MusicBee.lnk
2017-05-30 17:31 - 2017-05-30 17:31 - 00000000 ____D C:\Users\Hardy\Downloads\MusicBeeSetup_3_0_Update5
2017-05-30 17:31 - 2017-05-30 17:31 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MusicBee
2017-05-30 17:31 - 2017-05-30 17:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MusicBee
2017-05-30 17:31 - 2017-05-30 17:31 - 00000000 ____D C:\Program Files (x86)\MusicBee
2017-05-30 17:24 - 2017-05-30 17:24 - 12153541 _____ C:\Users\Hardy\Downloads\MusicBeeSetup_3_0_Update5.zip
2017-05-30 17:08 - 2017-05-30 17:08 - 00000000 ____D C:\Users\Hardy\Downloads\Uya
2017-05-30 15:55 - 2017-05-30 16:32 - 134170060 _____ C:\Users\Hardy\Downloads\Uya.rar
2017-05-30 15:49 - 2017-05-30 15:49 - 00000000 ____D C:\Users\Hardy\Downloads\Nomak_-_Calm_-_2007_by_YyyF
2017-05-30 15:49 - 2017-05-30 15:49 - 00000000 ____D C:\Users\Hardy\Downloads\Fat Jon - Repaint Tomorrow (2008)
2017-05-30 15:49 - 2012-02-15 09:38 - 00000000 ____D C:\Users\Hardy\Downloads\2004. Fat Jon - Afterthought
2017-05-30 15:43 - 2017-05-30 15:44 - 88972317 _____ C:\Users\Hardy\Downloads\Fat Jon - Repaint Tomorrow (2008) .rar
2017-05-30 15:14 - 2017-05-30 15:22 - 89742404 _____ C:\Users\Hardy\Downloads\Nomak_-_Calm_-_2007_by_YyyF.rar
2017-05-30 15:13 - 2017-05-30 15:39 - 77560006 _____ C:\Users\Hardy\Downloads\2004. Fat Jon - Afterthought.rar
2017-05-29 20:51 - 2017-05-29 20:51 - 00001313 _____ C:\Users\Hardy\Desktop\mbam.txt
2017-05-29 20:51 - 2017-05-29 20:51 - 00000000 ____D C:\Program Files (x86)\ESET
2017-05-29 12:44 - 2017-05-29 12:44 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\Google
2017-05-28 16:18 - 2017-05-28 16:26 - 00000000 ____D C:\Users\Hardy\Documents\Stronghold
2017-05-28 15:12 - 2017-05-28 15:12 - 00000000 ____D C:\ProgramData\BitRaider
2017-05-28 14:57 - 2017-05-28 14:57 - 00000852 _____ C:\Users\Public\Desktop\Star Wars - The Old Republic.lnk
2017-05-27 14:12 - 2017-05-27 14:12 - 00000000 ____D C:\Users\Hardy\AppData\Local\The Lord of the Rings Online
2017-05-27 06:27 - 2017-05-27 07:13 - 00000000 ____D C:\Users\Hardy\AppData\Local\Turbine
2017-05-27 06:27 - 2017-05-27 06:27 - 00000093 _____ C:\Users\Hardy\AppData\Local\fusioncache.dat
2017-05-27 06:27 - 2017-05-27 06:27 - 00000000 ____D C:\Users\Hardy\AppData\Local\ApplicationHistory
2017-05-27 06:23 - 2017-05-27 06:23 - 00000000 ____D C:\WINDOWS\SysWOW64\URTTEMP
2017-05-26 22:57 - 2017-05-26 23:25 - 00000000 ____D C:\Users\Hardy\Documents\NCSOFT
2017-05-26 21:08 - 2017-05-28 04:28 - 00000000 ____D C:\Users\Hardy\Documents\Stronghold Crusader
2017-05-26 21:06 - 2017-05-26 21:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefly Studios
2017-05-26 21:05 - 2017-05-26 21:05 - 00001922 _____ C:\Users\Public\Desktop\Stronghold.lnk
2017-05-26 21:02 - 2017-05-26 21:03 - 116773320 _____ (Acresso Software Inc. ) C:\Users\Hardy\Downloads\Stronghold_HD_Update.exe
2017-05-26 20:58 - 2017-05-26 20:58 - 00002120 _____ C:\Users\Public\Desktop\Stronghold Crusader Extreme.lnk
2017-05-26 20:58 - 2017-05-26 20:58 - 00002064 _____ C:\Users\Public\Desktop\Stronghold Crusader.lnk
2017-05-26 20:56 - 2017-05-26 21:03 - 00000000 ____D C:\Program Files (x86)\Firefly Studios
2017-05-26 20:45 - 2017-05-26 21:01 - 150844400 _____ (Acresso Software Inc. ) C:\Users\Hardy\Downloads\Stronghold_Crusader_HD_Update.exe
2017-05-26 20:05 - 2017-05-26 23:25 - 00000000 ____D C:\Program Files (x86)\NCSOFT
2017-05-26 20:04 - 2017-05-26 23:25 - 00000000 ____D C:\Users\Hardy\AppData\Local\NCSOFT
2017-05-26 20:04 - 2017-05-26 20:04 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\NCSOFT
2017-05-26 18:02 - 2017-05-26 18:02 - 00493127 _____ C:\Users\Hardy\Desktop\Malwarebytes.txt
2017-05-26 02:11 - 2017-05-26 02:14 - 00074425 _____ C:\Users\Hardy\Downloads\Addition.txt
2017-05-26 02:06 - 2017-05-26 02:14 - 00068646 _____ C:\Users\Hardy\Downloads\FRST.txt
2017-05-26 02:05 - 2017-05-31 22:43 - 00000000 ____D C:\FRST
2017-05-26 02:02 - 2017-05-31 22:43 - 00000176 _____ C:\Users\Hardy\BullseyeCoverageError.txt
2017-05-26 02:02 - 2017-05-26 02:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2017-05-26 02:02 - 2017-05-26 02:02 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2017-05-26 02:01 - 2017-05-26 02:02 - 00000176 _____ C:\Users\Default\BullseyeCoverageError.txt
2017-05-26 01:54 - 2017-05-26 01:54 - 00184136 _____ (Emsisoft Ltd) C:\WINDOWS\system32\eamclean.exe
2017-05-26 01:54 - 2017-05-26 01:54 - 00000300 _____ C:\WINDOWS\system32\eamclean.dat
2017-05-25 22:21 - 2017-05-25 22:21 - 00000000 ____D C:\ProgramData\Emsisoft
2017-05-25 22:20 - 2017-05-26 01:53 - 00000000 ____D C:\EEK
2017-05-25 22:11 - 2017-05-25 22:11 - 00005726 _____ C:\Users\Hardy\Desktop\JRT.txt
2017-05-25 14:41 - 2017-05-25 15:16 - 00000000 ____D C:\Users\Hardy\Desktop\SICHERUNG
2017-05-25 13:50 - 2017-05-31 22:39 - 00000000 ____D C:\AdwCleaner
2017-05-24 14:36 - 2017-05-25 11:39 - 00002018 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-05-22 16:12 - 2017-05-22 16:12 - 00045680 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys
2017-05-22 13:31 - 2017-05-22 13:31 - 00957440 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2017-05-22 13:31 - 2017-05-22 13:31 - 00082536 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 59237256 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 46456712 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 36547976 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2017-05-22 13:29 - 2017-05-22 13:29 - 32732552 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 28797832 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 26826120 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 22739336 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 15728008 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 14318984 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 10311560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdvlk64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 09899912 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 09446336 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 08470408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdvlk32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 07955848 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2017-05-22 13:29 - 2017-05-22 13:29 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2017-05-22 13:29 - 2017-05-22 13:29 - 02527624 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 02189704 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 01032072 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00942858 _____ C:\WINDOWS\system32\amdicdxx.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00915848 _____ (AMD) C:\WINDOWS\system32\coinst_17.10.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00855432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00791456 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2017-05-22 13:29 - 2017-05-22 13:29 - 00791456 _____ C:\WINDOWS\system32\atiapfxx.blb
2017-05-22 13:29 - 2017-05-22 13:29 - 00687496 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00559984 _____ C:\WINDOWS\system32\amdmiracast.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00544136 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00543112 _____ C:\WINDOWS\system32\dgtrayicon.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00537992 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00522632 _____ C:\WINDOWS\system32\GameManager64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00520072 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2017-05-22 13:29 - 2017-05-22 13:29 - 00505736 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00475016 _____ C:\WINDOWS\system32\atieah64.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00469384 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00458632 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00456584 _____ C:\WINDOWS\system32\amdhdl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00402312 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00369792 _____ C:\WINDOWS\system32\ativvaxy_gl_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00368832 _____ C:\WINDOWS\system32\ativvaxy_el_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00356744 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00351624 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00349064 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00325512 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00325316 _____ C:\WINDOWS\system32\ativvaxy_vi.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00325056 _____ C:\WINDOWS\system32\ativvaxy_vi_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00311176 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00305544 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdacpksd.sys
2017-05-22 13:29 - 2017-05-22 13:29 - 00276960 _____ C:\WINDOWS\system32\ativvaxy_stn_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00271456 _____ C:\WINDOWS\system32\ativvaxy_cz_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00269704 _____ C:\WINDOWS\system32\clinfo.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00266772 _____ C:\WINDOWS\system32\ativvaxy_FJ.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00266512 _____ C:\WINDOWS\system32\ativvaxy_FJ_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00236424 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00234292 _____ C:\WINDOWS\system32\ativvaxy_cik.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00234032 _____ C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00194952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00185600 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00185088 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00182664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00166560 _____ C:\WINDOWS\system32\amde34b.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00166560 _____ C:\WINDOWS\system32\amde34a.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00166280 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amduve64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00164960 _____ C:\WINDOWS\system32\amde40a.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00161160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00160768 _____ C:\WINDOWS\system32\ativce03.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00159112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00159072 _____ C:\WINDOWS\system32\amde31a.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00155528 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00154152 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00142216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00135560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amduve32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00128968 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00126344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00124808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00124808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00124808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00121240 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00121240 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00120368 _____ C:\WINDOWS\system32\kapp_ci.sbin
2017-05-22 13:29 - 2017-05-22 13:29 - 00114056 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00112520 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00106248 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00103304 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00100832 _____ C:\WINDOWS\system32\ativce02.dat
2017-05-22 13:29 - 2017-05-22 13:29 - 00092840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00092840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00082824 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmcl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00078728 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00072072 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00068488 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00067464 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe
2017-05-22 13:29 - 2017-05-22 13:29 - 00066952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00066440 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmcl32.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00065416 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00060296 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00054664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00036232 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00033672 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00020360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2017-05-22 13:29 - 2017-05-22 13:29 - 00020360 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2017-05-22 13:28 - 2017-05-22 13:28 - 00891392 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2017-05-22 13:27 - 2017-05-22 13:27 - 72520712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2017-05-22 13:27 - 2017-05-22 13:27 - 09124224 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2017-05-22 13:27 - 2017-05-22 13:27 - 07172912 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 07096184 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 05545512 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2017-05-22 13:27 - 2017-05-22 13:27 - 03503048 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 03203584 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 03203424 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 03014144 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2017-05-22 13:27 - 2017-05-22 13:27 - 02201600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01965808 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01780616 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01591056 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01508928 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 01353824 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00743960 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00727432 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00708312 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00689880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00504304 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00447720 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00445400 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00441264 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00343704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00327456 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00272712 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00253896 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00253864 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00252872 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00192976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00151784 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00134200 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00118592 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00105304 _____ C:\WINDOWS\system32\audioLibVc.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00084616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2017-05-22 13:27 - 2017-05-22 13:27 - 00037472 _____ (Intel) C:\WINDOWS\system32\Drivers\iusb3adp.sys
2017-05-22 13:27 - 2017-05-22 13:27 - 00023688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2017-05-22 13:26 - 2017-05-22 13:26 - 03569816 _____ (Logitech Inc.) C:\WINDOWS\system32\RenderAPO.dll
2017-05-22 13:26 - 2017-05-22 13:26 - 02121056 _____ (Logitech Inc.) C:\WINDOWS\system32\CaptureAPO.dll
2017-05-22 13:26 - 2017-05-22 13:26 - 00045208 _____ (Logitech Inc.) C:\WINDOWS\system32\Drivers\ladfGSS.sys
2017-05-22 13:25 - 2017-05-22 13:25 - 00204920 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2017-05-22 13:14 - 2017-05-22 13:14 - 00000000 ____D C:\WINDOWS\IObit
2017-05-22 13:13 - 2017-05-22 13:13 - 00027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2017-05-20 19:39 - 2017-05-20 19:39 - 29719936 _____ C:\Users\Hardy\Downloads\SWTOR_setup.exe
2017-05-20 01:38 - 2017-05-20 01:38 - 00000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2017-05-20 01:38 - 2017-05-20 01:38 - 00000000 ____D C:\Users\Hardy\AppData\LocalLow\IObit
2017-05-20 01:38 - 2017-05-20 01:38 - 00000000 ____D C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}
2017-05-20 01:37 - 2017-05-25 13:59 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\IObit
2017-05-20 01:31 - 2017-05-25 14:30 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\GlarySoft
2017-05-20 01:31 - 2017-05-20 01:31 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\DiskDefrag
2017-05-20 01:29 - 2017-05-20 01:29 - 16788744 _____ C:\Users\Hardy\Downloads\gu5setup.exe
2017-05-20 01:26 - 2017-05-26 17:07 - 00000000 ____D C:\Users\Hardy\Desktop\NÜTZLICH
2017-05-20 01:15 - 2017-05-20 01:15 - 00002784 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-05-20 01:15 - 2017-05-20 01:15 - 00000000 ____D C:\Program Files\CCleaner
2017-05-19 18:49 - 2017-05-19 18:49 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\com.playa-games.sfgame
2017-05-08 13:16 - 2017-05-08 13:16 - 00000000 ____D C:\Program Files (x86)\5910538D_jumpeasy
2017-05-04 14:46 - 2017-05-05 15:39 - 00000000 ____D C:\Users\Hardy\Downloads\The Legend of Zelda Breath of the Wild
2017-05-04 14:36 - 2017-05-04 14:36 - 00028354 _____ C:\Users\Hardy\Downloads\11780F9C79BB903471A7A96E4F8D2A973E604FD0.torrent
2017-05-04 10:40 - 2017-05-04 10:40 - 00000000 ____D C:\Users\Public\Documents\Google
2017-05-04 08:52 - 2017-05-04 08:52 - 00000000 ____D C:\Users\Hardy\Desktop\2912eb2f
2017-05-04 08:51 - 2017-05-04 08:51 - 06572885 _____ C:\Users\Hardy\Desktop\2912eb2f.7z
2017-05-03 20:25 - 2017-05-03 20:25 - 00002272 _____ C:\Users\Hardy\Desktop\Andi-Circus_anküdnigung.wlmp
2017-05-03 20:20 - 2017-05-03 14:24 - 32413449 ____N C:\Users\Hardy\Desktop\VID-20170503-WA0004.mp4
2017-05-03 15:32 - 2017-05-03 15:32 - 00000000 ____D C:\Users\Hardy\Desktop\BOTW STUFF
2017-05-03 15:31 - 2017-05-03 15:32 - 11333777 _____ C:\Users\Hardy\Desktop\BOTW STUFF.rar
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-31 22:46 - 2017-04-22 00:47 - 00045844 _____ C:\WINDOWS\ZAM.krnl.trace
2017-05-31 22:46 - 2017-04-22 00:47 - 00017032 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2017-05-31 22:44 - 2014-09-19 04:40 - 00000000 __RDO C:\Users\Hardy\OneDrive.old
2017-05-31 22:43 - 2017-04-22 00:49 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-05-31 22:43 - 2015-01-02 04:14 - 00000000 ____D C:\Users\Hardy\AppData\Local\LogMeIn Hamachi
2017-05-31 22:43 - 2014-12-21 16:18 - 00000000 ____D C:\Users\Hardy\AppData\Local\HTC MediaHub
2017-05-31 22:43 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf
2017-05-31 22:40 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-05-31 22:39 - 2016-09-25 21:14 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2017-05-31 21:20 - 2015-09-20 17:50 - 00003158 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForHardy
2017-05-31 21:20 - 2015-09-20 17:50 - 00000344 _____ C:\WINDOWS\Tasks\HPCeeScheduleForHardy.job
2017-05-31 20:00 - 2014-09-19 04:50 - 00000000 ___DC C:\WINDOWS\Panther
2017-05-31 18:36 - 2016-12-09 10:01 - 00003600 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2017-05-31 18:20 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2017-05-31 17:52 - 2014-08-18 01:58 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\vlc
2017-05-31 15:36 - 2015-02-06 10:18 - 00003862 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1423210713
2017-05-31 15:36 - 2015-02-06 10:18 - 00000000 ____D C:\Program Files (x86)\Opera
2017-05-31 12:00 - 2015-06-28 14:20 - 00000000 ____D C:\ProgramData\MFAData
2017-05-31 03:08 - 2014-08-15 22:39 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2570889560-1274126736-4133381010-1001
2017-05-31 02:00 - 2014-09-25 20:25 - 00000000 ____D C:\Users\Hardy\AppData\Local\Adobe
2017-05-31 01:03 - 2014-03-18 12:03 - 02008172 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-31 01:03 - 2014-03-18 11:25 - 00851332 _____ C:\WINDOWS\system32\perfh007.dat
2017-05-31 01:03 - 2014-03-18 11:25 - 00195966 _____ C:\WINDOWS\system32\perfc007.dat
2017-05-29 20:11 - 2012-11-19 17:50 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-05-29 19:56 - 2017-02-24 13:38 - 00000000 ____D C:\Program Files\Gigabyte
2017-05-29 19:56 - 2017-02-24 13:35 - 00000000 ____D C:\Program Files (x86)\GIGABYTE
2017-05-29 19:54 - 2014-08-18 02:50 - 00000000 ____D C:\Program Files (x86)\Steam
2017-05-29 19:53 - 2015-05-30 03:21 - 00000000 ____D C:\Users\Hardy\AppData\Local\Ubisoft Game Launcher
2017-05-29 19:51 - 2014-09-03 17:38 - 00000000 ____D C:\Users\Hardy\AppData\Local\Battle.net
2017-05-29 19:49 - 2014-09-03 17:38 - 00000000 ____D C:\Program Files (x86)\Battle.net
2017-05-29 19:47 - 2015-04-17 22:26 - 00000000 ____D C:\Program Files\Rockstar Games
2017-05-29 19:47 - 2015-04-15 16:54 - 00000000 ____D C:\Users\Hardy\AppData\Local\Rockstar Games
2017-05-29 17:49 - 2016-11-11 14:10 - 00000000 ____D C:\ProgramData\Avg
2017-05-29 17:49 - 2015-06-28 14:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2017-05-29 17:49 - 2015-06-28 14:23 - 00000000 ____D C:\Program Files (x86)\AVG
2017-05-29 07:13 - 2017-02-24 13:59 - 00026192 _____ (Windows (R) Server 2003 DDK provider) C:\WINDOWS\gdrv.sys
2017-05-28 14:57 - 2014-11-14 00:14 - 00000000 ____D C:\Games
2017-05-28 12:02 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2017-05-27 22:47 - 2014-08-16 13:27 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\TS3Client
2017-05-27 13:56 - 2017-04-26 09:03 - 00000000 ____D C:\Program Files\MK
2017-05-27 13:56 - 2017-04-21 11:44 - 00000000 ____D C:\Program Files (x86)\Cludeing
2017-05-27 06:32 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Registration
2017-05-27 06:26 - 2014-09-19 03:58 - 02008488 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2017-05-27 00:36 - 2014-09-03 17:39 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2017-05-26 23:39 - 2016-12-18 23:58 - 00000000 ____D C:\Program Files (x86)\Zenimax Online
2017-05-26 23:39 - 2014-09-19 04:00 - 00000000 ____D C:\Users\Hardy
2017-05-26 16:59 - 2016-07-19 13:01 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2017-05-26 16:59 - 2016-07-19 13:01 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2017-05-26 16:57 - 2017-04-30 18:25 - 00002300 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-05-26 02:02 - 2017-03-11 14:38 - 00000940 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2017-05-25 14:50 - 2016-11-21 14:12 - 00000000 ____D C:\Program Files (x86)\Uplink
2017-05-25 14:47 - 2015-08-22 00:15 - 00000000 ____D C:\Users\Hardy\AppData\Local\Unity
2017-05-25 14:42 - 2015-05-30 17:08 - 00000000 ____D C:\GOG Games
2017-05-25 14:32 - 2016-11-22 05:30 - 00000000 ____D C:\Program Files (x86)\Onlink
2017-05-25 14:29 - 2014-09-26 03:57 - 00000000 ____D C:\Program Files (x86)\FreeTime
2017-05-25 14:28 - 2012-11-19 17:56 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2017-05-25 14:28 - 2012-11-19 17:56 - 00000000 ____D C:\Program Files (x86)\CyberLink
2017-05-25 14:25 - 2014-08-18 23:42 - 00000000 ____D C:\Program Files\Common Files\Apple
2017-05-25 14:24 - 2012-11-19 17:58 - 00000000 ____D C:\ProgramData\Apple
2017-05-25 14:20 - 2017-02-23 18:08 - 00000082 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2017-05-25 14:20 - 2016-01-30 17:27 - 00000000 ____D C:\Program Files (x86)\Anker Precision Laser Gaming Mouse
2017-05-25 14:18 - 2014-09-25 20:29 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-05-25 14:18 - 2014-08-15 22:33 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\Adobe
2017-05-25 14:17 - 2015-08-03 14:40 - 00000000 ____D C:\Program Files (x86)\4Musics OGG to MP3 Converter
2017-05-25 14:09 - 2014-12-28 21:24 - 00000000 ____D C:\Program Files (x86)\IObit
2017-05-25 14:06 - 2017-04-22 02:32 - 00000000 ____D C:\WINDOWS\Update
2017-05-25 13:59 - 2014-12-28 21:24 - 00000000 ____D C:\ProgramData\IObit
2017-05-25 11:44 - 2017-04-30 18:25 - 00002258 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-25 11:40 - 2016-09-23 12:01 - 00000000 ____D C:\Users\Hardy\AppData\LocalLow\Mozilla
2017-05-24 15:11 - 2014-09-19 04:37 - 00001456 _____ C:\Users\Hardy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-05-24 14:37 - 2014-09-19 03:54 - 00000000 ____D C:\ProgramData\Package Cache
2017-05-22 19:16 - 2013-04-08 22:25 - 00000000 ____D C:\Users\Hardy\Documents\My Games
2017-05-22 17:58 - 2017-03-18 15:31 - 00000000 ____D C:\WINDOWS\LastGood
2017-05-22 13:29 - 2017-03-10 23:34 - 00161344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2017-05-22 13:29 - 2017-03-10 23:33 - 00768392 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2017-05-22 13:29 - 2017-03-10 23:33 - 00543112 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2017-05-22 13:29 - 2017-03-10 23:32 - 14413536 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2017-05-22 13:29 - 2017-03-10 23:32 - 10088520 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2017-05-22 13:29 - 2017-03-10 23:32 - 01507720 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2017-05-22 13:29 - 2017-03-10 23:32 - 01032072 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2017-05-22 13:29 - 2017-02-10 16:23 - 07663888 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2017-05-22 13:29 - 2017-02-10 16:23 - 01342784 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2017-05-22 13:29 - 2017-02-10 16:23 - 00143864 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2017-05-22 13:29 - 2017-02-10 16:22 - 13254256 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2017-05-22 13:29 - 2016-10-05 04:20 - 00207760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2017-05-22 13:29 - 2016-10-05 04:19 - 12139760 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2017-05-22 13:29 - 2016-10-05 04:19 - 01649736 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2017-05-22 13:28 - 2017-02-24 10:23 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-05-22 13:09 - 2016-10-08 13:55 - 00000000 ____D C:\Users\Hardy\Desktop\DESKTOP-LAN2
2017-05-22 13:09 - 2016-05-05 02:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch
2017-05-22 13:09 - 2016-03-21 20:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Life Is Strange
2017-05-22 13:09 - 2015-03-17 03:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Westwood Online
2017-05-21 18:37 - 2017-04-23 16:45 - 00000000 ____D C:\Users\Hardy\.litwrl
2017-05-20 23:31 - 2014-08-24 00:24 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\Skype
2017-05-20 01:51 - 2014-09-22 19:38 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\DAEMON Tools Lite
2017-05-20 01:49 - 2015-01-13 16:33 - 00000000 ____D C:\WINDOWS\Minidump
2017-05-19 16:18 - 2014-08-15 22:28 - 00000000 ____D C:\Users\Hardy\AppData\Local\Packages
2017-05-19 16:18 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-05-19 15:57 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2017-05-19 15:28 - 2014-09-19 04:00 - 00000000 ____D C:\Users\Administrator
2017-05-11 11:19 - 2016-09-23 07:52 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-05-11 11:19 - 2014-08-15 01:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-09 21:54 - 2016-04-08 03:54 - 00004474 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-05-09 21:54 - 2014-12-12 02:37 - 00004342 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-05-09 21:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-05-09 21:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-05-09 17:02 - 2015-09-11 15:08 - 00000000 ____D C:\Users\Hardy\AppData\Local\ElevatedDiagnostics
2017-05-08 21:24 - 2017-04-21 13:51 - 00001267 _____ C:\Users\Hardy\Desktop\nativelog.txt
2017-05-08 21:24 - 2017-04-21 09:30 - 00000000 ____D C:\Users\Hardy\AppData\Roaming\.minecraft
2017-05-08 17:42 - 2017-04-30 19:09 - 00000000 ____D C:\Users\Hardy\Desktop\cemu_1.7.5
2017-05-08 17:42 - 2017-01-16 14:31 - 00000000 ____D C:\Users\Hardy\Desktop\cemu_1.7.2
2017-05-04 08:23 - 2017-04-22 00:50 - 00186304 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-05-04 08:20 - 2017-04-22 00:50 - 00111544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-05-04 08:20 - 2017-04-22 00:50 - 00092096 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-05-04 08:20 - 2017-04-22 00:50 - 00043968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2017-05-27 06:27 - 2017-05-27 06:27 - 0000093 _____ () C:\Users\Hardy\AppData\Local\fusioncache.dat
2014-09-25 21:23 - 2014-12-21 19:22 - 0001480 _____ () C:\Users\Hardy\AppData\Local\RecConfig.xml
2017-02-24 10:23 - 2017-02-24 10:23 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-08-15 22:32 - 2014-08-15 22:32 - 0000141 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
2015-03-04 04:29 - 2015-03-04 04:29 - 0000040 _____ () C:\ProgramData\ra3.ini
Einige Dateien in TEMP:
====================
2017-05-31 18:24 - 2017-05-31 18:24 - 0010520 _____ () C:\Users\Hardy\AppData\Local\Temp\BullseyeCoverage-x86-3.dll
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-05-31 03:08
==================== Ende von FRST.txt ============================
|
|
31.05.2017, 21:51
| #30 |
| | Browser-Hijacker(?) will nicht verschwinden Addition: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 31-05-2017
durchgeführt von Hardy (31-05-2017 22:47:04)
Gestartet von C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug
Windows 8.1 (Update) (X64) (2014-09-19 02:37:11)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2570889560-1274126736-4133381010-500 - Administrator - Enabled) => C:\Users\Administrator
ASPNET (S-1-5-21-2570889560-1274126736-4133381010-1002 - Limited - Enabled)
Gast (S-1-5-21-2570889560-1274126736-4133381010-501 - Limited - Disabled)
Hardy (S-1-5-21-2570889560-1274126736-4133381010-1001 - Administrator - Enabled) => C:\Users\Hardy
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.34 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0934-000001000000}) (Version: 9.34.00.0 - Igor Pavlov)
ACP Application (Version: 2017.0310.1613.49 - Advanced Micro Devices, Inc.) Hidden
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Adobe Flash Player 25 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
AVG (Version: 16.151.8013 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4776 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.151.8013 - AVG Technologies)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.7.452 - AVG Technologies)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB)
BattlEye Uninstall (HKLM-x32\...\BattlEye for A1) (Version: - )
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.6.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon MG2500 series Benutzerregistrierung (HKLM-x32\...\Canon MG2500 series Benutzerregistrierung) (Version: - *Canon Inc.)
Canon MG2500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2500_series) (Version: 1.00 - Canon Inc.)
Canon MG2500 series On-screen Manual (HKLM-x32\...\Canon MG2500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 2.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 2.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.2.1 - Canon Inc.)
Catalyst Control Center Next Localization BR (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2017.0310.1611.29098 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.30 - Piriform)
Connected Music powered by Universal Music Group version 1.0 (HKLM-x32\...\{46037DC7-F927-46DF-935F-D6F122BDD34B}_is1) (Version: 1.0 - Snowite)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.1916 - CyberLink Corp.)
CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}) (Version: 2.0.1.3109 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.1.1902 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.1.1925 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.1.4319 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Darksiders II Deathinitive Edition (HKLM\...\Steam App 388410) (Version: - Gunfire Games)
Desura (HKLM-x32\...\Desura) (Version: 100.57 - Desura)
Desura: Project Zomboid (HKLM-x32\...\Desura_62350040236064) (Version: Alpha - The Indie Stone)
Discord (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
doubleTwist Sync (HKLM-x32\...\doubleTwist) (Version: 4.0.3.0 - doubleTwist Corporation)
Dragon Age Redesigned© (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned©) (Version: - )
Dragon Age Redesigned© Leliana (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned© Leliana) (Version: - )
Dragon Age Redesigned© Sten (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned© Sten) (Version: - )
Dragon Age Redesigned© Wynne (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\Dragon Age Redesigned© Wynne) (Version: - )
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.12 - Electronic Arts)
EAX4 Unified Redist (HKLM-x32\...\{89661B04-C646-4412-B6D3-5E19F02F1F37}) (Version: 4.001 - Creative Labs)
Else Heart Break (HKLM-x32\...\RWxzZUhlYXJ0QnJlYWs=_is1) (Version: 1 - )
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
FMW 1 (Version: 1.202.1 - AVG Technologies) Hidden
Garry's Mod (HKLM\...\Steam App 4000) (Version: - Facepunch Studios)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
HitFilm 4 Express (HKLM\...\{F8BB3662-69A1-4EF1-8674-ADD90AAD3D08}) (Version: 4.0.5723.10801 - FXHOME)
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.18.284 - SurfRight B.V.)
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: v1.0 - Meridian Audio Ltd)
HP Connected Remote (HKLM-x32\...\{F243A34B-AB7F-4065-B770-B85B767C247C}) (Version: 1.0.1206 - Hewlett-Packard)
HP Registration Service (HKLM\...\{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}) (Version: 1.0.5976.4186 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{4780AF24-213D-4187-86F2-0014A6D6077B}) (Version: 8.4.14.41 - HP Inc.)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{AAE126B3-95C5-49E1-A590-7B5F6EDC7D60}) (Version: 12.6.14.19 - HP Inc.)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.16.0.001 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.54.2 - HTC)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6418.0 - IDT)
Impulse (HKLM-x32\...\Impulse) (Version: 1.0 - Stardock)
Impulse (x32 Version: 1.0 - Stardock Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.38 - Intel(R) Corporation) Hidden
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
iTunes (HKLM\...\{554C62C7-E6BB-40F1-892B-F0AE02D3C135}) (Version: 12.5.3.17 - Apple Inc.)
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Logitech Gaming Software 8.76 (HKLM\...\Logitech Gaming Software) (Version: 8.76.155 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.578 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.578 - LogMeIn, Inc.) Hidden
Malwarebytes Version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{86CE1746-9EFF-3C9C-8755-81EA8903AC34}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MusicBee 3.0 (HKLM-x32\...\MusicBee) (Version: 3.0 - Steven Mayall)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.13 - Black Tree Gaming)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Opera Stable 45.0.2552.888 (HKLM-x32\...\Opera 45.0.2552.888) (Version: 45.0.2552.888 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.4.7.34767 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version: - )
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5875) (Version: - )
Pepakura Designer 3 (HKLM-x32\...\pepakura_designer3en) (Version: - TamaSoftware)
Pepakura Viewer 3 (HKLM-x32\...\pepakura_viewer3en) (Version: - TamaSoftware)
Pesgalaxy.com Patch 2016 (HKLM-x32\...\Pesgalaxy.com Patch 2016 3.00 Part 1) (Version: 3.00 Part 1 - Pesgalaxy)
Pesgalaxy.com Patch 2016 (HKLM-x32\...\Pesgalaxy.com Patch 2016 3.00 Part 2) (Version: 3.00 Part 2 - Pesgalaxy)
Pesgalaxy.com Patch 2016 (HKLM-x32\...\Pesgalaxy.com Patch 2016 3.01) (Version: 3.01 - Pesgalaxy)
Pesgalaxy.com Patch 2016 DLC Installer (HKLM-x32\...\Pesgalaxy.com Patch 2016 DLC Installer 4.00) (Version: 4.00 - Pesgalaxy)
PlayClaw 5 fast codec (HKLM-x32\...\PlayClaw 5 fast codec_is1) (Version: 5 - )
PSE12 STI Installer (HKLM-x32\...\{11F9A376-342F-4297-82DA-1F6EA8ED4B6B}) (Version: 12.0 - Adobe Systems Incorporated)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Python 3.5.2 (32-bit) (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\{cf72a2ab-2f1d-49fd-a0d7-1065e6357e1e}) (Version: 3.5.2150.0 - Python Software Foundation)
Python 3.5.2 Add to Path (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Core Interpreter (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Development Libraries (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Documentation (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Executables (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 pip Bootstrap (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Standard Library (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Tcl/Tk Support (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Test Suite (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python 3.5.2 Utility Scripts (32-bit) (x32 Version: 3.5.2150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{963ECCDD-F09F-4C24-9367-8B5D748AA7C8}) (Version: 3.5.2121.0 - Python Software Foundation)
RadeonPro 1.0 (Build 1.1.1.0) (HKLM-x32\...\RadeonPro_is1) (Version: - )
Rapoo V700 – Gaming-Tastaturtreiber v1.0.2 (HKLM-x32\...\{DF34A259-1224-4130-92AC-0C660A331C60}_is1) (Version: - Rapoo, Inc.)
Raptr (HKLM-x32\...\Raptr) (Version: 5.2.7-r116720-release - Raptr, Inc)
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 1.10.6 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.1104 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.38.115.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.0.5530 - CyberLink Corp.) Hidden
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.4 - Rockstar Games)
Shakes and Fidget (HKLM\...\Steam App 438040) (Version: - Playa Games GmbH)
SimpleRockets (HKLM\...\Steam App 343090) (Version: - Jundroo, LLC)
Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
SleepTimer Ultimate 1.2 (HKLM-x32\...\{0EE56463-49B2-45E1-B74F-3E0139DBC986}_is1) (Version: - Christian Handorf)
Source SDK Base 2007 (HKLM-x32\...\Steam App 218) (Version: - Valve)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 12.0.0.14 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Starbound (HKLM\...\Steam App 211820) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Stronghold Crusader HD (HKLM-x32\...\{8C3727F2-8E37-49E4-820C-03B1677F53B6}) (Version: 1.30.0004 - Firefly Studios)
Stronghold HD (HKLM-x32\...\{C917BA70-28A3-4C74-B163-41FD8C8E1A5A}) (Version: 1.30.0004 - Firefly Studios)
Super Hexagon (HKLM-x32\...\Steam App 221640) (Version: - Terry Cavanagh)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamSpeak 3 Client (HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Lord of the Rings Online™ (HKLM\...\Steam App 212500) (Version: - Standing Stone Games, LLC)
The Lord of the Rings Online™ v03.08.00.8029 (HKLM-x32\...\12bbe590-c890-11d9-9669-0800200c9a66_is1) (Version: 03.08.00.8029 - Turbine, Inc.)
Uplay (HKLM-x32\...\Uplay) (Version: 24.0.1 - Ubisoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Vulkan Run Time Libraries 1.0.17.0 (HKLM\...\VulkanRT1.0.17.0-4) (Version: 1.0.17.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.17.0 (Version: 1.0.17.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.21.0 (HKLM\...\VulkanRT1.0.21.0) (Version: 1.0.21.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0-3) (Version: 1.0.26.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.26.0 (Version: 1.0.26.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1) (Version: 1.0.3.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0-2) (Version: 1.0.37.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.37.0 (Version: 1.0.37.0 - LunarG, Inc.) Hidden
WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Xvid 1.2.2 final uninstall (HKLM-x32\...\Xvid_is1) (Version: 1.2 - Xvid team (Koepi))
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.72.0.388 - Zemana Ltd.)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {078BE576-665C-4D19-BAA3-D522648B1CA7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {13E383F6-B101-42BF-AF09-259B5FCB9AAB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {14B9AED9-807E-4020-ACFF-FCE51941655E} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-2570889560-1274126736-4133381010-1001
Task: {203E5BC8-6D64-48F1-84C2-955C09555B0A} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe
Task: {29AE46DB-66BB-4FD1-A023-F038A59A3E44} - System32\Tasks\{8BB75C14-B60E-4A85-A7B4-A980300AB2F1} => pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=deDE --uid=prometheus --displayname="Overwatch"
Task: {2E194BE3-52F0-4FA4-B248-0795D9AE450A} - System32\Tasks\HPCeeScheduleForHardy => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-05-12] (HP Development Company, L.P.)
Task: {314EC76A-099F-42B6-BAC6-F13B2F3B636A} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-bll-fan@hotmail.de => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-12-15] (Adobe Systems Incorporated)
Task: {32A6BC06-B5FC-4A14-9BDC-BCB925575EDD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {348CBB87-8874-484E-A6C5-5D0FB3022A9E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {35C1B9E5-C76F-482D-97D0-CD320F84E246} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [2017-04-07] (HP Inc.)
Task: {47154059-6C19-4DD1-8918-58034F17AC63} - System32\Tasks\Opera scheduled Autoupdate 1423210713 => C:\Program Files (x86)\Opera\launcher.exe [2017-05-31] (Opera Software)
Task: {4BE63108-51AB-4EC8-8273-C845E33E44AC} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {5E8CA500-3AFB-4E4A-B862-AF4D62DB8D98} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\WINDOWS\system32\mrt.exe [2017-02-24] (Microsoft Corporation)
Task: {66BA70BF-BCE2-4E66-954A-C7FCB67D2FA2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2016-12-15] (HP Inc.)
Task: {94D5227E-87C5-45F6-B798-991534C89458} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {9E9F3E3A-F03E-4ACB-A129-FD13E2F7E76E} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2017-03-10] (Advanced Micro Devices, Inc.)
Task: {A8AD002C-6AFB-4D7A-8DAC-4D98FD433F1E} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_171_pepper.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {B2083CC8-8431-46CF-BFA6-510160202BA4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {BB9E0F8A-5411-4FA3-9444-C77F6F26E335} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-05-05] (Piriform Ltd)
Task: {C1CF008C-4079-4B01-977B-57E4E41959EC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {E4FFACE1-97ED-4C24-AE62-ED74A919E749} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {FE924C14-61AD-4BB9-ACD3-597C28A895AD} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-10] (Oracle Corporation)
Task: {FEA440CF-D189-4C33-9515-8594B427572B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {FF516BB4-84C2-4C9C-A6AD-7F70B24F64BF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-04-06] (HP Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\HPCeeScheduleForHardy.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2012-12-07 19:27 - 2012-12-07 19:27 - 00167424 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2016-09-25 01:20 - 2016-09-25 01:21 - 00189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2015-07-14 15:37 - 2015-07-14 15:37 - 00821240 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
2017-05-31 18:24 - 2017-05-31 18:24 - 00012080 _____ () C:\WINDOWS\TEMP\BullseyeCoverage-x64-3.dll
2017-04-22 00:49 - 2017-03-22 10:24 - 02271520 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2015-11-20 23:41 - 2015-11-20 23:41 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2015-11-20 23:41 - 2015-11-20 23:41 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2017-05-31 15:36 - 2017-05-31 15:35 - 66272856 _____ () C:\Program Files (x86)\Opera\45.0.2552.888\opera_browser.dll
2017-05-31 15:35 - 2017-05-31 15:35 - 02926680 _____ () C:\Program Files (x86)\Opera\45.0.2552.888\libglesv2.dll
2017-05-31 15:35 - 2017-05-31 15:35 - 00088152 _____ () C:\Program Files (x86)\Opera\45.0.2552.888\libegl.dll
2014-12-18 16:06 - 2014-12-18 16:06 - 00031080 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2015-07-14 15:35 - 2015-07-14 15:35 - 00607016 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2014-12-18 16:09 - 2014-12-18 16:09 - 00059752 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2014-12-18 16:08 - 2014-12-18 16:08 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2014-12-18 16:09 - 2014-12-18 16:09 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2014-12-18 16:11 - 2014-12-18 16:11 - 00129376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2014-12-18 16:14 - 2014-12-18 16:14 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2016-12-09 10:01 - 2016-12-09 10:01 - 48920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Hardy:Heroes & Generals [38]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 15:25 - 2017-04-22 02:07 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Hardy\Desktop\jungler.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk"
HKLM\...\StartupApproved\Run: => "BeatsOSDApp"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp"
HKLM\...\StartupApproved\Run: => "ZAM"
HKLM\...\StartupApproved\Run32: => "CLVirtualDrive"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKLM\...\StartupApproved\Run32: => "PlaysTV"
HKLM\...\StartupApproved\Run32: => "Raptr"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "Raptr"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-2570889560-1274126736-4133381010-1001\...\StartupApproved\Run: => "NetLimiter"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [UDP Query User{000E0B09-7650-45C9-9BCA-FC4759BDF18C}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [TCP Query User{4F448818-73EB-4D0D-994F-A41283B58C72}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [{A956525B-9B0C-4BA3-A2DC-A25AC9A301C3}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{A3AC0145-B595-46CD-9C15-B257524BE888}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [UDP Query User{079C4395-3551-4717-9961-F50BDCE7A088}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{17CA77CF-772C-4A8F-A7AA-0789CA54FD6C}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{EC380FAC-E967-467E-A2C4-6ADBB14CA6D0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{2E00C8AA-1D08-4250-90EB-C4C31F5657C9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{3D4FC7BF-EA75-4ABB-BF78-E355F7141B2F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{60D49C69-2D5C-4AEC-B861-B74D6F865A0E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{FD315ABC-F5EE-4514-887E-41B42E5D0C67}] => (Allow) LPort=1900
FirewallRules: [{9EFEEAC8-CE72-49D0-93EA-18D3FAE94F0D}] => (Allow) LPort=2869
FirewallRules: [{3FB0E27B-00FF-459B-BC23-EFBF85EFE0A3}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{ADA0AFD0-1AB4-4748-9C96-4CA75573E372}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{6A303ADE-92E4-41CA-AC18-FEA684500C8A}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{9B77ADBC-39A9-4A48-8F68-EC62BA21216F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{156F2AF8-0DE8-43A6-90EA-CC24464BFB14}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{603909EB-1CEC-40E6-9C99-C237A8B3A285}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{DB8F831E-A282-47CD-B9B6-09377E69A393}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{B97A7C9C-C041-453A-A503-FDFB9F17F8E3}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [UDP Query User{0FCA91FE-D278-49CF-8E4C-A1E048EA8F12}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [TCP Query User{7E37C4AC-CCE9-4CAB-AE2A-A88621B4ADB2}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{C06F8E6D-F96F-42C7-A3A5-AA64AE5A50D4}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{419C9BE9-4320-468E-992B-2ACDE2E26FA5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base 2007\hl2.exe
FirewallRules: [{0AC47B96-5B8B-48F8-AFBC-2C027F00614B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Source SDK Base 2007\hl2.exe
FirewallRules: [TCP Query User{842C3416-6776-47F0-8175-F22DB66BB120}C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe] => (Allow) C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe
FirewallRules: [UDP Query User{D1973CBC-2C65-4685-AE61-FE5E178D8E74}C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe] => (Allow) C:\program files (x86)\desura\common\project zomboid\projectzomboid64.exe
FirewallRules: [{B810ADBE-50BE-41CC-9A50-E0E869263EC1}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{378D2C56-E7E5-4648-AAC6-031E9989F0E6}] => (Allow) C:\Users\Hardy\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5A269248-72A7-4CEC-8CA7-44327B01FD3E}] => (Allow) C:\Users\Hardy\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{83D4532D-433B-4B99-B685-59C6BC93EB9E}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{FC66CB7E-BA44-488D-9587-A47C95FCB514}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{12BACD40-2806-4305-A894-4BFD1F3C94CB}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{45A5E548-46E9-4105-A970-EEA1EC482897}] => (Allow) C:\Users\Hardy\AppData\Local\JDownloader 2.0\JDownloader2.exe
FirewallRules: [{9C10FDB7-3937-4238-884C-354BC765317A}] => (Block) %SystemDrive%\Games\Hotline Miami\HotlineMiami.exe
FirewallRules: [TCP Query User{1DDA251D-2A95-475F-92E9-A7959BB8420C}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [UDP Query User{D18BB324-F614-4182-8709-0D8442D8F642}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\gameclient.exe
FirewallRules: [{451BEE54-1AC5-413F-A4D1-D34DEBD0FC1F}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{4E60CBAD-06B7-4498-A2C0-AFC4672613A7}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{FF41D876-7066-48CB-AF82-797E08548954}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{0C56D103-F9DA-47BD-A1EF-DFB2630A6995}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{17FC8841-ECB6-4657-B27E-92841F40FB90}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C34FB1E8-062B-4DBA-8294-1618B66186B9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{9EFB607F-304F-4AB2-8A9C-F8821D0B380E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{9F4C8D25-9D2A-4261-8BF0-75B6F3D1814C}C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe
FirewallRules: [UDP Query User{F92FCA4F-FF43-41D2-B546-6C268FFA6CBF}C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe
FirewallRules: [TCP Query User{621EC44B-5CDD-4902-96AA-0A853C4741E1}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{82E33ACA-CD64-4EA4-A5E6-FD205A52D231}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [TCP Query User{AEB29039-D5E1-4DE8-9330-CD081603B067}C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [UDP Query User{22922129-5CE7-491F-9A8D-2D2C2E7B20E4}C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [TCP Query User{E2EE821B-E13F-45F9-9F43-F431D15917E1}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe
FirewallRules: [UDP Query User{D1F654F6-2E8F-42C2-90F6-2454B18D2EA6}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3.exe
FirewallRules: [TCP Query User{8333E39F-F0A7-47B8-B70A-BF34B1EC0300}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe
FirewallRules: [UDP Query User{3E4B972C-B050-4F37-956A-A876085043A0}C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 3\bin\farcry3_d3d11.exe
FirewallRules: [TCP Query User{56CF1675-003D-461B-A526-9C5373FBB8C8}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{F3CA4507-8732-41DF-B771-B27C18A39CF6}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{D4A0E411-7EA6-4012-B3BD-39CD41CA7CC7}C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe] => (Allow) C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe
FirewallRules: [UDP Query User{932CF87E-5F9B-4678-825F-04BD97D75404}C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe] => (Allow) C:\games\swat 4 gold edition\contentexpansion\system\swat4x.exe
FirewallRules: [{EDE66CF5-2177-4E05-954C-A5A0ABC0BD5C}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{308FB2B0-D82D-4F36-91A8-9A3E335A8C1A}] => (Block) %USERPROFILE%\Desktop\Games\Hacknet.v4.049\Hacknet.exe
FirewallRules: [{8AF0B504-A498-40DB-A173-B598666213A9}] => (Block) %USERPROFILE%\Desktop\Games\Hacknet.v4.049\Hacknet.exe
FirewallRules: [{0B5F7D89-679B-4211-9F8C-AECF990B545C}] => (Block) %SystemDrive%\Games\Quadrilateral Cowboy\qc.exe
FirewallRules: [{24E11D93-49C5-4C3C-BD9C-ADFBCC15FF7A}] => (Block) %SystemDrive%\Games\Quadrilateral Cowboy\qc.exe
FirewallRules: [TCP Query User{DD7C0B59-30AB-4F67-9A43-C6FD9DF35ED9}C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe
FirewallRules: [UDP Query User{0B180169-0697-42F9-879E-BD9E5D0EB512}C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe
FirewallRules: [TCP Query User{B3E14D60-C398-44E5-A2F6-F74E583DD384}C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe
FirewallRules: [UDP Query User{06A6240C-D020-43EB-9F3B-3DFDC5814E1A}C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe] => (Allow) C:\program files (x86)\origin games\fifa 17 demo\fifa17_demo.exe
FirewallRules: [{BBAF0086-EEDF-45F4-89CC-F046B6DC0A5F}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{0A68F553-F18D-4713-A115-DFC8D5FE7F65}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe
FirewallRules: [{567C30C4-0BC8-4599-A2EB-CDD98E57C484}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSixGame.exe
FirewallRules: [{2F95BFAF-2FB6-4230-BF81-69154E005BC7}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSixGame.exe
FirewallRules: [{0B3EF0F2-3B26-406C-B59A-3EB160340124}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{D521F649-0F43-4D2F-A8E4-AA4571DB1A1C}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{CDF146D0-76BD-4685-9AF6-FDD072FFAA31}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{B58C29A3-492A-499A-9A84-744BA8632F1F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{04EA1C75-F817-4A64-A111-FC89832CD1E4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{96578E67-D1E7-46DC-859B-C92238486324}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{236AA833-2510-4336-8C5B-F460C9EEE5C8}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{6945EB1F-05E6-4C2E-B485-11AC54579B2D}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{D71BA33F-EA6A-49A4-84F6-891EC56A9E21}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{417405D0-6761-447E-92F8-C8F8D9632601}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [TCP Query User{92D48B66-C889-4870-A9A1-49CDE288DB81}C:\program files (x86)\unreal tournament 2004\system\ut2004.exe] => (Block) C:\program files (x86)\unreal tournament 2004\system\ut2004.exe
FirewallRules: [UDP Query User{FB890EBA-7455-4606-9DD7-5BE161477873}C:\program files (x86)\unreal tournament 2004\system\ut2004.exe] => (Block) C:\program files (x86)\unreal tournament 2004\system\ut2004.exe
FirewallRules: [{0C4B6943-37EB-45C3-BC9F-726B346EE09A}] => (Allow) LPort=53000
FirewallRules: [{AFFE5FB1-0482-48D0-811E-8EF4DD24D573}] => (Allow) LPort=52000
FirewallRules: [{0B8C7D99-62C9-49CA-AE0A-A1BD551B9D38}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [{DB86DDA1-44D8-481C-B1A1-4AE136205D11}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [{985B8896-9841-45DB-A6D8-092078B125C0}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{871568B5-1B5A-473F-A08C-E2FF22893B1C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{13E403E4-FCB2-4712-ACA5-3AF88A4CC507}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{3285D531-485A-409E-9177-C7AF06559810}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{1ADEDD41-F57D-4C0E-BCAC-0E18282AEAEE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound.exe
FirewallRules: [{29DF63D1-170B-40E2-8A0B-C9F33CDA266E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound.exe
FirewallRules: [{FAB2071B-17EA-412B-8E04-A061AE582F7C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{E31B5322-CD2D-4D3B-89BD-978479688905}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{F4831B5B-95F8-493A-8E61-927439B7E7DC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{E7572C37-6D57-4378-BE5A-D674326DEF78}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{E1ADC6CE-FB55-439C-85F8-C1113F56263D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win32\starbound.exe
FirewallRules: [{AD73812C-A874-4D11-818A-435EF9CE8AC1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Starbound\win32\starbound.exe
FirewallRules: [{87DB987D-E32F-42BE-8F4D-23790043C435}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{775E2A01-DEBA-46FA-8AC1-3F78821BC3D1}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{790CEAAC-E91E-4F5B-B722-156D55422A2A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{76307A61-E3C3-43BE-884F-6D221C129EDD}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{817B7DB0-D596-4445-A8B5-21479E072A0E}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{1722850B-D263-4DC7-AA56-8F42CB8438F8}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{A3F24794-2EAC-42E1-A3CC-1B39482A95BE}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{39686367-0D8C-47B8-84B9-EF4772F05613}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [TCP Query User{B29DEBB4-A17A-4AC1-814F-33A386ED8DAB}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{E2DE3A9F-4B8A-43F4-AA64-472A1F55E809}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{EC3979B7-DFFC-443E-A275-C8FD14D65EC8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SimpleRockets\SimpleRockets.exe
FirewallRules: [{EFB89F9B-35E8-4354-B4E2-B4FAEB0D1217}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SimpleRockets\SimpleRockets.exe
FirewallRules: [TCP Query User{862BD372-C7E2-470F-96DD-8E522C571FE5}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{62804620-05F1-4789-8273-BDDED9C718F7}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{00A6BA1C-8046-4506-A8FD-0B789B92BA8B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Shakes & Fidget\Shakes and Fidget.exe
FirewallRules: [{1567F691-BD12-447F-8151-61B4A9728648}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Shakes & Fidget\Shakes and Fidget.exe
FirewallRules: [{647768C2-A4D9-49FB-8B51-E41ACFE6C3FA}] => (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{1A4B601A-299E-4A9B-83C8-D87F1611FD97}] => (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{342E1CDF-8AC0-400F-9F2F-7ADAC5C2338B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{9BB08BBD-DA50-4FFF-9B6D-DB6E2072FA07}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Darksiders II Deathinitive Edition\Darksiders2.exe
FirewallRules: [{513A0535-FCCD-484D-8684-56E565C64E6F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Darksiders II Deathinitive Edition\Darksiders2.exe
FirewallRules: [{F7EAD389-C39C-4AEA-934C-4AC417FB3344}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe
FirewallRules: [{21E80125-C403-41F5-9B74-FFD73E838A22}] => (Allow) C:\Program Files (x86)\Firefly Studios\Stronghold Crusader\Stronghold_Crusader_Extreme.exe
FirewallRules: [{BC5E572D-3694-4845-A5F8-DED9582FE6C0}] => (Allow) C:\Program Files (x86)\Firefly Studios\Stronghold Crusader\Stronghold_Crusader_Extreme.exe
FirewallRules: [{E8382C07-E291-4C36-B704-C7E5977045D2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Lord of the Rings Online\TurbineInvoker.exe
FirewallRules: [{D93FF7C4-DA16-4A85-B110-7537F24F90BA}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Lord of the Rings Online\TurbineInvoker.exe
FirewallRules: [TCP Query User{CE3E230D-692E-43C2-84E5-69BC8CADE976}C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe
FirewallRules: [UDP Query User{4B4EA590-D03B-45B3-89EE-D72F5BEC27B7}C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\lord of the rings online\lotroclient.exe
FirewallRules: [{A9348D40-E166-4252-AC79-BB41239C9952}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{F8F1F571-A378-4B10-800F-F4C7E9B3F14F}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{AB8E2998-8759-4CD6-9282-978E58091AC2}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{B1220E54-1EE7-4406-BE65-29ABD4E6320E}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{9FF809D4-A457-4F34-A285-DE92F39FA858}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation_Server\HomeCloud\HCLOUD.exe
FirewallRules: [{D8C7322F-828A-4E75-AAC7-DA5717C2DD69}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation_Server\RemoteOC\ubssrv_oc_only.exe
FirewallRules: [{F8E70079-62A0-4DA7-873E-E4CCA2E3070B}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation_Server\RemoteControl\grckm.exe
FirewallRules: [{B3523012-15D4-43B7-B257-8EF61A6F206E}] => (Allow) LPort=1980
FirewallRules: [{B3A05D41-5221-4CEA-A1FF-EB5D06D0CEE5}] => (Allow) LPort=1900
FirewallRules: [{293CB3C6-CDCA-4730-8D8E-F3D13178A20B}] => (Allow) LPort=1900
FirewallRules: [{86B4262D-C3C6-46AE-AA8D-D9B49DCCF0A1}] => (Allow) LPort=8117
FirewallRules: [{71F11BB9-3F9C-4A6F-8D8D-9CAE81F9971E}] => (Allow) C:\Program Files (x86)\Opera\45.0.2552.881\opera.exe
FirewallRules: [{E1C15878-1777-4C80-B8BE-291C98B1ED1B}] => (Allow) C:\Program Files (x86)\Opera\45.0.2552.888\opera.exe
==================== Wiederherstellungspunkte =========================
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (05/31/2017 07:49:48 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Hardy\Desktop\NÜTZLICH\Antivir-Zeug\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/31/2017 06:32:46 PM) (Source: MsiInstaller) (EventID: 1002) (User: JAMES)
Description: Nicht erwarteter oder fehlender Wert (Name: "PackageName", Wert: "") für Schlüssel "HKLM\Software\Classes\Installer\Products\D139E7FE48CDB174D86B8A3385904547\SourceList".
Error: (05/31/2017 04:37:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: vlc.exe, Version: 2.1.5.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.18438, Zeitstempel: 0x57ae642e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000546fb
ID des fehlerhaften Prozesses: 0x3f68
Startzeit der fehlerhaften Anwendung: 0x01d2da1b591eb58b
Pfad der fehlerhaften Anwendung: C:\Program Files\VideoLAN\VLC\vlc.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: 9ac1ae1c-460e-11e7-8240-408d5c71352e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/31/2017 04:14:15 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20413 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 16f0
Startzeit: 01d2da176fdef975
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 68b348a3-460b-11e7-8240-408d5c71352e
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (05/30/2017 06:37:45 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/30/2017 05:34:54 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/30/2017 05:13:48 PM) (Source: MsiInstaller) (EventID: 1002) (User: JAMES)
Description: Nicht erwarteter oder fehlender Wert (Name: "PackageName", Wert: "") für Schlüssel "HKLM\Software\Classes\Installer\Products\D139E7FE48CDB174D86B8A3385904547\SourceList".
Error: (05/30/2017 12:48:07 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/30/2017 12:45:48 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\program files (x86)\eset\eset online scanner\ESETSmartInstaller.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Error: (05/30/2017 12:44:54 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "c:\users\hardy\desktop\nÜtzlich\antivir-zeug\esetsmartinstaller_deu.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.
Systemfehler:
=============
Error: (05/31/2017 10:42:47 PM) (Source: DCOM) (EventID: 10010) (User: JAMES)
Description: Der Server "{9AA46009-3CE0-458A-A354-715610A075E6}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/31/2017 10:42:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "lirsgt" wurde aufgrund folgenden Fehlers nicht gestartet:
Die digitale Signatur dieser Datei kann nicht überprüft werden. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um böswillige Software aus einer unbekannten Quelle handelt, installiert.
Error: (05/31/2017 10:42:17 PM) (Source: DCOM) (EventID: 10010) (User: JAMES)
Description: Der Server "{9AA46009-3CE0-458A-A354-715610A075E6}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/31/2017 10:42:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "atksgt" wurde aufgrund folgenden Fehlers nicht gestartet:
Die digitale Signatur dieser Datei kann nicht überprüft werden. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um böswillige Software aus einer unbekannten Quelle handelt, installiert.
Error: (05/31/2017 10:39:43 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI5
Error: (05/31/2017 10:39:17 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
Es wird bereits eine Instanz des Dienstes ausgeführt.
Error: (05/31/2017 10:39:14 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "FailureActions" aufgrund folgenden Fehlers fehlgeschlagen:
Zugriff verweigert
Error: (05/31/2017 10:38:48 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "HP CASL Framework Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (05/31/2017 10:38:48 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "HP Support Solutions Framework Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (05/31/2017 10:38:47 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
CodeIntegrity:
===================================
Date: 2017-05-31 22:49:38.167
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-31 22:49:37.996
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-31 22:46:03.926
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-31 22:46:03.727
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-31 22:42:38.086
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\msvcp140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-31 22:42:37.125
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\msvcp140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-31 22:42:35.099
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\vcruntime140.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-31 22:42:20.329
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\lirsgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-31 22:42:10.634
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\atksgt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-31 19:55:33.353
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\AVG\Av\avgidsagenta.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Prozentuale Nutzung des RAM: 29%
Installierter physikalischer RAM: 8144.59 MB
Verfügbarer physikalischer RAM: 5714.49 MB
Summe virtueller Speicher: 8544.59 MB
Verfügbarer virtueller Speicher: 5675.63 MB
==================== Laufwerke ================================
Drive c: (OS) (Fixed) (Total:918.27 GB) (Free:225.44 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (Recovery Image) (Fixed) (Total:10.98 GB) (Free:0.19 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt ============================
|
|
| Themen zu Browser-Hijacker(?) will nicht verschwinden |
| .com, antimalware, browser, desktop, diverse, firefox, folge, forum, free, gen, google, hintergrund, lag, malwarebytes, musik, problem, profi, programme, prozess, remover, seite, startseite, suche, task-manager, tool |
Linear-Darstellung
