| Chillinger | 30.01.2016 17:31 |
Und hier noch das zweite FRST-Logfile: Addition.txt: Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:27-01-2016
durchgeführt von chill (2016-01-30 15:20:43)
Gestartet von F:\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2014-05-14 17:58:58)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2652397626-2718183193-1304664375-500 - Administrator - Disabled)
chill (S-1-5-21-2652397626-2718183193-1304664375-1000 - Administrator - Enabled) => C:\Users\chill
Gast (S-1-5-21-2652397626-2718183193-1304664375-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2652397626-2718183193-1304664375-1005 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20056 - Adobe Systems Incorporated)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Flash Player 20 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0407-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Amazon Music (HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\Amazon Amazon Music) (Version: 3.10.0.928 - Amazon Services LLC)
Anno 2070 (HKLM-x32\...\Steam App 48240) (Version: - BlueByte)
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9668 - Perfect World Entertainment)
ArcSoft TotalMedia 3.5 (HKLM-x32\...\{74292F90-895A-4FC6-A692-9641532B1B63}) (Version: 3.5.28.388 - ArcSoft)
Ashampoo Burning Studio FREE v.1.14.5 (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.14.5 - Ashampoo GmbH & Co. KG)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.2.1 - ASUS)
ASUS U3100 Mini Plus DVB-T TUNER (HKLM-x32\...\{49804761-518A-43F5-9805-BA171E3A01D8}) (Version: 95.20.2.2 - ASUSTeK COMPUTER INC.)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.3 - ASUS)
Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.115 - Atheros)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.8.8 - Atheros Communications Inc.)
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 9.2 - Atheros)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0017 - ASUS)
Audiosurf 2 (HKLM-x32\...\Steam App 235800) (Version: - Dylan Fitterer)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.1.2245 - AVAST Software)
AxCrypt 1.7.3156.0 (HKLM\...\{8B49CDB9-824C-44D6-A5D3-D0235D3030B8}) (Version: 1.7.3156.0 - Axantum Software AB)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
Clementine (HKLM-x32\...\Clementine) (Version: 1.2.3 - Clementine)
CPUID HWMonitor 1.27 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
Creative MediaSource 5 (HKLM-x32\...\{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}) (Version: 5.26 - Creative Technology Limited)
Defiance (HKLM-x32\...\Steam App 224600) (Version: - Trion Worlds, Inc.)
Dropbox (HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.)
Elite Dangerous Launcher version 0.4.2649.0 (HKLM-x32\...\{696F8871-C91D-4CB1-825D-36BE18065575}_is1) (Version: 0.4.2649.0 - Frontier Developments)
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 16.1.20150309 - Landesfinanzdirektion Thüringen)
ETDWare PS/2-X64 10.5.9.0 (HKLM\...\Elantech) (Version: 10.5.9.0 - ELAN Microelectronic Corp.)
f.lux (HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\Flux) (Version: - )
Ferret Gaming Mouse driver (HKLM-x32\...\Ferret Gaming Mouse) (Version: - )
Free YouTube Download version 3.2.49.1122 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.49.1122 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.41.623 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.41.623 - DVDVideoSoft Ltd.)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Geiss for Winamp 2x (remove only) (HKLM-x32\...\vis_geis.dllWinamp) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.97 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.3.214 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
Java 8 Update 71 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418071F0}) (Version: 8.0.710.15 - Oracle Corporation)
K-Lite Codec Pack 10.9.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.9.5 - )
LibreOffice 4.2.7.2 (HKLM-x32\...\{A313C39F-79A7-408B-97EE-8F958407D694}) (Version: 4.2.7.2 - The Document Foundation)
Life Is Strange™ (HKLM-x32\...\Steam App 319630) (Version: - DONTNOD Entertainment)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
MechWarrior Online (HKLM-x32\...\{9f17023b-d04f-432b-b08a-3bb4c3a7ed3c}) (Version: 1.6.0.0 - Piranha Games Inc.)
MechWarrior Online (x32 Version: 1.6.1.0 - Piranha Games Inc.) Hidden
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{e6e75766-da0f-4ba2-9788-6ea593ce702d}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 42.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 de)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0.0.5780 - Mozilla)
Mozilla Thunderbird 38.5.1 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.5.1 (x86 de)) (Version: 38.5.1 - Mozilla)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.9 - Notepad++ Team)
NVIDIA 3D Vision Treiber 361.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 361.75 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.9.1.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.9.1.35 - NVIDIA Corporation)
NVIDIA Grafiktreiber 361.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 361.75 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Opera Stable 34.0.2036.50 (HKLM-x32\...\Opera 34.0.2036.50) (Version: 34.0.2036.50 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
PDF Split And Merge Basic (HKLM\...\{C91B24F6-1629-11E2-B696-21676188709B}) (Version: 2.2.2 - Andrea Vacondio)
PDF24 Creator 7.0.6 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
REALTEK DTV USB DEVICE (HKLM-x32\...\{DDBB7C89-1A09-441E-AA0F-6AA465755C17}) (Version: 1.00.0000 - Realtek)
Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SHIELD Streaming (Version: 4.1.0260 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.9.1.35 - NVIDIA Corporation) Hidden
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.109 - Skype Technologies S.A.)
SleepTimer Ultimate 1.2 (HKLM-x32\...\{0EE56463-49B2-45E1-B74F-3E0139DBC986}_is1) (Version: - Christian Handorf)
Sound Blaster Play! (HKLM-x32\...\{6C8D0421-2896-45E0-AFDA-960BC2E2E2EF}) (Version: 1.1 - Creative Technology Limited)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.53254 - TeamViewer)
The Stanley Parable (HKLM-x32\...\The Stanley Parable_is1) (Version: - )
The Walking Dead (HKLM-x32\...\Steam App 207610) (Version: - )
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
UE BOOM Update-Assistent (HKLM-x32\...\{469168A6-260B-4104-B63F-CC185E0340A5}) (Version: 1.4.51 - Logitech, Inc.)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Deployment Tools (HKLM-x32\...\{BFC9778E-9765-C94C-C082-C2514F8DEB9B}) (Version: 8.59.25584 - Microsoft)
Windows PE x86 x64 (HKLM-x32\...\{F89D69CA-6EE1-E037-DD3B-08CDDE1BED1C}) (Version: 8.59.25584 - Microsoft)
Windows PE x86 x64 wims (HKLM-x32\...\{85F4ACB1-E7DC-C3C6-F4FD-BB936DF2695E}) (Version: 8.59.25584 - Microsoft)
WISO steuer:Sparbuch 2016 (HKLM-x32\...\{29F2BB97-5AE0-4F2D-A3E0-523EA20B8034}) (Version: 23.00.1146 - Buhl Data Service GmbH)
World of Warships (HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net)
XCOM: Enemy Unknown (HKLM-x32\...\Steam App 200510) (Version: - Firaxis Games)
XnView 2.22 (HKLM-x32\...\XnView_is1) (Version: 2.22 - Gougelet Pierre-e)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\chill\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\chill\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\chill\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\chill\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\chill\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll => Keine Datei
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {2EFB0980-FB3E-4980-A34D-4A1BB76B5853} - System32\Tasks\{4F20A11B-571E-4B8C-9BF4-8BC9A3394689} => pcalua.exe -a "C:\Program Files (x86)\Winamp\uninst-vis_geis.dll.exe"
Task: {4EA6CD7E-9399-4605-8EA1-51AB7DC1E523} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {5576D679-AAB9-4E02-A4A7-6B97767C116B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {570F7D40-B683-492C-BF3E-80E46D4AC772} - System32\Tasks\LifeChatTask => C:\Program Files\Microsoft LifeChat\LifeChat.exe
Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {5D4AEC72-FEED-4CF5-B5F7-6FB77175F472} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2652397626-2718183193-1304664375-1000UA => C:\Users\chill\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-15] (Dropbox, Inc.)
Task: {6E65853B-56C8-450A-857A-2FFB985A829D} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-01-13] ()
Task: {7AA3BBB7-53FD-451D-A4E3-CF0A2EEF9783} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-04-06] (ASUSTek Computer Inc.)
Task: {7DBC4B14-EFE8-4F91-AF54-1ABCB98F84E3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {7EA61267-0CD6-43A5-8599-078E1BEE2A77} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {83B92A46-EFAC-44B4-8A0D-7ACA3AEAD59F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {89059F30-F136-4848-957E-26FE9D902543} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-01-16] (AVAST Software)
Task: {8E720EDD-EAC5-45D6-8F2E-819D8F3BB515} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-02-15] (ASUS)
Task: {8FD4EB50-0CDB-41F2-B865-B2AF7306CE7C} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-01-20] (AVAST Software)
Task: {9B6BE084-D7E9-4FA1-B522-8991C1AA1B81} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2652397626-2718183193-1304664375-1000Core => C:\Users\chill\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-15] (Dropbox, Inc.)
Task: {9B7A233B-6745-4F19-82C9-908882F6BCFF} - System32\Tasks\{ADBA87E5-FA0B-45AB-AC4E-61693AC9EF2B} => pcalua.exe -a C:\Users\chill\AppData\Local\Temp\Temp1_MCY_U3100minidvbt_31221.zip\MCY_U3100minidvbt_31221\setup.exe
Task: {A64EF3CC-2FD8-4BE0-A376-D73D61291239} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {A8AED5EA-A2A6-406C-9A57-E78A5975A325} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_286_pepper.exe [2016-01-21] (Adobe Systems Incorporated)
Task: {BDEBF7A5-7DFA-4499-9735-8B8A21AD7CDE} - System32\Tasks\Opera scheduled Autoupdate 1440690865 => C:\Program Files (x86)\Opera\launcher.exe [2016-01-18] (Opera Software)
Task: {CEBD4E2A-ECB3-4BB9-ADBF-7F92B703E740} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {D34E56BB-0211-4DF8-9F4D-40105E53671A} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc
Task: {EB738F47-E992-4A1E-ACA0-08AC127D59FF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-21] (Adobe Systems Incorporated)
Task: {EEC30CD6-D8F4-4C18-9E21-DEF9D76E9C3E} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-07-17] (ASUSTek Computer Inc.)
Task: {F55C2C4B-6B8B-46A8-9F3E-3FD401FD7419} - System32\Tasks\avastBCLRestartS-1-5-21-2652397626-2718183193-1304664375-1000 => Firefox.exe
Task: {FD0D6912-68CE-4E0A-B485-1CD87B556BBD} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_286_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2652397626-2718183193-1304664375-1000Core.job => C:\Users\chill\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2652397626-2718183193-1304664375-1000UA.job => C:\Users\chill\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2014-05-15 09:32 - 2016-01-23 02:04 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2010-07-14 15:11 - 2010-07-14 15:11 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2015-12-22 08:26 - 2016-01-23 03:55 - 00291264 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-01-16 21:30 - 2016-01-16 21:30 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-01-16 21:30 - 2016-01-16 21:30 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-01-30 14:06 - 2016-01-30 14:06 - 02819072 _____ () C:\Program Files\AVAST Software\Avast\defs\16013000\algo.dll
2016-01-16 21:30 - 2016-01-16 21:30 - 00469008 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2015-05-04 18:15 - 2016-01-23 03:55 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-12-10 20:46 - 2015-10-31 01:59 - 00034768 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd
2015-12-10 20:46 - 2015-10-31 02:00 - 00019408 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\faulthandler.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00022848 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\Crypto.Random.OSRNG.winrandom.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00023352 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\Crypto.Util._counter.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00042296 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\Crypto.Cipher._AES.pyd
2015-12-10 20:46 - 2015-10-31 01:59 - 00116688 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\pywintypes27.dll
2015-12-10 20:46 - 2015-10-31 01:59 - 00093640 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\_ctypes.pyd
2015-12-10 20:46 - 2015-10-31 01:59 - 00018376 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\select.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00019760 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd
2015-12-10 20:46 - 2015-10-31 02:00 - 00105928 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\win32api.pyd
2015-12-10 20:46 - 2015-10-31 01:59 - 00392144 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\pythoncom27.dll
2015-12-10 20:46 - 2015-12-08 22:36 - 00381752 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd
2015-12-10 20:46 - 2015-10-31 01:59 - 00692688 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\unicodedata.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00020816 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd
2015-12-10 20:46 - 2015-10-31 02:00 - 00109520 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 01737032 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00020808 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00020800 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\_cffi_python_x66cf7a7cx17a72769.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00021840 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00038696 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\fastpath.pyd
2015-12-10 20:46 - 2015-10-31 02:00 - 00024528 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\win32event.pyd
2015-12-10 20:46 - 2015-10-31 02:00 - 00020936 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\mmapfile.pyd
2015-12-10 20:46 - 2015-10-31 02:00 - 00114640 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\win32security.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00021320 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd
2015-12-10 20:46 - 2015-10-31 02:00 - 00124880 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\win32file.pyd
2015-12-10 20:46 - 2015-10-31 02:00 - 00030160 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\win32pipe.pyd
2015-12-10 20:46 - 2015-10-31 02:00 - 00043472 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\win32process.pyd
2015-12-10 20:46 - 2015-10-31 02:00 - 00175560 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\win32gui.pyd
2015-12-10 20:46 - 2015-10-31 02:00 - 00028616 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\win32ts.pyd
2015-12-10 20:46 - 2015-10-31 02:00 - 00024016 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\win32clipboard.pyd
2015-12-10 20:46 - 2015-10-31 02:00 - 00048592 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\win32service.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00024392 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd
2015-12-10 20:46 - 2015-10-31 02:00 - 00036296 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\librsync.dll
2015-12-10 20:46 - 2015-10-31 02:00 - 00024016 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\win32profile.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00117056 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\breakpad.client.windows.handler.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00023376 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd
2015-12-10 20:46 - 2015-10-31 01:59 - 00134608 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\_elementtree.pyd
2015-12-10 20:46 - 2015-10-31 01:59 - 00134088 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\pyexpat.pyd
2015-12-10 20:46 - 2015-10-31 02:00 - 00240584 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\jpegtran.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00020280 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00052024 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00021304 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\Crypto.Util.strxor.pyd
2015-12-10 20:46 - 2015-10-31 02:00 - 00350152 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\winxpgui.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00084792 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL
2015-12-10 20:46 - 2015-12-08 22:36 - 01826608 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd
2015-12-10 20:46 - 2015-10-31 02:00 - 00083912 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\sip.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 03891504 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 01950000 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00519984 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00133936 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00225080 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00207672 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00024904 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00486704 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.pyd
2015-12-10 20:46 - 2015-12-08 22:36 - 00357680 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.pyd
2015-03-04 22:45 - 2015-10-31 02:01 - 00019920 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\QtQuick.2\qtquick2plugin.dll
2015-03-04 22:45 - 2015-10-31 02:00 - 00786904 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-07-29 17:48 - 2015-10-31 02:00 - 00063448 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-03-04 22:45 - 2015-10-31 02:00 - 00019408 _____ () C:\Users\chill\AppData\Roaming\Dropbox\bin\QtQuick\Window.2\windowplugin.dll
2014-07-05 16:22 - 2014-05-13 11:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-07-05 16:22 - 2014-05-13 11:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-07-05 16:22 - 2014-05-13 11:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-07-05 16:22 - 2012-08-23 09:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-07-05 16:22 - 2012-04-03 16:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2016-01-16 21:30 - 2016-01-16 21:30 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-02-02 19:09 - 2011-08-17 15:45 - 00074240 _____ () C:\Windows\SysWOW64\CmdRtr.DLL
2015-02-02 19:09 - 2011-12-16 17:17 - 00246272 _____ () C:\Windows\SysWOW64\APOMngr.DLL
2016-01-11 10:36 - 2016-01-11 10:36 - 00932032 ____R () C:\Program Files (x86)\Skype\Phone\ssScreenVVS2.dll
2016-01-29 01:13 - 2016-01-27 18:39 - 01632584 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.97\libglesv2.dll
2016-01-29 01:13 - 2016-01-27 18:39 - 00087880 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.97\libegl.dll
2016-01-29 01:13 - 2016-01-27 18:39 - 16799048 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.97\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData:$SS_DESCRIPTOR_LBP6VPVFLVGVVFB84LTSUTB92PFNPC7BPV4XFJDMNGTFB5V5NBJ5TBBJMT9Y0N96GMP3V0GRUEF39X8XHH0TCFUL44FTBX4MLSWPBXRTF6VEKLFEJK35PNX0WHNGT9LSVEVF1VTVVTVXVVD
AlternateDataStreams: C:\Users\All Users:$SS_DESCRIPTOR_LBP6VPVFLVGVVFB84LTSUTB92PFNPC7BPV4XFJDMNGTFB5V5NBJ5TBBJMT9Y0N96GMP3V0GRUEF39X8XHH0TCFUL44FTBX4MLSWPBXRTF6VEKLFEJK35PNX0WHNGT9LSVEVF1VTVVTVXVVD
AlternateDataStreams: C:\ProgramData\Anwendungsdaten:$SS_DESCRIPTOR_LBP6VPVFLVGVVFB84LTSUTB92PFNPC7BPV4XFJDMNGTFB5V5NBJ5TBBJMT9Y0N96GMP3V0GRUEF39X8XHH0TCFUL44FTBX4MLSWPBXRTF6VEKLFEJK35PNX0WHNGT9LSVEVF1VTVVTVXVVD
AlternateDataStreams: C:\ProgramData\Application Data:$SS_DESCRIPTOR_LBP6VPVFLVGVVFB84LTSUTB92PFNPC7BPV4XFJDMNGTFB5V5NBJ5TBBJMT9Y0N96GMP3V0GRUEF39X8XHH0TCFUL44FTBX4MLSWPBXRTF6VEKLFEJK35PNX0WHNGT9LSVEVF1VTVVTVXVVD
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
Da befinden sich 7865 mehr Seiten.
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\...\123simsen.com -> www.123simsen.com
Da befinden sich 7865 mehr Seiten.
==================== Hosts Inhalt: ==========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2016-01-23 13:17 - 00450709 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
127.0.0.1 www.123moviedownload.com
Da befinden sich 15461 zusätzliche Einträge.
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2652397626-2718183193-1304664375-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\chill\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TMMonitor.lnk => C:\Windows\pss\TMMonitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^chill^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk => C:\Windows\pss\Adobe Gamma.lnk.Startup
MSCONFIG\startupreg: Amazon Music => "C:\Users\chill\AppData\Local\Amazon Music\Amazon Music Helper.exe"
MSCONFIG\startupreg: ArcSoft Connection Service => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
MSCONFIG\startupreg: DivXMediaServer => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: Dropbox Update => "C:\Users\chill\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
MSCONFIG\startupreg: Ferret Gaming Mouse => "C:\Program Files (x86)\SPEEDLINK Ferret Gaming Mouse\GMouse.exe" /hide
MSCONFIG\startupreg: iDailyDiary => "F:\DOKUME~1\IDAILY~1\iDD.exe" /LOGMIN
MSCONFIG\startupreg: PDFPrint => C:\Program Files (x86)\PDF24\pdf24.exe
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: Spybot-S&D Cleaning => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{549A00BD-3D09-42E8-9514-3BD314D6446B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{15478788-4D4C-4E47-B926-ED4FDE9F6687}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{3A1AF726-B79A-4D8D-A0D7-B8ACE5872DF4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{00A82B7B-55C4-4213-B3AD-5585FBE3B46D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{7E8995E1-E94D-4539-9015-551A6FA0FAED}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 2070\Anno5.exe
FirewallRules: [{7F1A39AE-0546-4561-8DA3-78C0F81196B2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 2070\Anno5.exe
FirewallRules: [{9C645EEE-13D6-4868-B30C-1AEC72CEDFBD}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{EB06DFFD-D443-4AF2-A331-BCC355C5964B}] => (Allow) C:\Users\chill\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{73FEE9E8-5217-4AB5-A433-FF3E4EAB8A15}] => (Allow) C:\Users\chill\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [TCP Query User{011EE06F-1DC4-4D46-9B58-7D4837C0E4B4}C:\users\chill\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\chill\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{5FB780D3-2677-48F0-835B-026374A19BE7}C:\users\chill\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\chill\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{55F43D62-D347-48AD-9740-197F347F49EC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{04543E3F-6C96-4567-9B04-EDF9690E9E0F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{69714DC5-3D19-483D-A412-A67B2E72144C}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{3C954C5E-C495-4893-84E2-A10D016B01B1}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{08DE7498-1D11-42BB-960D-F9907BCB5B73}C:\program files (x86)\the stanley parable\thestanleyparable.exe] => (Allow) C:\program files (x86)\the stanley parable\thestanleyparable.exe
FirewallRules: [UDP Query User{5D305AD4-13EA-4415-8846-1983C141590F}C:\program files (x86)\the stanley parable\thestanleyparable.exe] => (Allow) C:\program files (x86)\the stanley parable\thestanleyparable.exe
FirewallRules: [{7E2B6557-7952-4F2E-B06E-DA1CE1B82DE9}] => (Allow) C:\program files (x86)\the stanley parable\thestanleyparable.exe
FirewallRules: [{F6DF95D1-38F5-4684-B94E-C34F9337F3A4}] => (Allow) C:\program files (x86)\the stanley parable\thestanleyparable.exe
FirewallRules: [{AD434063-0D2B-4421-8C37-D16CFA87BA2A}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{7A5D3604-DB79-4AA0-8D64-6003A7F0E6CD}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{34206F00-4C7F-4F91-AACE-392DBE8FB368}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{807FEC95-6682-4591-B7ED-BF59F278BDD2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{68969BB5-0D1E-4202-BD8B-E08FC2E97806}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{FDF393AF-3C0E-4280-8191-4732A870C7DC}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{D36E71F1-6BB9-47FD-90E2-FAC13963CDCB}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{0349485D-6E5E-4DD3-A192-AC8AB9DBB33A}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{3E40638A-0073-4F9B-93F1-9841719F07F1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Audiosurf 2\Audiosurf2.exe
FirewallRules: [{A261CCD5-788E-451D-B66C-DA1DF3E24CCA}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Audiosurf 2\Audiosurf2.exe
FirewallRules: [{06EA8760-6C5D-4216-BE8E-87DE742BC4BF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D39F80BC-599A-4BCF-89B8-C1AD65962522}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{6A56D597-CA05-420B-B80B-091ACD80FFE6}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{ACD6EAAD-4B2E-4AE3-B408-2EA7D47579B9}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{0EF94A52-C3B8-4E53-B2D4-CB11D4ED6475}] => (Allow) F:\wow\StarCraft II\StarCraft II.exe
FirewallRules: [{272312FC-6C67-4E4D-A678-37A70E39D0FF}] => (Allow) F:\wow\StarCraft II\StarCraft II.exe
FirewallRules: [TCP Query User{58CFD488-6F7F-428A-AA64-DA0D2A36B7F8}F:\wow\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) F:\wow\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{74DD67EC-B59F-4CE8-A51C-186A359E53DB}F:\wow\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) F:\wow\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe
FirewallRules: [{78C77E28-B05E-46F5-99FB-956456559D3F}] => (Allow) F:\wow\Hearthstone\Hearthstone.exe
FirewallRules: [{5EE44F94-3AC5-4735-B979-B6F5774B7AD6}] => (Allow) F:\wow\Hearthstone\Hearthstone.exe
FirewallRules: [{0DFD8F18-2470-4494-A264-C657A5DD50F7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{5A274AF4-6882-4EC6-A1CE-7D0CA5F2455D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{0A9F5331-77CE-4524-9CDC-8811336DAD0B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{111AD47A-AC48-4AF8-BB88-C1B2324040F3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B7E95CBA-E02F-41C0-A5B8-C5EB7E7CD20E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{0E82224A-D0E4-4D9D-87C2-91AB58418039}F:\wow\starcraft ii\versions\base32283\sc2.exe] => (Allow) F:\wow\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [UDP Query User{2EC97971-6F8F-4B43-B4B8-26F2F1291B4A}F:\wow\starcraft ii\versions\base32283\sc2.exe] => (Allow) F:\wow\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{347B98CB-A0EF-41A3-A6DE-0F67F02A5407}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Defiance\Patcher.exe
FirewallRules: [{FC16C150-3A68-45A8-98AD-B8F40610DF39}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Defiance\Patcher.exe
FirewallRules: [TCP Query User{7713C785-A811-4B02-95B6-4F10D14A9186}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [UDP Query User{98BA8486-640F-44AD-A311-C05BBAD8DB23}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [{6BE64422-2C62-4891-BF18-DE06210AFE14}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe
FirewallRules: [{0009D421-133D-4209-B196-9BC8F58F4010}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe
FirewallRules: [{E3067ED7-DDF5-4301-9F31-200F26456FDD}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{11758278-1575-4EA7-8FB2-5A947823BECA}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{55270D9B-DEBA-43BA-8CD4-F1457905305B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 2070\Anno5.exe
FirewallRules: [{79611242-CA6E-4B10-A307-61CEC49FE3F3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Anno 2070\Anno5.exe
FirewallRules: [TCP Query User{8CD48FC9-C69E-454F-8788-AE7813EA304C}C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe
FirewallRules: [UDP Query User{FE2AD36E-5CE1-43EE-85A4-083EE6A037A2}C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe
FirewallRules: [{8B8C0ACB-0382-41FE-8C72-5FB75E73AEA2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{EE7C7B88-2765-4F95-804B-56ADDCAB7D95}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F41A642C-6815-4B5A-A37B-EC4B622CEAA1}] => (Allow) C:\Program Files (x86)\simplitec\KMPFaster\PowerSuite.exe
FirewallRules: [{7FB004BB-8E14-40FB-96C5-2CAAB580D85A}] => (Allow) C:\Program Files (x86)\simplitec\KMPFaster\PowerSuite.exe
FirewallRules: [{2F85DD17-9137-4C6E-86A6-701FF0A24241}] => (Allow) C:\Program Files (x86)\simplitec\KMPFaster\ServiceProvider.exe
FirewallRules: [{67FDD57B-D54F-40F6-867B-798B0796851E}] => (Allow) C:\Program Files (x86)\simplitec\KMPFaster\ServiceProvider.exe
FirewallRules: [{F0E4BA69-D504-4929-8FD7-94B8014D007D}] => (Allow) C:\Program Files (x86)\simplitec\KMPFaster\ServiceProvider.exe
FirewallRules: [{C1AFABA1-3C7E-4327-B9E5-873CF0CCE185}] => (Allow) C:\Program Files (x86)\simplitec\KMPFaster\ServiceProvider.exe
FirewallRules: [{14F72657-0702-49D7-86D9-A0EDCF297121}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{1428D829-842F-480B-B0AE-CFAE973EDEB2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [TCP Query User{31CBD88A-3BDC-49DC-9317-9D47CB47EDDC}C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe
FirewallRules: [UDP Query User{E404FB33-C3B8-4272-BD3C-A8E6AD0AB77A}C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe
FirewallRules: [{87927173-8131-49F6-8398-36F55738C1EA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{C727337F-6432-46FC-96E5-F88CE186E32C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{35AAADE4-C801-42DB-AADF-67455B6D6CB4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{C6FFAEAF-3F3F-400F-975D-DE3329F92145}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{ED3AAA42-516D-406F-A163-692F96B8D669}] => (Allow) C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TotalMedia.exe
FirewallRules: [{1A5EDB62-6978-4ADC-8BC8-A20184AB0143}] => (Allow) C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TotalMedia.exe
FirewallRules: [{D44232BC-397B-441C-AD7D-7227345ABFD1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{F83E7481-3A53-44AA-A683-3CB966A625F9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{C84C4BD4-68B3-46D8-AD0C-7F9087B8D5E3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
==================== Wiederherstellungspunkte =========================
20-01-2016 14:06:47 Installed Connect Service
21-01-2016 19:42:53 Installed Samsung_MonSetup
26-01-2016 23:24:53 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Bluetooth module
Description: Bluetooth module
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Atheros Communications
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (01/25/2016 09:09:26 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm clementine.exe, Version 1.2.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1a28
Startzeit: 01d157ac15112282
Endzeit: 6
Anwendungspfad: C:\Program Files (x86)\Clementine\clementine.exe
Berichts-ID: 868dd7ba-c39f-11e5-8ce2-3085a924c82c
Error: (01/23/2016 01:52:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4
Name des fehlerhaften Moduls: DUI70.dll, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bdf25
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000001134
ID des fehlerhaften Prozesses: 0x6e8
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3
Error: (01/21/2016 07:23:07 PM) (Source: SDUpdSvc.exe) (EventID: 0) (User: )
Description: Der Dienstprozess konnte keine Verbindung mit dem Dienstcontroller herstellen
Error: (01/20/2016 04:13:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm wmplayer.exe, Version 12.0.7601.18840 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 13e8
Startzeit: 01d15330901030c1
Endzeit: 0
Anwendungspfad: C:\Program Files (x86)\Windows Media Player\wmplayer.exe
Berichts-ID: d519fd7b-bf23-11e5-82b9-3085a924c82c
Error: (01/20/2016 04:13:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: wmpnetwk.exe, Version: 12.0.7601.17514, Zeitstempel: 0x4ce7ae7f
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.19110, Zeitstempel: 0x568429dd
Ausnahmecode: 0x0000046b
Fehleroffset: 0x000000000000b16d
ID des fehlerhaften Prozesses: 0x1b60
Startzeit der fehlerhaften Anwendung: 0xwmpnetwk.exe0
Pfad der fehlerhaften Anwendung: wmpnetwk.exe1
Pfad des fehlerhaften Moduls: wmpnetwk.exe2
Berichtskennung: wmpnetwk.exe3
Error: (01/20/2016 04:13:05 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: wmplayer.exe, Version: 12.0.7601.18840, Zeitstempel: 0x55411584
Name des fehlerhaften Moduls: MSVCR100.dll, Version: 10.0.40219.325, Zeitstempel: 0x4df2be1e
Ausnahmecode: 0xc0000417
Fehleroffset: 0x0008af3e
ID des fehlerhaften Prozesses: 0x1b74
Startzeit der fehlerhaften Anwendung: 0xwmplayer.exe0
Pfad der fehlerhaften Anwendung: wmplayer.exe1
Pfad des fehlerhaften Moduls: wmplayer.exe2
Berichtskennung: wmplayer.exe3
Error: (01/06/2016 09:38:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.19045, Zeitstempel: 0x56259295
Ausnahmecode: 0xc015000f
Fehleroffset: 0x000000000006aeea
ID des fehlerhaften Prozesses: 0x1b70
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3
Error: (01/06/2016 09:38:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4
Name des fehlerhaften Moduls: SHELL32.dll, Version: 6.1.7601.18952, Zeitstempel: 0x55c3a0ed
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000005051e
ID des fehlerhaften Prozesses: 0x1b70
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3
Error: (01/06/2016 09:37:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4
Name des fehlerhaften Moduls: SHELL32.dll, Version: 6.1.7601.18952, Zeitstempel: 0x55c3a0ed
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000005051e
ID des fehlerhaften Prozesses: 0x1f0c
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3
Error: (01/06/2016 09:36:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.19045, Zeitstempel: 0x56259295
Ausnahmecode: 0xc015000f
Fehleroffset: 0x000000000006aeea
ID des fehlerhaften Prozesses: 0x650
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3
Systemfehler:
=============
Error: (01/30/2016 02:57:16 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
%%1056
Error: (01/30/2016 02:56:46 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (01/30/2016 02:56:46 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (01/30/2016 02:56:46 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Spybot-S&D 2 Security Center Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (01/30/2016 02:56:45 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Spybot-S&D 2 Updating Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (01/30/2016 02:56:45 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "NVIDIA Streamer Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (01/30/2016 02:56:45 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "NVIDIA Network Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (01/30/2016 02:56:45 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "MBAMService" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (01/30/2016 02:56:45 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "MBAMScheduler" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (01/30/2016 02:56:45 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "NVIDIA GeForce Experience Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-3610QM CPU @ 2.30GHz
Prozentuale Nutzung des RAM: 43%
Installierter physikalischer RAM: 8145.32 MB
Verfügbarer physikalischer RAM: 4595.34 MB
Summe virtueller Speicher: 16288.86 MB
Verfügbarer virtueller Speicher: 11913.59 MB
==================== Laufwerke ================================
Drive c: (Main) (Fixed) (Total:200 GB) (Free:25.77 GB) NTFS
Drive f: (Files) (Fixed) (Total:498.54 GB) (Free:95.32 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: F0E2E93D)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=498.5 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
Ich freue mich auf eure Rückmeldung.
Viele Grüße
Chill
Hallo noch einmal,
mir ist aufgefallen, dass das Popup nicht mehr kommt, seit ich Skype wieder beendet habe. Irgendwie könnte es also mit Skype zusammenhängen....
LG Chill |
Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Lesestoff:
AdwCleaner auf deinen Desktop.
FRST 32-Bit | FRST 64-Bit
Malwarebytes Anti-Malware 
SecurityCheck und:
