| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Watch4.de Seite öffnet sich ohne Aufforderung (Google Chrome / Windows 10)Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
28.11.2015, 12:02
| #1 |
 |  Watch4.de Seite öffnet sich ohne Aufforderung (Google Chrome / Windows 10) Hallo, ich habe das Problem seit heute, dass sich ungefragt Seiten von Watch4.de in Chrome öffnen. Das ganze könnte mit Skype zusammenhängen. Gestern war bei mir nach einem Reboot Skype plötzlich von der Festplatte verschwunden bis auf einige Verzeichnisse und Verknüpfungen. Da ich dachte, das ganze wäre passiert, weil ich den PC davor zum herunterfahren zwingen musste (beim Aufwachen aus dem Ruhezustand wacht er manchmal nicht richtig auf, Bildschirm bleibt schwarz usw), habe ich Skype neu heruntergeladen über das Tool "Skype herunterladen", das sich schon länger auf meinem PC befunden hatte. Nun am nächsten Tag hat das Watch4.de Gedöhns angefangen. Bisher ist es nur passiert, während Skype im Hintergrund geöffnet war und eben ist mir Skype auch noch aus dem Nichts abgestürzt, ohne dass ich damit interagiert hätte. Da mehrere Personen das Watch4 Problem schon hatten, habe ich schon mal den ersten Schritt ausgeführt, der in den anderen Threads immer epfohlen wurde: Der FRST-Scan. Die Logfiles kommen sofort. Ich hoffe, hier kann mir geholfen werden. Viele Grüße Tuwiuu Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:27-11-2015
durchgeführt von Lucas (Administrator) auf LUCAS-PC (28-11-2015 11:48:53)
Gestartet von C:\Users\Lucas\Desktop
Geladene Profile: Lucas (Verfügbare Profile: Lucas & DefaultAppPool)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Realtek) C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe
(Mr. John aka japamd) C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe
(EnTech Taiwan) C:\Program Files (x86)\softOSD\softOSD.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(AMD) C:\Windows\System32\atieclxx.exe
(EnTech Taiwan) C:\Windows\SysWOW64\softLCP.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Akamai Technologies, Inc.) C:\Users\Lucas\AppData\Local\Akamai\netsession_win.exe
(Flux Software LLC) C:\Users\Lucas\AppData\Local\FluxSoftware\Flux\flux.exe
(Akamai Technologies, Inc.) C:\Users\Lucas\AppData\Local\Akamai\netsession_win.exe
(John Mautari) C:\Program Files (x86)\RadeonPro\RadeonPro.exe
(Nenad Hrg (SoftwareOK.com)) C:\Users\Lucas\Desktop\Tools\AutoHideMouseCursor_x64.exe
(Dropbox, Inc.) C:\Users\Lucas\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(DivX, LLC) C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13307496 2011-10-17] (Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [8290584 2013-08-01] (Logitech Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-26] (Intel Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [448520 2015-06-24] (DivX, LLC)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-07-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861640 2015-06-26] (DivX, LLC)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
HKU\S-1-5-21-3446664835-2098160289-774733402-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd)
HKU\S-1-5-21-3446664835-2098160289-774733402-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Lucas\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3446664835-2098160289-774733402-1000\...\Run: [f.lux] => C:\Users\Lucas\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-21-3446664835-2098160289-774733402-1000\...\Run: [RadeonPro] => C:\Program Files (x86)\RadeonPro\RadeonPro.exe [2195584 2013-11-04] (John Mautari)
HKU\S-1-5-21-3446664835-2098160289-774733402-1000\...\Run: [AutoHideMouseCursor] => C:\Users\Lucas\Desktop\Tools\AutoHideMouseCursor_x64.exe [125952 2014-03-09] (Nenad Hrg (SoftwareOK.com))
HKU\S-1-5-21-3446664835-2098160289-774733402-1000\...\Run: [Dropbox Update] => C:\Users\Lucas\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-07-01] (Dropbox, Inc.)
HKU\S-1-5-21-3446664835-2098160289-774733402-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50509440 2015-11-17] (Skype Technologies S.A.)
HKU\S-1-5-21-3446664835-2098160289-774733402-1000\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x00000000
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lucas\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lucas\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lucas\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lucas\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lucas\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lucas\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Lucas\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.)
Startup: C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-11-10]
ShortcutTarget: Dropbox.lnk -> C:\Users\Lucas\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk [2012-10-09]
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{30a1f47d-db3b-484f-95f6-165c4e8932ec}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{492fa878-8dae-466a-ad68-bbb68f46be1f}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{5d613aa6-5cd2-436a-8735-754a4449b074}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{8d68d978-397e-4249-8a90-4e365408266e}: [NameServer] 217.0.43.113,217.0.43.97
Internet Explorer:
==================
HKU\S-1-5-21-3446664835-2098160289-774733402-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www1.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=BCAB3085A96E5974
HKU\S-1-5-21-3446664835-2098160289-774733402-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
HKU\S-1-5-21-3446664835-2098160289-774733402-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.giga.de/go/x05
SearchScopes: HKU\S-1-5-21-3446664835-2098160289-774733402-1000 -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www1.delta-search.com/?q={searchTerms}&affID=119816&babsrc=SP_ss&mntrId=BCAB3085A96E5974
SearchScopes: HKU\S-1-5-21-3446664835-2098160289-774733402-1000 -> {85AB0FDF-5BAD-4BB9-AC3E-1027BBC2DDBA} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYDE&apn_uid=52613C1B-8477-442E-B6A9-D6567F75E278&apn_sauid=282495D6-AFA9-4E8F-BA9C-5D147A228206
BHO: Kein Name -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> Keine Datei
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-10-29] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-29] (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\hcrof7p7.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-15] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2012-08-14] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2012-08-14] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=2.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2012-06-28] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll [2014-06-24] (Adobe Systems, Inc.)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2015-06-29] (DivX, LLC)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2012-08-14] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [Keine Datei]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-29] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2014-01-27] (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2012-08-14] (Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-3446664835-2098160289-774733402-1000: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2012-08-14] (Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-3446664835-2098160289-774733402-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Lucas\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-04-17] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3446664835-2098160289-774733402-1000: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2014-01-27] (Pando Networks)
FF Plugin HKU\S-1-5-21-3446664835-2098160289-774733402-1000: thehappycloud.com/HappyCloudPlugin -> C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll [2013-05-05] (The Happy Cloud)
Chrome:
=======
CHR dev: Chrome dev build erkannt! <======= ACHTUNG
CHR StartupUrls: Default -> "hxxp://www.startfenster.com","hxxp://www.giga.de/go/x05"
CHR Session Restore: Default -> ist aktiviert.
CHR Profile: C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (ProxFlow) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2015-08-03]
CHR Extension: (Magic Actions for YouTube™) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2015-10-13]
CHR Extension: (Squid Thing) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\acladlefcbpicihheonbnonmgdemeoco [2015-11-24]
CHR Extension: (BetterTTV) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-07-25]
CHR Extension: (TooManyTabs für Chrome) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\amigcgbheognjmfkaieeeadojiibgbdp [2014-08-27]
CHR Extension: (Google Docs) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-05]
CHR Extension: (Google Drive) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-12]
CHR Extension: (Turn Off the Lights) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2015-09-02]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2015-11-24]
CHR Extension: (YouTube) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-13]
CHR Extension: (Google-Suche) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-12]
CHR Extension: (PanicButton) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm [2015-11-12]
CHR Extension: (Google Docs Offline) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-24]
CHR Extension: (AdBlock) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-11-27]
CHR Extension: (Herp Derp for YouTube™) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioomnmgjblnnolpdgdhebainmfbipjoh [2015-04-17]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2014-12-31]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-25]
CHR Extension: (SpeakIt!) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgeolalilifpodheeocdmbhehgnkkbak [2015-11-27]
CHR Extension: (Google Mail) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-29]
CHR HKU\S-1-5-21-3446664835-2098160289-774733402-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx <nicht gefunden>
CHR HKLM-x32\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - <kein Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - <kein Path/update_url>
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9216 2015-03-12] (Hi-Rez Studios) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Datei ist nicht signiert]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328608 2015-08-03] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [121344 2012-02-07] () [Datei ist nicht signiert]
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [133632 2012-02-09] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-07] (Intel Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2057736 2015-09-17] (Electronic Arts)
R2 RadeonPro Support Service; C:\Program Files (x86)\RadeonPro\RadeonProSupport.exe [20608 2013-11-04] (Mr. John aka japamd) [Datei ist nicht signiert]
R2 Realtek11nSU; C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe [36864 2010-04-16] (Realtek) [Datei ist nicht signiert]
R2 softOSD; C:\Program Files (x86)\softOSD\softOSD.exe [291384 2010-12-18] (EnTech Taiwan)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5426448 2014-12-15] (TeamViewer GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R0 asahci64; C:\Windows\System32\drivers\asahci64.sys [49760 2011-09-21] (Asmedia Technology)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283200 2012-12-22] (DT Soft Ltd)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [25536 2012-02-09] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [25536 2012-02-09] ()
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [44992 2012-02-09] ()
R3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )
R1 se64a; C:\Windows\System32\Drivers\se64a.sys [14032 2007-05-03] (EnTech Taiwan)
R1 se64a; C:\Windows\SysWOW64\Drivers\se64a.sys [14032 2007-05-03] (EnTech Taiwan)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2015-11-27] ()
U3 idsvc; kein ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-11-28 11:48 - 2015-11-28 11:49 - 00025651 _____ C:\Users\Lucas\Desktop\FRST.txt
2015-11-28 11:48 - 2015-11-28 11:48 - 00000000 ____D C:\FRST
2015-11-28 11:47 - 2015-11-28 11:48 - 02349056 _____ (Farbar) C:\Users\Lucas\Desktop\FRST64.exe
2015-11-28 11:01 - 2015-11-28 11:01 - 00016148 _____ C:\WINDOWS\system32\LUCAS-PC_Lucas_HistoryPrediction.bin
2015-11-27 18:14 - 2015-11-27 18:14 - 00002642 _____ C:\Users\Public\Desktop\Skype.lnk
2015-11-27 18:14 - 2015-11-27 18:14 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-11-27 18:14 - 2015-11-27 18:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-11-27 18:13 - 2015-11-27 18:13 - 01504384 _____ (Skype Technologies S.A.) C:\Users\Lucas\Downloads\SkypeSetup.exe
2015-11-27 17:27 - 2015-11-27 17:27 - 00094656 _____ (CACE Technologies) C:\WINDOWS\system32\WPRO_41_2001woem.tmp
2015-11-26 23:24 - 2015-11-26 23:24 - 00001108 _____ C:\Users\Lucas\Desktop\Eclipse Jee Mars.lnk
2015-11-26 23:22 - 2015-11-26 23:22 - 00000000 ____D C:\Users\Lucas\eclipse
2015-11-26 23:19 - 2015-11-26 23:21 - 46355176 _____ C:\Users\Lucas\Downloads\eclipse-inst-win64.exe
2015-11-26 22:56 - 2015-11-26 22:56 - 00000000 ____D C:\Users\Lucas\apache-tomcat-7.0.65
2015-11-24 22:22 - 2015-11-24 22:37 - 00000000 ____D C:\Users\Lucas\Desktop\seminarbeurteilungen
2015-11-23 21:20 - 2015-11-23 21:21 - 00000088 _____ C:\Users\Lucas\Desktop\heimarbeit.txt
2015-11-14 21:20 - 2015-11-14 21:21 - 00000048 _____ C:\Users\Lucas\Desktop\bald schauen.txt
2015-11-10 19:48 - 2015-11-10 19:48 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-11-09 20:00 - 2015-11-09 20:00 - 00000000 _____ C:\Users\Lucas\Desktop\9ter 11er monatslinsen bekommen, in 10 tagen nachuntersuchung.txt
2015-11-08 20:10 - 2015-11-08 20:57 - 00000000 ____D C:\Users\Lucas\Documents\Euro Truck Simulator 2
2015-11-08 18:09 - 2015-11-08 18:09 - 00000000 ____D C:\Users\Lucas\AppData\LocalLow\Rain
2015-11-08 17:50 - 2015-11-08 17:50 - 00000222 _____ C:\Users\Lucas\Desktop\Euro Truck Simulator 2.url
2015-11-08 17:49 - 2015-11-08 17:49 - 00000222 _____ C:\Users\Lucas\Desktop\Teslagrad.url
2015-11-07 19:51 - 2015-11-07 19:51 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-11-07 19:51 - 2015-11-07 19:51 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2015-10-31 14:37 - 2015-10-31 14:37 - 00000000 ____D C:\Users\Lucas\.tooling
2015-10-31 14:28 - 2015-11-26 23:29 - 00000000 ____D C:\Users\Lucas\workspace
2015-10-31 14:28 - 2015-11-26 23:25 - 00000000 ____D C:\Users\Lucas\AppData\Local\Eclipse
2015-10-31 14:11 - 2015-11-26 23:24 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Eclipse
2015-10-31 14:07 - 2015-11-26 23:25 - 00000000 ____D C:\Users\Lucas\.p2
2015-10-31 14:07 - 2015-11-13 22:25 - 00000000 ____D C:\Users\Lucas\.eclipse
2015-10-29 21:26 - 2015-10-29 21:26 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Sun
2015-10-29 21:26 - 2015-10-29 21:26 - 00000000 ____D C:\Users\Lucas\.oracle_jre_usage
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-11-28 11:48 - 2015-07-10 10:05 - 00000000 ____D C:\Windows
2015-11-28 11:17 - 2012-10-06 16:45 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Skype
2015-11-28 11:05 - 2012-10-06 17:28 - 00000000 ____D C:\Program Files (x86)\Steam
2015-11-28 11:02 - 2014-04-13 18:45 - 00001132 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-28 11:02 - 2012-10-06 16:11 - 00000000 ___RD C:\Users\Lucas\Dropbox
2015-11-28 11:02 - 2012-10-06 16:10 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Dropbox
2015-11-28 11:02 - 2012-10-06 15:05 - 00000828 _____ C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2015-11-28 11:01 - 2015-08-21 13:57 - 00000000 __SHD C:\Users\Lucas\IntelGraphicsProfiles
2015-11-28 11:01 - 2015-08-03 00:41 - 00000000 ____D C:\Users\Lucas
2015-11-27 18:14 - 2012-10-06 16:45 - 00000000 ____D C:\ProgramData\Skype
2015-11-27 17:32 - 2015-08-03 00:40 - 02077062 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-27 17:32 - 2015-07-10 17:34 - 00883584 _____ C:\WINDOWS\system32\perfh007.dat
2015-11-27 17:32 - 2015-07-10 17:34 - 00195718 _____ C:\WINDOWS\system32\perfc007.dat
2015-11-27 17:32 - 2015-07-10 12:02 - 00000000 ____D C:\WINDOWS\INF
2015-11-27 17:27 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-27 17:27 - 2012-10-06 15:08 - 00034752 _____ C:\WINDOWS\system32\Drivers\WPRO_41_2001.sys
2015-11-26 22:54 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-25 22:58 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps
2015-11-24 18:43 - 2014-04-13 18:45 - 00001136 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-23 22:45 - 2015-09-12 08:35 - 00001136 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0ed2daac2b56f.job
2015-11-07 19:52 - 2012-10-06 21:51 - 00000000 ____D C:\Users\Lucas\Documents\my games
2015-11-01 13:58 - 2015-08-03 01:04 - 00002392 _____ C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-11-01 13:58 - 2015-08-03 01:04 - 00000000 ___RD C:\Users\Lucas\OneDrive
2015-10-31 18:36 - 2014-09-17 21:43 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Notepad++
2015-10-31 18:36 - 2014-09-17 21:43 - 00000000 ____D C:\Program Files (x86)\Notepad++
2015-10-31 16:12 - 2015-05-05 14:12 - 00000000 ____D C:\Users\Lucas\AppData\Local\Audible
2015-10-30 19:12 - 2012-10-10 23:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-30 19:11 - 2015-10-27 21:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2015-10-29 21:35 - 2013-10-18 12:37 - 00000000 ____D C:\ProgramData\Oracle
2015-10-29 21:27 - 2015-02-19 11:32 - 00000000 ____D C:\Program Files (x86)\Java
2015-10-29 21:27 - 2014-05-15 16:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-10-29 21:26 - 2015-02-19 11:33 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-10-29 21:26 - 2014-05-20 00:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2013-02-26 07:34 - 2013-02-26 07:34 - 0186552 _____ (Beepa P/L) C:\Program Files (x86)\fraps64.dll
2014-10-21 10:08 - 2015-01-16 15:55 - 0001439 _____ () C:\Users\Lucas\AppData\Roaming\SpeedRunnersLog.txt
2014-11-04 01:02 - 2014-11-27 22:28 - 0002916 _____ () C:\Users\Lucas\AppData\Roaming\TargetInvocationLog.txt
2006-12-11 18:13 - 2006-12-11 18:13 - 0097336 _____ (Un4seen Developments) C:\Users\Lucas\AppData\Local\bass.dll
2006-12-11 18:13 - 2006-12-11 18:13 - 0013872 _____ (Un4seen Developments) C:\Users\Lucas\AppData\Local\basscd.dll
2007-08-13 16:46 - 2007-08-13 16:46 - 0102912 _____ (Albert L Faber) C:\Users\Lucas\AppData\Local\CDRip.dll
2013-12-17 01:48 - 2013-12-17 01:48 - 0000093 _____ () C:\Users\Lucas\AppData\Local\fusioncache.dat
2007-08-13 16:46 - 2007-08-13 16:46 - 0155136 _____ () C:\Users\Lucas\AppData\Local\lame_enc.dll
2007-01-18 20:09 - 2007-01-18 20:09 - 0623616 _____ (Ivan Bischof ©2003 - 2005) C:\Users\Lucas\AppData\Local\No23 Recorder.exe
2005-08-23 21:34 - 2005-08-23 21:34 - 0029184 _____ () C:\Users\Lucas\AppData\Local\no23xwrapper.dll
2006-10-26 00:06 - 2006-10-26 00:06 - 0015872 _____ () C:\Users\Lucas\AppData\Local\ogg.dll
2013-05-30 02:34 - 2013-05-30 02:34 - 0001476 _____ () C:\Users\Lucas\AppData\Local\RecConfig.xml
2013-10-22 16:10 - 2013-10-22 16:10 - 0007618 _____ () C:\Users\Lucas\AppData\Local\Resmon.ResmonCfg
2006-10-26 00:06 - 2006-10-26 00:06 - 0143872 _____ () C:\Users\Lucas\AppData\Local\vorbis.dll
2006-10-26 00:06 - 2006-10-26 00:06 - 0064000 _____ () C:\Users\Lucas\AppData\Local\vorbisenc.dll
2006-10-26 00:06 - 2006-10-26 00:06 - 0019456 _____ () C:\Users\Lucas\AppData\Local\vorbisfile.dll
2013-01-21 22:38 - 2012-11-22 22:38 - 0000032 ____R () C:\ProgramData\hash.dat
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\ProgramData\hash.dat
Einige Dateien in TEMP:
====================
C:\Users\Lucas\AppData\Local\Temp\amd-catalyst-15.7.1-win10-64bit.exe
C:\Users\Lucas\AppData\Local\Temp\AutoDetectUtilApp.exe
C:\Users\Lucas\AppData\Local\Temp\DivXSetup.exe
C:\Users\Lucas\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp9ttxpm.dll
C:\Users\Lucas\AppData\Local\Temp\jre-8u51-windows-au.exe
C:\Users\Lucas\AppData\Local\Temp\jre-8u65-windows-au.exe
C:\Users\Lucas\AppData\Local\Temp\npp.6.8.3.Installer.exe
C:\Users\Lucas\AppData\Local\Temp\xmlUpdater.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-08-03 00:35
==================== Ende von FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:27-11-2015
durchgeführt von Lucas (2015-11-28 11:49:55)
Gestartet von C:\Users\Lucas\Desktop
Windows 10 Home (X64) (2015-08-03 00:00:53)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3446664835-2098160289-774733402-500 - Administrator - Disabled)
ASPNET (S-1-5-21-3446664835-2098160289-774733402-1005 - Limited - Enabled)
DefaultAccount (S-1-5-21-3446664835-2098160289-774733402-503 - Limited - Disabled)
Gast (S-1-5-21-3446664835-2098160289-774733402-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3446664835-2098160289-774733402-1002 - Limited - Enabled)
Lucas (S-1-5-21-3446664835-2098160289-774733402-1000 - Administrator - Enabled) => C:\Users\Lucas
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
A Valley Without Wind (HKLM-x32\...\Steam App 209330) (Version: - Arcen Games, LLC)
A Valley Without Wind 2 (HKLM-x32\...\Steam App 228320) (Version: - Arcen Games, LLC)
AaaaaAAaaaAAAaaAAAAaAAAAA!!! for the Awesome (HKLM-x32\...\Steam App 15560) (Version: - Dejobaan Games, LLC)
Abyss Odyssey (HKLM-x32\...\Steam App 255070) (Version: - ACE Team)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
Aerena (HKLM-x32\...\Steam App 247830) (Version: - Cliffhanger Productions)
Akamai NetSession Interface (HKU\S-1-5-21-3446664835-2098160289-774733402-1000\...\Akamai) (Version: - Akamai Technologies, Inc)
Alien Spidy (HKLM-x32\...\Steam App 207000) (Version: - Enigma SP)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD Catalyst Install Manager (HKLM\...\{5AE0838D-19B1-5D12-5FE8-E6503B2C8716}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Angry Video Game Nerd Adventures (HKLM-x32\...\Steam App 237740) (Version: - FreakZone Games)
Antichamber (HKLM-x32\...\Steam App 219890) (Version: - )
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{7446FE8D-C1F9-4D42-AAAE-5DBCE58605A6}) (Version: 6.0.0.59 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.1.000 - Asmedia Technology)
ASRock App Charger v1.0.5 (HKLM\...\ASRock App Charger_is1) (Version: - ASRock Inc.)
Asus 802.11n Network Adapter (HKLM-x32\...\InstallShield_{2529B098-D709-440B-9A96-4BDEF63C1462}) (Version: 1.0.0.05 - ASUSTeK)
Asus 802.11n Network Adapter (x32 Version: 1.0.0.05 - ASUSTeK) Hidden
Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
AudibleManager (HKLM-x32\...\AudibleManager) (Version: 2009480446.48.56.39202482 - Audible, Inc.)
Autumn Aurora 2 for S.T.A.L.K.E.R - Shadow of Chernobyl (HKLM-x32\...\Autumn Aurora 2.1_is1) (Version: - )
Awesomenauts (HKLM-x32\...\Steam App 204300) (Version: - Ronimo Games)
Bastion (HKLM-x32\...\Steam App 107100) (Version: - Supergiant Games)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 2142 Deluxe Edition (HKLM-x32\...\{ED50ECE9-EC54-4C05-B5ED-EE4741A9F2EC}) (Version: - )
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
Bejeweled® 3 (HKLM-x32\...\{E99C27B2-EB2E-4244-9F5C-A96F55100F0C}) (Version: 1.1.13.4753 - Electronic Arts, Inc.)
BIT.TRIP RUNNER (HKLM-x32\...\Steam App 63710) (Version: - Gaijin Games)
BitTorrent (HKLM-x32\...\BitTorrent) (Version: 7.7.0.27987 - BitTorrent Inc.)
Blackthorne (HKLM-x32\...\{C563EEF9-17FF-4563-8B78-82AF0C4577CE}) (Version: 1.0.0 - Blizzard Entertainment)
Bleed Demo v1.0 (HKLM-x32\...\Bleed Demo_is1) (Version: - Bootdisk Revolution)
Braid (HKLM-x32\...\Steam App 26800) (Version: - Number None)
BrainVoyager Brain Tutor (HKLM-x32\...\{6265E1CF-F90F-4A56-8EAB-864085A44790}) (Version: 2.5.0 - Brain Innovation)
Brothers - A Tale of Two Sons (HKLM-x32\...\Steam App 225080) (Version: - Starbreeze Studios AB)
Bundled software uninstaller (HKLM-x32\...\bi_uninstaller) (Version: - ) <==== ACHTUNG
Castle In The Darkness (HKLM-x32\...\Steam App 262960) (Version: - Matt Kap)
CCleaner (HKLM\...\CCleaner) (Version: 4.00 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.4.2.3442 - CDBurnerXP)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version: - Torn Banner Studios)
Circa Infinity Demo (HKLM-x32\...\Steam App 390800) (Version: - Kenny Sun)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Cloudbuilt (HKLM-x32\...\Steam App 262390) (Version: - Coilworks)
Command & Conquer™ Red Alert 2 and Yuri’s Revenge (HKLM-x32\...\{F5275D1C-D133-486D-8F07-D6C571F0A8EC}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Crypt of the NecroDancer (HKLM-x32\...\Steam App 247080) (Version: - Brace Yourself Games)
Cthulhu Saves the World (HKLM-x32\...\Steam App 107310) (Version: - Zeboyd Games)
Cube World version 0.0.1 (HKLM-x32\...\{D692A0E0-1BBB-4E9C-826E-4254EE330830}_is1) (Version: 0.0.1 - Picroma)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.46.1.0327 - DT Soft Ltd)
Dark Souls: Prepare to Die Edition (HKLM-x32\...\Steam App 211420) (Version: - )
DARK SOULS™ II: Scholar of the First Sin (HKLM-x32\...\Steam App 335300) (Version: - FromSoftware, Inc)
Darksiders II (HKLM-x32\...\Steam App 50650) (Version: - Vigil Games)
DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive)
Dead Space (HKLM-x32\...\Steam App 17470) (Version: - EA Redwood Shores)
Deus Ex: Game of the Year Edition (HKLM-x32\...\Steam App 6910) (Version: - Ion Storm)
Deus Ex: Human Revolution - Director's Cut (HKLM-x32\...\Steam App 238010) (Version: - Eidos Montreal)
Diablo II (HKLM-x32\...\Diablo II) (Version: - )
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Digital - A Love Story 1.1 (HKLM-x32\...\Digital - A Love Story) (Version: 1.1 - Lily of the Valley games)
Dishonored (HKLM-x32\...\Steam App 205100) (Version: 1.0 - Bethesda Softworks)
Disk Space Fan 4 Free 4.5.1.129 (HKLM-x32\...\Disk Space Fan 4 Free_is1) (Version: - Disk Space Fan Team)
Divekick (HKLM-x32\...\Steam App 244730) (Version: - Iron Galaxy Studios)
Divinity: Original Sin (HKLM-x32\...\Steam App 230230) (Version: - Larian Studios)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.7.0.77 - DivX, LLC)
Don't Starve (HKLM-x32\...\Steam App 219740) (Version: - )
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
Dropbox (HKU\S-1-5-21-3446664835-2098160289-774733402-1000\...\Dropbox) (Version: 3.10.11 - Dropbox, Inc.)
Dropbox Folder Sync addon (HKLM-x32\...\{E0B7CA7A-98B0-4EF1-87F5-FF6B02DC06A9}_is1) (Version: 2.7 - Sowrabh & Satyadeep)
Dungeonland (HKLM-x32\...\Steam App 218130) (Version: - Critical Studio)
Dungeons and Dragons Online (HKU\S-1-5-21-3446664835-2098160289-774733402-1000\...\DDO_highres_en) (Version: - )
Dust: An Elysian Tail (HKLM-x32\...\Steam App 236090) (Version: - Humble Hearts LLC)
Dustforce (HKLM-x32\...\Steam App 65300) (Version: - Hitbox Team)
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version: - SCS Software)
EVE Online (nur entfernen) (HKLM-x32\...\EVE) (Version: - CCP Games Ltd.)
EVEMon (HKLM-x32\...\EVEMon) (Version: 1.8.4.4125 - battleclinic.com)
Exact Audio Copy 1.0beta3 (HKLM-x32\...\Exact Audio Copy) (Version: 1.0beta3 - Andre Wiethoff)
f.lux (HKU\S-1-5-21-3446664835-2098160289-774733402-1000\...\Flux) (Version: - )
Façade (HKLM-x32\...\{24E34264-D483-477C-A9A0-4E53F69834CF}) (Version: 1.1.2 - Procedural Arts)
Fallen Enchantress: Legendary Heroes (HKLM-x32\...\Steam App 228260) (Version: - Stardock Entertainment)
FEZ (HKLM-x32\...\Steam App 224760) (Version: - Polytron Corporation)
FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version: - Image-Line)
FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version: - )
FLY'N (HKLM-x32\...\Steam App 223730) (Version: - )
Fork Parker's Holiday Profit Hike (HKLM-x32\...\Steam App 339120) (Version: - Dodge Roll)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Free Audio Converter version 5.0.26.628 (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.26.628 - DVDVideoSoft Ltd.)
Freelancer 1.6 (HKLM-x32\...\Freelancer) (Version: 1.6 - )
FTL: Faster Than Light (HKLM-x32\...\Steam App 212680) (Version: - Subset Games)
Giana Sisters: Twisted Dreams (HKLM-x32\...\Steam App 223220) (Version: - Black Forest Games)
GOG.com Downloader version 3.6.0 (HKLM-x32\...\{456A5815-604D-4D72-94DF-346D2B978A59}_is1) (Version: 3.6.0 - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.10 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Guacamelee! Gold Edition (HKLM-x32\...\Steam App 214770) (Version: - DrinkBox Studios)
GUILD WARS (HKLM-x32\...\Guild Wars) (Version: - )
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Happy Cloud Client (HKU\S-1-5-21-3446664835-2098160289-774733402-1000\...\HappyCloud) (Version: 4.28 - Happy Cloud, Inc.)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Hell Yeah! (HKLM-x32\...\Steam App 205230) (Version: - )
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Hitman: Absolution (HKLM-x32\...\Steam App 203140) (Version: - IO Interactive)
Hotline Miami (HKLM-x32\...\Steam App 219150) (Version: - )
HxD Hex Editor version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
IL Shared Libraries (HKLM-x32\...\IL Shared Libraries) (Version: - Image-Line)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2932 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)
Intel(R) Smart Connect Technology 2.0 x64 (HKLM\...\{54F8B6C7-9B25-4E85-A1E0-26CFB80DE787}) (Version: 2.0.1083.0 - Intel)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.3.214 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
Jamestown: Legend of the Lost Colony (HKLM-x32\...\{2EEB12FB-E1E2-406F-AF65-39E151F86DC6}) (Version: 1.0.2 - Final Form Games)
Java 8 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Java SE Development Kit 8 Update 5 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180050}) (Version: 8.0.50 - Oracle Corporation)
JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
Jet Set Radio (HKLM-x32\...\Steam App 205950) (Version: - Blit Software)
Kerbal Space Program Demo (HKLM-x32\...\Steam App 231410) (Version: - Squad)
King Arthur's Gold (HKLM-x32\...\Steam App 219830) (Version: - )
K-Lite Codec Pack 9.7.0 (Basic) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.7.0 - )
Knytt Underground (HKLM-x32\...\Steam App 248190) (Version: - Nifflas' Games)
KRUNCH (HKLM-x32\...\Steam App 280500) (Version: - LeGrudge & Rugged)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
La-Mulana (HKLM-x32\...\La-Mulana) (Version: - ASTERIZM CO., LTD.)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Legend of Dungeon (HKLM-x32\...\Steam App 238280) (Version: - )
Legend of Grimrock (HKLM-x32\...\Steam App 207170) (Version: - )
Lethal League (HKLM-x32\...\Steam App 261180) (Version: - Team Reptile)
Lifeless Planet (HKLM-x32\...\Steam App 261530) (Version: - Stage 2 Studios)
Logitech Gaming Software 8.50 (HKLM\...\Logitech Gaming Software) (Version: 8.50.281 - Logitech Inc.)
LUFTRAUSERS (HKLM-x32\...\Steam App 233150) (Version: - Vlambeer)
Lumino City (HKLM-x32\...\Steam App 205020) (Version: - State of Play Games)
MadTracker 2 (HKLM-x32\...\MadTracker 2) (Version: - )
Medal of Honor(TM) Multiplayer (HKLM-x32\...\Steam App 47830) (Version: - Electronic Arts)
Medal of Honor(TM) Single Player (HKLM-x32\...\Steam App 47790) (Version: - Electronic Arts)
Mercenary Kings (HKLM-x32\...\Steam App 218820) (Version: - Tribute Games Inc.)
Metal Slug 3 (HKLM-x32\...\Steam App 250180) (Version: - DotEmu)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{6F29F195-B11C-3EAD-B883-997BB29DFA17}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{D285FC5F-3021-32E9-9C59-24CA325BDC5C}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{b341426f-8543-4e0d-96c3-e976f8ec5ab6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mount & Blade: Warband (HKLM-x32\...\Steam App 48700) (Version: - TaleWorlds Entertainment)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 35.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 35.0.1 (x86 de)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 35.0.1 - Mozilla)
Mozilla Thunderbird 38.3.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.3.0 (x86 de)) (Version: 38.3.0 - Mozilla)
Mumble 1.2.5 (HKLM-x32\...\{871F39A1-1671-4161-A012-1D4820346A69}) (Version: 1.2.5 - Thorvald Natvig)
MusicBee (HKLM-x32\...\{95B8C1B9-FAB2-4F2B-976A-D0CE7290B5A1}) (Version: 1.4.4443 - Steven Mayall)
Mutant Mudds (remove only) (HKLM-x32\...\RenegadeKidMutantMudds) (Version: - )
My Game Long Name (HKLM\...\UDK-02a7de96-7fef-4230-a34b-0a6d2c640224) (Version: - Epic Games, Inc.)
My Game Long Name (HKLM\...\UDK-a52ffc50-54a9-4df2-9703-1243751b1a89) (Version: - Epic Games, Inc.)
NEStalgia (HKLM-x32\...\NEStalgia) (Version: 1.0.0.18 - SilkGames)
Nidhogg (HKLM-x32\...\Steam App 94400) (Version: - Messhof)
No Time to Explain (HKLM-x32\...\Steam App 227280) (Version: - )
No Time To Explain Remastered (HKLM-x32\...\Steam App 368730) (Version: - tinyBuild)
No23 Recorder (HKLM-x32\...\{22B0E143-2B0B-435B-9F56-136A3D16065F}) (Version: 2.1.0.3 - No23)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.3 - Notepad++ Team)
Nur Entfernen der CopyTrans Suite möglich (HKU\S-1-5-21-3446664835-2098160289-774733402-1000\...\CopyTrans Suite) (Version: 2.36 - WindSolutions)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
One Finger Death Punch (HKLM-x32\...\Steam App 264200) (Version: - Silver Dollar Games)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice.org 3.4.1 (HKLM-x32\...\{2303AEEA-0FA8-4AFD-80A9-8F86BA4B44D2}) (Version: 3.41.9593 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.3.10.4710 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{b558ba85-3fa3-45ff-933d-f3a64e78905e}) (Version: latest - ppy Pty Ltd)
PAC-MAN Championship Edition DX+ (HKLM-x32\...\Steam App 236450) (Version: - Mine Loader Software Co., Ltd.)
paint.net (HKLM\...\{DF3A46D9-67B3-44B2-9D01-25C8BA772C8A}) (Version: 4.0.6 - dotPDN LLC)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
Papers, Please (HKLM-x32\...\Steam App 239030) (Version: - 3909)
PAYDAY: The Heist (HKLM-x32\...\Steam App 24240) (Version: - OVERKILL Software)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.205.0 - Tracker Software Products Ltd)
Pharaoh Gold (HKLM-x32\...\GOGPACKPHARAOH_is1) (Version: 2.0.0.12 - GOG.com)
Pixel Piracy (HKLM-x32\...\Steam App 264140) (Version: - Vitali Kirpu)
Portal 2 (HKLM-x32\...\Steam App 620) (Version: - Valve)
Prison Architect (HKLM-x32\...\Steam App 233450) (Version: - Introversion Software)
Project64 1.6 (HKLM-x32\...\{9559F7CA-5E34-4237-A2D9-D856464AD727}) (Version: 1.6 - Project64)
Proteus (HKLM-x32\...\Steam App 219680) (Version: - )
Proun (HKLM-x32\...\Proun) (Version: - )
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Python 2.7.8 (64-bit) (HKLM\...\{61121B12-88BD-4261-A6EE-AB32610A56De}) (Version: 2.7.8150 - Python Software Foundation)
Quake Live (HKLM-x32\...\Steam App 282440) (Version: - id Software)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
QuiteRSS version 0.17.7 (HKLM-x32\...\{372E76B7-3389-4057-B06A-53B104094844}_is1) (Version: 0.17.7 - QuiteRSS Team)
RadeonPro 1.0 (Build 1.1.1.0) (HKLM-x32\...\RadeonPro_is1) (Version: - )
Rayman Legends (HKLM-x32\...\Steam App 242550) (Version: - )
Rayman Origins (HKLM-x32\...\Steam App 207490) (Version: - UBIart Montpellier)
Realm of the Mad God (HKLM-x32\...\Steam App 200210) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6482 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver and Utility (HKLM-x32\...\{9C049499-055C-4a0c-A916-1D8CA1FF45EB}) (Version: 1.00.0187 - REALTEK Semiconductor Corp.)
Recettear: An Item Shop's Tale (HKLM-x32\...\Steam App 70400) (Version: - EasyGameStation)
Risk of Rain (HKLM-x32\...\Steam App 248820) (Version: - )
Robot Roller-Derby Disco Dodgeball (HKLM-x32\...\Steam App 270450) (Version: - Erik Asmussen)
Rogue Legacy (HKLM-x32\...\Steam App 241600) (Version: - Cellar Door Games)
Sanctum 2 (HKLM-x32\...\Steam App 210770) (Version: - Coffee Stain Studios)
Shovel Knight (HKLM-x32\...\Steam App 250760) (Version: - Yacht Club Games)
Skullgirls (HKLM-x32\...\Steam App 245170) (Version: - Lab Zero Games)
Skype™ 7.15 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.15.102 - Skype Technologies S.A.)
Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 2.8.2808.0 - Hi-Rez Studios)
Snakebird (HKLM-x32\...\Steam App 357300) (Version: - Noumenon Games)
softOSD Client (Build 1445) (HKLM-x32\...\softOSD Client) (Version: - )
SpaceChem (HKLM-x32\...\Steam App 92800) (Version: - Zachtronics)
SpeedRunners (HKLM-x32\...\Steam App 207140) (Version: - DoubleDutch Games)
Spelunky (HKLM-x32\...\Steam App 239350) (Version: - )
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
SteamWorld Dig (HKLM-x32\...\Steam App 252410) (Version: - Image&Form)
Super Hexagon (HKLM-x32\...\Steam App 221640) (Version: - Terry Cavanagh)
Super House of Dead Ninjas (HKLM-x32\...\Steam App 224820) (Version: - Megadev)
Super Meat Boy (HKLM-x32\...\Steam App 40800) (Version: - Team Meat)
Super Splatters (HKLM-x32\...\Steam App 95000) (Version: - SpikySnail)
Supreme Commander 2 (HKLM-x32\...\Steam App 40100) (Version: - Gas Powered Games)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Sword of the Stars: The Pit (HKLM-x32\...\Steam App 233700) (Version: - Kerberos Productions)
Swords and Soldiers HD (HKLM-x32\...\Steam App 63500) (Version: - Ronimo Games)
System Requirements Lab for Intel (HKLM-x32\...\{C71067FC-288F-4E0B-88C6-44DFDA8311E2}) (Version: 4.5.9.0 - Husdawg, LLC)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.12 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.36897 - TeamViewer)
Terraria (HKLM-x32\...\Steam App 105600) (Version: - )
Teslagrad (HKLM-x32\...\Steam App 249590) (Version: - Rain Games)
The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version: - )
The Binding of Isaac: Rebirth (HKLM-x32\...\Steam App 250900) (Version: - Nicalis, Inc.)
The Cat Lady (HKLM-x32\...\1207659201_is1) (Version: 2.2.0.6 - GOG.com)
The Stanley Parable (HKLM-x32\...\Steam App 221910) (Version: - Galactic Cafe)
Thirty Flights of Loving (HKLM-x32\...\Steam App 214700) (Version: - )
Thomas Was Alone (HKLM-x32\...\Steam App 220780) (Version: - )
Titan Quest (HKLM-x32\...\Steam App 4540) (Version: - Iron Lore Entertainment)
Titan Quest: Immortal Throne (HKLM-x32\...\Steam App 4550) (Version: - Iron Lore Entertainment)
Torchlight II (HKLM-x32\...\Steam App 200710) (Version: - )
Tower of Guns (HKLM-x32\...\Steam App 266110) (Version: - Terrible Posture Games)
Train Valley Demo (HKLM-x32\...\Steam App 380930) (Version: - Alexey Davydov)
Transistor (HKLM-x32\...\Steam App 237930) (Version: - Supergiant Games)
Treasure Adventure Game (HKLM-x32\...\GOGPACKTREASUREADVENTUREGAME_is1) (Version: 2.0.0.4 - GOG.com)
Trine 2 (HKLM-x32\...\Steam App 35720) (Version: - Frozenbyte)
Trove North America (HKLM-x32\...\Glyph Trove North America) (Version: - Trion Worlds, Inc.)
Ultima 7 (HKLM-x32\...\{4F4D844E-7B08-43A7-9C91-0B7D978EEC4D}) (Version: 1.0.0.1 - Electronic Arts)
Unepic (HKLM-x32\...\Steam App 233980) (Version: - Francisco Téllez de Meneses)
Unity (HKLM-x32\...\Unity) (Version: - Unity Technologies ApS)
Unity Web Player (HKU\S-1-5-21-3446664835-2098160289-774733402-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Uplay (HKLM-x32\...\Uplay) (Version: 3.0 - Ubisoft)
Valdis Story: Abyssal City (HKLM-x32\...\Steam App 252030) (Version: - )
Valkyria Chronicles™ (HKLM-x32\...\Steam App 294860) (Version: - SEGA)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VLC media player 2.0.2 (HKLM\...\VLC media player) (Version: 2.0.2 - VideoLAN)
Volgarr the Viking (HKLM-x32\...\Steam App 247240) (Version: - Crazy Viking Studios)
Wanderlust: Rebirth (HKLM-x32\...\Steam App 211580) (Version: - Yeti Trunk)
WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
You Have to Win the Game (HKLM-x32\...\Steam App 286100) (Version: - Minor Key Games)
Ys I (HKLM-x32\...\Steam App 223810) (Version: - )
Ys II (HKLM-x32\...\Steam App 223870) (Version: - )
Ys Origin (HKLM-x32\...\Steam App 207350) (Version: - Falcom)
Ys: The Oath in Felghana (HKLM-x32\...\Steam App 207320) (Version: - Falcom)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3446664835-2098160289-774733402-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Lucas\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3446664835-2098160289-774733402-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Lucas\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3446664835-2098160289-774733402-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-3446664835-2098160289-774733402-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Lucas\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3446664835-2098160289-774733402-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lucas\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3446664835-2098160289-774733402-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lucas\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3446664835-2098160289-774733402-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lucas\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3446664835-2098160289-774733402-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lucas\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3446664835-2098160289-774733402-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lucas\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3446664835-2098160289-774733402-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lucas\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3446664835-2098160289-774733402-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lucas\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3446664835-2098160289-774733402-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Lucas\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3446664835-2098160289-774733402-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Lucas\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
==================== Wiederherstellungspunkte =========================
06-09-2015 19:11:29 DirectX wurde installiert
19-09-2015 08:17:22 DirectX wurde installiert
27-11-2015 18:10:53 Removed Skype™ 7.12
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {00074E1B-030E-4F80-BC1D-10A6ED0C2C26} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {024CA065-472A-423B-A263-851D1DFBB7A6} - System32\Tasks\{2141B8C5-BDA0-4C56-AB3A-5C85E5224453} => C:\Users\Lucas\Desktop\Games\Manhole\INSTALL.EXE
Task: {055B02D3-7A95-4A21-9D3E-F0FA28AC7DBA} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {14089BC1-5073-471E-AFF0-10AA8292D5EF} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {1AE18C52-C3F8-4A1D-9E83-C23AAD3CDDC6} - System32\Tasks\{A7C9B1DB-4EBA-44ED-9FB4-84592DEF8E90} => pcalua.exe -a C:\Users\Lucas\Downloads\wlsetup-all_de_16.4.3505.0912.exe -d C:\Users\Lucas\Downloads
Task: {1B4A444E-F436-413F-A8C9-69F073D1A439} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {1D7D935B-2778-4113-ABBA-648909E930A2} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {2270C3E6-D6DB-4A89-94CC-3BC2B26401AF} - kein Dateipfad
Task: {3B958EF8-7789-4B46-BF09-79CF66999440} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {44BDB18A-07EE-4F3A-99B3-830198C90319} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {4D01B773-E3AB-4A1C-8458-7680447F80CB} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3446664835-2098160289-774733402-1000Core => C:\Users\Lucas\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-07-01] (Dropbox, Inc.)
Task: {4D4DDA20-1CA3-4630-81B1-9305F9CE05F7} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {514EBDCD-C3D5-42AC-987D-F7F3F3D1622C} - System32\Tasks\{D020420A-061F-4340-B5B9-E99804A40D5E} => C:\Users\Lucas\Desktop\Albero.exe
Task: {5E7421E2-93F0-4237-9403-CCFCD874AE2B} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {60B47840-F722-4D27-9AAB-BE05F633C7D3} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {647DB67F-134E-4BA6-8DC5-11F51131BA14} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {6F232150-6B47-470E-9A50-4F212212727A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-03-25] (Piriform Ltd)
Task: {7CE275B2-BDB9-409B-9142-89F15263D003} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {7F2B132F-55D4-4E5E-82C4-C29F63D52D80} - System32\Tasks\{AA1EE040-9CC4-4515-B2F7-8434CA747270} => pcalua.exe -a "C:\Users\Lucas\Downloads\Super Meat Boy incl Update 14 RIP - Unleashed\unl-csmb.exe" -d "C:\Users\Lucas\Downloads\Super Meat Boy incl Update 14 RIP - Unleashed"
Task: {9353881B-A356-425C-BADE-ECC7F6E20062} - System32\Tasks\{8DE0F7D1-23BE-4D4F-B512-83108DE85576} => pcalua.exe -a C:\Users\Lucas\Downloads\dolphin-3.5-x64.exe -d C:\Users\Lucas\Downloads
Task: {9C454590-C9EC-4167-AE4C-B2B1DCAA0D09} - System32\Tasks\{8F997AED-DEE5-4F69-8F0F-885983BCCA51} => C:\Users\Lucas\Desktop\Games\Poyo\Poyo.exe
Task: {A00FFB52-6D16-43BE-9BB9-632AAF203C7C} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask => C:\Windows\system32\Wat\WatAdminSvc.exe
Task: {A1224CB0-1241-48E3-B55F-7603A8185069} - System32\Tasks\GoogleUpdateTaskMachineUA1d0ed2daac2b56f => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-12] (Google Inc.)
Task: {A37EFBAE-0A43-42D9-B7DF-3FBD2DF8F942} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {A602CAA5-AD3D-4EF8-8BFC-3B96BF58865C} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: {A7C97D6A-8C9D-449D-89EA-56DB45CF7F4F} - System32\Tasks\FRAPS => C:\Program Files (x86)\fraps.exe
Task: {A8FAED75-9115-479F-81AB-2D2B13441E6A} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => aitagent.exe
Task: {B12CF193-F994-4432-9C1A-9468C134E495} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {BBBC019E-3CE5-4A1F-8BE0-18D359DB831D} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {BD5A2161-5A88-4253-B4CE-0F214B4B17BC} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {CFBBE059-74D6-42A8-8D70-2F62CE9C983E} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {DA80EDA1-DA9B-4D4B-A038-EAAE8F9464A6} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {DAB5BB6A-2123-40A5-94AB-D942952270FA} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {DB558752-185A-4699-BCC1-E2F387DE1A29} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {E0ABBCC4-9321-4FAF-AC0D-3BFCBEA75BEC} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {EBD46679-2298-4050-B7E0-8B74418951C0} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {ED1FBCD7-B6B0-4641-8251-A587F438802B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-12] (Google Inc.)
Task: {EE76190F-4383-490F-9551-23AC598FDE2E} - System32\Tasks\{FF3E1A90-C515-4DD6-9361-8886C2DC4D37} => C:\Users\Lucas\Desktop\Games\Manhole\INSTALL.EXE
Task: {F0827D2C-08A4-438C-AFF3-883089E46745} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3446664835-2098160289-774733402-1000UA => C:\Users\Lucas\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-07-01] (Dropbox, Inc.)
Task: {F49FB639-1A71-4418-9BA6-462C9914698B} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {F6754E94-24E1-4C6D-9CF6-3084C850189D} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {F831E848-B191-4193-9E22-70B0DB23E8CE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-12] (Google Inc.)
Task: {FC6527D0-ADAA-400C-86C1-2183717AD669} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-15] (Adobe Systems Incorporated)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-3446664835-2098160289-774733402-1000Core.job => C:\Users\Lucas\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-3446664835-2098160289-774733402-1000UA.job => C:\Users\Lucas\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0ed2daac2b56f.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-07-10 12:00 - 2015-07-10 12:00 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-07-10 11:59 - 2015-07-10 11:59 - 00403968 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2012-10-06 15:05 - 2012-02-07 16:27 - 00121344 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
2012-02-09 15:26 - 2012-02-09 15:26 - 00133632 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
2012-02-09 15:26 - 2012-02-09 15:26 - 00036864 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTNetDetect.dll
2012-02-09 15:26 - 2012-02-09 15:26 - 00048128 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll
2015-07-10 12:00 - 2015-07-10 12:00 - 02498296 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-07-10 12:00 - 2015-07-10 12:00 - 02498296 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-07-10 11:59 - 2015-07-10 11:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-07-10 12:00 - 2015-07-10 17:45 - 06579712 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 12:00 - 2015-07-10 17:45 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-07-10 12:00 - 2015-07-10 17:45 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2012-08-27 20:33 - 2012-08-27 20:33 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-08-27 20:33 - 2012-08-27 20:33 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2012-10-06 15:02 - 2011-11-29 19:00 - 00059392 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2012-10-06 15:05 - 2012-02-07 16:39 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-11-19 13:34 - 2009-12-09 21:20 - 00126976 _____ () C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\EnumDevLib.dll
2014-08-01 02:16 - 2013-11-04 16:25 - 01136256 _____ () C:\Program Files (x86)\RadeonPro\V8.Net.dll
2015-10-02 14:02 - 2015-11-05 00:44 - 00166416 _____ () C:\Users\Lucas\AppData\Roaming\Dropbox\bin\EnterpriseDataAdapter.dll
2015-11-28 11:02 - 2015-11-28 11:02 - 00071168 _____ () c:\users\lucas\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp9ttxpm.dll
2015-03-04 22:45 - 2015-09-03 01:11 - 00012800 _____ () C:\Users\Lucas\AppData\Roaming\Dropbox\bin\QtQuick.2\qtquick2plugin.dll
2015-03-04 22:45 - 2015-09-03 01:11 - 00779776 _____ () C:\Users\Lucas\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-07-31 11:28 - 2015-09-03 01:11 - 00056320 _____ () C:\Users\Lucas\AppData\Roaming\Dropbox\bin\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-03-04 22:45 - 2015-09-03 01:11 - 00012288 _____ () C:\Users\Lucas\AppData\Roaming\Dropbox\bin\QtQuick\Window.2\windowplugin.dll
2012-08-10 15:51 - 2012-08-10 15:51 - 00985088 _____ () C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
2013-03-12 17:10 - 2015-10-05 17:18 - 00778752 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-01-31 20:04 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2014-05-22 12:54 - 2015-11-10 03:44 - 02541648 _____ () C:\Program Files (x86)\Steam\video.dll
2015-01-31 20:04 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-01-31 20:04 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2014-08-28 22:52 - 2015-09-24 01:33 - 02549248 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2014-08-28 22:52 - 2015-09-24 01:33 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2014-08-28 22:52 - 2015-09-24 01:33 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2014-08-28 22:52 - 2015-09-24 01:33 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2014-08-28 22:52 - 2015-09-24 01:33 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2012-10-06 17:30 - 2015-11-10 03:44 - 00806992 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-07-22 00:16 - 2015-11-03 23:00 - 00201728 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2012-10-06 17:30 - 2015-10-08 23:20 - 45010208 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-11-22 17:46 - 2015-11-19 05:48 - 01625928 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.10\libglesv2.dll
2015-11-22 17:46 - 2015-11-19 05:48 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.10\libegl.dll
2015-01-31 20:04 - 2015-09-25 00:56 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2015-10-27 21:04 - 2015-10-27 21:04 - 00153768 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
2015-10-27 21:04 - 2015-10-27 21:04 - 00023208 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Lucas\Documents\Kochen:com.dropbox.attributes
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-3446664835-2098160289-774733402-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-3446664835-2098160289-774733402-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-3446664835-2098160289-774733402-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-3446664835-2098160289-774733402-1000\...\sony.com -> sony.com
|
| Themen zu Watch4.de Seite öffnet sich ohne Aufforderung (Google Chrome / Windows 10) |
| anderen, bildschirm, dnsapi.dll, festplatte, google, herunterfahren, heute, hintergrund, launch, logfiles, länger, neu, nichts, platte, plötzlich, problem, reboot, schwarz, seite, seiten, threads, tool, ungefragt, verschwunden, watch, windows, öffnet |
Baum-Darstellung