| DasTutWeh | 24.09.2017 12:21 |
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 23-09-2017 02
durchgeführt von User (23-09-2017 22:43:45)
Gestartet von C:\Users\User\Downloads
Windows 7 Professional Service Pack 1 (X64) (2012-02-22 15:55:23)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2783078182-1204926350-1955954555-500 - Administrator - Disabled)
Gast (S-1-5-21-2783078182-1204926350-1955954555-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2783078182-1204926350-1955954555-1002 - Limited - Enabled)
Pylx (S-1-5-21-2783078182-1204926350-1955954555-1003 - Administrator - Enabled) => C:\Users\Pylx
User (S-1-5-21-2783078182-1204926350-1955954555-1000 - Administrator - Enabled) => C:\Users\User
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe After Effects CC 2015.3 (HKLM-x32\...\AEFT_13_8_0) (Version: 13.8.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.7.0.272 - Adobe Systems Incorporated)
Adobe Flash Player 27 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 27.0.0.130 - Adobe Systems Incorporated)
Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated)
Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated)
Adobe Reader X (10.1.11) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AA1000000001}) (Version: 10.1.11 - Adobe Systems Incorporated)
ATI AVIVO64 Codecs (HKLM\...\{968720F5-3D81-7A28-C902-0876A57B1523}) (Version: 11.6.0.10309 - ATI Technologies Inc.) Hidden
ATI Catalyst Install Manager (HKLM\...\{363836F9-D52D-8976-EC20-8C6965A4D045}) (Version: 3.0.820.0 - ATI Technologies, Inc.)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0003 - ASUS)
Avira Connect (HKLM-x32\...\{7990b9d3-2da3-4eef-bf20-73a05086fd12}) (Version: 1.2.92.32157 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{E972AE5C-71B3-4D35-8193-BC4CC2F1FA20}) (Version: 1.2.92.32157 - Avira Operations GmbH & Co. KG) Hidden
Blizzard App (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Broadcom Card Reader Driver Installer (HKLM\...\{4710662C-8204-4334-A977-B1AC9E547819}) (Version: 15.0.7.3 - Broadcom Corporation)
Broadcom NetLink Controller (HKLM\...\{C91DCB72-F5BB-410D-A91A-314F5D1B4284}) (Version: 15.0.7.1 - Broadcom Corporation)
Camtasia 9 (HKLM\...\{821A4F74-0328-40EF-823D-C4A6FCE5A17F}) (Version: 9.0.5.2021 - TechSmith Corporation) Hidden
Camtasia 9 (HKLM-x32\...\{cae8c23d-8a3c-411a-a01a-c5d6d04d6cd5}) (Version: 9.0.5.2021 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 3.02 - Piriform)
Cheat Engine 6.5.1 (HKLM-x32\...\Cheat Engine 6.5.1_is1) (Version: - Cheat Engine)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DragonBoost (HKU\S-1-5-21-2783078182-1204926350-1955954555-1000\...\119) (Version: - ) <==== ACHTUNG
FileZilla Client 3.27.1 (HKLM-x32\...\FileZilla Client) (Version: 3.27.1 - Tim Kosse)
Fotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 60.0.3112.113 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Gyazo 3.3.2 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
HDAUDIO Soft Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFAOR2C06_118) (Version: - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Hotspot Shield 7.1.2 (HKLM-x32\...\{AF599C42-A2E5-4251-B7EE-4925C137CD26}) (Version: 7.1.2.10755 - AnchorFree Inc.) Hidden
Hotspot Shield 7.1.2 (HKLM-x32\...\{ddcf3c73-2b97-4dc5-bdf5-ab48869082b3}) (Version: 7.1.2.10755 - AnchorFree Inc.)
Hotspot Shield 7.1.2 (HKLM-x32\...\HotspotShield) (Version: 7.1.2 - AnchorFree Inc.) Hidden
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{AA67D612-0BE5-44D6-9A91-592958F754A1}) (Version: 13.0.198 - Intel Corporation)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35132 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.0.1351 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2932 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel® Active-Management-Technologie (HKLM\...\MESOL) (Version: - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{6199B534-A1B6-46ED-873B-97B0ECF8F81E}) (Version: 1.23.216.0 - Intel Corporation)
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.600 - Oracle)
Java 8 Update 101 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
Java SE Development Kit 8 Update 101 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180101}) (Version: 8.0.1010.13 - Oracle Corporation)
Java(TM) 6 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216025F0}) (Version: 6.0.250 - Oracle)
JMicron Ethernet Adapter NDIS Driver (HKLM-x32\...\{96DCEE2F-98EE-4F80-8C0F-7C04D1FB9D7F}) (Version: 6.0.17.1 - JMicron Technology Corp.)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.33.2 - JMicron Technology Corp.)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
League of Legends (HKLM-x32\...\{31AC3B64-AB6C-4659-BB1A-EEDFBA9B98F7}) (Version: 4.1.2 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
LogMeIn Hamachi (HKLM-x32\...\{BE82D2D7-6CA2-43B3-8C22-CCF6405806E7}) (Version: 2.2.0.579 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.579 - LogMeIn, Inc.)
Magic Bullet PhotoLooks (HKLM-x32\...\Magic Bullet PhotoLooks) (Version: - )
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0012.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.6.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft .NET Framework 4.6.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{3c3aafc8-d898-43ec-998f-965ffdae065a}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft_VC100_CRT_x86 (HKLM-x32\...\{6FDDB201-2CA0-42BD-973F-7B2C4A61EA3F}) (Version: 1.0.0 - Microsoft)
Movie Maker (HKLM-x32\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.2 - Notepad++ Team)
NVIDIA PhysX (HKLM-x32\...\{E10DB5DA-E576-40EA-A7FC-1CB2A7B283A6}) (Version: 9.09.1112 - NVIDIA Corporation)
O2Micro Flash Memory Card Windows Driver (HKLM\...\{854C008F-A636-4EC8-AFD0-090B820A4A1F}) (Version: 3.00.0007 - O2Micro International LTD.) Hidden
O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\InstallShield_{854C008F-A636-4EC8-AFD0-090B820A4A1F}) (Version: 3.00.0007 - O2Micro International LTD.)
O2Micro PCIe SCR Driver (HKLM-x32\...\{5F24B278-14E0-4DD8-9D52-DE49085A958F}) (Version: 1.0.01 - O2Micro) Hidden
O2Micro PCIe SCR Driver (HKLM-x32\...\InstallShield_{5F24B278-14E0-4DD8-9D52-DE49085A958F}) (Version: 1.0.01 - O2Micro)
OpenOffice 4.1.3 (HKLM-x32\...\{8D5FCC56-BB9F-4122-923C-71753F50F6F5}) (Version: 4.13.9783 - Apache Software Foundation)
OpenOffice Updater (HKU\S-1-5-21-2783078182-1204926350-1955954555-1000\...\OpenOffice Updater) (Version: 1.1.10 - OpenOffice)
Opera Stable 47.0.2631.80 (HKLM-x32\...\Opera 47.0.2631.80) (Version: 47.0.2631.80 - Opera Software)
Oracle VM VirtualBox 5.1.26 (HKLM\...\{11A88BD5-F059-4743-81D9-1432AC9C3D4E}) (Version: 5.1.26 - Oracle Corporation)
OZ711 SCR Driver V3.0.1.6 (x64) (HKLM\...\{F954E9F1-6935-4B63-9B00-7C586DC2A835}) (Version: 3.0.1.6 - O2Micro) Hidden
OZ711 SCR Driver V3.0.1.6 (x64) (HKLM-x32\...\InstallShield_{F954E9F1-6935-4B63-9B00-7C586DC2A835}) (Version: 3.0.1.6 - O2Micro)
paint.net (HKLM\...\{02D89175-E08F-401B-BA30-8B7512B57724}) (Version: 4.0.17 - dotPDN LLC)
PremiumSoft Navicat Premium 11.1 (HKLM\...\PremiumSoft Navicat Premium_is1) (Version: 11.1.9 - PremiumSoft CyberTech Ltd.)
PuTTY release 0.70 (64-bit) (HKLM\...\{45B3032F-22CC-40CD-9E97-4DA7095FA5A2}) (Version: 0.70.0.0 - Simon Tatham)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 3.0 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6543 - Realtek Semiconductor Corp.)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-2783078182-1204926350-1955954555-1000\...\Spotify) (Version: 1.0.53.758.gde3fc4b2 - Spotify AB)
SupraSavings (HKLM\...\{D12C40DB-CD7D-4D86-9285-5E2FE23693E4}) (Version: 1.0.0.0 - SupraSavings) Hidden
TeamSpeak 3 Client (HKU\S-1-5-21-2783078182-1204926350-1955954555-1000\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.78716 - TeamViewer)
Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version: - )
VLC media player 2.0.3 (HKLM-x32\...\VLC media player) (Version: 2.0.3 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows-Treiberpaket - Intel (NETwLv64) net (10/07/2010 13.4.0.139) (HKLM\...\EA1C8ECD4E416637C38F0079F98C8C7B0A112265) (Version: 10/07/2010 13.4.0.139 - Intel)
Windows-Treiberpaket - Intel (NETwNs64) net (01/22/2012 14.3.2.1) (HKLM\...\CD88F0FADE1395C9F91302912FD35B13CF75C196) (Version: 01/22/2012 14.3.2.1 - Intel)
Windows-Treiberpaket - Intel (NETwNs64) net (02/20/2012 15.1.0.18) (HKLM\...\69A53671180AECD99453E40E613B8E7237D26CDB) (Version: 02/20/2012 15.1.0.18 - Intel)
WinZip 21.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2410F}) (Version: 21.5.12480 - WinZip Computing, S.L. )
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2783078182-1204926350-1955954555-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Keine Datei
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Keine Datei
ContextMenuHandlers1: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Keine Datei
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2015-04-15] ()
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2017-04-19] (WinZip Computing, S.L.)
ContextMenuHandlers4: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Keine Datei
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (Alexander Roshal)
ContextMenuHandlers4-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2017-04-19] (WinZip Computing, S.L.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2011-03-09] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2012-12-14] (Intel Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2017-04-19] (WinZip Computing, S.L.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0407C505-02A5-4F44-B211-E16311862AE6} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_130_pepper.exe [2017-09-13] (Adobe Systems Incorporated)
Task: {043914CC-2656-48CF-AB3B-E2C3BCADFC1B} - System32\Tasks\{9CE6D844-F88B-A605-EE17-98C2EC4C0576} => C:\Windows\system32\regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\56757186\65944c82.dll" <==== ACHTUNG
Task: {05D8C1FB-6348-4502-88AE-350D24B1255D} - System32\Tasks\SMW_UpdateTask_Time_333637333730363934362d3437415a556c2a3223346c41 => wscript.exe //B "C:\ProgramData\SearchModule\smhe.js" smu.exe /invoke /f:check_services /l:0 <==== ACHTUNG
Task: {0911FAAD-F7CF-4755-8258-38F204F40C2E} - System32\Tasks\{F8EC8BF8-E26F-43E7-A7E4-DDE5E1E755BD} => C:\Users\User\Desktop\wolfteam_us_downloader.exe
Task: {0912A3C5-C96E-4F58-A807-FD1A47A9DE80} - System32\Tasks\{25D8CCD2-8371-4A03-88BF-BC6AF1EA07A4} => C:\Windows\system32\pcalua.exe -a "C:\Users\User\Desktop\Virtual Audio Cable 4.10 (Full)\Virtual Audio Cable 4.10 (Full)\setup.exe" -d "C:\Users\User\Desktop\Virtual Audio Cable 4.10 (Full)\Virtual Audio Cable 4.10 (Full)"
Task: {10E4C399-506C-427A-B1AE-2F74EDE4CC5F} - System32\Tasks\{DFFCFED3-641A-4F6B-ACDF-2928B922EAB8} => C:\Users\User\Desktop\Cymera2 Client(LIVE)\Cymera.exe
Task: {147A69A5-9CD0-419E-8DB4-D6FFE107F36C} - System32\Tasks\Plus-HD-1.2-enabler => C:\Program Files (x86)\Plus-HD-1.2\Plus-HD-1.2-enabler.exe
Task: {1CF318AC-A650-4DBD-B89B-6BE41471E1A2} - System32\Tasks\{3B976F72-4D9C-4B2B-9F3C-9B46B43C9CBB} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxps://ui.skype.com/ui/0/7.33.73.105.456/de/abandoninstall?page=tsInstall
Task: {1FAE587A-851B-4729-A9EF-AC3E0E5CBCDF} - System32\Tasks\{9C87D66D-F9FD-4202-BFA8-C01883B51F22} => C:\Users\User\Desktop\Plutonia2 Client 2015\.Plutonia2 - Clientstarter (2).exe
Task: {21E9DE55-3B5C-4058-9CA9-B972CC192950} - System32\Tasks\{F27B5FEA-8622-477A-B270-538DF7C86286} => C:\Nexon\Combat Arms EU\CombatArms.exe
Task: {22E7D1E9-C8D2-4C78-AEE1-4340EF03DD20} - System32\Tasks\DNSLOCKINGTON => dnslockington.exe <==== ACHTUNG
Task: {2DDBE839-3A63-449B-B8DF-53E8C9621832} - System32\Tasks\{AE9BCFC1-11F6-4B04-AE48-F92A115ECDDC} => C:\Users\User\Desktop\wolfteam_us_downloader.exe
Task: {2FFCDEBF-B73E-4144-88D9-04171E739F85} - System32\Tasks\{C2156576-D81C-4FE5-8FE7-14EE2BB7745D} => C:\Users\User\Desktop\wolfteam_us_downloader.exe
Task: {31807AB3-0D9F-4B57-AA7A-3FAAF16ABC59} - System32\Tasks\{9A80B55D-1607-4606-B681-5AC775B2B824} => C:\Users\User\AppData\Local\TeamSpeak 3 Client\ts3client_win64.exe [2017-07-15] (TeamSpeak Systems GmbH)
Task: {33571AB1-A14A-4FD0-80A1-663A7D234CF4} - System32\Tasks\{C8B57DBF-793D-41E9-8B7F-20C93AE817C5} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/6.3.73.105.457/en/abandoninstall?page=tsWLM
Task: {34D4F396-C4E2-4C01-AF6E-C25B4477CD37} - System32\Tasks\{F8817069-6BED-5BEB-215F-D9A72F9A2837} => C:\Windows\system32\regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\56757186\65944c82.dll" <==== ACHTUNG
Task: {34FD0F5B-AD36-4007-81BF-3B139A3D4548} - System32\Tasks\{4A28C953-EDA8-4BA9-B3DF-7B959E41DABF} => C:\Users\User\Desktop\Cymera2 Client(LIVE)\Cymera.exe
Task: {35F2B1A9-E8E2-417F-8DBD-1E6BAB7ACD7A} - System32\Tasks\{DA557F96-A20F-46BC-A3C3-B162B27999FD} => C:\Users\User\Desktop\wolfteam_us_downloader.exe
Task: {420F1DE5-4F9D-4458-9D6D-0F2595B1DA81} - System32\Tasks\{CEDBA970-52EF-44BE-867F-D5D0666C70F1} => C:\Windows\system32\pcalua.exe -a C:\ProgramData\Wizard101(DE)\Wizard101.exe -d C:\ProgramData\Wizard101(DE)
Task: {48C6211D-F447-4F59-8134-1D95A49A7976} - System32\Tasks\{68D31DEE-4936-45FA-AD7A-9E562CEC8E54} => C:\Users\User\Desktop\Plutonia2 Client 2015\.Plutonia2 - Clientstarter (2).exe
Task: {4F6ADE90-B6A4-4019-ABC5-66239BE121AF} - System32\Tasks\WinZip Update Notifier => C:\Program Files\WinZip\WZUpdateNotifier.exe [2017-04-19] (WinZip)
Task: {53A218B7-11CE-4754-8423-B8415748C48D} - System32\Tasks\IBUpd2 => C:\Users\User\AppData\Local\BrowserAir\48.0.0.0\updater.exe <==== ACHTUNG
Task: {587908E2-D68B-4073-963D-9A05788C9C9D} - System32\Tasks\27DAVpQmvp => C:\Program Files (x86)\YkUBYysd0K\updengine.exe [2017-09-18] () <==== ACHTUNG
Task: {5F35BB51-DFAA-4654-A039-2C6957F4BCFE} - System32\Tasks\RunAtStartup => C:\Users\User\AppData\Roaming\SysMon\sysmon.exe [2017-09-20] ()
Task: {664BBB40-C317-41FF-81EE-DD92C49C61D3} - System32\Tasks\{E0349E83-FEF4-47D1-A9F0-68AF3116544A} => C:\Nexon\Combat Arms EU\CombatArms.exe
Task: {6B2A40C6-4F52-4379-88FB-3407946AA889} - System32\Tasks\{797F0547-780A-0804-0811-7A04047E117D} => C:\Windows\system32\WindowsPowershell\v1.0\powershell.exe -nologo -executionpolicy bypass -noninteractive -windowstyle hidden -EncodedCommand IAAgADsAOwA7ACAAIAA7ADsAIAA7ADsAOwAkAEUAcgByAG8AcgBBAGMAdABpAG8AbgBQAHIAZQBmAGUAcgBlAG4AYwBlAD0AIgBzAHQAbwBwACIAOwAkAHMAYwA9ACIAUwBpAGwAZQBuAHQAbAB5AEMAbwBuAHQAaQBuAHUAZQAiADsAJABXAGEAcgBuAGkAbgBnAFAAcgBlAGYAZQByAGUA (Der Dateneintrag hat 9620 mehr Zeichen). <==== ACHTUNG
Task: {73B6283F-3BC7-4699-89B3-F7BB44675E7B} - System32\Tasks\{1D4A7932-3480-465C-B358-6AD60BECD1AC} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/6.14.0.104/en/go/help.faq.installer?LastError=1601
Task: {76C2E13B-2A65-4798-B063-332469C46171} - System32\Tasks\Update\Windows => C:\Users\User\Downloads\440446d0e8f9b613d8b7dc50ff92f02c970752.exe <==== ACHTUNG
Task: {76C892B2-E9A5-489E-AEF8-D73BDA02A4B2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-07] (Google Inc.)
Task: {79388FA0-888D-4056-B584-28D57720BBED} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {79388FA0-888D-4056-B584-28D57720BBED} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [2015-07-04] (Microsoft Corporation)
Task: {7B9DB399-A788-49E5-82EA-54A5461C1786} - System32\Tasks\{2801D14C-3F2B-474E-B56A-16BF8375B234} => C:\Windows\system32\pcalua.exe -a C:\Windows\unvise32.exe -c \Plug-ins\mbphotolooks.log
Task: {801786BD-AE81-4DF1-B9BA-306C3479B448} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-05-16] ()
Task: {81504E9C-6C52-4053-81AC-D23B1985BA3C} - System32\Tasks\Plus-HD-1.2-chromeinstaller => C:\Program Files (x86)\Plus-HD-1.2\Plus-HD-1.2-chromeinstaller.exe
Task: {82E168EF-A6FD-410C-B46B-AA354C6BF4BB} - System32\Tasks\{29EB3777-4C11-4FC4-9081-B6EC81B6C332} => C:\Users\User\Desktop\wolfteam_us_downloader.exe
Task: {83A1F172-A0C1-42F6-8B42-B0A7B7DD1A5D} - System32\Tasks\LaunchChromeTask111 => C:\Program Files\FileZilla FTP Client\FileZilla.exe [2017-08-14] (FileZilla Project)
Task: {85FCCE6B-C1CE-40E8-9F71-998033C53079} - System32\Tasks\{BBA68737-996A-4923-867D-CE5041D60E0B} => C:\Riot Games\League of Legends\lol.launcher.exe [2016-04-01] ()
Task: {87323BA0-A768-448F-A184-3A8FA599AA32} - System32\Tasks\Re-Markable Update => C:\Program Files (x86)\ver8Re-Markable\H8Re-MarkableR09.exe
Task: {87B08677-A2EC-4C73-8FA2-5DCD99DC7675} - System32\Tasks\Opera scheduled Autoupdate 1501670702 => C:\Program Files\Opera\launcher.exe [2017-09-06] (Opera Software)
Task: {8B5D27A5-EFE6-4943-BF75-4F927EA54928} - System32\Tasks\{92F49C99-A522-4EAF-A5DA-D2E8F032C86A} => C:\Nexon\Combat Arms EU\CombatArms.exe
Task: {8CDE47AF-3B65-45F8-8AB5-23FA7D0C2344} - System32\Tasks\{999EF341-08DB-4B4D-A9F0-6E4059F72D00} => C:\Riot Games\League of Legends\lol.launcher.exe [2016-04-01] ()
Task: {8EF78D11-D66F-4987-86C8-AC3EA1228884} - System32\Tasks\{10D42DE6-5326-4074-9151-0A194B5A5F6A} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/7.23.85.105/de/abandoninstall?page=tsProgressBar
Task: {8F384B34-61EF-4347-AAF5-8A42F1358A25} - System32\Tasks\{7F75C7E3-5EEA-45CE-841B-00A805EF53DD} => C:\Nexon\Combat Arms EU\CombatArms.exe
Task: {9363ED9F-B6F2-45AB-95FA-F1F4310F14A3} - System32\Tasks\{4314A051-8D8A-4B30-87EE-B138F51225A0} => C:\Program Files (x86)\Nexon\Nexon Launcher\nexon_launcher.exe
Task: {98DC68FF-FC2E-484F-BCA2-8BC6172ECD85} - System32\Tasks\d4b81cfa58e82cb84e315f74c23947cc => powershell.exe -NoProfile -NoLogo -NonInteractive -ExecutionPolicy Bypass -File "C:\Windows\d4b81cfa58e82cb84e315f74c23947cc.ps1" <==== ACHTUNG
Task: {9A233379-988D-415E-9343-C2B80D3A994B} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\ErrorReporting => C:\\ProgramData\\WindowsErrorReporting\\wvermgr.exe [2017-08-01] ()
Task: {9DBCD2F3-C5EB-44CF-AA34-D69A9E09BF67} - System32\Tasks\{C2543F35-DC0D-4D38-B24D-F6DB0F3DB2CA} => C:\Users\User\Desktop\Plutonia2 Client 2015\.Plutonia2 - Clientstarter (2).exe
Task: {9E082357-86A2-4200-B3AD-31C9B7C4CBE6} - System32\Tasks\Plus-HD-1.2-codedownloader => C:\Program Files (x86)\Plus-HD-1.2\Plus-HD-1.2-codedownloader.exe
Task: {A48A398D-9CFF-4CAC-89A7-D984CB5539D8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-09-13] (Adobe Systems Incorporated)
Task: {A713676A-1C69-4369-A66E-77C914D8663D} - System32\Tasks\Microsoft.NETAcrobat => C:\Program Files (x86)\nodejs\node.exe [2017-05-02] (Node.js)
Task: {A8101320-8A5B-431E-B294-E8404794A9DE} - System32\Tasks\{BC947F93-D79C-4A14-A07F-8D8FADFF72F3} => C:\Users\User\Desktop\Cymera2 Client(LIVE)\Cymera.exe
Task: {A8A95926-0981-4DEB-A96D-037782F48A8D} - System32\Tasks\{DA9C3F1B-9BFD-4DDB-9702-92F6A816378C} => C:\Program Files (x86)\Nexon\Nexon Launcher\nexon_launcher.exe
Task: {AC37E256-8BC0-4E9B-B936-F55518BA580F} - System32\Tasks\01f8a84096caddd3c79baeadd404dcdf => sc start 01f8a84096caddd3c79baeadd404dcdf <==== ACHTUNG
Task: {AF75B6EA-1D04-4865-B1C2-BD9D72121450} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {AF75B6EA-1D04-4865-B1C2-BD9D72121450} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent
Task: {AF75B6EA-1D04-4865-B1C2-BD9D72121450} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\Windows\system32\GWX\GWXDetector.exe [2015-07-04] (Microsoft Corporation)
Task: {B004DAD0-208A-41EC-9659-5E5F1D9923D4} - System32\Tasks\{416EB133-8136-4FE0-9D41-E1E212CB3A3F} => C:\Riot Games\League of Legends\lol.launcher.exe [2016-04-01] ()
Task: {B99EC587-BBA4-4F43-BD11-871AC986F71E} - System32\Tasks\Keyboard Trainer => C:\Windows\system32\rundll32.exe "C:\Program Files\Keyboard Trainer\Keyboard Trainer.dll",TfMxibDFBh <==== ACHTUNG
Task: {B9C034D1-781E-41DB-8DDE-40E7CFD14347} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {BDE0D4D2-4A10-48DE-865A-992AA100D7EB} - System32\Tasks\{1309BD4C-B2D5-4CD9-AFE9-0556F62DF196} => C:\Users\User\Desktop\Cymera2 Client(LIVE)\Cymera.exe
Task: {C055B2D1-64A9-40DA-B28A-E318F82476DF} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-08] (Lenovo)
Task: {C7343B0D-3823-4DC1-B3C4-B9EC61C8972A} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2017-05-16] ()
Task: {CDA1B6CA-339B-42EC-B59F-9F900EADBBD6} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {CE8DFE51-BE50-46F7-A6B4-AAA3A6323028} - System32\Tasks\{5ABA2743-160D-4DDC-BEA1-B9487B0DCA03} => C:\Users\User\Desktop\Cymera2 Client(LIVE)\Patcher.exe
Task: {D2018DDB-141C-44C0-B1FF-39BDB79BFA7A} - System32\Tasks\{DEAE8F9E-1653-40B2-9633-5D8385E6A5F1} => rundll32.exe "C:\Users\User\AppData\Local\Microsoft\TaskPlay\caches.dat",StaticCache
Task: {DAE0269D-5B41-4882-9DDF-788677FF7995} - System32\Tasks\{95BA90B9-4118-4AAB-92B8-7D855B4CC05D} => C:\Users\User\Desktop\Cymera2 Client(LIVE)\Cymera.exe
Task: {DB92B0AA-2AAA-4E7D-A72C-4961D7E938B1} - System32\Tasks\{92E548C0-EAB8-41A1-9860-0895BD0D24CD} => C:\Users\User\Desktop\wolfteam_us_downloader.exe
Task: {E9AC447E-9ABD-4735-8E71-3C3ED8E6DD6A} - System32\Tasks\SMW_P => C:\ProgramData\smp2.exe [2017-08-03] () <==== ACHTUNG
Task: {EA158391-C3D5-4811-907F-530E6C86D4C4} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfigAndContent
Task: {EA158391-C3D5-4811-907F-530E6C86D4C4} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => Command(2): C:\Windows\system32\GWX\GWXDetector.exe [2015-07-04] (Microsoft Corporation)
Task: {EECA143E-D4FC-405E-99AC-25B0F39C62D4} - System32\Tasks\{3EA43B9E-2AC2-4055-B49A-DF7D9D328643} => C:\Users\User\Desktop\Cymera2 Client(LIVE)\Cymera.exe
Task: {EFA7B181-14FA-4E11-8E66-3FF038A84F23} - System32\Tasks\361971e86847fe4cd4491b6da416b4a6 => sc start 361971e86847fe4cd4491b6da416b4a6 <==== ACHTUNG
Task: {F2CFB2DC-CC4C-462A-BDA7-D1FEB1F30AF8} - System32\Tasks\Plus-HD-1.2-firefoxinstaller => C:\Program Files (x86)\Plus-HD-1.2\Plus-HD-1.2-firefoxinstaller.exe
Task: {F4877897-B1CC-44EA-8C4D-0314C18A881C} - System32\Tasks\{10FE99D7-F35C-4B89-9FE1-6475676B13A6} => C:\Users\User\Desktop\wolfteam_us_downloader.exe
Task: {FD92A04F-4E41-497E-A412-A5CC7599B4F8} - System32\Tasks\{DE3C99F6-60DD-4D3F-B175-32E7A1DD742B} => C:\Users\User\Desktop\wolfteam_us_downloader.exe
Task: {FE841711-1913-4CF3-8319-B9AA044A3288} - System32\Tasks\Plus-HD-1.2-updater => C:\Program Files (x86)\Plus-HD-1.2\Plus-HD-1.2-updater.exe
Task: {FE86CDBC-B366-471F-AA93-7D0966703058} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-07] (Google Inc.)
Task: {FE87EAFB-FED5-4378-B81D-D34D604E7969} - System32\Tasks\{B85B8E44-0E7B-40D0-A9B5-B80C121E5988} => C:\Nexon\Combat Arms EU\CombatArms.exe
Task: {FF363164-F3F3-4AC7-B71D-6FD4F9F3CFBD} - System32\Tasks\{E061440E-57CA-F3A5-748A-789A8C266F9F} => C:\ProgramData\{94D9FD5E-2372-4AF5-6780-B0ED267E285E}\4C44C175-FBEF-76DE-A2EC-D8B530283C4E.exe [2017-08-24] () <==== ACHTUNG
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\Windows\Tasks\Plus-HD-1.2-chromeinstaller.job => C:\Program Files (x86)\Plus-HD-1.2\Plus-HD-1.2-chromeinstaller.exe/installcrx /crxinstalltype=0 /agentregpath='Plus-HD-1.2' /extensionfilepath C:\Program Files (x86)\Plus-HD-1.2\31255.crx' /appid=31255 /srcid='000817' /subid='0' /zdata='0' /bic=F383CA6B37D0472BAD0C4DDA25D691AAIE /verifier=3cec8fa51696c82c56cb9ac0d7a90776 /installerversion=1_32_153 /installerfullversion=1.32.153.0 /installationtime=1387746140 /statsdomain=hxxp:/stats.srvstatsdata.com /errorsdomain=hxxp:/errors.srvstatsdata.com <==== ACHTUNG
Task: C:\Windows\Tasks\Plus-HD-1.2-codedownloader.job => C:\Program Files (x86)\Plus-HD-1.2\Plus-HD-1.2-codedownloader.exeǀ/reinstallapp /agentregpath='Plus-HD-1.2' /appid=31255 /srcid='000817' /subid='0' /zdata='0' /bic=F383CA6B37D0472BAD0C4DDA25D691AAIE /verifier=3cec8fa51696c82c56cb9ac0d7a90776 /installerversion=1_32_153 /installerfullversion=1.32.153.0 /installationtime=1387746140 /statsdomain=hxxp:/stats.srvstatsdata.com /errorsdomain=hxxp:/errors.srvstatsdata.com /codedownloaddomain=hxxp:/app-static.crossrider.com <==== ACHTUNG
Task: C:\Windows\Tasks\Plus-HD-1.2-enabler.job => C:\Program Files (x86)\Plus-HD-1.2\Plus-HD-1.2-enabler.exeƕ/enablebho /agentregpath='Plus-HD-1.2' /appid=31255 /srcid='000817' /subid='0' /zdata='0' /bic=F383CA6B37D0472BAD0C4DDA25D691AAIE /verifier=3cec8fa51696c82c56cb9ac0d7a90776 /installerversion=1_32_153 /installationtime=1387746140 /statsdomain=hxxp:/stats.srvstatsdata.com /errorsdomain=hxxp:/errors.srvstatsdata.com <==== ACHTUNG
Task: C:\Windows\Tasks\Plus-HD-1.2-firefoxinstaller.job => C:\Program Files (x86)\Plus-HD-1.2\Plus-HD-1.2-firefoxinstaller.exeͳ/installxpi /agentregpath='Plus-HD-1.2' /extensionfilepath C:\Program Files (x86)\Plus-HD-1.2\31255.xpi' /appid=31255 /srcid='000817' /subid='0' /zdata='0' /bic=F383CA6B37D0472BAD0C4DDA25D691AAIE /verifier=3cec8fa51696c82c56cb9ac0d7a90776 /installerversion=1_32_153 /installerfullversion=1.32.153.0 /installationtime=1387746140 /statsdomain=hxxp:/stats.srvstatsdata.com /errorsdomain=hxxp:/errors.srvstatsdata.com /waitforbrowser=300 /extensionid=39e612de-2951-40c2-ab4a-82e121c42778@4e0cecc2-7c67-4374-bc4c-f15656d80ab7.com /extensionversion=0.93 /prefsbranch=a39e612de295140c2ab4a82e121c427784e0cecc27c674374bc4cf15656d80ab7com31255 /updateurl=hxxps:/w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/31255.rdf <==== ACHTUNG
Task: C:\Windows\Tasks\Plus-HD-1.2-updater.job => C:\Program Files (x86)\Plus-HD-1.2\Plus-HD-1.2-updater.exeǸ/runupdater /agentregpath='Plus-HD-1.2' /appid=31255 /srcid='000817' /subid='0' /zdata='0' /bic=F383CA6B37D0472BAD0C4DDA25D691AAIE /verifier=3cec8fa51696c82c56cb9ac0d7a90776 /installerversion=1_32_153 /installationtime=1387746140 /statsdomain=hxxp:/stats.srvstatsdata.com /errorsdomain=hxxp:/errors.srvstatsdata.com /geoserviceurl=hxxp:/ipgeoapi.com/ /updatejsondomain=hxxp:/update.srvstatsdata.com /updaterversion=2 /monetizationdomain=hxxp:/stats.syncstatsdata.com <==== ACHTUNG
Task: C:\Windows\Tasks\Re-Markable Update.job => C:\Program Files (x86)\ver8Re-Markable\H8Re-MarkableR09.exe
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\User\AppData\Local\Microsoft\Start Menu\Вoйти в Интeрнeт.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> "hxxp://polili.ru/?utm_source=startlink03&utm_content=bacb3052e711b838cb97b414cfc9bf33&utm_term=D8FCEA74B404414E941AC587DBA1A4C5&utm_d=20160903"
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www%2dsearching.com/?prd=set_epf&s=h82zbcnbl1bu,db68b118-7732-4251-bb57-788b9fa12b56,
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www%2dsearching.com/?prd=set_epf&s=h82zbcnbl1bu,db68b118-7732-4251-bb57-788b9fa12b56,
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www%2dsearching.com/?prd=set_epf&s=h82zbcnbl1bu,db68b118-7732-4251-bb57-788b9fa12b56,
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet-Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www%2dsearching.com/?prd=set_epf&s=h82zbcnbl1bu,db68b118-7732-4251-bb57-788b9fa12b56,
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www%2dsearching.com/?prd=set_epf&s=h82zbcnbl1bu,db68b118-7732-4251-bb57-788b9fa12b56,
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\Pokeeh - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www%2dsearching.com/?prd=set_epf&s=h82zbcnbl1bu,db68b118-7732-4251-bb57-788b9fa12b56,
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www%2dsearching.com/?prd=set_epf&s=h82zbcnbl1bu,db68b118-7732-4251-bb57-788b9fa12b56,
ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www%2dsearching.com/?prd=set_epf&s=h82zbcnbl1bu,db68b118-7732-4251-bb57-788b9fa12b56,
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2016-05-22 19:33 - 2016-05-22 19:33 - 000491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2017-08-14 18:05 - 2017-08-14 18:05 - 000076456 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
2017-08-02 07:58 - 2017-08-02 07:39 - 003780096 _____ () C:\ProgramData\Logic Cramble\set.exe
2017-08-02 07:48 - 2017-09-20 16:21 - 003098048 _____ () C:\Users\User\AppData\Roaming\SysMon\sysmon.exe
2017-08-02 07:54 - 2017-07-20 08:36 - 000043520 _____ () C:\ProgramData\PrefsSecure\Nettrans.exe
2017-09-17 19:46 - 2017-09-17 19:46 - 003282432 _____ () C:\Users\User\AppData\Local\Temp\csrss\proxy\Tor\tor.exe
2017-09-17 19:46 - 2017-09-17 19:46 - 001370624 _____ () C:\Windows\windefender.exe
2017-04-11 16:08 - 2017-04-11 16:08 - 000495616 _____ () C:\Program Files\WinZip Smart Monitor\WinZip Smart Monitor Service.exe
2017-09-17 19:45 - 2017-09-17 19:45 - 002519552 _____ () C:\Windows\rss\csrss.exe
2017-08-25 23:56 - 2017-08-25 23:56 - 000349696 _____ () C:\Program Files\WinZip Smart Monitor\Plugins\7BC0E678-C2D8-43A4-B694-A458734AEF6D.2.1.0.10\7BC0E678-C2D8-43A4-B694-A458734AEF6D.2.1.0.10.dll
2017-09-18 04:23 - 2017-09-23 11:53 - 000627200 _____ () C:\Users\User\AppData\Local\Temp\csrss\wup.exe
2015-04-15 22:13 - 2015-04-15 22:13 - 000222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2017-09-09 22:00 - 2017-09-09 22:00 - 090016856 _____ () C:\Program Files\Opera\47.0.2631.80\opera_browser.dll
2017-09-09 22:00 - 2017-09-09 21:59 - 003972696 _____ () C:\Program Files\Opera\47.0.2631.80\libglesv2.dll
2017-09-09 22:00 - 2017-09-09 21:59 - 000100440 _____ () C:\Program Files\Opera\47.0.2631.80\libegl.dll
2017-09-21 22:43 - 2017-09-15 12:20 - 003481728 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\LeagueClient.exe
2017-09-21 22:43 - 2017-09-15 12:20 - 001705088 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\LeagueClientUx.exe
2017-09-21 22:43 - 2017-09-15 12:20 - 001705088 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\LeagueClientUxRender.exe
2015-10-22 13:22 - 2017-07-15 13:53 - 000176408 _____ () C:\Users\User\AppData\Local\TeamSpeak 3 Client\quazip.dll
2017-01-11 22:52 - 2017-03-20 22:13 - 000020248 _____ () C:\Users\User\AppData\Local\TeamSpeak 3 Client\libEGL.DLL
2017-01-11 22:52 - 2017-03-20 22:13 - 001975064 _____ () C:\Users\User\AppData\Local\TeamSpeak 3 Client\libGLESv2.dll
2015-10-22 13:21 - 2017-07-15 13:53 - 000107288 _____ () C:\Users\User\AppData\Local\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2015-10-22 13:21 - 2017-07-15 13:53 - 000128280 _____ () C:\Users\User\AppData\Local\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2017-07-26 23:08 - 2017-07-26 23:08 - 000102912 _____ () C:\Users\User\AppData\Roaming\TS3Client\plugins\TS3MassMover_win64.dll
2017-08-24 21:52 - 2017-08-24 21:52 - 001246208 _____ () C:\ProgramData\{94D9FD5E-2372-4AF5-6780-B0ED267E285E}\4C44C175-FBEF-76DE-A2EC-D8B530283C4E.exe
2017-09-09 22:14 - 2017-09-09 22:14 - 001378816 _____ () C:\Program Files (x86)\Google\Chrome\Application\WINHTTP.dll
2017-09-17 19:47 - 2017-09-23 09:22 - 000014336 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\WTSAPI32.dll
2017-08-29 02:14 - 2017-08-23 10:48 - 003824472 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\libglesv2.dll
2017-08-29 02:14 - 2017-08-23 10:48 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\libegl.dll
2017-09-09 22:14 - 2017-09-09 22:14 - 000781312 _____ () c:\users\user\appdata\local\adservice\adservice.dll
2017-09-11 15:45 - 2017-09-11 15:45 - 000161200 _____ () C:\Program Files (x86)\Hotspot Shield\bin\CrashRpt1403.dll
2017-09-18 07:41 - 2017-09-18 07:41 - 002137600 _____ () C:\Program Files (x86)\YkUBYysd0K\kl.dll
2017-09-17 19:46 - 2017-09-17 19:46 - 000720153 _____ () C:\Users\User\AppData\Local\Temp\csrss\proxy\Tor\libevent-2-0-5.dll
2017-09-17 19:46 - 2017-09-17 19:46 - 000093535 _____ () C:\Users\User\AppData\Local\Temp\csrss\proxy\Tor\libssp-0.dll
2017-09-17 19:46 - 2017-09-17 19:46 - 000524198 _____ () C:\Users\User\AppData\Local\Temp\csrss\proxy\Tor\libgcc_s_sjlj-1.dll
2017-09-17 19:46 - 2017-09-17 19:46 - 000107520 _____ () C:\Users\User\AppData\Local\Temp\csrss\proxy\Tor\zlib1.dll
2017-09-13 03:56 - 2017-09-13 03:56 - 000172032 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\af090eae04eb9e9104769a5c03783afc\IsdiInterop.ni.dll
2017-08-08 14:32 - 2012-02-01 16:25 - 000059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2012-06-30 21:04 - 2011-12-16 10:39 - 001198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2017-09-21 22:43 - 2017-09-15 12:20 - 000108672 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\zlib.dll
2017-09-21 22:43 - 2017-09-15 12:20 - 000128640 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\yaml.dll
2017-09-21 22:43 - 2017-09-14 23:10 - 001386624 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-patcher\rcp-be-patcher.dll
2017-09-21 22:43 - 2017-08-09 15:10 - 000669824 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-rso-auth\rcp-be-rso-auth.dll
2017-09-21 22:43 - 2017-09-14 23:10 - 001009792 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-login\rcp-be-lol-login.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000525440 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-platform-config\rcp-be-lol-platform-config.dll
2017-09-21 22:43 - 2017-08-23 23:57 - 000563840 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-riot-messaging-service\rcp-be-riot-messaging-service.dll
2017-09-21 22:43 - 2017-09-21 22:43 - 000673920 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-summoner\rcp-be-lol-summoner.dll
2017-09-21 22:43 - 2017-09-14 23:10 - 000571008 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-ranked-stats\rcp-be-lol-ranked-stats.dll
2017-09-21 22:43 - 2017-08-09 15:10 - 000495744 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-maps\rcp-be-lol-maps.dll
2017-09-21 22:43 - 2017-09-14 23:09 - 000632448 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-game-queues\rcp-be-lol-game-queues.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000539264 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-player-preferences\rcp-be-lol-player-preferences.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000625792 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-game-settings\rcp-be-lol-game-settings.dll
2017-09-21 22:43 - 2017-08-09 15:10 - 000582272 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-settings\rcp-be-lol-settings.dll
2017-09-21 22:43 - 2017-09-14 23:09 - 000787072 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-gameflow\rcp-be-lol-gameflow.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000483456 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-pre-end-of-game\rcp-be-lol-pre-end-of-game.dll
2017-09-21 22:43 - 2017-09-14 23:10 - 000566400 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-sanitizer\rcp-be-sanitizer.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000444544 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-riot-messaging-service\rcp-be-lol-riot-messaging-service.dll
2017-09-21 22:43 - 2017-09-14 23:09 - 000537216 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-acs\rcp-be-lol-acs.dll
2017-09-21 22:43 - 2017-07-15 19:11 - 000544896 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-player-notifications\rcp-be-player-notifications.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000496768 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-loyalty\rcp-be-lol-loyalty.dll
2017-09-21 22:43 - 2017-08-23 23:57 - 000899712 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-collections\rcp-be-lol-collections.dll
2017-09-21 22:43 - 2017-09-14 23:09 - 000690816 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-champions\rcp-be-lol-champions.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000496768 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-kr-shutdown-law\rcp-be-lol-kr-shutdown-law.dll
2017-09-21 22:43 - 2017-09-14 23:10 - 000569984 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-loadouts\rcp-be-lol-loadouts.dll
2017-09-21 22:43 - 2017-09-14 23:10 - 000903296 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-lobby-team-builder\rcp-be-lol-lobby-team-builder.dll
2017-09-21 22:43 - 2017-09-14 23:10 - 000580736 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-queue-eligibility\rcp-be-lol-queue-eligibility.dll
2017-09-21 22:43 - 2017-09-14 23:10 - 000690816 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-matchmaking\rcp-be-lol-matchmaking.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000518272 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-spectator\rcp-be-lol-spectator.dll
2017-09-21 22:43 - 2017-09-14 23:09 - 001608832 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-chat\rcp-be-lol-chat.dll
2017-09-21 22:43 - 2017-09-15 12:20 - 001467008 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-lobby\rcp-be-lol-lobby.dll
2017-09-21 22:43 - 2017-09-14 23:09 - 000776320 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-champ-select-legacy\rcp-be-lol-champ-select-legacy.dll
2017-09-21 22:43 - 2017-09-14 23:09 - 000577152 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-champ-select\rcp-be-lol-champ-select.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000493696 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-heartbeat\rcp-be-lol-heartbeat.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000518272 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-shutdown\rcp-be-lol-shutdown.dll
2017-09-21 22:43 - 2017-08-09 15:10 - 000920704 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-loot\rcp-be-lol-loot.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000472704 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-kickout\rcp-be-lol-kickout.dll
2017-09-21 22:43 - 2017-09-14 23:10 - 000477312 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-license-agreement\rcp-be-lol-license-agreement.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000479360 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-kr-playtime-reminder\rcp-be-lol-kr-playtime-reminder.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000492160 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-game-client-chat\rcp-be-lol-game-client-chat.dll
2017-09-21 22:43 - 2017-07-15 19:11 - 000536192 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-team-boosts\rcp-be-lol-team-boosts.dll
2017-09-21 22:43 - 2017-09-14 23:09 - 000723072 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-end-of-game\rcp-be-lol-end-of-game.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000522368 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-active-boosts\rcp-be-lol-active-boosts.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000435328 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-parties\rcp-be-lol-parties.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000808576 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-leagues\rcp-be-lol-leagues.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000599168 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-pft\rcp-be-lol-pft.dll
2017-09-21 22:43 - 2017-08-09 15:10 - 000624256 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-player-behavior\rcp-be-lol-player-behavior.dll
2017-09-21 22:43 - 2017-08-23 23:57 - 000600704 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-suggested-players\rcp-be-lol-suggested-players.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000530560 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-service-status\rcp-be-lol-service-status.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000558720 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-leaver-buster\rcp-be-lol-leaver-buster.dll
2017-09-21 22:43 - 2017-08-23 23:57 - 000662656 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-match-history\rcp-be-lol-match-history.dll
2017-09-21 22:43 - 2017-08-23 23:57 - 000715392 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-recofriender\rcp-be-recofriender.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000785536 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-clubs\rcp-be-lol-clubs.dll
2017-09-21 22:43 - 2017-07-29 21:53 - 000530560 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-clubs-public\rcp-be-lol-clubs-public.dll
2017-09-21 22:43 - 2017-09-14 23:09 - 000577152 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-esport-stream-notifications\rcp-be-lol-esport-stream-notifications.dll
2017-09-21 22:43 - 2017-09-14 23:10 - 000690816 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-replays\rcp-be-lol-replays.dll
2017-09-21 22:43 - 2017-08-23 23:57 - 000738944 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-store\rcp-be-lol-store.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000504960 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-player-level-up\rcp-be-lol-player-level-up.dll
2017-09-21 22:43 - 2017-07-15 19:11 - 000487040 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-tencent-qt\rcp-be-lol-tencent-qt.dll
2017-09-21 22:43 - 2017-08-23 23:57 - 000526976 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-beta-opt-in\rcp-be-lol-beta-opt-in.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000546432 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-player-messaging\rcp-be-lol-player-messaging.dll
2017-09-21 22:43 - 2017-09-15 12:20 - 000586368 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-personalized-offers\rcp-be-lol-personalized-offers.dll
2017-09-21 22:43 - 2017-07-15 19:11 - 000471680 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-user-experience\rcp-be-lol-user-experience.dll
2017-09-21 22:43 - 2017-07-29 21:54 - 000541824 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-simple-dialog-messages\rcp-be-lol-simple-dialog-messages.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000610944 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-highlights\rcp-be-lol-highlights.dll
2017-09-21 22:43 - 2017-09-14 23:09 - 000648832 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-honor-v2\rcp-be-lol-honor-v2.dll
2017-09-21 22:43 - 2017-07-15 19:11 - 000489088 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-network-testing\rcp-be-network-testing.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000539264 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-entitlements\rcp-be-entitlements.dll
2017-09-21 22:43 - 2017-09-14 23:10 - 000659584 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-missions\rcp-be-lol-missions.dll
2017-09-21 22:43 - 2017-09-14 23:10 - 000584832 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-item-sets\rcp-be-lol-item-sets.dll
2017-09-21 22:43 - 2017-07-15 19:10 - 000466560 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-las-toxicity\rcp-be-lol-las-toxicity.dll
2017-09-21 22:43 - 2017-09-14 23:09 - 000516224 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-geoinfo\rcp-be-lol-geoinfo.dll
2017-09-21 22:43 - 2017-09-14 23:09 - 001090688 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-clash\rcp-be-lol-clash.dll
2017-09-21 22:43 - 2017-09-14 23:09 - 000486528 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\Plugins\rcp-be-lol-banners\rcp-be-lol-banners.dll
2017-09-21 22:43 - 2017-09-15 12:20 - 055775872 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\libcef.dll
2017-09-21 22:43 - 2017-09-15 12:20 - 001801344 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\libglesv2.dll
2017-09-21 22:43 - 2017-09-15 12:20 - 000022144 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.97\deploy\libegl.dll
2017-08-17 16:51 - 2017-08-17 16:51 - 001993184 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll
2017-09-23 22:13 - 2017-09-23 22:13 - 000016384 _____ () C:\Users\User\AppData\Local\Temp\nsa5232.tmp\Registry.dll
2017-08-14 18:05 - 2017-08-14 18:05 - 000073384 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll
2017-09-23 22:14 - 2017-09-23 22:14 - 000008704 _____ () C:\Users\User\AppData\Local\Temp\nsa5232.tmp\newadvsplash.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData\TEMP:05E9FFE5 [122]
AlternateDataStreams: C:\ProgramData\TEMP:373E1720 [126]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SecureAssist => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WRkrn => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WRSVC => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
HKU\.DEFAULT\Software\Classes\exefile: "%1" %* <==== ACHTUNG
HKU\S-1-5-21-2783078182-1204926350-1955954555-1000\Software\Classes\exefile: "%1" %* <==== ACHTUNG
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-2783078182-1204926350-1955954555-1000\...\aeriagames.com -> hxxps://aeriagames.com
IE trusted site: HKU\S-1-5-21-2783078182-1204926350-1955954555-1000\...\aeriagames.com -> hxxp://aeriagames.com
==================== Hosts Inhalt: ==========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2017-08-04 23:53 - 000014417 _____ C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 plugpackdownload.net
127.0.0.1 dscdn.pw
127.0.0.1 wemsofts.com
127.0.0.1 bongadoom.com
127.0.0.1 wepcmainsystem.com
127.0.0.1 internalcampaigntargets.com
127.0.0.1 bongadoom.com
127.0.0.1 getthefilenow.com
127.0.0.1 bigpicturepop.com
127.0.0.1 wizzcaster.com
127.0.0.1 bestoffersfortoday.com
127.0.0.1 wepcmainsystem.com
127.0.0.1 agent.wizztrakys.com
127.0.0.1 csdimonetize.com
127.0.0.1 dl.azalee.site
127.0.0.1 titiaredh.com
127.0.0.1 wepcdisplaysystem.com
127.0.0.1 wepcanalyticsystem.com
127.0.0.1 healthydownload.com
127.0.0.1 leading2download.com
127.0.0.1 dwl0.wizzlabs.com
127.0.0.1 dwl1.wizzlabs.com
127.0.0.1 installpixel.com
127.0.0.1 burningcube.ru
127.0.0.1 mess1.wizzmonetize.com
127.0.0.1 dl.azalee.site
127.0.0.1 dl.smashdl.com
127.0.0.1 downloadmyhost.com
127.0.0.1 lapapahoster.com
127.0.0.1 gf.tools.avast.com
Da befinden sich 361 zusätzliche Einträge.
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2783078182-1204926350-1955954555-1000\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-2783078182-1204926350-1955954555-1003\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 82.163.143.176 - 82.163.142.178
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: ) (EnableLUA: 1)
Windows Firewall ist deaktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
MSCONFIG\Services: CGVPNCliService => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: Hamachi2Svc => 2
MSCONFIG\Services: hshld => 2
MSCONFIG\Services: HssTrayService => 3
MSCONFIG\Services: HssWd => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\startupfolder: C:^Users^User^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^cloudnet.lnk => C:\Windows\pss\cloudnet.lnk.Startup
MSCONFIG\startupreg: Avira SystrayStartTrigger => "C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe"
MSCONFIG\startupreg: ccleaner => "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO
MSCONFIG\startupreg: cloudnet => "C:\Users\User\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe"
MSCONFIG\startupreg: f2M3JOK.exe => C:\ProgramData\1ce2ef437c454166932efa6c15d47683\f2M3JOK.exe
MSCONFIG\startupreg: G0E4I3TRPNGZVBJ => "C:\Program Files\4QGAN98CFS\4QGAN98CF.exe"
MSCONFIG\startupreg: gplyra => C:\Users\User\AppData\Roaming\gplyra\gplyra.exe
MSCONFIG\startupreg: IAStorIcon => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
MSCONFIG\startupreg: LManager => C:\Program Files (x86)\Launch Manager\LManager.exe
MSCONFIG\startupreg: msiql => C:\Users\User\AppData\Local\Temp\00025742\msiql.exe /RUNNING
MSCONFIG\startupreg: OMEWPRODUCT_1G1GL => "C:\Program Files (x86)\rm1qyecl0dh\CJ4S1CQNW2XDIPZ.exe"
MSCONFIG\startupreg: P81Y5XBLOQ04W3N => "C:\Program Files\T96K3B5QWZ\T96K3B5QW.exe"
MSCONFIG\startupreg: ProudNight => "C:\Users\User\AppData\Roaming\ProudNight\proudnight.exe" -startup
MSCONFIG\startupreg: SC7OZLU646QF900 => "C:\Program Files\LXB8JLADK3\LXB8JLADK.exe"
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: USER-PC => C:\Windows\Temp\gB999.tmp.exe
MSCONFIG\startupreg: ZIX3WK8XVSNBG1Z => "C:\Program Files\GLQXT3GWZS\H2VRKB2ZO.exe"
MSCONFIG\startupreg: zkjxvbeydi => explorer "hxxp://granena.ru/?utm_source=uoua03n&utm_content=e739009bccd5f1e6d71a91bff5994529&utm_term=D8FCEA74B404414E941AC587DBA1A4C5&utm_d=20160903"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{952A9F5A-17A3-4DBB-8EBE-B295F1868941}] => (Allow) C:\Windows\system32\rundll32.exe
FirewallRules: [TCP Query User{C4BB9345-9507-4797-B712-6473E19C662A}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{5DBC7CDF-E582-47E8-89E6-96364E35D965}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{2CABC255-F556-4FC7-9A54-F06BF774316A}] => (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{F3EBCE9C-4BA6-4B7D-B41C-66E786F198AD}] => (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{82C01C9C-D1E2-46A8-8BD7-90D5F8EC9667}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{1DD46EF8-490E-43AC-AF6C-9F85BAA621AB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{D61BA85E-0D75-4EC0-8233-E21D189737CF}] => (Allow) C:\Program Files\Opera\47.0.2631.71\opera.exe
FirewallRules: [{70422524-B49E-4273-A40A-456C1AED08B6}] => (Allow) C:\Program Files\Opera\47.0.2631.80\opera.exe
FirewallRules: [{5F7D8164-3ED5-41E4-914C-07CA5CD9864D}] => (Allow) C:\Windows\system32\rundll32.exe
FirewallRules: [{ACAC4355-EFAF-4C02-BCA9-6D29583DBA06}] => (Allow) LPort=8318
FirewallRules: [{A60B23F1-15DB-4648-8E35-804EE268218F}] => (Allow) C:\Windows\rss\csrss.exe
FirewallRules: [{C1363C68-E23C-4562-93F5-3981B7B44604}] => (Allow) C:\Users\User\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe
StandardProfile\AuthorizedApplications: [C:\Windows\Microsoft.NET\Framework\v2.0.50727\vbc.exe] => Enabled:Windows Messanger
StandardProfile\AuthorizedApplications: [C:\Users\User\AppData\Roaming\DDos.exe] => Enabled:Windows Messanger
StandardProfile\AuthorizedApplications: [C:\Nexon\Combat Arms EU\CombatArms.exe] => :*Enabled:CombatArms.exe
StandardProfile\AuthorizedApplications: [C:\Nexon\Combat Arms EU\Engine.exe] => :*Enabled:Engine.exe
==================== Wiederherstellungspunkte =========================
04-07-2017 03:31:40 Windows Update
07-07-2017 15:24:59 Windows Update
12-07-2017 03:00:46 Windows Update
18-07-2017 03:17:36 Windows Update
25-07-2017 03:31:32 Geplanter Prüfpunkt
25-07-2017 03:51:37 Windows Update
26-07-2017 02:53:31 paint.net v4.0.17
27-07-2017 03:00:30 Windows Update
30-07-2017 00:19:37 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215
01-08-2017 03:52:52 Windows Update
01-08-2017 23:01:10 Entfernt Arc
02-08-2017 12:22:35 Removed Microsoft Silverlight
02-08-2017 12:39:53 Removed Microsoft Silverlight
02-08-2017 12:41:53 Removed Online Application
02-08-2017 12:43:43 Removed Online Application
07-08-2017 17:58:17 Removed Node.js
08-08-2017 01:56:52 Installed Intel(R) Manageability Engine Firmware Recovery Agent
08-08-2017 14:39:35 Installiert Qualcomm Atheros WiFi Driver Installation
08-08-2017 22:58:32 Windows Update
17-08-2017 20:55:09 Windows Update
17-08-2017 21:06:48 Windows Defender Checkpoint
22-08-2017 05:22:48 Windows Update
25-08-2017 03:44:42 Installed Oracle VM VirtualBox 5.1.26
25-08-2017 04:00:21 Installed LogMeIn Hamachi
25-08-2017 13:52:03 Removed WinZip 21.0
25-08-2017 13:59:00 Installed PuTTY release 0.70 (64-bit)
25-08-2017 13:59:42 Installed PuTTY release 0.70 (64-bit)
25-08-2017 16:14:25 Windows Update
03-09-2017 21:13:09 Windows Update
08-09-2017 02:28:57 Windows Update
12-09-2017 05:09:05 Windows Update
13-09-2017 03:00:22 Windows Update
15-09-2017 21:24:11 Camtasia 9
17-09-2017 20:21:37 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
18-09-2017 03:00:15 Windows Update
19-09-2017 03:00:18 Windows Update
23-09-2017 11:31:53 15.05.2017
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Hamachi Network Interface
Description: Hamachi Network Interface
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn, Inc.
Service: hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: ucdrv
Description: ucdrv
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ucdrv
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (09/23/2017 11:41:33 AM) (Source: Avira Service Host) (EventID: 0) (User: )
Description: Während der Installation ist ein Fehler aufgetreten. Starten Sie die Reparatur.
Error: (09/23/2017 11:39:25 AM) (Source: Avira Service Host) (EventID: 0) (User: )
Description: Während der Installation ist ein Fehler aufgetreten. Starten Sie die Reparatur.
Error: (09/23/2017 11:39:08 AM) (Source: Avira Service Host) (EventID: 0) (User: )
Description: Während der Installation ist ein Fehler aufgetreten. Starten Sie die Reparatur.
Error: (09/23/2017 11:38:58 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (09/23/2017 11:12:07 AM) (Source: Avira Service Host) (EventID: 0) (User: )
Description: Während der Installation ist ein Fehler aufgetreten. Starten Sie die Reparatur.
Error: (09/23/2017 11:10:26 AM) (Source: Avira Service Host) (EventID: 0) (User: )
Description: Während der Installation ist ein Fehler aufgetreten. Starten Sie die Reparatur.
Error: (09/23/2017 11:09:48 AM) (Source: Avira Service Host) (EventID: 0) (User: )
Description: Während der Installation ist ein Fehler aufgetreten. Starten Sie die Reparatur.
Error: (09/23/2017 11:09:47 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (09/23/2017 10:58:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4
Name des fehlerhaften Moduls: EXPLORERFRAME.dll, Version: 6.1.7601.23893, Zeitstempel: 0x599313fc
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000307ca
ID des fehlerhaften Prozesses: 0x74c
Startzeit der fehlerhaften Anwendung: 0x01d334494bbf8842
Pfad der fehlerhaften Anwendung: C:\Windows\Explorer.EXE
Pfad des fehlerhaften Moduls: C:\Windows\system32\EXPLORERFRAME.dll
Berichtskennung: 6d0b3dd5-a03d-11e7-a2fb-20898473e532
Error: (09/23/2017 10:56:15 AM) (Source: Avira Service Host) (EventID: 0) (User: )
Description: Während der Installation ist ein Fehler aufgetreten. Starten Sie die Reparatur.
Systemfehler:
=============
Error: (09/23/2017 11:41:36 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Avira Service Host" wurde unerwartet beendet. Dies ist bereits 3 Mal passiert.
Error: (09/23/2017 11:39:27 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Service Host" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/23/2017 11:39:15 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
ucdrv
Error: (09/23/2017 11:39:15 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Service Host" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/23/2017 11:37:51 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Adobe Genuine Software Integrity Service" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (09/23/2017 11:37:47 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "AdobeUpdateService" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (09/23/2017 11:36:13 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (09/23/2017 11:12:08 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Avira Service Host" wurde unerwartet beendet. Dies ist bereits 3 Mal passiert.
Error: (09/23/2017 11:11:53 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Service Host" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/23/2017 11:11:53 AM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: Dienst "WMPNetworkSvc" konnte nicht ordnungsgemäß gestartet werden, da ein Fehler "0x80004005" in "CoCreateInstance(CLSID_UPnPDeviceFinder)" aufgetreten ist. Überprüfen Sie, ob der Dienst "UPnPHost" ausgeführt wird und ob die Windows-Komponente "UPnPHost" richtig installiert ist.
CodeIntegrity:
===================================
Date: 2017-09-23 11:41:33.541
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\Winmon.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2017-09-23 11:41:33.409
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\Winmon.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2016-09-03 15:46:44.257
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Sound+\SoundP.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-09-03 15:46:44.162
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Sound+\SoundP.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-09-03 15:46:38.982
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Sound+\SoundP.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-09-03 15:45:27.146
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Sound+\SoundP.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-09-03 15:45:27.051
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Sound+\SoundP.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-09-03 15:45:26.148
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Sound+\SoundP.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-09-03 15:45:26.050
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Sound+\SoundP.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2016-09-03 15:45:15.802
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Sound+\SoundP.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Celeron(R) CPU 1005M @ 1.90GHz
Prozentuale Nutzung des RAM: 78%
Installierter physikalischer RAM: 3914.36 MB
Verfügbarer physikalischer RAM: 845.95 MB
Summe virtueller Speicher: 7826.89 MB
Verfügbarer virtueller Speicher: 2997.06 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:465.72 GB) (Free:153.33 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: E82F3DEF)
Partition 1: (Active) - (Size=40 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
@Cosinus, ich habe die FRST ausversehn zwei mal geschickt tut mir leid.
Gruß,
DasTutWeh |
FRST 32-Bit | FRST 64-Bit
Lesestoff:
Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
dann auf 
und dann auf 
.