| |
| |||||||
Log-Analyse und Auswertung: Windows 10: Programme hängen sich seit einiger Zeit auf. Infiziert?Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
 |
06.12.2015, 22:06
| #1 |
| |  Windows 10: Programme hängen sich seit einiger Zeit auf. Infiziert? Hallo Trojaner-Board! Ich hoffe ihr könnt mir bei meinem Problem helfen. Seit einiger Zeit, ich bin mir nicht ganz sicher seit wann, hängen sich die Programme auf meinem PC ständig auf. Wirklich ständig. Selbst wenn ich nur einen Dateinamen auf dem Desktop ändere, hängt er sich auf; keine Rückmeldung. Dies passiert auch in anderen Programmen (Explorer, Adobe Premiere Pro CC 2015, Adobe Photoshop CC 2014, Firefox, etc.). Dies war früher nicht so. Danke im Voraus! PC Specs: nVidia GeForce 650 2GB, 8GB Ram, AMD FX- 6300 Six Core Prozessor (3.5 GHZ) Windows 10 Pro, 64 Bit Habe meinen Nachnamen überall durch **** ersetzt! Farbar Recovery Scan Tool FRST.txt Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-12-2015
durchgeführt von Nico (Administrator) auf NICO (06-12-2015 21:51:48)
Gestartet von C:\Users\Nico ****\Downloads
Geladene Profile: Nico (Verfügbare Profile: Nico)
Platform: Windows 10 Pro (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(American Megatrends Inc.) C:\Program Files\AMI\DuOS\AndServMgr.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe
() C:\Program Files (x86)\freeSSHd\FreeSSHDService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(RaMMicHaeL) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe
(RaMMicHaeL) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Flux Software LLC) C:\Users\Nico ****\AppData\Local\FluxSoftware\Flux\flux.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.3.0.0\Lightshot.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DiscSoftBusService.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1201.10020.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(Microsoft Corporation) C:\Windows\System32\wimserv.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() C:\Program Files (x86)\Bethesda Studios\Fallout 4\Mod Manager\Fallout4ModManager.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\7badfbd5-1b99-4a1a-88f8-a4e455fb9de3.com
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8497368 2015-08-14] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2655520 2015-10-12] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2303152 2015-07-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2109952 2014-10-07] (Dominik Reichl)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] ()
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [917112 2015-10-08] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.)
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKLM\...\Policies\Explorer: [AllowLegacyWebView] 1
HKLM\...\Policies\Explorer: [AllowUnhashedWebView] 1
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd)
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Run: [KeePass Password Safe 2] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2109952 2014-10-07] (Dominik Reichl)
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Run: [BitTorrent] => C:\Users\Nico ****\AppData\Roaming\BitTorrent\BitTorrent.exe [1977192 2015-10-17] (BitTorrent Inc.)
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [3761424 2014-11-10] (Disc Soft Ltd)
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22790776 2015-11-04] (Google)
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [48138880 2015-10-14] (Skype Technologies S.A.)
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Run: [f.lux] => C:\Users\Nico ****\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Run: [MinerGateGui] => C:\Program Files\MinerGate\minergate.exe [16197632 2015-11-10] ()
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7935904 2015-12-02] (SUPERAntiSpyware)
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\RunOnce: [Uninstall C:\Users\Nico ****\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Nico ****\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\RunOnce: [Uninstall C:\Users\Nico ****\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Nico ****\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Policies\Explorer: [NofolderOptions] 0
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x00000000
IFEO\utilman.exe: [Debugger] cmd.exe
SSODL-x32: IconPackager Repair - {1799460C-0BC8-4865-B9DF-4A36CD703FF0} - Keine Datei
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => Keine Datei
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass FF RunOnce.lnk [2015-11-06]
ShortcutTarget: Install LastPass FF RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (LastPass)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk [2015-11-06]
ShortcutTarget: Install LastPass IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (LastPass)
Startup: C:\Users\Nico ****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2014-11-08]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Nico ****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\chrome - Verknüpfung.lnk [2015-08-11]
ShortcutTarget: chrome - Verknüpfung.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Startup: C:\Users\Nico ****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EventGhost.lnk [2015-08-07]
ShortcutTarget: EventGhost.lnk -> C:\Program Files (x86)\EventGhost\EventGhost.exe (EventGhost Project)
BootExecute: autocheck autochk * SmartDefragBootTime.exe
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{4bc30ba3-ec84-4364-8edf-d69cb2e1bb61}: [NameServer] 192.168.2.1
Tcpip\..\Interfaces\{4bc30ba3-ec84-4364-8edf-d69cb2e1bb61}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{74966d45-470b-4b0f-b3db-885a0046fb25}: [DhcpNameServer] 8.8.8.8
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://de.yahoo.com/?fr=yset_ie_syc_oracle&type=orcl_hpset
SearchScopes: HKU\S-1-5-21-2171699750-2845458332-3438301781-1001 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://go.mail.ru/search?q={SearchTerms}&fr=ntg
SearchScopes: HKU\S-1-5-21-2171699750-2845458332-3438301781-1001 -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKU\S-1-5-21-2171699750-2845458332-3438301781-1001 -> {F90EF9FE-D59B-44BB-8929-A440EE26CC05} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
SearchScopes: HKU\S-1-5-21-2171699750-2845458332-3438301781-1001 -> {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://go.mail.ru/search?q={SearchTerms}&fr=ntg
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-10-20] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-11-02] (Oracle Corporation)
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-11-06] (LastPass)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-11-02] (Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-10-20] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-11-02] (Oracle Corporation)
BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll [2015-11-06] (LastPass)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-11-02] (Oracle Corporation)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-11-06] (LastPass)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2015-11-06] (LastPass)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-11] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-11-02] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-11-02] (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2015-11-06] (LastPass)
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-02-18] (Unity Technologies ApS)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-11-12] (VideoLAN)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.3 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-07-23] (Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-11] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2014-11-21] (DivX, LLC)
FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-11-02] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-11-02] (Oracle Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2015-11-06] (LastPass)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-01-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-11-14] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-11-14] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Keine Datei]
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Nico ****\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-03-10] (Raidcall)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.3 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-07-23] (Adobe Systems)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin HKU\S-1-5-21-2171699750-2845458332-3438301781-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Nico ****\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-08] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2171699750-2845458332-3438301781-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [Keine Datei]
FF Plugin HKU\S-1-5-21-2171699750-2845458332-3438301781-1001: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-03-31] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2015-01-31] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2015-01-31] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2015-01-31] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2015-01-31] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2015-01-31] (Apple Inc.)
FF SearchPlugin: C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\searchplugins\youtube-videosuche.xml [2015-10-03]
FF Extension: Modify Headers - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\extensions\{b749fc7c-e949-447f-926c-3f4eed6accfe}.xpi [2015-11-06]
FF Extension: Greasemonkey - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2015-11-30]
FF Extension: LastPass - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\extensions\support@lastpass.com [2015-12-03]
FF Extension: Fox To Phone - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\extensions\sendtophone@martinezdelizarrondo.com.xpi [2015-12-05]
FF Extension: Kein Name - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\Extensions\firefox@betterttv.net.xpi [2015-10-18] [ist nicht signiert]
FF Extension: YouTube mp3 - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\Extensions\info@youtube-mp3.org.xpi [2015-09-26]
FF Extension: Kein Name - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\Extensions\MediaSniffer@hiyoko.info.xpi [2015-12-05] [ist nicht signiert]
FF Extension: YouTube Unblocker - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\Extensions\youtubeunblocker@unblocker.yt [2015-12-03]
FF Extension: ZIPUpdaterFree - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\Extensions\{45a2694b-7a8d-4e31-aaab-81087fdf2756}.xpi [2015-12-05] [ist nicht signiert]
FF Extension: Video DownloadHelper - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-10-30]
FF Extension: Adblock Plus - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-11-25]
FF Extension: HTML5 Extension - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\Extensions\{eeba6b96-d5c8-4dd8-8ff7-105b1bbb45c2}.xpi [2015-12-01] [ist nicht signiert]
Chrome:
=======
CHR NewTab: Default -> "chrome-extension://bhloflhklmhfpedakmangadcdofhnnoh/index.html"
CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=__PARAM__DF&PC=__PARAM__&q={searchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR DefaultSuggestURL: Default -> hxxps://de.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Heartbeat) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\aailiojlhjbichheofhdpcongebcgcgm [2015-12-05]
CHR Extension: (Google Präsentationen) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-20]
CHR Extension: (Google Docs) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-21]
CHR Extension: (Google Drive) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (Earth View from Google Earth) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhloflhklmhfpedakmangadcdofhnnoh [2015-12-05]
CHR Extension: (YouTube) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Adblock Plus) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-11-29]
CHR Extension: (Google-Suche) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Tampermonkey) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2015-11-29]
CHR Extension: (ARC Welder) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\emfinbmielocnlhgmfkkmkngdoccbadn [2015-12-06]
CHR Extension: (Google Tabellen) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-20]
CHR Extension: (Chrome Remote Desktop) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2015-11-05]
CHR Extension: (Google Docs Offline) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-29]
CHR Extension: (AutoRemote) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\hglmpnnkhfjpnoheioijdpleijlmfcfb [2015-11-29]
CHR Extension: (Google Notizen – Notizen & Listen) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2015-11-29]
CHR Extension: (VideoHunter+) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpiikdgdgibmpnfhkopjaamphpmdgfhm [2015-09-10]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2015-09-01]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-08-20]
CHR Extension: (Tampermonkey) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfaihdlpglflfgpfjcifdjdjcckigekc [2015-12-06]
CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2015-11-29]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-20]
CHR Extension: (Google Chrome to Phone Extension) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco [2015-12-05]
CHR Extension: (Google Mail) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-21]
CHR Extension: (__MSG_extName__) - C:\Users\Nico ****\Documents\ARCWELDER\Hack%20Ex%20-%20Simulator_1.1.4_apk-dl.com.apk_export_oUBJK [2015-10-26]
CHR Extension: (__MSG_extName__) - C:\Users\Nico ****\Documents\ARCWELDER\Hack%20Ex%20-%20Simulator_1.1.4_apk-dl.com.apk_export_oUBJK [2015-10-26]
CHR Extension: (__MSG_extName__) - C:\Users\Nico ****\Documents\ARCWELDER\Hack%20Ex%20-%20Simulator_1.1.4_apk-dl.com.apk_export_wUfLB [2015-10-26]
CHR Extension: (__MSG_extName__) - C:\Users\Nico ****\Documents\ARCWELDER\Hack%20Ex%20-%20Simulator_1.1.4_apk-dl.com.apk_export_wUfLB [2015-10-26]
CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - hxxp://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bmkckgpgekmanipelfidlhmkfcjicion] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [njabjmhinndphfnbjehdalkphpdmepli] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
R2 AndServMgr; C:\Program Files\AMI\DuOS\AndServMgr.exe [82384 2015-08-06] (American Megatrends Inc.)
S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [437880 2015-10-08] (BlueStack Systems, Inc.)
S2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [417400 2015-10-08] (BlueStack Systems, Inc.)
S2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [855672 2015-10-08] (BlueStack Systems, Inc.)
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe [69448 2015-10-14] (Google Inc.)
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [216576 2014-11-25] () [Datei ist nicht signiert]
R3 Disc Soft Bus Service; C:\Program Files (x86)\DAEMON Tools Pro\DiscSoftBusService.exe [2216208 2014-11-10] (Disc Soft Ltd)
S2 Droid4XService; C:\Program Files (x86)\Droid4X\Droid4XService.exe [261864 2015-06-03] () [Datei ist nicht signiert]
S2 Ds3Service; C:\Program Files\Scarlet.Crush Productions\bin\ScpService.exe [388352 2013-05-05] (Scarlet.Crush Productions)
R2 FreeSSHDService; C:\Program Files (x86)\freeSSHd\FreeSSHDService.exe [1513072 2015-02-02] ()
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156384 2015-10-12] (NVIDIA Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-08-07] (IObit)
S2 Mobizen plugin; C:\Program Files (x86)\RSUPPORT\MobizenService\MobizenService.exe [3353360 2015-08-14] ( Rsupport Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1873696 2015-10-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5568288 2015-10-12] (NVIDIA Corporation)
S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [24576 2013-11-03] (The OpenVPN Project) [Datei ist nicht signiert]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2078216 2015-10-08] (Electronic Arts)
S2 Remotr Service; C:\Program Files (x86)\Remotr\RemotrService.exe [181328 2015-11-16] (RemoteMyApp sp. z o.o.)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
R2 Unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [242936 2015-11-06] (RaMMicHaeL)
S2 UnsignedThemes; C:\Windows\unsignedthemes.exe [13824 2013-09-23] (The Within Network, LLC) [Datei ist nicht signiert]
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [672024 2015-02-26] (Wacom Technology, Corp.)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R0 amdide64; C:\Windows\System32\drivers\amdide64.sys [11944 2015-05-24] (Advanced Micro Devices Inc.)
S3 androidusb; C:\Windows\System32\Drivers\androidusb.sys [32768 2015-09-01] (Google Inc)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [146040 2015-10-08] (BlueStack Systems)
S3 cxbu0x64; C:\Windows\system32\DRIVERS\cxbu0x64.sys [147576 2015-09-05] (HID Global Corporation)
S3 dtscsibus; C:\Windows\system32\DRIVERS\dtscsibus.sys [29864 2015-06-04] (Disc Soft Ltd)
R1 DuoVMDrv; C:\Windows\system32\DRIVERS\DuoVMDrv.sys [239536 2015-07-31] (American Megatrends Inc.)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [44296 2015-03-30] (LogMeIn Inc.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-05-24] (REALiX(tm))
S3 LcUvcUpper; C:\Windows\system32\DRIVERS\LcUvcUpper.sys [34408 2013-09-27] (Microsoft Corporation)
R3 ManyCam; C:\Windows\system32\DRIVERS\mcvidrv_x64.sys [34304 2012-01-11] (ManyCam LLC)
R3 mcaudrv_simple; C:\Windows\system32\drivers\mcaudrv_x64.sys [28160 2012-02-22] (ManyCam LLC)
R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] ()
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20768 2015-10-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
S3 qcusbser; C:\Windows\system32\DRIVERS\qcusbser.sys [242688 2015-08-14] (QUALCOMM Incorporated)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [886528 2015-05-29] (Realtek )
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S2 uxstyle; C:\Windows\system32\Drivers\uxstyle.sys [31440 2013-09-23] (The Within Network, LLC)
R1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-10-15] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [146584 2015-10-15] (Oracle Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 pxldqpod; C:\Users\Nico ****\AppData\Local\Temp\pxldqpod.sys [56496 2015-12-06] (GMER) [Datei ist nicht signiert]
S3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-12-06 21:51 - 2015-12-06 21:52 - 00036961 _____ C:\Users\Nico ****\Downloads\FRST.txt
2015-12-06 21:47 - 2015-12-06 21:51 - 00000000 ____D C:\FRST
2015-12-06 21:47 - 2015-12-06 21:47 - 02369024 _____ (Farbar) C:\Users\Nico ****\Downloads\FRST64.exe
2015-12-06 21:34 - 2015-12-06 21:34 - 00380416 _____ C:\Users\Nico ****\Downloads\Gmer-19357.exe
2015-12-06 21:34 - 2015-12-06 21:34 - 00050477 _____ C:\Users\Nico ****\Downloads\Defogger.exe
2015-12-06 21:04 - 2015-12-06 21:04 - 00016148 _____ C:\WINDOWS\system32\NICO_Nico_HistoryPrediction.bin
2015-12-06 18:52 - 2015-12-06 18:52 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\SUPERAntiSpyware.com
2015-12-06 18:51 - 2015-12-06 21:31 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2015-12-06 18:51 - 2015-12-06 18:51 - 00001849 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2015-12-06 18:51 - 2015-12-06 18:51 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2015-12-06 18:51 - 2015-12-06 18:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2015-12-06 18:49 - 2015-12-06 18:50 - 24088304 _____ (SUPERAntiSpyware) C:\Users\Nico ****\Downloads\SUPERAntiSpyware.exe
2015-12-06 18:14 - 2015-12-06 18:14 - 00000000 _____ C:\Users\Nico ****\Desktop\Telegraph.apk
2015-12-06 18:09 - 2015-12-06 18:21 - 00000000 ____D C:\Users\Nico ****\Desktop\Zeitungen
2015-12-06 16:11 - 2015-12-06 16:11 - 00011793 _____ C:\Users\Nico ****\Downloads\ic_directions_bike_black_24dp.zip
2015-12-06 16:05 - 2015-12-06 16:05 - 00007253 _____ C:\Users\Nico ****\Downloads\ic_announcement_black_24dp.zip
2015-12-06 13:28 - 2015-12-06 13:28 - 00000000 ____D C:\Users\Nico ****\AppData\Local\minergate
2015-12-06 13:28 - 2015-12-06 13:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MinerGate
2015-12-06 13:28 - 2015-12-06 13:28 - 00000000 ____D C:\Program Files\MinerGate
2015-12-06 13:22 - 2015-12-06 13:22 - 10782967 _____ C:\Users\Nico ****\Downloads\MinerGate-5.06-win64.exe
2015-12-06 11:38 - 2015-12-06 11:38 - 00011226 _____ C:\Users\Nico ****\Downloads\ic_whatshot_black_24dp.zip
2015-12-05 23:31 - 2015-12-05 23:31 - 00023040 _____ () C:\Users\Nico ****\Desktop\FO4FaceRipper.exe
2015-12-05 23:31 - 2015-12-05 23:31 - 00008771 _____ C:\Users\Nico ****\Downloads\Save Face Ripper-3878-7.7z
2015-12-05 23:29 - 2015-12-05 23:40 - 00000000 ____D C:\Users\Nico ****\Desktop\BIGBOSS éu2.0
2015-12-05 22:29 - 2015-12-05 22:29 - 05401798 _____ C:\Users\Nico ****\Downloads\Skyrim Audio Converter 1_0_2-8303-1-0-2.7z
2015-12-05 19:16 - 2015-12-05 19:16 - 00000022 _____ C:\WINDOWS\S.dirmngr
2015-12-05 17:09 - 2015-12-05 17:09 - 02903735 _____ C:\Users\Nico ****\Downloads\BIGBOSS V2.0-4118-2-0.zip
2015-12-05 15:44 - 2015-12-05 15:44 - 00011536 _____ C:\Users\Nico ****\Downloads\ic_stars_black_24dp.zip
2015-12-05 15:31 - 2015-12-05 15:31 - 00006824 _____ C:\Users\Nico ****\Downloads\ic_movie_black_24dp.zip
2015-12-05 15:27 - 2015-12-05 15:27 - 00009653 _____ C:\Users\Nico ****\Downloads\ic_local_mall_black_24dp.zip
2015-12-05 15:23 - 2015-12-05 15:23 - 02615253 _____ C:\Users\Nico ****\Downloads\9396-44434-1-PB.pdf
2015-12-05 15:22 - 2015-12-05 15:22 - 02192671 _____ C:\Users\Nico ****\Downloads\Fallout4Translator-215-0-8.zip
2015-12-05 15:06 - 2015-12-05 15:06 - 00007935 _____ C:\Users\Nico ****\Downloads\ic_video_library_black_24dp.zip
2015-12-05 14:52 - 2015-12-05 14:53 - 00006575 _____ C:\Users\Nico ****\Downloads\ic_games_black_24dp.zip
2015-12-05 14:43 - 2015-12-05 14:43 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2015-12-05 14:43 - 2015-12-05 14:43 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2015-12-05 14:34 - 2015-12-05 14:34 - 41904448 _____ (Apple Inc.) C:\Users\Nico ****\Downloads\QuickTimeInstaller.exe
2015-12-05 11:56 - 2015-12-05 11:56 - 01240761 _____ C:\Users\Nico ****\Downloads\Longer Distance PipBoy and Spotlights (With Optional PipBoyShadows)-1790--5.rar
2015-12-04 23:54 - 2015-12-04 23:54 - 00096140 _____ C:\Users\Nico ****\Downloads\special-elite.zip
2015-12-04 23:52 - 2015-12-04 23:52 - 00075028 _____ C:\Users\Nico ****\Downloads\kingthings_trypewriter.zip
2015-12-04 23:21 - 2015-12-04 23:21 - 00007136 _____ C:\Users\Nico ****\Downloads\Save Face Ripper-3878-6.7z
2015-12-04 23:09 - 2015-12-04 23:09 - 01392248 _____ C:\Users\Nico ****\Downloads\Fallout 4 Configuration Tool-102-1-1-7-222.zip
2015-12-04 23:08 - 2015-11-13 14:54 - 03431117 _____ C:\Users\Nico ****\Desktop\Save3_1A910BF0_57616C746572_Vault111Cryo_000049_20151113135408_1_2.fos
2015-12-04 23:05 - 2015-12-04 23:05 - 01193192 _____ C:\Users\Nico ****\Downloads\W.W. Heisenberg-348-1-1.rar
2015-12-04 20:29 - 2015-12-04 20:30 - 01143808 _____ (PainteR) C:\Users\Nico ****\Downloads\adobe.snr.patch-painter.exe
2015-12-04 20:14 - 2015-12-04 20:14 - 00201085 _____ C:\Users\Nico ****\Downloads\my_underwood.zip
2015-12-04 20:13 - 2015-12-04 20:13 - 00033086 _____ C:\Users\Nico ****\Downloads\remingtoned_type.zip
2015-12-04 20:07 - 2015-12-04 20:07 - 00989291 _____ C:\Users\Nico ****\Downloads\traveling_typewriter(1).zip
2015-12-04 20:00 - 2015-12-04 20:00 - 00029241 _____ C:\Users\Nico ****\Downloads\Slabo_27px.zip
2015-12-04 14:48 - 2015-12-04 14:48 - 00008219 _____ C:\Users\Nico ****\Downloads\ic_thumb_down_black_24dp.zip
2015-12-04 14:48 - 2015-12-04 14:48 - 00008094 _____ C:\Users\Nico ****\Downloads\ic_thumb_up_black_24dp.zip
2015-12-04 14:26 - 2015-12-04 14:26 - 01075821 _____ C:\Users\Nico ****\Downloads\Roboto(1).zip
2015-12-04 14:23 - 2015-12-04 14:23 - 01379427 _____ C:\Users\Nico ****\Downloads\roboto.zip
2015-12-04 14:04 - 2015-12-06 18:53 - 00000000 ____D C:\Users\Nico ****\Desktop\Krasse Zeitung
2015-12-03 15:45 - 2015-12-03 15:45 - 00002541 _____ C:\Users\Nico ****\Downloads\Fallout 4 Place in Red v1.7.zip-1267-1-7.zip
2015-12-03 15:45 - 2015-11-23 01:50 - 00017654 _____ C:\Users\Nico ****\Desktop\Fallout 4 Place in Red v1.7.ct
2015-12-03 14:12 - 2015-12-06 14:31 - 00000000 ____D C:\WINDOWS\Panther
2015-12-02 22:09 - 2015-12-02 22:09 - 01371366 _____ C:\Users\Nico ****\Downloads\Fallout 4 Configuration Tool-102-1-1-5-2060.zip
2015-12-02 14:30 - 2015-12-02 14:30 - 00934931 _____ C:\Users\Nico ****\Downloads\Settlement Raid Mod 1.7-2995-1-7.zip
2015-12-01 19:02 - 2015-11-30 18:30 - 05621885 _____ C:\Users\Nico ****\Desktop\fo4facetransfer.exe
2015-12-01 19:00 - 2015-12-01 19:01 - 05560961 _____ C:\Users\Nico ****\Downloads\Fallout 4 Face Transfer-3597-0-1.zip
2015-11-30 21:03 - 2015-11-30 21:03 - 01671338 _____ C:\Users\Nico ****\Downloads\Gorgeous Vaultgirl (Vault Exit Version)-193-1-02.zip
2015-11-30 20:52 - 2015-11-30 20:52 - 01666048 _____ (WJ&AF Company) C:\Users\Nico ****\Desktop\F4SGE.exe
2015-11-30 20:50 - 2015-11-30 20:50 - 01355166 _____ C:\Users\Nico ****\Downloads\Gorgeous Vaultgirl-193-1-01(1).zip
2015-11-30 20:50 - 2015-11-30 20:50 - 01301129 _____ C:\Users\Nico ****\Downloads\F4SGE.0v1b6-838-alfa.7z
2015-11-30 19:31 - 2015-11-30 19:31 - 03081746 _____ C:\Users\Nico ****\Downloads\AutoHotkey112209_Install.exe
2015-11-30 19:31 - 2015-11-30 19:31 - 01358686 _____ C:\Users\Nico ****\Downloads\Fallout 4 Configuration Tool-102-1-1-3-1793.zip
2015-11-30 19:17 - 2015-11-30 19:18 - 02190640 _____ C:\Users\Nico ****\Downloads\Fallout4Translator-215-0-7b.zip
2015-11-30 15:48 - 2015-11-30 15:50 - 01355166 _____ C:\Users\Nico ****\Downloads\Gorgeous Vaultgirl-193-1-01.zip
2015-11-29 18:00 - 2015-11-29 18:02 - 00000017 _____ C:\Users\Nico ****\Desktop\Telegraph (.apk
2015-11-29 10:42 - 2015-11-29 10:42 - 01482475 _____ C:\Users\Nico ****\Downloads\Fallout 4 Mod Manager-495-1-0-30(1).zip
2015-11-28 15:36 - 2015-11-28 15:36 - 01919162 _____ C:\Users\Nico ****\Downloads\Fallout4_EnglishSTRINGS-215-0-1.7z
2015-11-28 15:16 - 2015-11-28 15:16 - 15422436 _____ C:\Users\Nico ****\Downloads\Fallout4_STRINGS_Misc-215-0-1.7z
2015-11-28 14:59 - 2015-11-28 14:59 - 02732887 _____ C:\Users\Nico ****\Downloads\FO4Edit 3.1.3-2737-EXP.7z
2015-11-28 14:57 - 2015-11-30 14:19 - 00000000 ____D C:\Users\Nico ****\Desktop\FO4Edit
2015-11-27 22:02 - 2015-11-27 22:02 - 00031097 _____ C:\Users\Nico ****\Downloads\Who Are You v1.2-2377-1-2.7z
2015-11-27 21:27 - 2015-11-27 21:27 - 02722183 _____ C:\Users\Nico ****\Downloads\TES5Edit_211115a.7z
2015-11-27 21:20 - 2015-11-27 21:20 - 00309595 _____ C:\Users\Nico ****\Downloads\Settler Renaming-2017-1-7-2.zip
2015-11-26 14:28 - 2015-11-26 14:28 - 00000000 ____D C:\Users\Nico ****\AppData\Local\ElevatedDiagnostics
2015-11-26 14:01 - 2015-11-26 14:03 - 01482475 _____ C:\Users\Nico ****\Downloads\Fallout 4 Mod Manager-495-1-0-30.zip
2015-11-25 17:13 - 2015-11-25 17:13 - 02189078 _____ C:\Users\Nico ****\Downloads\Fallout4Translator-215-0-7a.zip
2015-11-25 14:26 - 2015-11-25 14:28 - 54666380 _____ C:\Users\Nico ****\Downloads\EBT v007-212-0-07.7z
2015-11-24 20:32 - 2015-11-24 20:33 - 01478096 _____ C:\Users\Nico ****\Downloads\Fallout 4 Mod Manager-495-1-0-27.zip
2015-11-24 19:16 - 2015-11-24 19:17 - 01229444 _____ C:\Users\Nico ****\Downloads\Fallout 4 Configuration Tool-102-1-1-1-180.zip
2015-11-24 19:13 - 2015-11-10 20:11 - 63446952 _____ C:\Users\Nico ****\Desktop\setup-1.bin
2015-11-24 19:13 - 2015-11-10 20:11 - 03672661 _____ ( ) C:\Users\Nico ****\Desktop\setup.exe
2015-11-24 18:39 - 2015-11-24 18:39 - 00192475 _____ C:\Users\Nico ****\Downloads\f4se_0_01_01.7z
2015-11-24 18:34 - 2015-11-24 18:34 - 01478075 _____ C:\Users\Nico ****\Downloads\Fallout 4 Mod Manager-495-1-0-26.zip
2015-11-23 22:28 - 2015-11-23 22:28 - 00026079 _____ C:\Users\Nico ****\Downloads\glowingbobbleheads-1888-1-0.zip
2015-11-23 22:23 - 2015-11-23 22:24 - 00024354 _____ C:\Users\Nico ****\Downloads\Settlement Supplies Expanded-1145-1-92.rar
2015-11-23 19:38 - 2015-11-23 19:38 - 00000421 _____ C:\Users\Nico ****\Downloads\Faster Terminal Displays (5x) FO4Edit Version-937-2-0.zip
2015-11-23 14:30 - 2015-11-23 14:30 - 01130794 _____ C:\Users\Nico ****\Downloads\Black Gasmask-567-0-1.rar
2015-11-23 14:27 - 2015-11-23 14:27 - 00001457 _____ C:\Users\Nico ****\Downloads\VOT - Increased VATS Range-2173-1-0.zip
2015-11-23 14:20 - 2015-11-23 14:20 - 00022919 _____ C:\Users\Nico ****\Downloads\More Armor Slots 1.2.3 German Translation-745-1-2-3.zip
2015-11-23 14:10 - 2015-11-23 14:11 - 00720598 _____ C:\Users\Nico ****\Downloads\Improved Map with Visible Roads - Darker Version-1215-1-1.zip
2015-11-22 17:35 - 2015-11-22 17:35 - 00002696 _____ C:\Users\Nico ****\Downloads\Summon Companions v0.1-1096-0-1.rar
2015-11-22 11:07 - 2015-11-22 11:07 - 00001006 _____ C:\Users\Nico ****\Downloads\Main file-1951-1-0.7z
2015-11-21 22:51 - 2015-11-21 22:51 - 02187907 _____ C:\Users\Nico ****\Downloads\Fallout4Translator-215-0-5b.zip
2015-11-21 22:39 - 2015-11-21 22:39 - 01526040 _____ C:\Users\Nico ****\Downloads\1k - bottles label overhaul v0.3-1500-0-3.zip
2015-11-21 22:38 - 2015-11-21 22:38 - 00083626 _____ C:\Users\Nico ****\Downloads\ETSGlowingMagsNMMVersion-1728-1-0.zip
2015-11-21 22:34 - 2015-11-21 22:34 - 00657334 _____ C:\Users\Nico ****\Downloads\Better Inventory (German)-1074-1-0.zip
2015-11-21 22:27 - 2015-11-21 22:27 - 00000510 _____ C:\Users\Nico ****\Downloads\Higher Settlement Budget v1.2-818-1-2.7z
2015-11-21 22:22 - 2015-11-21 22:22 - 00028527 _____ C:\Users\Nico ****\Downloads\Settlement Supplies Expanded-1145-1-8.rar
2015-11-21 22:18 - 2015-11-21 22:18 - 06191014 _____ C:\Users\Nico ****\Downloads\(Deutsche) Full Dialogue Interface - German translation-1235-Beta3.zip
2015-11-21 22:04 - 2015-11-21 22:04 - 00178402 _____ C:\Users\Nico ****\Downloads\ROSSMANN-Coupon-853151c225ffcfb605973844082e6efc.pdf
2015-11-21 22:04 - 2015-11-21 22:04 - 00178402 _____ C:\Users\Nico ****\Downloads\ROSSMANN-Coupon-853151c225ffcfb605973844082e6efc(1).pdf
2015-11-21 22:03 - 2015-11-21 22:03 - 00150742 _____ C:\Users\Nico ****\Downloads\ROSSMANN-Coupon-03cfe7ca141459de7d8a9eb67760132a.pdf
2015-11-21 22:03 - 2015-11-21 22:03 - 00150742 _____ C:\Users\Nico ****\Downloads\ROSSMANN-Coupon-03cfe7ca141459de7d8a9eb67760132a(5).pdf
2015-11-21 22:03 - 2015-11-21 22:03 - 00150742 _____ C:\Users\Nico ****\Downloads\ROSSMANN-Coupon-03cfe7ca141459de7d8a9eb67760132a(3).pdf
2015-11-21 22:03 - 2015-11-21 22:03 - 00150742 _____ C:\Users\Nico ****\Downloads\ROSSMANN-Coupon-03cfe7ca141459de7d8a9eb67760132a(2).pdf
2015-11-21 21:58 - 2015-11-21 21:59 - 00153214 _____ C:\Users\Nico ****\Downloads\ROSSMANN-Coupon-283258d897f1fbd53b403ad53727dbbd.pdf
2015-11-20 19:02 - 2015-11-20 19:02 - 00002210 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2015-11-20 19:02 - 2015-11-14 07:12 - 00102520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2015-11-20 19:01 - 2015-11-20 19:02 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2015-11-20 19:00 - 2015-11-16 04:54 - 42913912 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 37881976 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 22345848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 18390832 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 16561320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 15839200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 14844112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 13533608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 12040952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 02876536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 02496632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 01905456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435900.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 01564792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435900.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 01016544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00877688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00861816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00823232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00689784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00674096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00539464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00503416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00501056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00446584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00445400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00422752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00413816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00369456 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00177600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00155792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00151184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00039240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2015-11-19 19:15 - 2015-11-19 19:15 - 00000000 ____D C:\Users\Nico ****\AppData\Local\Fallout4ModManager
2015-11-17 18:38 - 2015-11-17 18:38 - 00001533 _____ C:\Users\Nico ****\Downloads\Default Carry Weight-214-1-4.rar
2015-11-17 18:38 - 2015-11-12 03:26 - 00000140 _____ C:\Users\Nico ****\Desktop\CarryWeight500.esp
2015-11-17 18:34 - 2015-11-17 18:36 - 00630571 _____ C:\Users\Nico ****\Downloads\Fallout 4 Configuration Tool-102-1-0-4-3351.zip
2015-11-16 17:10 - 2015-11-16 17:10 - 05577782 _____ C:\Users\Nico ****\Downloads\Updated High res pre-war money re-texture-309-2(1).zip
2015-11-16 16:19 - 2015-11-16 16:19 - 04680510 _____ C:\Users\Nico ****\Downloads\Jesters Ammo Retex Fixed-345-2-0.rar
2015-11-16 08:31 - 2015-11-16 08:31 - 00003972 _____ C:\Users\Nico ****\Downloads\Configurable Fusion Core Drain 1.5-325-1-5(1).zip
2015-11-15 23:37 - 2015-11-15 23:37 - 00318938 _____ C:\Users\Nico ****\Downloads\Fallout 4 Configuration Tool-102-1-0-3-3050(1).7z
2015-11-15 23:32 - 2015-11-24 19:17 - 00000000 ____D C:\Users\Nico ****\AppData\Local\Bilago
2015-11-15 23:31 - 2015-11-15 23:31 - 00318938 _____ C:\Users\Nico ****\Downloads\Fallout 4 Configuration Tool-102-1-0-3-3050.7z
2015-11-15 21:32 - 2015-11-15 21:32 - 05577782 _____ C:\Users\Nico ****\Downloads\Updated High res pre-war money re-texture-309-2.zip
2015-11-15 21:28 - 2015-11-13 02:54 - 00000614 _____ C:\Users\Nico ****\Desktop\50% Fusion Core Drain.esp
2015-11-15 14:35 - 2015-11-15 14:36 - 38734984 _____ C:\Users\Nico ****\Downloads\FTO Pip-Boy 2K-449-1-0.rar
2015-11-15 14:35 - 2015-11-15 14:35 - 00003972 _____ C:\Users\Nico ****\Downloads\Configurable Fusion Core Drain 1.5-325-1-5.zip
2015-11-15 10:54 - 2015-11-15 10:54 - 00003864 _____ C:\Users\Nico ****\Downloads\ENBoost 0.281-332-281.zip
2015-11-15 10:51 - 2015-11-19 19:15 - 00000155 _____ C:\Users\Nico ****\Desktop\modorder.txt
2015-11-15 10:50 - 2015-11-15 10:50 - 00000000 ____D C:\Users\Nico ****\AppData\Local\FO4_PluginsManager
2015-11-15 10:49 - 2015-11-15 10:49 - 00183634 _____ C:\Users\Nico ****\Downloads\Plugins Manager 1.2-487-1-2.zip
2015-11-15 10:45 - 2015-11-15 10:45 - 00000996 _____ C:\Users\Nico ****\Downloads\Bonus Carry Weight-214-1-2.rar
2015-11-15 10:41 - 2015-11-15 10:41 - 15830769 _____ C:\Users\Nico ****\Downloads\EBT v002-212-0-02.7z
2015-11-14 22:54 - 2015-11-28 15:04 - 00000000 ____D C:\Users\Nico ****\AppData\Local\Fallout4
2015-11-14 21:47 - 2015-11-14 21:50 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2015-11-14 21:46 - 2015-11-14 21:46 - 00001036 _____ C:\Users\Public\Desktop\Play Fallout 4.lnk
2015-11-14 21:46 - 2015-11-14 21:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda Studios
2015-11-14 20:57 - 2015-11-14 20:57 - 00000000 ____D C:\Program Files (x86)\Bethesda Studios
2015-11-13 17:00 - 2015-12-04 20:10 - 00000000 ____D C:\Users\Nico ****\Desktop\LeoDaBOSS
2015-11-13 16:59 - 2015-11-13 16:59 - 00000000 ____D C:\Users\Nico ****\Downloads\Leo Da VInci
2015-11-13 16:45 - 2015-11-14 23:56 - 00000355 _____ C:\Users\Nico ****\Desktop\Neues Textdokument (6).txt
2015-11-12 19:06 - 2015-11-12 19:06 - 512522753 _____ C:\Users\Nico ****\Downloads\IGG-The.Escapists.The.Walking.Dead.rar
2015-11-11 19:44 - 2015-11-11 19:44 - 00000000 ____D C:\Users\Nico ****\AppData\LocalLow\BitTorrent
2015-11-11 19:42 - 2015-11-12 18:29 - 00000000 ____D C:\Users\Nico ****\Documents\The Escapists
2015-11-11 19:40 - 2015-11-03 22:12 - 00000000 ____D C:\Users\Nico ****\Desktop\IGG-The.Escapists.v1.23.Incl.4.DLCs
2015-11-11 19:36 - 2015-11-11 19:36 - 93030375 _____ C:\Users\Nico ****\Downloads\IGG-The.Escapists.v1.23.Incl.4.DLCs.rar
2015-11-11 16:52 - 2015-11-05 06:15 - 08020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-11-11 16:52 - 2015-11-05 06:15 - 00541024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-11 16:52 - 2015-11-05 06:14 - 00459104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-11-11 16:52 - 2015-11-05 06:13 - 00577888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-11-11 16:52 - 2015-11-05 06:11 - 01392480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-11-11 16:52 - 2015-11-05 06:06 - 03621248 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-11-11 16:52 - 2015-11-05 06:06 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-11-11 16:52 - 2015-11-05 06:01 - 00607408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-11-11 16:52 - 2015-11-05 05:56 - 01083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-11-11 16:52 - 2015-11-05 05:56 - 00116064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-11-11 16:52 - 2015-11-05 05:56 - 00025280 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-11-11 16:52 - 2015-11-05 05:30 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-11-11 16:52 - 2015-11-05 05:24 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-11-11 16:52 - 2015-11-05 05:23 - 00762888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-11-11 16:52 - 2015-11-05 05:23 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-11-11 16:52 - 2015-11-05 05:20 - 21873664 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-11-11 16:52 - 2015-11-05 05:18 - 24597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-11-11 16:52 - 2015-11-05 05:18 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-11-11 16:52 - 2015-11-05 05:18 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-11-11 16:52 - 2015-11-05 05:17 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-11 16:52 - 2015-11-05 05:12 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2015-11-11 16:52 - 2015-11-05 05:11 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-11 16:52 - 2015-11-05 05:10 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-11-11 16:52 - 2015-11-05 05:10 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-11-11 16:52 - 2015-11-05 05:07 - 01068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-11-11 16:52 - 2015-11-05 05:06 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-11 16:52 - 2015-11-05 05:05 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-11-11 16:52 - 2015-11-05 05:05 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-11-11 16:52 - 2015-11-05 05:03 - 02180608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-11 16:52 - 2015-11-05 05:03 - 01015808 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-11-11 16:52 - 2015-11-05 05:01 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-11-11 16:52 - 2015-11-05 05:01 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-11-11 16:52 - 2015-11-05 05:01 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-11-11 16:52 - 2015-11-05 04:59 - 03587072 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-11-11 16:52 - 2015-11-05 04:59 - 02675200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-11 16:52 - 2015-11-05 04:58 - 01383936 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-11-11 16:52 - 2015-11-05 04:58 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-11-11 16:52 - 2015-11-05 04:56 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-11 16:52 - 2015-11-05 04:55 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-11-11 16:52 - 2015-11-05 04:54 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-11-11 16:52 - 2015-11-05 04:47 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-11-11 16:52 - 2015-11-05 04:42 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-11-11 16:52 - 2015-11-05 04:40 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-11-11 16:52 - 2015-11-05 04:35 - 18803712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-11-11 16:52 - 2015-11-05 04:35 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-11-11 16:52 - 2015-11-05 04:34 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-11-11 16:52 - 2015-11-05 04:33 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-11-11 16:52 - 2015-11-05 04:33 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-11-11 16:52 - 2015-11-05 04:30 - 00767488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-11-11 16:52 - 2015-11-05 04:28 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-11-11 16:52 - 2015-11-05 04:27 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2015-11-11 16:52 - 2015-11-05 04:27 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-11-11 16:52 - 2015-11-05 04:23 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2015-11-08 20:25 - 2015-11-08 20:25 - 00000000 ____D C:\Users\Nico ****\AppData\Local\Crisis_Point_Extinction
2015-11-08 16:20 - 2015-11-08 16:20 - 17164524 _____ C:\Users\Nico ****\Downloads\Crisis Point - v.13.zip
2015-11-08 16:20 - 2015-11-08 16:20 - 00000000 ____D C:\Users\Nico ****\Desktop\crisis point
2015-11-08 13:45 - 2015-11-08 13:45 - 00003930 _____ C:\Users\Nico ****\Desktop\500 50+ ID's.txt
2015-11-08 13:11 - 2015-11-08 13:46 - 00000113 _____ C:\Users\Nico ****\Desktop\8h Cascade.txt
2015-11-08 13:04 - 2015-11-08 13:04 - 00000660 _____ C:\Users\Nico ****\Desktop\accounts.txt
2015-11-07 18:33 - 2015-12-06 18:21 - 00000000 ____D C:\Users\Nico ****\Desktop\KAROÜBERRASCHUNG
2015-11-07 12:22 - 2015-11-07 12:27 - 223137808 _____ C:\Users\Nico ****\Downloads\Slim_mini_gapps.ALPHA.6.0.build.0.x-20151106.zip
2015-11-07 10:48 - 2015-11-07 10:48 - 06762072 _____ (Piriform Ltd) C:\Users\Nico ****\Downloads\ccsetup511.exe
2015-11-07 10:42 - 2015-11-07 10:42 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\LastPass
2015-11-06 22:49 - 2015-11-06 22:50 - 55334400 _____ C:\Users\Nico ****\Downloads\FontPack11009_XtdAlf_Lang.msi
2015-11-06 22:46 - 2015-11-06 22:46 - 03963591 _____ C:\Users\Nico ****\Downloads\Nico****.pdf
2015-11-06 22:40 - 2015-11-06 22:40 - 00001149 _____ C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk
2015-11-06 22:40 - 2015-11-06 22:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2015-11-06 22:40 - 2015-10-15 15:49 - 00964928 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys
2015-11-06 22:40 - 2015-10-15 15:49 - 00138904 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys
2015-11-06 22:35 - 2015-11-06 22:38 - 117095112 _____ (Oracle Corporation) C:\Users\Nico ****\Downloads\VirtualBox-5.0.8-103449-Win.exe
2015-11-06 22:28 - 2015-11-06 22:45 - 571322368 _____ C:\Users\Nico ****\Downloads\xpsp3_5512.080413-2113_usa_x86fre_spcd.iso
2015-11-06 18:56 - 2015-12-06 20:41 - 00000000 ____D C:\Users\Nico ****\AppData\LocalLow\LastPass
2015-11-06 18:56 - 2015-11-06 18:56 - 00001158 _____ C:\Users\Public\Desktop\My LastPass Vault.lnk
2015-11-06 18:56 - 2015-11-06 18:56 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LastPass
2015-11-06 18:56 - 2015-11-06 18:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LastPass
2015-11-06 18:54 - 2015-11-06 18:55 - 20320792 _____ (LastPass) C:\Users\Nico ****\Downloads\lastpass_x64(1).exe
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-12-06 21:47 - 2015-07-10 10:05 - 00000000 ____D C:\Windows
2015-12-06 21:43 - 2014-06-08 15:00 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-12-06 21:08 - 2014-10-13 21:02 - 00000000 ____D C:\LazyPressing
2015-12-06 21:00 - 2014-08-08 18:04 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-06 20:52 - 2014-03-31 18:07 - 00000412 _____ C:\WINDOWS\Tasks\update-sys.job
2015-12-06 19:56 - 2014-03-31 18:07 - 00000412 _____ C:\WINDOWS\Tasks\update-S-1-5-21-2171699750-2845458332-3438301781-1001.job
2015-12-06 18:59 - 2014-01-15 01:01 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\Audacity
2015-12-06 18:41 - 2015-05-30 14:39 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-12-06 18:23 - 2014-01-11 18:49 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\OBS
2015-12-06 16:28 - 2015-08-16 13:41 - 00004150 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{482FA375-426E-4AE5-812B-617B25429D8D}
2015-12-06 15:42 - 2013-12-24 22:14 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\Skype
2015-12-06 14:23 - 2015-10-30 20:28 - 00000000 ___HD C:\$WINDOWS.~BT
2015-12-05 21:02 - 2015-08-19 22:08 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-12-05 19:17 - 2014-08-08 18:04 - 00001124 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-05 19:16 - 2015-11-05 21:14 - 00000000 _____ C:\hsrv.txt
2015-12-05 19:16 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-12-05 19:16 - 2013-11-29 00:25 - 00000000 ____D C:\ProgramData\NVIDIA
2015-12-05 19:15 - 2015-07-10 10:05 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2015-12-05 19:14 - 2014-10-04 19:11 - 00000000 ____D C:\Program Files (x86)\Steam
2015-12-05 18:58 - 2015-07-10 13:20 - 04344080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-05 18:58 - 2013-11-29 21:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-12-05 14:43 - 2015-01-31 13:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2015-12-05 14:43 - 2014-03-23 12:53 - 00000000 ____D C:\ProgramData\Apple Computer
2015-12-05 14:43 - 2014-03-23 12:52 - 00000000 ____D C:\ProgramData\Apple
2015-12-05 14:43 - 2014-02-19 19:03 - 00000000 ____D C:\Program Files (x86)\QuickTime
2015-12-05 14:42 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-05 13:14 - 2014-08-16 14:38 - 00007593 _____ C:\Users\Nico ****\AppData\Local\Resmon.ResmonCfg
2015-12-05 00:55 - 2014-08-08 18:04 - 00004186 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-05 00:55 - 2014-08-08 18:04 - 00003954 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-04 20:42 - 2014-03-16 19:02 - 00000000 ____D C:\Users\Nico ****\Documents\Adobe
2015-12-04 15:44 - 2015-10-18 04:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-12-04 14:01 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-03 20:43 - 2015-08-16 12:41 - 00000000 ____D C:\Users\Nico ****
2015-12-02 14:17 - 2013-11-29 21:45 - 00000000 ____D C:\Users\Nico ****\AppData\Local\Adobe
2015-12-01 14:15 - 2015-05-24 08:23 - 00000000 ____D C:\ProgramData\ProductData
2015-11-29 17:40 - 2014-03-27 19:36 - 00000000 ____D C:\Users\Nico ****\AppData\Local\fabi.me
2015-11-26 13:58 - 2015-08-09 22:14 - 00000000 ___RD C:\Users\Nico ****\Google Drive
2015-11-26 13:57 - 2015-08-09 22:12 - 00002115 _____ C:\Users\Public\Desktop\Google Slides.lnk
2015-11-26 13:57 - 2015-08-09 22:12 - 00002113 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2015-11-26 13:57 - 2015-08-09 22:12 - 00002103 _____ C:\Users\Public\Desktop\Google Docs.lnk
2015-11-26 13:57 - 2015-08-09 22:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-11-24 20:41 - 2014-04-25 01:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Process Hacker 2
2015-11-24 20:41 - 2014-04-25 01:18 - 00000000 ____D C:\Program Files\Process Hacker 2
2015-11-24 20:30 - 2015-08-19 13:16 - 00003632 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
2015-11-20 19:02 - 2015-07-10 12:02 - 00000000 ____D C:\WINDOWS\INF
2015-11-20 19:02 - 2014-03-13 20:03 - 00000000 ____D C:\temp
2015-11-20 19:02 - 2013-11-29 22:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-11-20 19:02 - 2013-11-29 00:24 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-11-19 15:05 - 2015-09-27 00:02 - 00000000 ____D C:\Users\Nico ****\.VirtualBox
2015-11-19 15:04 - 2014-01-24 21:00 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\BitTorrent
2015-11-18 13:57 - 2015-07-16 12:16 - 00001142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remotr Streamer.lnk
2015-11-18 13:57 - 2015-07-16 12:16 - 00000000 ____D C:\Program Files (x86)\Remotr
2015-11-17 18:32 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-17 07:27 - 2015-08-16 14:03 - 11228816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-11-16 04:54 - 2015-08-16 14:03 - 18487360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-11-16 04:54 - 2015-08-16 14:03 - 15933400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-11-16 04:54 - 2015-08-16 14:03 - 12870192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-11-16 04:54 - 2015-08-16 14:03 - 03540544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-11-16 04:54 - 2015-08-16 14:03 - 03126800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-11-16 04:54 - 2015-08-16 14:03 - 00034494 _____ C:\WINDOWS\system32\nvinfo.pb
2015-11-16 04:54 - 2015-06-29 08:52 - 01572496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2015-11-16 04:54 - 2015-06-29 08:52 - 00205456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2015-11-16 04:54 - 2013-11-29 00:24 - 00112944 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-11-16 04:54 - 2013-11-29 00:24 - 00105080 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-11-14 23:47 - 2014-03-28 17:25 - 00000000 ____D C:\Users\Nico ****\AppData\Local\JDownloader v2.0
2015-11-14 23:06 - 2015-10-10 14:02 - 00000000 ____D C:\Users\Nico ****\Desktop\Filme
2015-11-14 22:54 - 2014-03-30 14:29 - 00000000 ____D C:\Users\Nico ****\Documents\My Games
2015-11-14 21:49 - 2014-05-24 07:54 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
2015-11-14 15:54 - 2015-04-19 20:07 - 00000080 _____ C:\Users\Nico ****\AppData\Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦
2015-11-14 14:11 - 2015-10-24 16:38 - 00000000 ____D C:\Aptana Stuido
2015-11-14 11:01 - 2014-10-04 19:29 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-11-14 07:20 - 2013-11-29 00:25 - 06358648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-11-14 07:20 - 2013-11-29 00:25 - 02983216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-11-14 07:20 - 2013-11-29 00:25 - 02554488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-11-14 07:20 - 2013-11-29 00:25 - 00938616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-11-14 07:20 - 2013-11-29 00:25 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-11-14 07:20 - 2013-11-29 00:24 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-11-14 00:20 - 2014-04-14 17:53 - 00000000 ____D C:\Users\Nico ****\AppData\Local\Battle.net
2015-11-13 19:25 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache
2015-11-13 18:40 - 2014-12-14 14:00 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-11-13 16:42 - 2015-08-16 13:05 - 01790124 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-13 16:42 - 2015-07-10 17:34 - 00771100 _____ C:\WINDOWS\system32\perfh007.dat
2015-11-13 16:42 - 2015-07-10 17:34 - 00153964 _____ C:\WINDOWS\system32\perfc007.dat
2015-11-12 21:41 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-12 15:36 - 2013-11-29 23:02 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-11-12 15:35 - 2013-11-29 23:01 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-11-12 15:23 - 2013-11-29 21:12 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-12 15:14 - 2013-11-29 21:12 - 145617392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-11-12 15:13 - 2013-08-22 14:25 - 00000167 _____ C:\WINDOWS\win.ini
2015-11-11 19:44 - 2015-04-16 20:14 - 00000000 ____D C:\Users\Nico ****\Desktop\GTA
2015-11-11 16:43 - 2014-06-08 15:00 - 00003870 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-11-09 14:22 - 2015-07-16 12:16 - 00000000 ____D C:\ProgramData\Remotr
2015-11-08 22:37 - 2014-09-16 19:04 - 00000000 ____D C:\Users\Nico ****\AppData\Local\Genymobile
2015-11-08 13:38 - 2015-10-28 15:17 - 00000185 _____ C:\Users\Nico ****\Desktop\Spamips.txt
2015-11-08 00:25 - 2014-06-29 12:45 - 00000000 ___RD C:\Users\Nico ****\Creative Cloud Files
2015-11-07 18:32 - 2014-01-11 18:49 - 00000000 ____D C:\Program Files\OBS
2015-11-07 10:56 - 2015-09-10 15:33 - 00000000 ____D C:\Program Files (x86)\WinPcap
2015-11-07 10:56 - 2015-01-04 19:59 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\Wireshark
2015-11-07 10:56 - 2014-12-16 13:48 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2015-11-07 10:56 - 2014-08-01 21:28 - 00000000 ____D C:\Users\Nico ****\AppData\Local\paint.net
2015-11-07 10:56 - 2014-05-24 12:48 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\Thunderbird
2015-11-07 10:56 - 2013-11-29 23:01 - 00000000 ____D C:\Users\Nico ****\AppData\Local\Microsoft Help
2015-11-07 10:50 - 2014-12-26 01:23 - 00003014 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-11-07 10:45 - 2015-01-15 15:51 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\KeePass
2015-11-06 19:00 - 2015-03-14 17:42 - 00003454 _____ C:\Users\Nico ****\Documents\daten.kdbx
2015-11-06 18:57 - 2015-11-02 14:50 - 00000000 ____D C:\Program Files (x86)\LastPass
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-11-06 18:57 - 2015-11-06 18:57 - 20320792 _____ (LastPass) C:\Program Files (x86)\Common Files\lpuninstall.exe
2014-02-23 16:22 - 2014-02-23 16:22 - 1213440 _____ () C:\Users\Nico ****\AppData\Roaming\21390.exe
2014-02-23 16:21 - 2014-02-23 16:21 - 1213440 _____ () C:\Users\Nico ****\AppData\Roaming\55d77.exe
2014-03-17 17:12 - 2014-05-31 19:13 - 0000132 _____ () C:\Users\Nico ****\AppData\Roaming\Adobe IllExport-Filter CC - Voreinstellungen
2014-04-21 15:14 - 2014-04-21 16:05 - 0000132 _____ () C:\Users\Nico ****\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-01-15 01:17 - 2014-06-29 09:55 - 0000132 _____ () C:\Users\Nico ****\AppData\Roaming\Adobe PNG-Format CC - Voreinstellungen
2014-08-07 18:56 - 2015-08-10 09:10 - 0000034 _____ () C:\Users\Nico ****\AppData\Roaming\AdobeWLCMCache.dat
2014-02-23 16:21 - 2014-09-03 16:32 - 0000152 _____ () C:\Users\Nico ****\AppData\Roaming\config.ini
2015-11-05 21:07 - 2015-11-05 21:16 - 0002732 _____ () C:\Users\Nico ****\AppData\Roaming\droid4xinstaller.log
2015-08-08 10:35 - 2015-08-08 10:35 - 0000000 _____ () C:\Users\Nico ****\AppData\Roaming\Stardockfences_debug_snapshot.dat
2015-06-24 13:04 - 2015-06-23 18:55 - 0178176 _____ () C:\Users\Nico ****\AppData\Roaming\TMP01.txt
2014-04-28 00:38 - 2014-08-26 17:04 - 0001839 _____ () C:\Users\Nico ****\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2014-01-11 19:56 - 2014-01-12 16:24 - 0005632 _____ () C:\Users\Nico ****\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-02-20 17:08 - 2015-02-20 17:09 - 0000026 _____ () C:\Users\Nico ****\AppData\Local\isoworkshop.ini
2015-03-14 20:50 - 2015-03-14 20:50 - 0000000 ___SH () C:\Users\Nico ****\AppData\Local\LumaEmu
2014-08-16 14:38 - 2015-12-05 13:14 - 0007593 _____ () C:\Users\Nico ****\AppData\Local\Resmon.ResmonCfg
2014-03-31 18:07 - 2014-03-31 18:07 - 0000003 _____ () C:\Users\Nico ****\AppData\Local\updater.log
2014-03-31 18:07 - 2015-10-03 10:56 - 0000424 _____ () C:\Users\Nico ****\AppData\Local\UserProducts.xml
2014-10-23 19:54 - 2014-10-23 19:54 - 0314151 _____ () C:\ProgramData\1414090333.bdinstall.bin
2015-08-16 12:37 - 2015-08-16 12:37 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-05-10 11:06 - 2014-03-11 11:06 - 0000032 ____R () C:\ProgramData\hash.dat
2014-03-16 03:42 - 2015-05-13 18:38 - 0000213 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\ProgramData\hash.dat
Einige Dateien in TEMP:
====================
C:\Users\Nico ****\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Nico ****\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Nico ****\AppData\Local\Temp\nvStInst.exe
C:\Users\Nico ****\AppData\Local\Temp\processhacker-2.36-setup.exe
Einige mit null Byte Größe Dateien/Ordner:
==========================
C:\Windows\System32\BDSandBoxUH.dll
C:\Windows\System32\BDSandBoxUISkin.dll
C:\Windows\System32\BDSandBoxUISkin32.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-12-04 17:11
==================== Ende von FRST.txt ============================
|
|
06.12.2015, 22:39
| #2 |
| /// the machine /// TB-Ausbilder    | Windows 10: Programme hängen sich seit einiger Zeit auf. Infiziert? hi,
__________________Log aufteilen und mehrere Posts benutzen.
__________________ |
|
06.12.2015, 22:49
| #3 |
| | Windows 10: Programme hängen sich seit einiger Zeit auf. Infiziert? So, hier nochmal die FRST.txt vom Desktop gestartet
__________________Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-12-2015
durchgeführt von Nico (Administrator) auf NICO (06-12-2015 22:45:19)
Gestartet von C:\Users\Nico ****\Desktop
Geladene Profile: Nico (Verfügbare Profile: Nico)
Platform: Windows 10 Pro (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(American Megatrends Inc.) C:\Program Files\AMI\DuOS\AndServMgr.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe
() C:\Program Files (x86)\freeSSHd\FreeSSHDService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(RaMMicHaeL) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe
(RaMMicHaeL) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Flux Software LLC) C:\Users\Nico ****\AppData\Local\FluxSoftware\Flux\flux.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.3.0.0\Lightshot.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DiscSoftBusService.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1201.10020.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(Microsoft Corporation) C:\Windows\System32\wimserv.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() C:\Program Files (x86)\Bethesda Studios\Fallout 4\Mod Manager\Fallout4ModManager.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\7badfbd5-1b99-4a1a-88f8-a4e455fb9de3.com
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Don HO don.h@free.fr) C:\Program Files (x86)\Notepad++\notepad++.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8497368 2015-08-14] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2655520 2015-10-12] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2303152 2015-07-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2109952 2014-10-07] (Dominik Reichl)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] ()
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [917112 2015-10-08] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.)
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKLM\...\Policies\Explorer: [AllowLegacyWebView] 1
HKLM\...\Policies\Explorer: [AllowUnhashedWebView] 1
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd)
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Run: [KeePass Password Safe 2] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2109952 2014-10-07] (Dominik Reichl)
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Run: [BitTorrent] => C:\Users\Nico ****\AppData\Roaming\BitTorrent\BitTorrent.exe [1977192 2015-10-17] (BitTorrent Inc.)
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [3761424 2014-11-10] (Disc Soft Ltd)
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22790776 2015-11-04] (Google)
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [48138880 2015-10-14] (Skype Technologies S.A.)
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Run: [f.lux] => C:\Users\Nico ****\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Run: [MinerGateGui] => C:\Program Files\MinerGate\minergate.exe [16197632 2015-11-10] ()
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7935904 2015-12-02] (SUPERAntiSpyware)
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\RunOnce: [Uninstall C:\Users\Nico ****\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Nico ****\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\RunOnce: [Uninstall C:\Users\Nico ****\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Nico ****\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Policies\Explorer: [NofolderOptions] 0
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x00000000
IFEO\utilman.exe: [Debugger] cmd.exe
SSODL-x32: IconPackager Repair - {1799460C-0BC8-4865-B9DF-4A36CD703FF0} - Keine Datei
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-07-22] ()
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => Keine Datei
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass FF RunOnce.lnk [2015-11-06]
ShortcutTarget: Install LastPass FF RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (LastPass)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk [2015-11-06]
ShortcutTarget: Install LastPass IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (LastPass)
Startup: C:\Users\Nico ****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2014-11-08]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Nico ****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\chrome - Verknüpfung.lnk [2015-08-11]
ShortcutTarget: chrome - Verknüpfung.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Startup: C:\Users\Nico ****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EventGhost.lnk [2015-08-07]
ShortcutTarget: EventGhost.lnk -> C:\Program Files (x86)\EventGhost\EventGhost.exe (EventGhost Project)
BootExecute: autocheck autochk * SmartDefragBootTime.exe
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{4bc30ba3-ec84-4364-8edf-d69cb2e1bb61}: [NameServer] 192.168.2.1
Tcpip\..\Interfaces\{4bc30ba3-ec84-4364-8edf-d69cb2e1bb61}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{74966d45-470b-4b0f-b3db-885a0046fb25}: [DhcpNameServer] 8.8.8.8
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://de.yahoo.com/?fr=yset_ie_syc_oracle&type=orcl_hpset
SearchScopes: HKU\S-1-5-21-2171699750-2845458332-3438301781-1001 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://go.mail.ru/search?q={SearchTerms}&fr=ntg
SearchScopes: HKU\S-1-5-21-2171699750-2845458332-3438301781-1001 -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKU\S-1-5-21-2171699750-2845458332-3438301781-1001 -> {F90EF9FE-D59B-44BB-8929-A440EE26CC05} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
SearchScopes: HKU\S-1-5-21-2171699750-2845458332-3438301781-1001 -> {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://go.mail.ru/search?q={SearchTerms}&fr=ntg
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-10-20] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-11-02] (Oracle Corporation)
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-11-06] (LastPass)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-11-02] (Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-10-20] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-11-02] (Oracle Corporation)
BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll [2015-11-06] (LastPass)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-10-13] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-11-02] (Oracle Corporation)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2015-11-06] (LastPass)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2015-11-06] (LastPass)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-11] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-11-02] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-11-02] (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2015-11-06] (LastPass)
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-02-18] (Unity Technologies ApS)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-11-12] (VideoLAN)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.3 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-07-23] (Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-11] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2014-11-21] (DivX, LLC)
FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-11-02] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-11-02] (Oracle Corporation)
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2015-11-06] (LastPass)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-01-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-11-14] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-11-14] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Keine Datei]
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Nico ****\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2014-03-10] (Raidcall)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.3 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-07-23] (Adobe Systems)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin HKU\S-1-5-21-2171699750-2845458332-3438301781-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Nico ****\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-08] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2171699750-2845458332-3438301781-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [Keine Datei]
FF Plugin HKU\S-1-5-21-2171699750-2845458332-3438301781-1001: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-03-31] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2015-01-31] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2015-01-31] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2015-01-31] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2015-01-31] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2015-01-31] (Apple Inc.)
FF SearchPlugin: C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\searchplugins\youtube-videosuche.xml [2015-10-03]
FF Extension: Modify Headers - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\extensions\{b749fc7c-e949-447f-926c-3f4eed6accfe}.xpi [2015-11-06]
FF Extension: Greasemonkey - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2015-11-30]
FF Extension: LastPass - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\extensions\support@lastpass.com [2015-12-03]
FF Extension: Fox To Phone - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\extensions\sendtophone@martinezdelizarrondo.com.xpi [2015-12-05]
FF Extension: Kein Name - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\Extensions\firefox@betterttv.net.xpi [2015-10-18] [ist nicht signiert]
FF Extension: YouTube mp3 - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\Extensions\info@youtube-mp3.org.xpi [2015-09-26]
FF Extension: Kein Name - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\Extensions\MediaSniffer@hiyoko.info.xpi [2015-12-05] [ist nicht signiert]
FF Extension: YouTube Unblocker - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\Extensions\youtubeunblocker@unblocker.yt [2015-12-03]
FF Extension: ZIPUpdaterFree - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\Extensions\{45a2694b-7a8d-4e31-aaab-81087fdf2756}.xpi [2015-12-05] [ist nicht signiert]
FF Extension: Video DownloadHelper - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-10-30]
FF Extension: Adblock Plus - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-11-25]
FF Extension: HTML5 Extension - C:\Users\Nico ****\AppData\Roaming\Mozilla\Firefox\Profiles\vdjrujq7.default-1443220686031\Extensions\{eeba6b96-d5c8-4dd8-8ff7-105b1bbb45c2}.xpi [2015-12-01] [ist nicht signiert]
Chrome:
=======
CHR NewTab: Default -> "chrome-extension://bhloflhklmhfpedakmangadcdofhnnoh/index.html"
CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=__PARAM__DF&PC=__PARAM__&q={searchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR DefaultSuggestURL: Default -> hxxps://de.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Heartbeat) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\aailiojlhjbichheofhdpcongebcgcgm [2015-12-05]
CHR Extension: (Google Präsentationen) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-20]
CHR Extension: (Google Docs) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-21]
CHR Extension: (Google Drive) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (Earth View from Google Earth) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhloflhklmhfpedakmangadcdofhnnoh [2015-12-05]
CHR Extension: (YouTube) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Adblock Plus) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-11-29]
CHR Extension: (Google-Suche) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Tampermonkey) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2015-11-29]
CHR Extension: (ARC Welder) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\emfinbmielocnlhgmfkkmkngdoccbadn [2015-12-06]
CHR Extension: (Google Tabellen) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-20]
CHR Extension: (Chrome Remote Desktop) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2015-11-05]
CHR Extension: (Google Docs Offline) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-29]
CHR Extension: (AutoRemote) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\hglmpnnkhfjpnoheioijdpleijlmfcfb [2015-11-29]
CHR Extension: (Google Notizen – Notizen & Listen) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2015-11-29]
CHR Extension: (VideoHunter+) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpiikdgdgibmpnfhkopjaamphpmdgfhm [2015-09-10]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2015-09-01]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-08-20]
CHR Extension: (Tampermonkey) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfaihdlpglflfgpfjcifdjdjcckigekc [2015-12-06]
CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2015-11-29]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-20]
CHR Extension: (Google Chrome to Phone Extension) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco [2015-12-05]
CHR Extension: (Google Mail) - C:\Users\Nico ****\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-21]
CHR Extension: (__MSG_extName__) - C:\Users\Nico ****\Documents\ARCWELDER\Hack%20Ex%20-%20Simulator_1.1.4_apk-dl.com.apk_export_oUBJK [2015-10-26]
CHR Extension: (__MSG_extName__) - C:\Users\Nico ****\Documents\ARCWELDER\Hack%20Ex%20-%20Simulator_1.1.4_apk-dl.com.apk_export_oUBJK [2015-10-26]
CHR Extension: (__MSG_extName__) - C:\Users\Nico ****\Documents\ARCWELDER\Hack%20Ex%20-%20Simulator_1.1.4_apk-dl.com.apk_export_wUfLB [2015-10-26]
CHR Extension: (__MSG_extName__) - C:\Users\Nico ****\Documents\ARCWELDER\Hack%20Ex%20-%20Simulator_1.1.4_apk-dl.com.apk_export_wUfLB [2015-10-26]
CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - hxxp://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bmkckgpgekmanipelfidlhmkfcjicion] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2171699750-2845458332-3438301781-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [njabjmhinndphfnbjehdalkphpdmepli] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
R2 AndServMgr; C:\Program Files\AMI\DuOS\AndServMgr.exe [82384 2015-08-06] (American Megatrends Inc.)
S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [437880 2015-10-08] (BlueStack Systems, Inc.)
S2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [417400 2015-10-08] (BlueStack Systems, Inc.)
S2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [855672 2015-10-08] (BlueStack Systems, Inc.)
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe [69448 2015-10-14] (Google Inc.)
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [216576 2014-11-25] () [Datei ist nicht signiert]
R3 Disc Soft Bus Service; C:\Program Files (x86)\DAEMON Tools Pro\DiscSoftBusService.exe [2216208 2014-11-10] (Disc Soft Ltd)
S2 Droid4XService; C:\Program Files (x86)\Droid4X\Droid4XService.exe [261864 2015-06-03] () [Datei ist nicht signiert]
S2 Ds3Service; C:\Program Files\Scarlet.Crush Productions\bin\ScpService.exe [388352 2013-05-05] (Scarlet.Crush Productions)
R2 FreeSSHDService; C:\Program Files (x86)\freeSSHd\FreeSSHDService.exe [1513072 2015-02-02] ()
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156384 2015-10-12] (NVIDIA Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-08-07] (IObit)
S2 Mobizen plugin; C:\Program Files (x86)\RSUPPORT\MobizenService\MobizenService.exe [3353360 2015-08-14] ( Rsupport Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1873696 2015-10-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5568288 2015-10-12] (NVIDIA Corporation)
S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [24576 2013-11-03] (The OpenVPN Project) [Datei ist nicht signiert]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2078216 2015-10-08] (Electronic Arts)
S2 Remotr Service; C:\Program Files (x86)\Remotr\RemotrService.exe [181328 2015-11-16] (RemoteMyApp sp. z o.o.)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
R2 Unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [242936 2015-11-06] (RaMMicHaeL)
S2 UnsignedThemes; C:\Windows\unsignedthemes.exe [13824 2013-09-23] (The Within Network, LLC) [Datei ist nicht signiert]
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [672024 2015-02-26] (Wacom Technology, Corp.)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R0 amdide64; C:\Windows\System32\drivers\amdide64.sys [11944 2015-05-24] (Advanced Micro Devices Inc.)
S3 androidusb; C:\Windows\System32\Drivers\androidusb.sys [32768 2015-09-01] (Google Inc)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [146040 2015-10-08] (BlueStack Systems)
S3 cxbu0x64; C:\Windows\system32\DRIVERS\cxbu0x64.sys [147576 2015-09-05] (HID Global Corporation)
S3 dtscsibus; C:\Windows\system32\DRIVERS\dtscsibus.sys [29864 2015-06-04] (Disc Soft Ltd)
R1 DuoVMDrv; C:\Windows\system32\DRIVERS\DuoVMDrv.sys [239536 2015-07-31] (American Megatrends Inc.)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [44296 2015-03-30] (LogMeIn Inc.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-05-24] (REALiX(tm))
S3 LcUvcUpper; C:\Windows\system32\DRIVERS\LcUvcUpper.sys [34408 2013-09-27] (Microsoft Corporation)
R3 ManyCam; C:\Windows\system32\DRIVERS\mcvidrv_x64.sys [34304 2012-01-11] (ManyCam LLC)
R3 mcaudrv_simple; C:\Windows\system32\drivers\mcaudrv_x64.sys [28160 2012-02-22] (ManyCam LLC)
R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] ()
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20768 2015-10-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
S3 qcusbser; C:\Windows\system32\DRIVERS\qcusbser.sys [242688 2015-08-14] (QUALCOMM Incorporated)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [886528 2015-05-29] (Realtek )
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S2 uxstyle; C:\Windows\system32\Drivers\uxstyle.sys [31440 2013-09-23] (The Within Network, LLC)
R1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-10-15] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [146584 2015-10-15] (Oracle Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 pxldqpod; C:\Users\Nico ****\AppData\Local\Temp\pxldqpod.sys [56496 2015-12-06] (GMER) [Datei ist nicht signiert]
S3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-12-06 22:45 - 2015-12-06 22:46 - 00037159 _____ C:\Users\Nico ****\Desktop\FRST.txt
2015-12-06 21:53 - 2015-12-06 22:01 - 00079911 _____ C:\Users\Nico ****\Downloads\Addition.txt
2015-12-06 21:51 - 2015-12-06 22:02 - 00080115 _____ C:\Users\Nico ****\Downloads\FRST.txt
2015-12-06 21:47 - 2015-12-06 22:45 - 00000000 ____D C:\FRST
2015-12-06 21:47 - 2015-12-06 21:47 - 02369024 _____ (Farbar) C:\Users\Nico ****\Desktop\FRST64.exe
2015-12-06 21:34 - 2015-12-06 21:34 - 00380416 _____ C:\Users\Nico ****\Downloads\Gmer-19357.exe
2015-12-06 21:34 - 2015-12-06 21:34 - 00050477 _____ C:\Users\Nico ****\Downloads\Defogger.exe
2015-12-06 21:04 - 2015-12-06 21:04 - 00016148 _____ C:\WINDOWS\system32\NICO_Nico_HistoryPrediction.bin
2015-12-06 18:52 - 2015-12-06 18:52 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\SUPERAntiSpyware.com
2015-12-06 18:51 - 2015-12-06 21:31 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2015-12-06 18:51 - 2015-12-06 18:51 - 00001849 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2015-12-06 18:51 - 2015-12-06 18:51 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2015-12-06 18:51 - 2015-12-06 18:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2015-12-06 18:49 - 2015-12-06 18:50 - 24088304 _____ (SUPERAntiSpyware) C:\Users\Nico ****\Downloads\SUPERAntiSpyware.exe
2015-12-06 18:14 - 2015-12-06 18:14 - 00000000 _____ C:\Users\Nico ****\Desktop\Telegraph.apk
2015-12-06 18:09 - 2015-12-06 18:21 - 00000000 ____D C:\Users\Nico ****\Desktop\Zeitungen
2015-12-06 16:11 - 2015-12-06 16:11 - 00011793 _____ C:\Users\Nico ****\Downloads\ic_directions_bike_black_24dp.zip
2015-12-06 16:05 - 2015-12-06 16:05 - 00007253 _____ C:\Users\Nico ****\Downloads\ic_announcement_black_24dp.zip
2015-12-06 13:28 - 2015-12-06 13:28 - 00000000 ____D C:\Users\Nico ****\AppData\Local\minergate
2015-12-06 13:28 - 2015-12-06 13:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MinerGate
2015-12-06 13:28 - 2015-12-06 13:28 - 00000000 ____D C:\Program Files\MinerGate
2015-12-06 13:22 - 2015-12-06 13:22 - 10782967 _____ C:\Users\Nico ****\Downloads\MinerGate-5.06-win64.exe
2015-12-06 11:38 - 2015-12-06 11:38 - 00011226 _____ C:\Users\Nico ****\Downloads\ic_whatshot_black_24dp.zip
2015-12-05 23:31 - 2015-12-05 23:31 - 00023040 _____ () C:\Users\Nico ****\Desktop\FO4FaceRipper.exe
2015-12-05 23:31 - 2015-12-05 23:31 - 00008771 _____ C:\Users\Nico ****\Downloads\Save Face Ripper-3878-7.7z
2015-12-05 23:29 - 2015-12-05 23:40 - 00000000 ____D C:\Users\Nico ****\Desktop\BIGBOSS éu2.0
2015-12-05 22:29 - 2015-12-05 22:29 - 05401798 _____ C:\Users\Nico ****\Downloads\Skyrim Audio Converter 1_0_2-8303-1-0-2.7z
2015-12-05 19:16 - 2015-12-05 19:16 - 00000022 _____ C:\WINDOWS\S.dirmngr
2015-12-05 17:09 - 2015-12-05 17:09 - 02903735 _____ C:\Users\Nico ****\Downloads\BIGBOSS V2.0-4118-2-0.zip
2015-12-05 15:44 - 2015-12-05 15:44 - 00011536 _____ C:\Users\Nico ****\Downloads\ic_stars_black_24dp.zip
2015-12-05 15:31 - 2015-12-05 15:31 - 00006824 _____ C:\Users\Nico ****\Downloads\ic_movie_black_24dp.zip
2015-12-05 15:27 - 2015-12-05 15:27 - 00009653 _____ C:\Users\Nico ****\Downloads\ic_local_mall_black_24dp.zip
2015-12-05 15:23 - 2015-12-05 15:23 - 02615253 _____ C:\Users\Nico ****\Downloads\9396-44434-1-PB.pdf
2015-12-05 15:22 - 2015-12-05 15:22 - 02192671 _____ C:\Users\Nico ****\Downloads\Fallout4Translator-215-0-8.zip
2015-12-05 15:06 - 2015-12-05 15:06 - 00007935 _____ C:\Users\Nico ****\Downloads\ic_video_library_black_24dp.zip
2015-12-05 14:52 - 2015-12-05 14:53 - 00006575 _____ C:\Users\Nico ****\Downloads\ic_games_black_24dp.zip
2015-12-05 14:43 - 2015-12-05 14:43 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2015-12-05 14:43 - 2015-12-05 14:43 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2015-12-05 14:34 - 2015-12-05 14:34 - 41904448 _____ (Apple Inc.) C:\Users\Nico ****\Downloads\QuickTimeInstaller.exe
2015-12-05 11:56 - 2015-12-05 11:56 - 01240761 _____ C:\Users\Nico ****\Downloads\Longer Distance PipBoy and Spotlights (With Optional PipBoyShadows)-1790--5.rar
2015-12-04 23:54 - 2015-12-04 23:54 - 00096140 _____ C:\Users\Nico ****\Downloads\special-elite.zip
2015-12-04 23:52 - 2015-12-04 23:52 - 00075028 _____ C:\Users\Nico ****\Downloads\kingthings_trypewriter.zip
2015-12-04 23:21 - 2015-12-04 23:21 - 00007136 _____ C:\Users\Nico ****\Downloads\Save Face Ripper-3878-6.7z
2015-12-04 23:09 - 2015-12-04 23:09 - 01392248 _____ C:\Users\Nico ****\Downloads\Fallout 4 Configuration Tool-102-1-1-7-222.zip
2015-12-04 23:08 - 2015-11-13 14:54 - 03431117 _____ C:\Users\Nico ****\Desktop\Save3_1A910BF0_57616C746572_Vault111Cryo_000049_20151113135408_1_2.fos
2015-12-04 23:05 - 2015-12-04 23:05 - 01193192 _____ C:\Users\Nico ****\Downloads\W.W. Heisenberg-348-1-1.rar
2015-12-04 20:29 - 2015-12-04 20:30 - 01143808 _____ (PainteR) C:\Users\Nico ****\Downloads\adobe.snr.patch-painter.exe
2015-12-04 20:14 - 2015-12-04 20:14 - 00201085 _____ C:\Users\Nico ****\Downloads\my_underwood.zip
2015-12-04 20:13 - 2015-12-04 20:13 - 00033086 _____ C:\Users\Nico ****\Downloads\remingtoned_type.zip
2015-12-04 20:07 - 2015-12-04 20:07 - 00989291 _____ C:\Users\Nico ****\Downloads\traveling_typewriter(1).zip
2015-12-04 20:00 - 2015-12-04 20:00 - 00029241 _____ C:\Users\Nico ****\Downloads\Slabo_27px.zip
2015-12-04 14:48 - 2015-12-04 14:48 - 00008219 _____ C:\Users\Nico ****\Downloads\ic_thumb_down_black_24dp.zip
2015-12-04 14:48 - 2015-12-04 14:48 - 00008094 _____ C:\Users\Nico ****\Downloads\ic_thumb_up_black_24dp.zip
2015-12-04 14:26 - 2015-12-04 14:26 - 01075821 _____ C:\Users\Nico ****\Downloads\Roboto(1).zip
2015-12-04 14:23 - 2015-12-04 14:23 - 01379427 _____ C:\Users\Nico ****\Downloads\roboto.zip
2015-12-04 14:04 - 2015-12-06 18:53 - 00000000 ____D C:\Users\Nico ****\Desktop\Krasse Zeitung
2015-12-03 15:45 - 2015-12-03 15:45 - 00002541 _____ C:\Users\Nico ****\Downloads\Fallout 4 Place in Red v1.7.zip-1267-1-7.zip
2015-12-03 15:45 - 2015-11-23 01:50 - 00017654 _____ C:\Users\Nico ****\Desktop\Fallout 4 Place in Red v1.7.ct
2015-12-03 14:12 - 2015-12-06 14:31 - 00000000 ____D C:\WINDOWS\Panther
2015-12-02 22:09 - 2015-12-02 22:09 - 01371366 _____ C:\Users\Nico ****\Downloads\Fallout 4 Configuration Tool-102-1-1-5-2060.zip
2015-12-02 14:30 - 2015-12-02 14:30 - 00934931 _____ C:\Users\Nico ****\Downloads\Settlement Raid Mod 1.7-2995-1-7.zip
2015-12-01 19:02 - 2015-11-30 18:30 - 05621885 _____ C:\Users\Nico ****\Desktop\fo4facetransfer.exe
2015-12-01 19:00 - 2015-12-01 19:01 - 05560961 _____ C:\Users\Nico ****\Downloads\Fallout 4 Face Transfer-3597-0-1.zip
2015-11-30 21:03 - 2015-11-30 21:03 - 01671338 _____ C:\Users\Nico ****\Downloads\Gorgeous Vaultgirl (Vault Exit Version)-193-1-02.zip
2015-11-30 20:52 - 2015-11-30 20:52 - 01666048 _____ (WJ&AF Company) C:\Users\Nico ****\Desktop\F4SGE.exe
2015-11-30 20:50 - 2015-11-30 20:50 - 01355166 _____ C:\Users\Nico ****\Downloads\Gorgeous Vaultgirl-193-1-01(1).zip
2015-11-30 20:50 - 2015-11-30 20:50 - 01301129 _____ C:\Users\Nico ****\Downloads\F4SGE.0v1b6-838-alfa.7z
2015-11-30 19:31 - 2015-11-30 19:31 - 03081746 _____ C:\Users\Nico ****\Downloads\AutoHotkey112209_Install.exe
2015-11-30 19:31 - 2015-11-30 19:31 - 01358686 _____ C:\Users\Nico ****\Downloads\Fallout 4 Configuration Tool-102-1-1-3-1793.zip
2015-11-30 19:17 - 2015-11-30 19:18 - 02190640 _____ C:\Users\Nico ****\Downloads\Fallout4Translator-215-0-7b.zip
2015-11-30 15:48 - 2015-11-30 15:50 - 01355166 _____ C:\Users\Nico ****\Downloads\Gorgeous Vaultgirl-193-1-01.zip
2015-11-29 10:42 - 2015-11-29 10:42 - 01482475 _____ C:\Users\Nico ****\Downloads\Fallout 4 Mod Manager-495-1-0-30(1).zip
2015-11-28 15:36 - 2015-11-28 15:36 - 01919162 _____ C:\Users\Nico ****\Downloads\Fallout4_EnglishSTRINGS-215-0-1.7z
2015-11-28 15:16 - 2015-11-28 15:16 - 15422436 _____ C:\Users\Nico ****\Downloads\Fallout4_STRINGS_Misc-215-0-1.7z
2015-11-28 14:59 - 2015-11-28 14:59 - 02732887 _____ C:\Users\Nico ****\Downloads\FO4Edit 3.1.3-2737-EXP.7z
2015-11-28 14:57 - 2015-11-30 14:19 - 00000000 ____D C:\Users\Nico ****\Desktop\FO4Edit
2015-11-27 22:02 - 2015-11-27 22:02 - 00031097 _____ C:\Users\Nico ****\Downloads\Who Are You v1.2-2377-1-2.7z
2015-11-27 21:27 - 2015-11-27 21:27 - 02722183 _____ C:\Users\Nico ****\Downloads\TES5Edit_211115a.7z
2015-11-27 21:20 - 2015-11-27 21:20 - 00309595 _____ C:\Users\Nico ****\Downloads\Settler Renaming-2017-1-7-2.zip
2015-11-26 14:28 - 2015-11-26 14:28 - 00000000 ____D C:\Users\Nico ****\AppData\Local\ElevatedDiagnostics
2015-11-26 14:01 - 2015-11-26 14:03 - 01482475 _____ C:\Users\Nico ****\Downloads\Fallout 4 Mod Manager-495-1-0-30.zip
2015-11-25 17:13 - 2015-11-25 17:13 - 02189078 _____ C:\Users\Nico ****\Downloads\Fallout4Translator-215-0-7a.zip
2015-11-25 14:26 - 2015-11-25 14:28 - 54666380 _____ C:\Users\Nico ****\Downloads\EBT v007-212-0-07.7z
2015-11-24 20:32 - 2015-11-24 20:33 - 01478096 _____ C:\Users\Nico ****\Downloads\Fallout 4 Mod Manager-495-1-0-27.zip
2015-11-24 19:16 - 2015-11-24 19:17 - 01229444 _____ C:\Users\Nico ****\Downloads\Fallout 4 Configuration Tool-102-1-1-1-180.zip
2015-11-24 19:13 - 2015-11-10 20:11 - 63446952 _____ C:\Users\Nico ****\Desktop\setup-1.bin
2015-11-24 19:13 - 2015-11-10 20:11 - 03672661 _____ ( ) C:\Users\Nico ****\Desktop\setup.exe
2015-11-24 18:39 - 2015-11-24 18:39 - 00192475 _____ C:\Users\Nico ****\Downloads\f4se_0_01_01.7z
2015-11-24 18:34 - 2015-11-24 18:34 - 01478075 _____ C:\Users\Nico ****\Downloads\Fallout 4 Mod Manager-495-1-0-26.zip
2015-11-23 22:28 - 2015-11-23 22:28 - 00026079 _____ C:\Users\Nico ****\Downloads\glowingbobbleheads-1888-1-0.zip
2015-11-23 22:23 - 2015-11-23 22:24 - 00024354 _____ C:\Users\Nico ****\Downloads\Settlement Supplies Expanded-1145-1-92.rar
2015-11-23 19:38 - 2015-11-23 19:38 - 00000421 _____ C:\Users\Nico ****\Downloads\Faster Terminal Displays (5x) FO4Edit Version-937-2-0.zip
2015-11-23 14:30 - 2015-11-23 14:30 - 01130794 _____ C:\Users\Nico ****\Downloads\Black Gasmask-567-0-1.rar
2015-11-23 14:27 - 2015-11-23 14:27 - 00001457 _____ C:\Users\Nico ****\Downloads\VOT - Increased VATS Range-2173-1-0.zip
2015-11-23 14:20 - 2015-11-23 14:20 - 00022919 _____ C:\Users\Nico ****\Downloads\More Armor Slots 1.2.3 German Translation-745-1-2-3.zip
2015-11-23 14:10 - 2015-11-23 14:11 - 00720598 _____ C:\Users\Nico ****\Downloads\Improved Map with Visible Roads - Darker Version-1215-1-1.zip
2015-11-22 17:35 - 2015-11-22 17:35 - 00002696 _____ C:\Users\Nico ****\Downloads\Summon Companions v0.1-1096-0-1.rar
2015-11-22 11:07 - 2015-11-22 11:07 - 00001006 _____ C:\Users\Nico ****\Downloads\Main file-1951-1-0.7z
2015-11-21 22:51 - 2015-11-21 22:51 - 02187907 _____ C:\Users\Nico ****\Downloads\Fallout4Translator-215-0-5b.zip
2015-11-21 22:39 - 2015-11-21 22:39 - 01526040 _____ C:\Users\Nico ****\Downloads\1k - bottles label overhaul v0.3-1500-0-3.zip
2015-11-21 22:38 - 2015-11-21 22:38 - 00083626 _____ C:\Users\Nico ****\Downloads\ETSGlowingMagsNMMVersion-1728-1-0.zip
2015-11-21 22:34 - 2015-11-21 22:34 - 00657334 _____ C:\Users\Nico ****\Downloads\Better Inventory (German)-1074-1-0.zip
2015-11-21 22:27 - 2015-11-21 22:27 - 00000510 _____ C:\Users\Nico ****\Downloads\Higher Settlement Budget v1.2-818-1-2.7z
2015-11-21 22:22 - 2015-11-21 22:22 - 00028527 _____ C:\Users\Nico ****\Downloads\Settlement Supplies Expanded-1145-1-8.rar
2015-11-21 22:18 - 2015-11-21 22:18 - 06191014 _____ C:\Users\Nico ****\Downloads\(Deutsche) Full Dialogue Interface - German translation-1235-Beta3.zip
2015-11-21 22:04 - 2015-11-21 22:04 - 00178402 _____ C:\Users\Nico ****\Downloads\ROSSMANN-Coupon-853151c225ffcfb605973844082e6efc.pdf
2015-11-21 22:04 - 2015-11-21 22:04 - 00178402 _____ C:\Users\Nico ****\Downloads\ROSSMANN-Coupon-853151c225ffcfb605973844082e6efc(1).pdf
2015-11-21 22:03 - 2015-11-21 22:03 - 00150742 _____ C:\Users\Nico ****\Downloads\ROSSMANN-Coupon-03cfe7ca141459de7d8a9eb67760132a.pdf
2015-11-21 22:03 - 2015-11-21 22:03 - 00150742 _____ C:\Users\Nico ****\Downloads\ROSSMANN-Coupon-03cfe7ca141459de7d8a9eb67760132a(5).pdf
2015-11-21 22:03 - 2015-11-21 22:03 - 00150742 _____ C:\Users\Nico ****\Downloads\ROSSMANN-Coupon-03cfe7ca141459de7d8a9eb67760132a(3).pdf
2015-11-21 22:03 - 2015-11-21 22:03 - 00150742 _____ C:\Users\Nico ****\Downloads\ROSSMANN-Coupon-03cfe7ca141459de7d8a9eb67760132a(2).pdf
2015-11-21 21:58 - 2015-11-21 21:59 - 00153214 _____ C:\Users\Nico ****\Downloads\ROSSMANN-Coupon-283258d897f1fbd53b403ad53727dbbd.pdf
2015-11-20 19:02 - 2015-11-20 19:02 - 00002210 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2015-11-20 19:02 - 2015-11-14 07:12 - 00102520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2015-11-20 19:01 - 2015-11-20 19:02 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2015-11-20 19:00 - 2015-11-16 04:54 - 42913912 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 37881976 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 22345848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 18390832 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 16561320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 15839200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 14844112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 13533608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 12040952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 02876536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 02496632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 01905456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435900.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 01564792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435900.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 01016544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00877688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00861816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00823232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00689784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00674096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00539464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00503416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00501056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00446584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00445400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00422752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00413816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00369456 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00177600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00155792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00151184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-11-20 19:00 - 2015-11-16 04:54 - 00039240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2015-11-19 19:15 - 2015-11-19 19:15 - 00000000 ____D C:\Users\Nico ****\AppData\Local\Fallout4ModManager
2015-11-17 18:38 - 2015-11-17 18:38 - 00001533 _____ C:\Users\Nico ****\Downloads\Default Carry Weight-214-1-4.rar
2015-11-17 18:38 - 2015-11-12 03:26 - 00000140 _____ C:\Users\Nico ****\Desktop\CarryWeight500.esp
2015-11-17 18:34 - 2015-11-17 18:36 - 00630571 _____ C:\Users\Nico ****\Downloads\Fallout 4 Configuration Tool-102-1-0-4-3351.zip
2015-11-16 17:10 - 2015-11-16 17:10 - 05577782 _____ C:\Users\Nico ****\Downloads\Updated High res pre-war money re-texture-309-2(1).zip
2015-11-16 16:19 - 2015-11-16 16:19 - 04680510 _____ C:\Users\Nico ****\Downloads\Jesters Ammo Retex Fixed-345-2-0.rar
2015-11-16 08:31 - 2015-11-16 08:31 - 00003972 _____ C:\Users\Nico ****\Downloads\Configurable Fusion Core Drain 1.5-325-1-5(1).zip
2015-11-15 23:37 - 2015-11-15 23:37 - 00318938 _____ C:\Users\Nico ****\Downloads\Fallout 4 Configuration Tool-102-1-0-3-3050(1).7z
2015-11-15 23:32 - 2015-11-24 19:17 - 00000000 ____D C:\Users\Nico ****\AppData\Local\Bilago
2015-11-15 23:31 - 2015-11-15 23:31 - 00318938 _____ C:\Users\Nico ****\Downloads\Fallout 4 Configuration Tool-102-1-0-3-3050.7z
2015-11-15 21:32 - 2015-11-15 21:32 - 05577782 _____ C:\Users\Nico ****\Downloads\Updated High res pre-war money re-texture-309-2.zip
2015-11-15 21:28 - 2015-11-13 02:54 - 00000614 _____ C:\Users\Nico ****\Desktop\50% Fusion Core Drain.esp
2015-11-15 14:35 - 2015-11-15 14:36 - 38734984 _____ C:\Users\Nico ****\Downloads\FTO Pip-Boy 2K-449-1-0.rar
2015-11-15 14:35 - 2015-11-15 14:35 - 00003972 _____ C:\Users\Nico ****\Downloads\Configurable Fusion Core Drain 1.5-325-1-5.zip
2015-11-15 10:54 - 2015-11-15 10:54 - 00003864 _____ C:\Users\Nico ****\Downloads\ENBoost 0.281-332-281.zip
2015-11-15 10:51 - 2015-11-19 19:15 - 00000155 _____ C:\Users\Nico ****\Desktop\modorder.txt
2015-11-15 10:50 - 2015-11-15 10:50 - 00000000 ____D C:\Users\Nico ****\AppData\Local\FO4_PluginsManager
2015-11-15 10:49 - 2015-11-15 10:49 - 00183634 _____ C:\Users\Nico ****\Downloads\Plugins Manager 1.2-487-1-2.zip
2015-11-15 10:45 - 2015-11-15 10:45 - 00000996 _____ C:\Users\Nico ****\Downloads\Bonus Carry Weight-214-1-2.rar
2015-11-15 10:41 - 2015-11-15 10:41 - 15830769 _____ C:\Users\Nico ****\Downloads\EBT v002-212-0-02.7z
2015-11-14 22:54 - 2015-11-28 15:04 - 00000000 ____D C:\Users\Nico ****\AppData\Local\Fallout4
2015-11-14 21:47 - 2015-11-14 21:50 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2015-11-14 21:46 - 2015-11-14 21:46 - 00001036 _____ C:\Users\Public\Desktop\Play Fallout 4.lnk
2015-11-14 21:46 - 2015-11-14 21:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda Studios
2015-11-14 20:57 - 2015-11-14 20:57 - 00000000 ____D C:\Program Files (x86)\Bethesda Studios
2015-11-13 17:00 - 2015-12-04 20:10 - 00000000 ____D C:\Users\Nico ****\Desktop\LeoDaBOSS
2015-11-13 16:59 - 2015-11-13 16:59 - 00000000 ____D C:\Users\Nico ****\Downloads\Leo Da VInci
2015-11-13 16:45 - 2015-11-14 23:56 - 00000355 _____ C:\Users\Nico ****\Desktop\Neues Textdokument (6).txt
2015-11-12 19:06 - 2015-11-12 19:06 - 512522753 _____ C:\Users\Nico ****\Downloads\IGG-The.Escapists.The.Walking.Dead.rar
2015-11-11 19:44 - 2015-11-11 19:44 - 00000000 ____D C:\Users\Nico ****\AppData\LocalLow\BitTorrent
2015-11-11 19:42 - 2015-11-12 18:29 - 00000000 ____D C:\Users\Nico ****\Documents\The Escapists
2015-11-11 19:36 - 2015-11-11 19:36 - 93030375 _____ C:\Users\Nico ****\Downloads\IGG-The.Escapists.v1.23.Incl.4.DLCs.rar
2015-11-11 16:52 - 2015-11-05 06:15 - 08020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-11-11 16:52 - 2015-11-05 06:15 - 00541024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-11 16:52 - 2015-11-05 06:14 - 00459104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-11-11 16:52 - 2015-11-05 06:13 - 00577888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-11-11 16:52 - 2015-11-05 06:11 - 01392480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-11-11 16:52 - 2015-11-05 06:06 - 03621248 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-11-11 16:52 - 2015-11-05 06:06 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-11-11 16:52 - 2015-11-05 06:01 - 00607408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-11-11 16:52 - 2015-11-05 05:56 - 01083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-11-11 16:52 - 2015-11-05 05:56 - 00116064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-11-11 16:52 - 2015-11-05 05:56 - 00025280 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-11-11 16:52 - 2015-11-05 05:30 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-11-11 16:52 - 2015-11-05 05:24 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-11-11 16:52 - 2015-11-05 05:23 - 00762888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-11-11 16:52 - 2015-11-05 05:23 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-11-11 16:52 - 2015-11-05 05:20 - 21873664 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-11-11 16:52 - 2015-11-05 05:18 - 24597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-11-11 16:52 - 2015-11-05 05:18 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-11-11 16:52 - 2015-11-05 05:18 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-11-11 16:52 - 2015-11-05 05:17 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-11 16:52 - 2015-11-05 05:12 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2015-11-11 16:52 - 2015-11-05 05:11 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-11 16:52 - 2015-11-05 05:10 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-11-11 16:52 - 2015-11-05 05:10 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-11-11 16:52 - 2015-11-05 05:07 - 01068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-11-11 16:52 - 2015-11-05 05:06 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-11 16:52 - 2015-11-05 05:05 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-11-11 16:52 - 2015-11-05 05:05 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-11-11 16:52 - 2015-11-05 05:03 - 02180608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-11 16:52 - 2015-11-05 05:03 - 01015808 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-11-11 16:52 - 2015-11-05 05:01 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-11-11 16:52 - 2015-11-05 05:01 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-11-11 16:52 - 2015-11-05 05:01 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-11-11 16:52 - 2015-11-05 04:59 - 03587072 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-11-11 16:52 - 2015-11-05 04:59 - 02675200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-11 16:52 - 2015-11-05 04:58 - 01383936 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-11-11 16:52 - 2015-11-05 04:58 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-11-11 16:52 - 2015-11-05 04:56 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-11 16:52 - 2015-11-05 04:55 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-11-11 16:52 - 2015-11-05 04:54 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-11-11 16:52 - 2015-11-05 04:47 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-11-11 16:52 - 2015-11-05 04:42 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-11-11 16:52 - 2015-11-05 04:40 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-11-11 16:52 - 2015-11-05 04:35 - 18803712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-11-11 16:52 - 2015-11-05 04:35 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-11-11 16:52 - 2015-11-05 04:34 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-11-11 16:52 - 2015-11-05 04:33 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-11-11 16:52 - 2015-11-05 04:33 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-11-11 16:52 - 2015-11-05 04:30 - 00767488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-11-11 16:52 - 2015-11-05 04:28 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-11-11 16:52 - 2015-11-05 04:27 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2015-11-11 16:52 - 2015-11-05 04:27 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-11-11 16:52 - 2015-11-05 04:23 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2015-11-08 20:25 - 2015-11-08 20:25 - 00000000 ____D C:\Users\Nico ****\AppData\Local\Crisis_Point_Extinction
2015-11-08 16:20 - 2015-11-08 16:20 - 17164524 _____ C:\Users\Nico ****\Downloads\Crisis Point - v.13.zip
2015-11-08 16:20 - 2015-11-08 16:20 - 00000000 ____D C:\Users\Nico ****\Desktop\crisis point
2015-11-08 13:45 - 2015-11-08 13:45 - 00003930 _____ C:\Users\Nico ****\Desktop\500 50+ ID's.txt
2015-11-08 13:11 - 2015-11-08 13:46 - 00000113 _____ C:\Users\Nico ****\Desktop\8h Cascade.txt
2015-11-08 13:04 - 2015-11-08 13:04 - 00000660 _____ C:\Users\Nico ****\Desktop\accounts.txt
2015-11-07 18:33 - 2015-12-06 18:21 - 00000000 ____D C:\Users\Nico ****\Desktop\KAROÜBERRASCHUNG
2015-11-07 12:22 - 2015-11-07 12:27 - 223137808 _____ C:\Users\Nico ****\Downloads\Slim_mini_gapps.ALPHA.6.0.build.0.x-20151106.zip
2015-11-07 10:48 - 2015-11-07 10:48 - 06762072 _____ (Piriform Ltd) C:\Users\Nico ****\Downloads\ccsetup511.exe
2015-11-07 10:42 - 2015-11-07 10:42 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\LastPass
2015-11-06 22:49 - 2015-11-06 22:50 - 55334400 _____ C:\Users\Nico ****\Downloads\FontPack11009_XtdAlf_Lang.msi
2015-11-06 22:46 - 2015-11-06 22:46 - 03963591 _____ C:\Users\Nico ****\Downloads\Nico****.pdf
2015-11-06 22:40 - 2015-11-06 22:40 - 00001149 _____ C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk
2015-11-06 22:40 - 2015-11-06 22:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2015-11-06 22:40 - 2015-10-15 15:49 - 00964928 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys
2015-11-06 22:40 - 2015-10-15 15:49 - 00138904 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys
2015-11-06 22:35 - 2015-11-06 22:38 - 117095112 _____ (Oracle Corporation) C:\Users\Nico ****\Downloads\VirtualBox-5.0.8-103449-Win.exe
2015-11-06 22:28 - 2015-11-06 22:45 - 571322368 _____ C:\Users\Nico ****\Downloads\xpsp3_5512.080413-2113_usa_x86fre_spcd.iso
2015-11-06 18:56 - 2015-12-06 20:41 - 00000000 ____D C:\Users\Nico ****\AppData\LocalLow\LastPass
2015-11-06 18:56 - 2015-11-06 18:56 - 00001158 _____ C:\Users\Public\Desktop\My LastPass Vault.lnk
2015-11-06 18:56 - 2015-11-06 18:56 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LastPass
2015-11-06 18:56 - 2015-11-06 18:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LastPass
2015-11-06 18:54 - 2015-11-06 18:55 - 20320792 _____ (LastPass) C:\Users\Nico ****\Downloads\lastpass_x64(1).exe
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-12-06 22:43 - 2014-06-08 15:00 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-12-06 22:00 - 2014-08-08 18:04 - 00001128 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-06 21:55 - 2015-07-10 10:05 - 00000000 ____D C:\Windows
2015-12-06 21:08 - 2014-10-13 21:02 - 00000000 ____D C:\LazyPressing
2015-12-06 20:52 - 2014-03-31 18:07 - 00000412 _____ C:\WINDOWS\Tasks\update-sys.job
2015-12-06 19:56 - 2014-03-31 18:07 - 00000412 _____ C:\WINDOWS\Tasks\update-S-1-5-21-2171699750-2845458332-3438301781-1001.job
2015-12-06 18:59 - 2014-01-15 01:01 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\Audacity
2015-12-06 18:41 - 2015-05-30 14:39 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-12-06 18:23 - 2014-01-11 18:49 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\OBS
2015-12-06 16:28 - 2015-08-16 13:41 - 00004150 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{482FA375-426E-4AE5-812B-617B25429D8D}
2015-12-06 15:42 - 2013-12-24 22:14 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\Skype
2015-12-06 14:23 - 2015-10-30 20:28 - 00000000 ___HD C:\$WINDOWS.~BT
2015-12-05 21:02 - 2015-08-19 22:08 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-12-05 19:17 - 2014-08-08 18:04 - 00001124 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-05 19:16 - 2015-11-05 21:14 - 00000000 _____ C:\hsrv.txt
2015-12-05 19:16 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-12-05 19:16 - 2013-11-29 00:25 - 00000000 ____D C:\ProgramData\NVIDIA
2015-12-05 19:15 - 2015-07-10 10:05 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2015-12-05 19:14 - 2014-10-04 19:11 - 00000000 ____D C:\Program Files (x86)\Steam
2015-12-05 18:58 - 2015-07-10 13:20 - 04344080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-05 18:58 - 2013-11-29 21:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-12-05 14:43 - 2015-01-31 13:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2015-12-05 14:43 - 2014-03-23 12:53 - 00000000 ____D C:\ProgramData\Apple Computer
2015-12-05 14:43 - 2014-03-23 12:52 - 00000000 ____D C:\ProgramData\Apple
2015-12-05 14:43 - 2014-02-19 19:03 - 00000000 ____D C:\Program Files (x86)\QuickTime
2015-12-05 14:42 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-05 13:14 - 2014-08-16 14:38 - 00007593 _____ C:\Users\Nico ****\AppData\Local\Resmon.ResmonCfg
2015-12-05 00:55 - 2014-08-08 18:04 - 00004186 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-05 00:55 - 2014-08-08 18:04 - 00003954 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-04 20:42 - 2014-03-16 19:02 - 00000000 ____D C:\Users\Nico ****\Documents\Adobe
2015-12-04 15:44 - 2015-10-18 04:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-12-04 14:01 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-03 20:43 - 2015-08-16 12:41 - 00000000 ____D C:\Users\Nico ****
2015-12-02 14:17 - 2013-11-29 21:45 - 00000000 ____D C:\Users\Nico ****\AppData\Local\Adobe
2015-12-01 14:15 - 2015-05-24 08:23 - 00000000 ____D C:\ProgramData\ProductData
2015-11-29 17:40 - 2014-03-27 19:36 - 00000000 ____D C:\Users\Nico ****\AppData\Local\fabi.me
2015-11-26 13:58 - 2015-08-09 22:14 - 00000000 ___RD C:\Users\Nico ****\Google Drive
2015-11-26 13:57 - 2015-08-09 22:12 - 00002115 _____ C:\Users\Public\Desktop\Google Slides.lnk
2015-11-26 13:57 - 2015-08-09 22:12 - 00002113 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2015-11-26 13:57 - 2015-08-09 22:12 - 00002103 _____ C:\Users\Public\Desktop\Google Docs.lnk
2015-11-26 13:57 - 2015-08-09 22:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-11-24 20:41 - 2014-04-25 01:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Process Hacker 2
2015-11-24 20:41 - 2014-04-25 01:18 - 00000000 ____D C:\Program Files\Process Hacker 2
2015-11-24 20:30 - 2015-08-19 13:16 - 00003632 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
2015-11-20 19:02 - 2015-07-10 12:02 - 00000000 ____D C:\WINDOWS\INF
2015-11-20 19:02 - 2014-03-13 20:03 - 00000000 ____D C:\temp
2015-11-20 19:02 - 2013-11-29 22:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-11-20 19:02 - 2013-11-29 00:24 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-11-19 15:05 - 2015-09-27 00:02 - 00000000 ____D C:\Users\Nico ****\.VirtualBox
2015-11-19 15:04 - 2014-01-24 21:00 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\BitTorrent
2015-11-18 13:57 - 2015-07-16 12:16 - 00001142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remotr Streamer.lnk
2015-11-18 13:57 - 2015-07-16 12:16 - 00000000 ____D C:\Program Files (x86)\Remotr
2015-11-17 18:32 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-17 07:27 - 2015-08-16 14:03 - 11228816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-11-16 04:54 - 2015-08-16 14:03 - 18487360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-11-16 04:54 - 2015-08-16 14:03 - 15933400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-11-16 04:54 - 2015-08-16 14:03 - 12870192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-11-16 04:54 - 2015-08-16 14:03 - 03540544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-11-16 04:54 - 2015-08-16 14:03 - 03126800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-11-16 04:54 - 2015-08-16 14:03 - 00034494 _____ C:\WINDOWS\system32\nvinfo.pb
2015-11-16 04:54 - 2015-06-29 08:52 - 01572496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2015-11-16 04:54 - 2015-06-29 08:52 - 00205456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2015-11-16 04:54 - 2013-11-29 00:24 - 00112944 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-11-16 04:54 - 2013-11-29 00:24 - 00105080 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-11-14 23:47 - 2014-03-28 17:25 - 00000000 ____D C:\Users\Nico ****\AppData\Local\JDownloader v2.0
2015-11-14 23:06 - 2015-10-10 14:02 - 00000000 ____D C:\Users\Nico ****\Desktop\Filme
2015-11-14 22:54 - 2014-03-30 14:29 - 00000000 ____D C:\Users\Nico ****\Documents\My Games
2015-11-14 21:49 - 2014-05-24 07:54 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
2015-11-14 15:54 - 2015-04-19 20:07 - 00000080 _____ C:\Users\Nico ****\AppData\Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦
2015-11-14 14:11 - 2015-10-24 16:38 - 00000000 ____D C:\Aptana Stuido
2015-11-14 11:01 - 2014-10-04 19:29 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-11-14 07:20 - 2013-11-29 00:25 - 06358648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-11-14 07:20 - 2013-11-29 00:25 - 02983216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-11-14 07:20 - 2013-11-29 00:25 - 02554488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-11-14 07:20 - 2013-11-29 00:25 - 00938616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-11-14 07:20 - 2013-11-29 00:25 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-11-14 07:20 - 2013-11-29 00:24 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-11-14 00:20 - 2014-04-14 17:53 - 00000000 ____D C:\Users\Nico ****\AppData\Local\Battle.net
2015-11-13 19:25 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache
2015-11-13 18:40 - 2014-12-14 14:00 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-11-13 16:42 - 2015-08-16 13:05 - 01790124 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-13 16:42 - 2015-07-10 17:34 - 00771100 _____ C:\WINDOWS\system32\perfh007.dat
2015-11-13 16:42 - 2015-07-10 17:34 - 00153964 _____ C:\WINDOWS\system32\perfc007.dat
2015-11-12 21:41 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-12 15:36 - 2013-11-29 23:02 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-11-12 15:35 - 2013-11-29 23:01 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-11-12 15:23 - 2013-11-29 21:12 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-12 15:14 - 2013-11-29 21:12 - 145617392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-11-12 15:13 - 2013-08-22 14:25 - 00000167 _____ C:\WINDOWS\win.ini
2015-11-11 19:44 - 2015-04-16 20:14 - 00000000 ____D C:\Users\Nico ****\Desktop\GTA
2015-11-11 16:43 - 2014-06-08 15:00 - 00003870 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-11-09 14:22 - 2015-07-16 12:16 - 00000000 ____D C:\ProgramData\Remotr
2015-11-08 22:37 - 2014-09-16 19:04 - 00000000 ____D C:\Users\Nico ****\AppData\Local\Genymobile
2015-11-08 13:38 - 2015-10-28 15:17 - 00000185 _____ C:\Users\Nico ****\Desktop\Spamips.txt
2015-11-08 00:25 - 2014-06-29 12:45 - 00000000 ___RD C:\Users\Nico ****\Creative Cloud Files
2015-11-07 18:32 - 2014-01-11 18:49 - 00000000 ____D C:\Program Files\OBS
2015-11-07 10:56 - 2015-09-10 15:33 - 00000000 ____D C:\Program Files (x86)\WinPcap
2015-11-07 10:56 - 2015-01-04 19:59 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\Wireshark
2015-11-07 10:56 - 2014-12-16 13:48 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2015-11-07 10:56 - 2014-08-01 21:28 - 00000000 ____D C:\Users\Nico ****\AppData\Local\paint.net
2015-11-07 10:56 - 2014-05-24 12:48 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\Thunderbird
2015-11-07 10:56 - 2013-11-29 23:01 - 00000000 ____D C:\Users\Nico ****\AppData\Local\Microsoft Help
2015-11-07 10:50 - 2014-12-26 01:23 - 00003014 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-11-07 10:45 - 2015-01-15 15:51 - 00000000 ____D C:\Users\Nico ****\AppData\Roaming\KeePass
2015-11-06 19:00 - 2015-03-14 17:42 - 00003454 _____ C:\Users\Nico ****\Documents\daten.kdbx
2015-11-06 18:57 - 2015-11-02 14:50 - 00000000 ____D C:\Program Files (x86)\LastPass
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-11-06 18:57 - 2015-11-06 18:57 - 20320792 _____ (LastPass) C:\Program Files (x86)\Common Files\lpuninstall.exe
2014-02-23 16:22 - 2014-02-23 16:22 - 1213440 _____ () C:\Users\Nico ****\AppData\Roaming\21390.exe
2014-02-23 16:21 - 2014-02-23 16:21 - 1213440 _____ () C:\Users\Nico ****\AppData\Roaming\55d77.exe
2014-03-17 17:12 - 2014-05-31 19:13 - 0000132 _____ () C:\Users\Nico ****\AppData\Roaming\Adobe IllExport-Filter CC - Voreinstellungen
2014-04-21 15:14 - 2014-04-21 16:05 - 0000132 _____ () C:\Users\Nico ****\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-01-15 01:17 - 2014-06-29 09:55 - 0000132 _____ () C:\Users\Nico ****\AppData\Roaming\Adobe PNG-Format CC - Voreinstellungen
2014-08-07 18:56 - 2015-08-10 09:10 - 0000034 _____ () C:\Users\Nico ****\AppData\Roaming\AdobeWLCMCache.dat
2014-02-23 16:21 - 2014-09-03 16:32 - 0000152 _____ () C:\Users\Nico ****\AppData\Roaming\config.ini
2015-11-05 21:07 - 2015-11-05 21:16 - 0002732 _____ () C:\Users\Nico ****\AppData\Roaming\droid4xinstaller.log
2015-08-08 10:35 - 2015-08-08 10:35 - 0000000 _____ () C:\Users\Nico ****\AppData\Roaming\Stardockfences_debug_snapshot.dat
2015-06-24 13:04 - 2015-06-23 18:55 - 0178176 _____ () C:\Users\Nico ****\AppData\Roaming\TMP01.txt
2014-04-28 00:38 - 2014-08-26 17:04 - 0001839 _____ () C:\Users\Nico ****\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2014-01-11 19:56 - 2014-01-12 16:24 - 0005632 _____ () C:\Users\Nico ****\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-02-20 17:08 - 2015-02-20 17:09 - 0000026 _____ () C:\Users\Nico ****\AppData\Local\isoworkshop.ini
2015-03-14 20:50 - 2015-03-14 20:50 - 0000000 ___SH () C:\Users\Nico ****\AppData\Local\LumaEmu
2014-08-16 14:38 - 2015-12-05 13:14 - 0007593 _____ () C:\Users\Nico ****\AppData\Local\Resmon.ResmonCfg
2014-03-31 18:07 - 2014-03-31 18:07 - 0000003 _____ () C:\Users\Nico ****\AppData\Local\updater.log
2014-03-31 18:07 - 2015-10-03 10:56 - 0000424 _____ () C:\Users\Nico ****\AppData\Local\UserProducts.xml
2014-10-23 19:54 - 2014-10-23 19:54 - 0314151 _____ () C:\ProgramData\1414090333.bdinstall.bin
2015-08-16 12:37 - 2015-08-16 12:37 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-05-10 11:06 - 2014-03-11 11:06 - 0000032 ____R () C:\ProgramData\hash.dat
2014-03-16 03:42 - 2015-05-13 18:38 - 0000213 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\ProgramData\hash.dat
Einige Dateien in TEMP:
====================
C:\Users\Nico ****\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Nico ****\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Nico ****\AppData\Local\Temp\nvStInst.exe
C:\Users\Nico ****\AppData\Local\Temp\processhacker-2.36-setup.exe
Einige mit null Byte Größe Dateien/Ordner:
==========================
C:\Windows\System32\BDSandBoxUH.dll
C:\Windows\System32\BDSandBoxUISkin.dll
C:\Windows\System32\BDSandBoxUISkin32.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-12-04 17:11
==================== Ende von FRST.txt ============================
|
Linear-Darstellung
