SCVHOST, CPU Auslastung sehr hoch, Nach kurzfristiger Lösung kommt das Problem immer wieder

BigBlind · 15.04.2016, 13:36

Hallo erstmal ...

Ich bin völlig überfordert und wenn ich iwas falsch mache bitte direkt darauf hinweisen das ich meine Fehler korrigieren und es beim nächsten mal besser machen kann.

Zunächst muß ich sagen das ich was Logfiles und Taskmanager lesen ein völliger noob bin.

Mein Problem besteht darin das ich seit geraumer Zeit im Leerlauf eine sehr hohe CPU Auslastung habe. Diese liegt zwischen 70 und 100%. Bislang lag die Auslastung im Leerlauf immer bei 0% und daran konnte ich sehen das alles okay ist.

Seitdem das Problem besteht versuche ich es zu beseitigen.

Der Taskmanger sagt mir das sich Leerlauf und scvhost die gesammte CPU teilen.

scvhost hat durchgehend mindestens 50% CPU Auslastung.

Bei genauerer Betrachtung sah ich das scvhost auch teilweise bis zu 8 mal im Taskmanager zu finden ist. Ich habe dann mal recherchiert und testweise mal versucht alle scvhost zu beenden. Nach nem Neustart wäre ja soweit alles wieder tutti, also viel kaputt machen kann ich damit ja nicht.

Bis auf eine scvhost konnte ich alle beenden.

Lange Rede kurzer Sinn ich habe weiter recherchiert und herausgefunden das es oft mit den automatischen Updates von Windows zusammenhängt. Ich habe also diese mal deaktiviert und neu gestartet.

Nun war meine Auslastung nicht mehr so ganz extrem hoch, aber trotzdem war die Auslastung nicht bei 0 wie es für gewöhnlich immer war.

Spybot S&D2 hat nichts gefunden, Aviria hat ebenfalls nichts gefunden.

Also weiter recherchiert...

Dann bin ich auf eine Seite gestoßen bei der dieses Problem zu lösen wäre indem man bei Ausführen services.msc eingibt mit Enter bestätigt und ann dort die automatischen Updates deaktiviert.

Im Anschluß sollten in C:/windows/SoftwareDistribution/ folgende Inhalte gelöscht werden.

Alles aus den Ordnern:

DataStore, Download und EventChace habe ich also gelöscht und dann sollte man die Windows updates wieder anstellen und neu starten.

Soweit so gut das Problem war kurzfristig behoben.

Ich hatte eine Auslastung von 15% nach dem Neustart. Das war allerdings immernoch ungewöhnlich weil ich bisher ja immer 0% im Leerlauf hatte. Also habe ich weiter recherchiert.

Dann habe ich gesheen das meine Graka ein Update gebrauchen könnte. Gesagt, getan, Neustart und trotzdem noch zwischen 8 und 15% Auslastung.

Rechner danach runtergefahren und heute morgen wieder hochgefahren.

Zack war alles wieder wie am Anfang. Bis zu 100% Auslastung und scvhost hat sich wieder mit Lerrlauf meine gesamte CPU geteilt.

Ich habe dann mal nach Diagnose Programmen gesucht und habe mit GMER und HijackThis einen Logfile erstellt. Da hört dann aber mein Wissen auf, denn für mich ist das dann pures Fachchinesisch.

Im Anhang sind beide Logfiles.

Ich verzweifel langsam weil einfach alles das ich bisher probiert habe zu keiner Lösung geführt hat.

Wenn noch mehr Infos benötigt werden oder ich iwas falsch gemacht haben sollte bitte ich um einen Hinweis, denn ich bin hier komplett neu und habe noch keinen Überblick.

Vielen Dank schon mal im Voraus.

Edit: First64 Logfiles

FRST:

Zitat:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-04-2016
Ran by LoopKartell (administrator) on LOOPKARTELL-PC (15-04-2016 15:13:22)
Running from G:\Downloads
Loaded Profiles: LoopKartell (Available Profiles: LoopKartell)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Englisch (USA)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(E-MU Systems) C:\Windows\System32\emaudsv.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(E-MU Systems) C:\Program Files (x86)\Creative Professional\E-MU USB Audio\EmuUsbAudioCP.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Mozilla Corporation) E:\Mozilla\firefox.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2396096 2016-03-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [807392 2016-03-13] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66328 2016-01-27] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\Run: [E-MU USB Audio Control Panel] => C:\Program Files (x86)\Creative Professional\E-MU USB Audio\EmuUsbAudioCP.exe [274432 2007-11-26] (E-MU Systems)
HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-11-15] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{CB8974C9-56C7-48D1-B3F5-1AE01C3523C6}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================

FireFox:
========
FF ProfilePath: C:\Users\LoopKartell\AppData\Roaming\Mozilla\Firefox\Profiles\naydscis.default
FF Homepage: hxxp://www.elektronik-quest.de/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-14] ()
FF Plugin: @videolan.org/vlc,version=2.2.0 -> E:\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-14] ()
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-01-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-01-29] (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\LoopKartell\AppData\Roaming\Mozilla\Firefox\Profiles\naydscis.default\searchplugins\youtube-videosuche.xml [2015-12-14]
FF Extension: TinEye Reverse Image Search - C:\Users\LoopKartell\AppData\Roaming\Mozilla\Firefox\Profiles\naydscis.default\extensions\tineye@ideeinc.com.xpi [2015-08-28]
FF Extension: NoScript - C:\Users\LoopKartell\AppData\Roaming\Mozilla\Firefox\Profiles\naydscis.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-04-07]
FF Extension: Element Hiding Helper for Adblock Plus - C:\Users\LoopKartell\AppData\Roaming\Mozilla\Firefox\Profiles\naydscis.default\Extensions\elemhidehelper@adblockplus.org.xpi [2016-02-17]
FF Extension: Mailvelope - C:\Users\LoopKartell\AppData\Roaming\Mozilla\Firefox\Profiles\naydscis.default\Extensions\jid1-AQqSMBYb0a8ADg@jetpack.xpi [2016-02-24]
FF Extension: Search by Image for Google - C:\Users\LoopKartell\AppData\Roaming\Mozilla\Firefox\Profiles\naydscis.default\Extensions\{ab4b5718-3998-4a2c-91ae-18a7c2db513e}.xpi [2015-05-30]
FF Extension: Video DownloadHelper - C:\Users\LoopKartell\AppData\Roaming\Mozilla\Firefox\Profiles\naydscis.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2016-04-13]
FF Extension: Adblock Plus - C:\Users\LoopKartell\AppData\Roaming\Mozilla\Firefox\Profiles\naydscis.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-23]
StartMenuInternet: FIREFOX.EXE - E:\Mozilla\firefox.exe

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

Opera:
=======
StartMenuInternet: (HKLM) Opera - E:\Opera\Opera.exe

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [955736 2016-03-13] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [466504 2016-03-13] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [466504 2016-03-13] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1424880 2016-03-13] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [260456 2016-01-27] (Avira Operations GmbH & Co. KG)
R2 emaudsv; C:\Windows\system32\emaudsv.exe [25600 2007-11-26] (E-MU Systems)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376 2009-08-27] (MAGIX AG) [File not signed]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-03-30] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-03-30] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-03-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-03-30] (NVIDIA Corporation)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [154816 2016-03-13] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [133168 2016-03-13] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-10-23] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [69888 2016-03-13] (Avira Operations GmbH & Co. KG)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 emusba10; C:\Windows\System32\DRIVERS\emusba10.sys [213272 2007-11-26] (E-MU Systems)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-03-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-03-21] (NVIDIA Corporation)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-15 15:13 - 2016-04-15 15:13 - 00000000 ____D C:\FRST
2016-04-15 14:57 - 2016-04-15 14:57 - 00003069 _____ C:\Users\LoopKartell\Desktop\tb text.txt
2016-04-14 20:30 - 2016-03-21 22:01 - 00109632 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-04-14 20:30 - 2016-03-21 22:01 - 00100416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-04-14 20:30 - 2016-03-21 22:01 - 00056384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-04-14 20:20 - 2016-04-15 13:15 - 00000000 ____D C:\ProgramData\NVIDIA
2016-04-14 20:20 - 2016-01-29 12:49 - 06791736 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-04-14 20:20 - 2016-01-29 12:49 - 03529152 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-04-14 20:20 - 2016-01-29 12:49 - 02558328 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-04-14 20:20 - 2016-01-29 12:49 - 00932728 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-04-14 20:20 - 2016-01-29 12:49 - 00384888 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-04-14 20:20 - 2016-01-29 12:49 - 00062512 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-04-14 20:20 - 2016-01-29 11:04 - 00614848 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-04-14 20:20 - 2016-01-28 18:29 - 06150607 _____ C:\Windows\system32\nvcoproc.bin
2016-04-14 20:19 - 2016-01-29 14:08 - 00082488 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-04-14 20:19 - 2016-01-29 14:08 - 00067520 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 31523896 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 24207296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 23000000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 18634264 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 17559240 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 16128576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 15302712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 14497568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 13916600 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 13828032 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 12911160 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-04-14 20:18 - 2016-01-29 14:08 - 11272240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 11209376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 04252608 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 03996216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 03210784 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 02825016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 01908272 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434195.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 01557552 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434195.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 00952256 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 00915392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 00911928 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 00878648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-04-14 20:18 - 2016-01-29 14:08 - 00026157 _____ C:\Windows\system32\nvinfo.pb
2016-04-14 20:09 - 2016-03-30 03:05 - 00112216 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-04-14 19:47 - 2016-04-14 19:47 - 00000000 ____D C:\Windows\pss
2016-04-13 23:40 - 2016-04-13 23:40 - 00000000 ____D C:\Users\LoopKartell\Documents\ProcAlyzer Dumps
2016-04-13 22:59 - 2014-12-06 16:29 - 00450771 _____ C:\Windows\system32\Drivers\etc\hosts.20160413-225926.backup
2016-04-13 22:55 - 2014-12-06 16:29 - 00450771 _____ C:\Windows\system32\Drivers\etc\hosts.20160413-225559.backup
2016-04-13 22:55 - 2014-12-06 16:29 - 00450771 _____ C:\Windows\system32\Drivers\etc\hosts.20160413-225509.backup
2016-04-13 22:53 - 2014-12-06 16:29 - 00450771 _____ C:\Windows\system32\Drivers\etc\hosts.20160413-225305.backup
2016-04-13 13:42 - 2016-04-13 13:42 - 00002774 _____ C:\Users\LoopKartell\Documents\cc_20160410_172525_13.04.16.reg
2016-04-13 12:52 - 2016-04-13 12:52 - 00000714 _____ C:\Users\LoopKartell\Desktop\Musik Sammlung - Verknüpfung.lnk
2016-04-10 17:25 - 2016-04-10 17:26 - 00014478 _____ C:\Users\LoopKartell\Documents\cc_20160410_172525_10.04.16.reg
2016-04-09 20:14 - 2016-04-09 20:14 - 25401920 _____ C:\Users\LoopKartell\Desktop\Glitch to the Hop.wav
2016-04-09 20:11 - 2016-04-09 20:11 - 25401644 ____T C:\Users\LoopKartell\Desktop\First Glitch Hop.wav
2016-04-09 20:11 - 2016-04-09 20:11 - 00297347 ____T C:\Users\LoopKartell\Desktop\First Glitch Hop.wav.asd
2016-04-08 21:33 - 2016-04-13 22:29 - 00000000 __HDC C:\ProgramData\{3E003CE8-6E60-406C-91FA-786AC5830B5E}
2016-04-08 21:33 - 2016-04-13 22:29 - 00000000 ____D C:\Users\LoopKartell\AppData\Local\Native Instruments
2016-04-08 21:33 - 2016-04-13 22:29 - 00000000 ____D C:\ProgramData\Native Instruments
2016-04-08 21:33 - 2016-04-13 22:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments
2016-04-08 21:33 - 2016-04-13 22:29 - 00000000 ____D C:\Program Files\Common Files\Native Instruments
2016-04-08 21:33 - 2016-04-08 21:33 - 00000990 _____ C:\Users\Public\Desktop\Massive.lnk
2016-04-08 21:33 - 2016-04-08 21:33 - 00000000 ____D C:\Users\LoopKartell\Documents\Native Instruments
2016-04-08 21:29 - 2016-04-13 22:29 - 00000000 ____D C:\Program Files\Native Instruments
2016-04-08 21:28 - 2016-04-08 21:28 - 00000000 __HDC C:\ProgramData\{84F3A9E1-F22E-44D1-A4DA-6FDAED1C26FF}
2016-04-06 15:42 - 2016-04-13 22:29 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2016-04-06 15:42 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2016-04-06 15:42 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2016-04-06 15:42 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2016-04-06 15:42 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2016-04-06 00:44 - 2016-04-09 00:00 - 00007598 _____ C:\Users\LoopKartell\AppData\Local\Resmon.ResmonCfg
2016-04-04 10:45 - 2016-04-13 22:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tone2 Firebird
2016-04-04 10:41 - 2016-04-13 22:21 - 00000000 ____D C:\ProgramData\One Small Clue
2016-04-04 10:41 - 2013-10-09 13:18 - 00311296 _____ C:\Windows\system32\r8bsrc.dll
2016-04-04 10:41 - 2011-05-24 00:59 - 05857280 _____ C:\Windows\system32\MtxVec.Spld4.dll
2016-04-04 10:41 - 2010-01-08 01:27 - 19656192 _____ (DewResearch) C:\Windows\system32\MtxVec.Lapack4d.dll
2016-04-04 10:41 - 2010-01-08 01:27 - 15143424 _____ (DewResearch) C:\Windows\system32\MtxVec.Fft.dll
2016-04-04 10:41 - 2010-01-06 23:33 - 02354176 _____ C:\Windows\system32\MtxVec.Vml4d.dll
2016-04-04 10:41 - 2008-11-06 06:29 - 00543928 _____ (Intel Corporation) C:\Windows\system32\libiomp5md.dll
2016-04-04 10:40 - 2016-04-04 10:40 - 00000000 ____D C:\Program Files\Common Files\VST3
2016-04-04 10:40 - 2016-04-04 10:40 - 00000000 ____D C:\Program Files\Common Files\Avid
2016-03-31 21:55 - 2016-03-31 21:55 - 00001005 _____ C:\Users\LoopKartell\Desktop\PC Zusammenstellung.txt
2016-03-30 10:58 - 2016-03-30 10:58 - 00000000 ____D C:\Program Files\Common Files\logishrd
2016-03-24 15:15 - 2016-04-13 22:29 - 00000000 ____D C:\Program Files (x86)\Netease
2016-03-24 15:15 - 2016-03-24 15:15 - 00000000 ____D C:\ProgramData\NetEaseWinDA
2016-03-24 15:14 - 2016-03-24 15:14 - 00000000 ____D C:\Users\LoopKartell\AppData\Local\Netease

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-15 14:28 - 2014-11-16 15:52 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-04-15 13:42 - 2014-11-14 22:13 - 00000000 ____D C:\Users\LoopKartell\AppData\Local\VirtualStore
2016-04-15 13:23 - 2009-07-14 06:45 - 00020480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-04-15 13:23 - 2009-07-14 06:45 - 00020480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-04-15 13:21 - 2014-11-15 00:37 - 00696932 _____ C:\Windows\system32\perfh007.dat
2016-04-15 13:21 - 2014-11-15 00:37 - 00148900 _____ C:\Windows\system32\perfc007.dat
2016-04-15 13:21 - 2009-07-14 07:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI
2016-04-15 13:21 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-04-15 13:15 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-04-14 20:34 - 2009-07-14 07:08 - 00032620 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-04-14 20:31 - 2015-02-26 15:49 - 00000000 ____D C:\Users\LoopKartell\AppData\Local\NVIDIA Corporation
2016-04-14 20:30 - 2014-11-15 01:30 - 00000000 ____D C:\Users\LoopKartell\AppData\Local\NVIDIA
2016-04-14 20:21 - 2015-02-25 16:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-04-14 20:20 - 2014-11-14 22:46 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-04-14 20:20 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help
2016-04-14 20:19 - 2014-11-14 22:46 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-04-14 14:44 - 2014-11-16 15:52 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-04-14 14:44 - 2014-11-16 15:52 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-04-14 14:44 - 2014-11-16 15:52 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-04-14 13:06 - 2014-11-15 00:44 - 00003560 _____ C:\Windows\System32\Tasks\CreateChoiceProcessTask
2016-04-13 22:38 - 2014-11-14 22:13 - 00000000 ____D C:\Users\LoopKartell
2016-04-13 22:29 - 2015-03-22 19:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wisdom-soft AutoScreenRecorder 3 Free
2016-04-13 22:29 - 2015-03-16 00:44 - 00000000 ____D C:\Users\LoopKartell\AppData\Roaming\vlc
2016-04-13 22:29 - 2015-01-18 17:49 - 00000000 ____D C:\Users\LoopKartell\AppData\Roaming\Audacity
2016-04-13 22:29 - 2014-11-16 15:52 - 00000000 ____D C:\Windows\system32\Macromed
2016-04-13 22:29 - 2014-11-15 01:19 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-04-13 22:29 - 2014-11-15 01:15 - 00000000 ____D C:\ProgramData\Package Cache
2016-04-13 22:29 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2016-04-13 14:30 - 2014-12-06 18:26 - 00000000 ____D C:\Users\LoopKartell\Documents\My CamStudio Videos
2016-04-13 12:46 - 2015-08-20 03:28 - 00000000 ____D C:\Users\LoopKartell\AppData\Local\Dropbox
2016-04-12 17:47 - 2014-11-15 00:33 - 16954687 ____H C:\Users\LoopKartell\AppData\Local\IconCache.db.backup
2016-03-30 03:06 - 2015-02-25 16:03 - 01373680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-03-30 03:06 - 2015-02-25 16:03 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-03-30 03:05 - 2015-02-25 16:03 - 01767248 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-03-30 03:05 - 2015-02-25 16:03 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-03-17 23:35 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\LiveKernelReports

==================== Files in the root of some directories =======

2014-12-06 18:35 - 2014-12-06 18:44 - 0000131 _____ () C:\Users\LoopKartell\AppData\Roaming\Camdata.ini
2014-12-06 18:35 - 2014-12-06 18:44 - 0000408 _____ () C:\Users\LoopKartell\AppData\Roaming\CamLayout.ini
2014-12-06 18:35 - 2014-12-06 18:44 - 0000408 _____ () C:\Users\LoopKartell\AppData\Roaming\CamShapes.ini
2014-12-06 18:35 - 2014-12-06 18:44 - 0004535 _____ () C:\Users\LoopKartell\AppData\Roaming\CamStudio.cfg
2014-12-06 18:25 - 2014-12-06 18:38 - 0000096 _____ () C:\Users\LoopKartell\AppData\Roaming\version2.xml
2016-04-06 00:44 - 2016-04-09 00:00 - 0007598 _____ () C:\Users\LoopKartell\AppData\Local\Resmon.ResmonCfg

Some files in TEMP:
====================
C:\Users\LoopKartell\AppData\Local\Temp\avgnt.exe
C:\Users\LoopKartell\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\LoopKartell\AppData\Local\Temp\nvStInst.exe

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-04-09 16:17

==================== End of FRST.txt ============================

Addition:

Zitat:

Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-04-2016
Ran by LoopKartell (2016-04-15 15:14:07)
Running from G:\Downloads
Windows 7 Ultimate Service Pack 1 (X64) (2014-11-14 20:04:08)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-4061204333-1435445367-3914172954-500 - Administrator - Disabled)
Guest (S-1-5-21-4061204333-1435445367-3914172954-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-4061204333-1435445367-3914172954-1003 - Limited - Enabled)
LoopKartell (S-1-5-21-4061204333-1435445367-3914172954-1000 - Administrator - Enabled) => C:\Users\LoopKartell

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Ableton Live 9 Suite (HKLM\...\{BDEBD3B4-2799-433E-A6A0-77DFE97C84AE}) (Version: 9.0.0.0 - Ableton)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20069 - Adobe Systems Incorporated)
Adobe Audition 3.0 (HKLM-x32\...\Adobe Audition 3.0) (Version: 3.0 - Adobe Systems Incorporated)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.22.87 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.213 - Adobe Systems Incorporated)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.16.282 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{3b87484e-d70b-4b4f-ad59-2ae89571e2cf}) (Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)
CwGet V2.26 (HKLM-x32\...\CwGet_is1) (Version: - )
E-MU USB Audio (HKLM-x32\...\{1C99893D-BC98-4456-AA3E-B67AB42301A6}) (Version: 1.0 - )
FFmpeg v0.6.2 for Audacity (HKLM-x32\...\FFmpeg for Audacity_is1) (Version: - )
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}) (Version: 2.1.27.0 - MAGIX AG)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
MAGIX Screenshare (HKLM-x32\...\{DAD6325D-55CF-4D30-9DB9-2ADFE02D0777}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Speed burnR (MSI) (HKLM-x32\...\{494420A9-5F25-457B-9BBF-228E6A73B94B}) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Video deluxe 17 Premium Download-Version (HKLM-x32\...\MAGIX_MSI_Videodeluxe17_premium) (Version: 10.0.1.14 - MAGIX AG)
MAGIX Video deluxe 17 Premium Download-Version (x32 Version: 10.0.1.14 - MAGIX AG) Hidden
Max 7 (64-bit) (HKLM\...\{78C2DD68-C853-4E7E-AB38-E46FED1DFF93}) (Version: 7.0.5 - Cycling '74)
Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Mozilla Firefox 33.1.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 33.1.1 (x86 de)) (Version: 33.1.1 - Mozilla)
Mozilla Firefox 45.0.2 (x86 de) (HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\Mozilla Firefox 45.0.2 (x86 de)) (Version: 45.0.2 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version: 1.5.0.533 - Native Instruments)
Neo_DynaMaster_Demo (HKLM-x32\...\{5BF4C5F3-EE48-4E7A-AC65-9045DFA5AFDA}) (Version: 1.0.0 - Sound Magic (Wang YiChi))
NVIDIA 3D Vision Controller-Treiber 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 341.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.95 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.2.55 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.2.55 - NVIDIA Corporation)
NVIDIA Grafiktreiber 341.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.95 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
paint.net (HKLM\...\{F509C1F4-0029-49F9-B145-A4C4E8DF481A}) (Version: 4.0.3 - dotPDN LLC)
phase-6 2.3.4 (HKLM-x32\...\phase-6) (Version: 2.3.4 - phase-6)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Reason 5.0 (HKLM-x32\...\Reason5_is1) (Version: 5.0 - Propellerhead Software AB)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{17528CE4-C333-48FB-A9E4-D841E795CDCE}) (Version: 3.0.23.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 3.0.23.0 - Renesas Electronics Corporation) Hidden
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.2.55 - NVIDIA Corporation) Hidden
Spotify (HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\Spotify) (Version: 1.0.20.101.ge6957e14 - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Super Meat Boy (HKLM-x32\...\Steam App 40800) (Version: - Team Meat)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.0 - VideoLAN)
WinRAR 5.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0C394A5D-7561-45DE-BC9B-F08322D50849} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {3A8F5D92-00FD-4166-9ACE-D7B29515ED61} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-14] (Adobe Systems Incorporated)
Task: {487C4466-2F67-4E6E-AB05-253F869F77C7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {7B27175A-F49F-4C53-99D1-C6DEAA4341E3} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.)
Task: {BA1ED300-2695-4622-B2FD-48A74DD308E8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-10-23] (Piriform Ltd)
Task: {C54EC3EE-248B-42E7-BF5C-E887BF4D7E94} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.)
Task: {D08B862A-DD6E-4DF4-AF31-DFCCE05CDA01} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-04-14 20:20 - 2016-01-29 12:49 - 00135224 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-04-14 20:30 - 2016-03-30 03:21 - 00366528 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-04-14 20:30 - 2016-03-30 03:21 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-04-14 20:30 - 2016-03-30 03:22 - 03611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-04-14 20:09 - 2016-03-30 03:21 - 00288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-04-14 20:30 - 2016-03-30 03:21 - 01988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-04-14 20:30 - 2016-03-30 03:21 - 02665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-04-14 20:30 - 2016-03-30 03:22 - 01840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-04-14 20:09 - 2016-03-30 03:22 - 00207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-04-14 20:30 - 2016-03-30 03:20 - 00034240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-04-14 20:30 - 2016-03-30 03:20 - 00920000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2014-11-15 01:19 - 2014-05-13 13:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-11-15 01:19 - 2014-05-13 13:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-11-15 01:19 - 2014-05-13 13:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-11-15 01:19 - 2012-08-23 11:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-11-15 01:19 - 2012-04-03 18:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2015-04-18 12:43 - 2016-03-30 03:28 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2014-11-15 01:28 - 2007-09-17 12:36 - 01720320 ____N () C:\Program Files (x86)\Creative Professional\E-MU USB Audio\QtCore4.dll
2014-11-15 01:28 - 2006-10-20 20:20 - 00204800 ____N () C:\Program Files (x86)\Creative Professional\E-MU USB Audio\QtXml4.dll
2014-11-15 01:28 - 2006-10-20 20:25 - 03969024 ____N () C:\Program Files (x86)\Creative Professional\E-MU USB Audio\QtGui4.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7887 more sites.

IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\...\123simsen.com -> www.123simsen.com

There are 7887 more sites.

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2014-12-06 16:29 - 00450771 ____N C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
127.0.0.1 www.123moviedownload.com

There are 15462 more lines.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4061204333-1435445367-3914172954-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\LoopKartell\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^phase-6 Reminder.lnk => C:\Windows\pss\phase-6 Reminder.lnk.CommonStartup
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Logitech Download Assistant => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: TrayServer => C:\Program Files (x86)\MAGIX\Video_deluxe_17_Premium_Download-Version\TrayServer.exe
MSCONFIG\startupreg: Wisdom-soft AutoScreenRecorder 3.1 Free => 0

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{EBADB0D3-96A2-47D7-A858-5DDC745E45E4}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{576C5397-F3E2-40F0-B0FE-C141C1FC0667}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{63B92695-0803-4AE5-BA24-DB6CB5B9EFD6}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [TCP Query User{AA4D44A0-F00B-4DC0-BB7F-0A31978D6A79}E:\mozilla\firefox.exe] => (Allow) E:\mozilla\firefox.exe
FirewallRules: [UDP Query User{EDFF1FBD-C61A-4560-86D6-F83463694DDE}E:\mozilla\firefox.exe] => (Allow) E:\mozilla\firefox.exe
FirewallRules: [{556AAE2F-229C-4714-A321-8A2B4A5FCD2C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{A6781255-3CCD-4D4A-B59E-A1AB3F039DC2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{D2C86E5E-ED74-4C46-830E-EE71544994A4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{16A669B0-95C5-4116-8C9B-6906322478F8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{FE80B7DD-3C13-4FF1-BBD8-76D7DC0B4598}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{014F144C-EA91-40C9-97D2-000733D57420}C:\program files\cycling '74\max 7\max.exe] => (Allow) C:\program files\cycling '74\max 7\max.exe
FirewallRules: [UDP Query User{BCDB9B2C-2818-47CD-9A00-D5E632B71893}C:\program files\cycling '74\max 7\max.exe] => (Allow) C:\program files\cycling '74\max 7\max.exe
FirewallRules: [TCP Query User{C13DE8D1-62FF-4820-8620-F1703D0D5B77}C:\users\loopkartell\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\loopkartell\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{676D14AE-937F-4597-9084-D0A7EF11A53F}C:\users\loopkartell\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\loopkartell\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{DC67F286-4845-4E07-9D3E-B5E4A5D8E25B}C:\users\loopkartell\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\loopkartell\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{A1AC3408-46A2-4B54-9864-88C0F445FE69}C:\users\loopkartell\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\loopkartell\appdata\roaming\spotify\spotify.exe
FirewallRules: [{D50845CD-B50D-485F-884B-6AC59D53F3BC}] => (Allow) E:\Steam\Steam.exe
FirewallRules: [{95BA2549-3DCA-49A3-80ED-EFDA29A53FED}] => (Allow) E:\Steam\Steam.exe
FirewallRules: [{4B614472-46E6-4EFA-BE9F-9FBE996DF0E4}] => (Allow) E:\Steam\bin\steamwebhelper.exe
FirewallRules: [{2608A934-3624-4CD8-9617-DF1D8832F5EA}] => (Allow) E:\Steam\bin\steamwebhelper.exe
FirewallRules: [{2D94AFE0-6561-4949-ACA9-50962AC026BE}] => (Allow) E:\Steam\steamapps\common\Super Meat Boy\SuperMeatBoy.exe
FirewallRules: [{FFD457DE-C73F-4F07-846E-E001DCEC22E9}] => (Allow) E:\Steam\steamapps\common\Super Meat Boy\SuperMeatBoy.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Restore Points =========================

08-04-2016 21:31:57 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
08-04-2016 21:32:18 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005
13-04-2016 12:44:15 Removed Hacknet
13-04-2016 22:19:12 Wiederherstellungsvorgang

==================== Faulty Device Manager Devices =============

Name: High Definition Audio-Gerät
Description: High Definition Audio-Gerät
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: HdAudAddService
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: =========================

Application errors:
==================
Error: (04/14/2016 08:29:29 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm GFExperience.exe, Version 2.9.1.22 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: ec8

Startzeit: 01d19678dd384155

Endzeit: 34

Anwendungspfad: C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe

Berichts-ID: d7752a4a-026d-11e6-b01e-0021856d3cc8

Error: (04/14/2016 02:20:23 AM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Der Index kann nicht initialisiert werden.

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (04/14/2016 02:20:23 AM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Die Anwendung kann nicht initialisiert werden.

Context: Windows Application

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (04/14/2016 02:20:23 AM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.

Context: Windows Application, SystemIndex Catalog

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (04/14/2016 02:20:23 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Plug-In in <Search.TripoliIndexer> kann nicht initialisiert werden.

Context: Windows Application, SystemIndex Catalog

Details:
Element not found. (HRESULT : 0x80070490) (0x80070490)

Error: (04/14/2016 02:20:23 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Plug-In in <Search.JetPropStore> kann nicht initialisiert werden.

Context: Windows Application, SystemIndex Catalog

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (04/14/2016 02:20:22 AM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Die Eigenschaftenspeicherdaten können von Windows Search nicht geladen werden.

Context: Windows Application, SystemIndex Catalog

Details:
The content index database is corrupt. (HRESULT : 0xc0041800) (0xc0041800)

Error: (04/14/2016 02:20:22 AM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Windows Search wird aufgrund eines Problems bei der Indizierung The catalog is corrupt beendet.

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (04/14/2016 02:20:22 AM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: Vom Suchdienst wurden beschädigte Datendateien im Index {id=4700} erkannt. Vom Dienst wird versucht, dieses Problem durch Neuerstellung des Indexes automatisch zu beheben.

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (04/14/2016 02:20:22 AM) (Source: Windows Search Service) (EventID: 9000) (User: )
Description: Der Jet-Eigenschaftenspeicher kann von Windows Search nicht geöffnet werden.

Details:
0x%08x (0xc0041800 - The content index database is corrupt. (HRESULT : 0xc0041800))

System errors:
=============
Error: (04/15/2016 01:15:45 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom

Error: (04/14/2016 08:34:28 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom

Error: (04/14/2016 07:34:33 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom

Error: (04/14/2016 07:28:45 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom

Error: (04/14/2016 02:38:02 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom

Error: (04/14/2016 02:08:14 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom

Error: (04/14/2016 02:06:42 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Der Dienst Windows Update konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.

Error: (04/14/2016 11:15:25 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom

Error: (04/14/2016 02:20:24 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Restart the service.

Error: (04/14/2016 02:20:24 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem Fehler beendet: %%-1073473535.

==================== Memory info ===========================

Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 4800+
Percentage of memory in use: 43%
Total physical RAM: 6143.37 MB
Available physical RAM: 3477.29 MB
Total Virtual: 12284.94 MB
Available Virtual: 8679.73 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.69 GB) (Free:22.13 GB) NTFS
Drive d: (Soundbanks) (Fixed) (Total:232.88 GB) (Free:94.39 GB) NTFS
Drive e: (Programme) (Fixed) (Total:232.88 GB) (Free:223.98 GB) NTFS
Drive g: (Externe Festplatte WD) (Fixed) (Total:1863.01 GB) (Free:1239.27 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: E8A79A79)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: D60DB9BD)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: 001378D6)
Partition 1: (Active) - (Size=1863 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

cosinus · 17.04.2016, 11:16

Zitat:

Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Englisch (USA)

Der Taskmanger sagt mir das sich Leerlauf und scvhost die gesammte CPU teilen.

scvhost hat durchgehend mindestens 50% CPU Auslastung.

das Problem von Windows 7 ist bekannt und nicht wirklich lösbar. Das Problem ist hausgemacht, viele nennen es sogar eine Art Sabotage von Microsoft, um die Windows 7 User zu vergraulen und zu Windows 10 zu drängen.

Lies mal => http://www.trojaner-board.de/177778-...uslastung.html und Suche nach Windows Updates dauert ewig? - Eine mögliche Lösung

Siehe auch Harmlos - Sabotage von Windows 7 Updates ist? | Forum - heise online und Windows installieren ohne anschließende Update-Orgie | c't Magazin
Leider ein nun kostenpflichtiger Artikel, aber in den Kommentaren findest du viele Leidensgenossen.

SCVHOST, CPU Auslastung sehr hoch, Nach kurzfristiger Lösung kommt das Problem immer wieder

Plagegeister aller Art und deren Bekämpfung: SCVHOST, CPU Auslastung sehr hoch, Nach kurzfristiger Lösung kommt das Problem immer wieder

SCVHOST, CPU Auslastung sehr hoch, Nach kurzfristiger Lösung kommt das Problem immer wieder

SCVHOST, CPU Auslastung sehr hoch, Nach kurzfristiger Lösung kommt das Problem immer wieder

Ähnliche Themen: SCVHOST, CPU Auslastung sehr hoch, Nach kurzfristiger Lösung kommt das Problem immer wieder