| |
| |||||||
Alles rund um Windows: PC startet ohne Vorwarnung neu. Kein Bluescreen. Viele Logfiles für euch.Windows 7 Hilfe zu allen Windows-Betriebssystemen: Windows XP, Windows Vista, Windows 7, Windows 8(.1) und Windows 10 / Windows 11- als auch zu sämtlicher Windows-Software. Alles zu Windows 10 ist auch gerne willkommen. Bitte benenne etwaige Fehler oder Bluescreens unter Windows mit dem Wortlaut der Fehlermeldung und Fehlercode. Erste Schritte für Hilfe unter Windows. |
 |
06.06.2016, 11:47
| #1 |
| |  Problem: PC startet ohne Vorwarnung neu. Kein Bluescreen. Viele Logfiles für euch. Hallo Gemeinde, ich habe ein Problem mit dem PC. Er startet öfter mal ohne Vorwarnung neu. Er geht quasi komplett aus (Als wenn ich den Stecker ziehe) und startet dann selbstständig wieder neu. Die Temperaturen der GPU und CPU sind in Ordnung. Ich habe nichts übertaktet und Windows 10 ist nur zwei Wochen alt. Antimalwarebytes findet auch nichts. PC: Code:
ATTFilter CPUID HWMonitor Report
-------------------------------------------------------------------------
Binaries
-------------------------------------------------------------------------
HWMonitor version 1.2.8.0
Monitoring
-------------------------------------------------------------------------
Mainboard Model Z68 Pro3 (0x0000024C - 0x00B15DC4)
LPCIO
-------------------------------------------------------------------------
LPCIO Vendor Nuvoton
LPCIO Model NCT6776
LPCIO Vendor ID 0x5CA3
LPCIO Chip ID 0xC3
LPCIO Revision ID 0x33
Config Mode I/O address 0x2E
Config Mode LDN 0xB
Config Mode registers
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 FF FF 00 FF FF FF FF 0B FF FF FF FF FF FF FF FF
10 FF FF FF FF FF FF FF FF FF FF F8 0E 80 00 FF FF
20 C3 33 FF 00 5C 00 00 80 00 FF 62 00 80 00 00 01
30 E1 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
40 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
50 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
60 02 90 00 00 FF FF FF FF FF FF FF FF FF FF FF FF
70 00 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
Register space LPC, base address = 0x0290
Hardware Monitors
-------------------------------------------------------------------------
Hardware monitor Nuvoton NCT6776
Voltage 0 1.02 Volts [0x80] (CPU VCORE)
Voltage 1 1.87 Volts [0xEA] (VIN1)
Voltage 2 3.39 Volts [0xD4] (AVCC)
Voltage 3 3.39 Volts [0xD4] (3VCC)
Voltage 4 0.14 Volts [0x11] (VIN4)
Voltage 5 1.70 Volts [0xD4] (VIN5)
Voltage 6 1.18 Volts [0x94] (VIN6)
Temperature 0 37°C (98°F) [0x25] (SYSTIN)
Temperature 1 41°C (105°F) [0x52] (CPUTIN)
Temperature 2 34°C (93°F) [0x44] (AUXTIN)
Temperature 3 48°C (118°F) [0x30] (TMPIN3)
Hardware registers
Register space LPC, base address = 0x0290
bank 0
00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F
00 04 FF 04 FF 00 FF FF FF FF FF FF FF FF FF FF FF
10 04 FF 00 00 00 00 FF FF 40 00 00 00 00 85 00 00
20 86 EA D4 D4 15 D4 94 25 FF FF FF DA 00 00 00 00
30 00 00 00 00 00 00 00 00 00 00 00 FF FF FF FF FF
40 03 DE 5F FF FF 80 3F FF 2D FF FF FF 18 05 00 A3
50 FF FF FF FF FF FF FF FF C1 FF FF FF FF 00 00 FF
60 00 FF FF FF FF 01 00 FF FF FF FF FF FF FF FF FF
70 00 0A 00 25 00 30 00 21 80 FF FF FF FF FF FF FF
80 FF 03 1F 0F FF 3C 3C 3C 00 00 00 00 00 00 00 00
90 0A 00 00 00 00 0A 0A 0A 0A AA EF 80 FF 40 46 C4
A0 0E 01 00 00 FF 00 00 FF 00 00 80 66 66 06 01 01
B0 00 00 00 00 00 00 30 00 1C 00 00 34 28 80 C4 FF
C0 01 00 00 00 00 00 00 00 00 0F 07 FF FF FF FF FF
D0 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
E0 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
F0 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
bank 1
80 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
bank 2
80 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
bank 3
80 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
bank 4
80 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
bank 5
80 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
bank 6
80 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
bank 7
80 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
Hardware monitor Intel I/O
Clock Speed 0 847.98 MHz [0x34F] (Graphics)
Hardware monitor NVIDIA NVAPI
Voltage 0 0.84 Volts [0x34B] (VIN0)
Power 0 9.27 pc (GPU)
Temperature 0 32°C (89°F) [0x20] (TMPIN0)
Fan 0 700 RPM [0x2BC] (FANIN0)
Fan PWM 0 22 pc [0x16] (FANPWMIN0)
Clock Speed 0 405.00 MHz [0x195] (Graphics)
Clock Speed 1 405.00 MHz [0x195] (Memory)
Processors
-------------------------------------------------------------------------
Number of processors 1
Number of threads 4
APICs
-------------------------------------------------------------------------
Processor 0
-- Core 0
-- Thread 0 0
-- Core 1
-- Thread 0 2
-- Core 2
-- Thread 0 4
-- Core 3
-- Thread 0 6
Timers
-------------------------------------------------------------------------
ACPI timer 3.580 MHz
HPET timer 14.318 MHz
Perf timer 3.215 MHz
Sys timer 1.000 KHz
Processors Information
-------------------------------------------------------------------------
Processor 1 ID = 0
Number of cores 4 (max 8)
Number of threads 4 (max 16)
Name Intel Core i5 2500K
Codename Sandy Bridge
Specification Intel(R) Core(TM) i5-2500K CPU @ 3.30GHz
Package (platform ID) Socket 1155 LGA (0x1)
CPUID 6.A.7
Extended CPUID 6.2A
Core Stepping D2
Technology 32 nm
TDP Limit 95.0 Watts
Tjmax 98.0 °C
Core Speed 1596.2 MHz
Multiplier x Bus Speed 16.0 x 99.8 MHz
Stock frequency 3300 MHz
Instructions sets MMX, SSE, SSE2, SSE3, SSSE3, SSE4.1, SSE4.2, EM64T, VT-x, AES, AVX
L1 Data cache 4 x 32 KBytes, 8-way set associative, 64-byte line size
L1 Instruction cache 4 x 32 KBytes, 8-way set associative, 64-byte line size
L2 cache 4 x 256 KBytes, 8-way set associative, 64-byte line size
L3 cache 6 MBytes, 12-way set associative, 64-byte line size
FID/VID Control yes
Turbo Mode supported, enabled
Max non-turbo ratio 33x
Max turbo ratio 37x
Max efficiency ratio 16x
Min Power 60 Watts
O/C bins unlimited
Ratio 1 core 37x
Ratio 2 cores 36x
Ratio 3 cores 35x
Ratio 4 cores 34x
TSC 3292.4 MHz
APERF 3475.2 MHz
MPERF 3217.8 MHz
Temperature 0 49°C (120°F) [0x31] (Core #0)
Temperature 1 49°C (120°F) [0x31] (Package)
Power 0 26.27 W (Package)
Power 1 20.44 W (IA Cores)
Power 2 0.54 W (GT)
Power 3 5.28 W (Uncore)
Voltage 0 1.00 Volts (VID)
Thread dumps
-------------------------------------------------------------------------
CPU Thread 0
APIC ID 0
Topology Processor ID 0, Core ID 0, Thread ID 0
Type 01020105h
Max CPUID level 0000000Dh
Max CPUID ext. level 80000008h
Cache descriptor Level 1, D, 32 KB, 2 thread(s)
Cache descriptor Level 1, I, 32 KB, 2 thread(s)
Cache descriptor Level 2, U, 256 KB, 2 thread(s)
Cache descriptor Level 3, U, 6 MB, 16 thread(s)
CPUID
0x00000000 0x0000000D 0x756E6547 0x6C65746E 0x49656E69
0x00000001 0x000206A7 0x00100800 0x1F9AE3BF 0xBFEBFBFF
0x00000002 0x76035A01 0x00F0B0FF 0x00000000 0x00CA0000
0x00000003 0x00000000 0x00000000 0x00000000 0x00000000
0x00000004 0x1C004121 0x01C0003F 0x0000003F 0x00000000
0x00000004 0x1C004122 0x01C0003F 0x0000003F 0x00000000
0x00000004 0x1C004143 0x01C0003F 0x000001FF 0x00000000
0x00000004 0x1C03C163 0x02C0003F 0x00001FFF 0x00000006
0x00000005 0x00000040 0x00000040 0x00000003 0x00001120
0x00000006 0x00000077 0x00000002 0x00000009 0x00000000
0x00000007 0x00000000 0x00000000 0x00000000 0x00000000
0x00000008 0x00000000 0x00000000 0x00000000 0x00000000
0x00000009 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000A 0x07300803 0x00000000 0x00000000 0x00000603
0x0000000B 0x00000001 0x00000001 0x00000100 0x00000000
0x0000000B 0x00000004 0x00000004 0x00000201 0x00000000
0x0000000C 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000D 0x00000007 0x00000340 0x00000340 0x00000000
0x80000000 0x80000008 0x00000000 0x00000000 0x00000000
0x80000001 0x00000000 0x00000000 0x00000001 0x28100800
0x80000002 0x20202020 0x49202020 0x6C65746E 0x20295228
0x80000003 0x65726F43 0x294D5428 0x2D356920 0x30303532
0x80000004 0x5043204B 0x20402055 0x30332E33 0x007A4847
0x80000005 0x00000000 0x00000000 0x00000000 0x00000000
0x80000006 0x00000000 0x00000000 0x01006040 0x00000000
0x80000007 0x00000000 0x00000000 0x00000000 0x00000100
0x80000008 0x00003024 0x00000000 0x00000000 0x00000000
MSR 0x0000001B 0x00000000 0xFEE00900
MSR 0x0000003A 0x00000000 0x00000005
MSR 0x000001A0 0x00000000 0x00850089
MSR 0x000000CE 0x00001000 0x70012100
MSR 0x00000017 0x00040000 0x00000000
MSR 0x00000035 0x00000000 0x00040004
MSR 0x000000C1 0x00000000 0x00000000
MSR 0x000000C2 0x00000000 0x00000000
MSR 0x000000C3 0x00000000 0x00000000
MSR 0x000000C4 0x00000000 0x00000000
MSR 0x00000186 0x00000000 0x00000000
MSR 0x00000187 0x00000000 0x00000000
MSR 0x000001AD 0x00000000 0x22232425
MSR 0x00000194 0x00000000 0x000F0000
MSR 0x0000019A 0x00000000 0x00000000
MSR 0x000001A4 0x00000000 0x00000000
MSR 0x000001FC 0x00000000 0x0004005F
MSR 0x00000601 0x18141494 0x000004B0
MSR 0x00000602 0x18141494 0x00000104
MSR 0x00000606 0x00000000 0x000A1003
MSR 0x00000610 0x800083B6 0x001482F8
MSR 0x00000611 0x00000000 0xDE6DDE45
MSR 0x00000639 0x00000000 0xA7E87E98
MSR 0x00000641 0x00000000 0x05183191
MSR 0x00000614 0x00000000 0x01E002F8
MSR 0x0000019C 0x00000000 0x88310000
MSR 0x000001A2 0x00000000 0x00621200
MSR 0x000001B1 0x00000000 0x88310000
MSR 0x00000198 0x0000254F 0x00002200
MSR 0x00000199 0x00000000 0x00002500
CPU Thread 1
APIC ID 2
Topology Processor ID 0, Core ID 1, Thread ID 0
Type 01020105h
Max CPUID level 0000000Dh
Max CPUID ext. level 80000008h
Cache descriptor Level 1, D, 32 KB, 2 thread(s)
Cache descriptor Level 1, I, 32 KB, 2 thread(s)
Cache descriptor Level 2, U, 256 KB, 2 thread(s)
Cache descriptor Level 3, U, 6 MB, 16 thread(s)
CPUID
0x00000000 0x0000000D 0x756E6547 0x6C65746E 0x49656E69
0x00000001 0x000206A7 0x02100800 0x1F9AE3BF 0xBFEBFBFF
0x00000002 0x76035A01 0x00F0B0FF 0x00000000 0x00CA0000
0x00000003 0x00000000 0x00000000 0x00000000 0x00000000
0x00000004 0x1C004121 0x01C0003F 0x0000003F 0x00000000
0x00000004 0x1C004122 0x01C0003F 0x0000003F 0x00000000
0x00000004 0x1C004143 0x01C0003F 0x000001FF 0x00000000
0x00000004 0x1C03C163 0x02C0003F 0x00001FFF 0x00000006
0x00000005 0x00000040 0x00000040 0x00000003 0x00001120
0x00000006 0x00000077 0x00000002 0x00000009 0x00000000
0x00000007 0x00000000 0x00000000 0x00000000 0x00000000
0x00000008 0x00000000 0x00000000 0x00000000 0x00000000
0x00000009 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000A 0x07300803 0x00000000 0x00000000 0x00000603
0x0000000B 0x00000001 0x00000001 0x00000100 0x00000002
0x0000000B 0x00000004 0x00000004 0x00000201 0x00000002
0x0000000C 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000D 0x00000007 0x00000340 0x00000340 0x00000000
0x80000000 0x80000008 0x00000000 0x00000000 0x00000000
0x80000001 0x00000000 0x00000000 0x00000001 0x28100800
0x80000002 0x20202020 0x49202020 0x6C65746E 0x20295228
0x80000003 0x65726F43 0x294D5428 0x2D356920 0x30303532
0x80000004 0x5043204B 0x20402055 0x30332E33 0x007A4847
0x80000005 0x00000000 0x00000000 0x00000000 0x00000000
0x80000006 0x00000000 0x00000000 0x01006040 0x00000000
0x80000007 0x00000000 0x00000000 0x00000000 0x00000100
0x80000008 0x00003024 0x00000000 0x00000000 0x00000000
MSR 0x0000001B 0x00000000 0xFEE00800
MSR 0x0000003A 0x00000000 0x00000005
MSR 0x000001A0 0x00000000 0x00850089
MSR 0x000000CE 0x00001000 0x70012100
MSR 0x00000017 0x00040000 0x00000000
MSR 0x00000035 0x00000000 0x00040004
MSR 0x000000C1 0x00000000 0x00000000
MSR 0x000000C2 0x00000000 0x00000000
MSR 0x000000C3 0x00000000 0x00000000
MSR 0x000000C4 0x00000000 0x00000000
MSR 0x00000186 0x00000000 0x00000000
MSR 0x00000187 0x00000000 0x00000000
MSR 0x000001AD 0x00000000 0x22232425
MSR 0x00000194 0x00000000 0x000F0000
MSR 0x0000019A 0x00000000 0x00000000
MSR 0x000001A4 0x00000000 0x00000000
MSR 0x000001FC 0x00000000 0x0004005F
MSR 0x00000601 0x18141494 0x000004B0
MSR 0x00000602 0x18141494 0x00000104
MSR 0x00000606 0x00000000 0x000A1003
MSR 0x00000610 0x800083B6 0x001482F8
MSR 0x00000611 0x00000000 0xDE6EB8E8
MSR 0x00000639 0x00000000 0xA7E92DAE
MSR 0x00000641 0x00000000 0x05183596
MSR 0x00000614 0x00000000 0x01E002F8
MSR 0x0000019C 0x00000000 0x88320000
MSR 0x000001A2 0x00000000 0x00621200
MSR 0x000001B1 0x00000000 0x882E0000
MSR 0x00000198 0x00002645 0x00002300
MSR 0x00000199 0x00000000 0x00002500
CPU Thread 2
APIC ID 4
Topology Processor ID 0, Core ID 2, Thread ID 0
Type 01020105h
Max CPUID level 0000000Dh
Max CPUID ext. level 80000008h
Cache descriptor Level 1, D, 32 KB, 2 thread(s)
Cache descriptor Level 1, I, 32 KB, 2 thread(s)
Cache descriptor Level 2, U, 256 KB, 2 thread(s)
Cache descriptor Level 3, U, 6 MB, 16 thread(s)
CPUID
0x00000000 0x0000000D 0x756E6547 0x6C65746E 0x49656E69
0x00000001 0x000206A7 0x04100800 0x1F9AE3BF 0xBFEBFBFF
0x00000002 0x76035A01 0x00F0B0FF 0x00000000 0x00CA0000
0x00000003 0x00000000 0x00000000 0x00000000 0x00000000
0x00000004 0x1C004121 0x01C0003F 0x0000003F 0x00000000
0x00000004 0x1C004122 0x01C0003F 0x0000003F 0x00000000
0x00000004 0x1C004143 0x01C0003F 0x000001FF 0x00000000
0x00000004 0x1C03C163 0x02C0003F 0x00001FFF 0x00000006
0x00000005 0x00000040 0x00000040 0x00000003 0x00001120
0x00000006 0x00000077 0x00000002 0x00000009 0x00000000
0x00000007 0x00000000 0x00000000 0x00000000 0x00000000
0x00000008 0x00000000 0x00000000 0x00000000 0x00000000
0x00000009 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000A 0x07300803 0x00000000 0x00000000 0x00000603
0x0000000B 0x00000001 0x00000001 0x00000100 0x00000004
0x0000000B 0x00000004 0x00000004 0x00000201 0x00000004
0x0000000C 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000D 0x00000007 0x00000340 0x00000340 0x00000000
0x80000000 0x80000008 0x00000000 0x00000000 0x00000000
0x80000001 0x00000000 0x00000000 0x00000001 0x28100800
0x80000002 0x20202020 0x49202020 0x6C65746E 0x20295228
0x80000003 0x65726F43 0x294D5428 0x2D356920 0x30303532
0x80000004 0x5043204B 0x20402055 0x30332E33 0x007A4847
0x80000005 0x00000000 0x00000000 0x00000000 0x00000000
0x80000006 0x00000000 0x00000000 0x01006040 0x00000000
0x80000007 0x00000000 0x00000000 0x00000000 0x00000100
0x80000008 0x00003024 0x00000000 0x00000000 0x00000000
MSR 0x0000001B 0x00000000 0xFEE00800
MSR 0x0000003A 0x00000000 0x00000005
MSR 0x000001A0 0x00000000 0x00850089
MSR 0x000000CE 0x00001000 0x70012100
MSR 0x00000017 0x00040000 0x00000000
MSR 0x00000035 0x00000000 0x00040004
MSR 0x000000C1 0x00000000 0x00000000
MSR 0x000000C2 0x00000000 0x00000000
MSR 0x000000C3 0x00000000 0x00000000
MSR 0x000000C4 0x00000000 0x00000000
MSR 0x00000186 0x00000000 0x00000000
MSR 0x00000187 0x00000000 0x00000000
MSR 0x000001AD 0x00000000 0x22232425
MSR 0x00000194 0x00000000 0x000F0000
MSR 0x0000019A 0x00000000 0x00000000
MSR 0x000001A4 0x00000000 0x00000000
MSR 0x000001FC 0x00000000 0x0004005F
MSR 0x00000601 0x18141494 0x000004B0
MSR 0x00000602 0x18141494 0x00000104
MSR 0x00000606 0x00000000 0x000A1003
MSR 0x00000610 0x800083B6 0x001482F8
MSR 0x00000611 0x00000000 0xDE6F8D88
MSR 0x00000639 0x00000000 0xA7E9D6F9
MSR 0x00000641 0x00000000 0x0518399B
MSR 0x00000614 0x00000000 0x01E002F8
MSR 0x0000019C 0x00000000 0x883A0000
MSR 0x000001A2 0x00000000 0x00621200
MSR 0x000001B1 0x00000000 0x88320000
MSR 0x00000198 0x0000261C 0x00002300
MSR 0x00000199 0x00000000 0x00002500
CPU Thread 3
APIC ID 6
Topology Processor ID 0, Core ID 3, Thread ID 0
Type 01020105h
Max CPUID level 0000000Dh
Max CPUID ext. level 80000008h
Cache descriptor Level 1, D, 32 KB, 2 thread(s)
Cache descriptor Level 1, I, 32 KB, 2 thread(s)
Cache descriptor Level 2, U, 256 KB, 2 thread(s)
Cache descriptor Level 3, U, 6 MB, 16 thread(s)
CPUID
0x00000000 0x0000000D 0x756E6547 0x6C65746E 0x49656E69
0x00000001 0x000206A7 0x06100800 0x1F9AE3BF 0xBFEBFBFF
0x00000002 0x76035A01 0x00F0B0FF 0x00000000 0x00CA0000
0x00000003 0x00000000 0x00000000 0x00000000 0x00000000
0x00000004 0x1C004121 0x01C0003F 0x0000003F 0x00000000
0x00000004 0x1C004122 0x01C0003F 0x0000003F 0x00000000
0x00000004 0x1C004143 0x01C0003F 0x000001FF 0x00000000
0x00000004 0x1C03C163 0x02C0003F 0x00001FFF 0x00000006
0x00000005 0x00000040 0x00000040 0x00000003 0x00001120
0x00000006 0x00000077 0x00000002 0x00000009 0x00000000
0x00000007 0x00000000 0x00000000 0x00000000 0x00000000
0x00000008 0x00000000 0x00000000 0x00000000 0x00000000
0x00000009 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000A 0x07300803 0x00000000 0x00000000 0x00000603
0x0000000B 0x00000001 0x00000001 0x00000100 0x00000006
0x0000000B 0x00000004 0x00000004 0x00000201 0x00000006
0x0000000C 0x00000000 0x00000000 0x00000000 0x00000000
0x0000000D 0x00000007 0x00000340 0x00000340 0x00000000
0x80000000 0x80000008 0x00000000 0x00000000 0x00000000
0x80000001 0x00000000 0x00000000 0x00000001 0x28100800
0x80000002 0x20202020 0x49202020 0x6C65746E 0x20295228
0x80000003 0x65726F43 0x294D5428 0x2D356920 0x30303532
0x80000004 0x5043204B 0x20402055 0x30332E33 0x007A4847
0x80000005 0x00000000 0x00000000 0x00000000 0x00000000
0x80000006 0x00000000 0x00000000 0x01006040 0x00000000
0x80000007 0x00000000 0x00000000 0x00000000 0x00000100
0x80000008 0x00003024 0x00000000 0x00000000 0x00000000
MSR 0x0000001B 0x00000000 0xFEE00800
MSR 0x0000003A 0x00000000 0x00000005
MSR 0x000001A0 0x00000000 0x00850089
MSR 0x000000CE 0x00001000 0x70012100
MSR 0x00000017 0x00040000 0x00000000
MSR 0x00000035 0x00000000 0x00040004
MSR 0x000000C1 0x00000000 0x00000000
MSR 0x000000C2 0x00000000 0x00000000
MSR 0x000000C3 0x00000000 0x00000000
MSR 0x000000C4 0x00000000 0x00000000
MSR 0x00000186 0x00000000 0x00000000
MSR 0x00000187 0x00000000 0x00000000
MSR 0x000001AD 0x00000000 0x22232425
MSR 0x00000194 0x00000000 0x000F0000
MSR 0x0000019A 0x00000000 0x00000000
MSR 0x000001A4 0x00000000 0x00000000
MSR 0x000001FC 0x00000000 0x0004005F
MSR 0x00000601 0x18141494 0x000004B0
MSR 0x00000602 0x18141494 0x00000104
MSR 0x00000606 0x00000000 0x000A1003
MSR 0x00000610 0x800083B6 0x001482F8
MSR 0x00000611 0x00000000 0xDE706812
MSR 0x00000639 0x00000000 0xA7EA87D0
MSR 0x00000641 0x00000000 0x05183D7D
MSR 0x00000614 0x00000000 0x01E002F8
MSR 0x0000019C 0x00000000 0x88350000
MSR 0x000001A2 0x00000000 0x00621200
MSR 0x000001B1 0x00000000 0x88310000
MSR 0x00000198 0x00002645 0x00002300
MSR 0x00000199 0x00000000 0x00002500
Storage
-------------------------------------------------------------------------
Drive 0
Device Path \\?\ide#disksamsung_hd103sj_________________________1aj10001#5&13e7d980&0&1.0.0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}
Type Fixed
Name SAMSUNG HD103SJ
Capacity 931.5 GB
SMART Support Yes
Drive 1
Device Path \\?\ide#disksamsung_hd753lj_________________________1aa01109#5&3a954a5d&0&0.1.0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b}
Type Fixed
Name SAMSUNG HD753LJ
Capacity 698.6 GB
SMART Support Yes
USB Devices
-------------------------------------------------------------------------
USB Device Generic USB Hub, class=0x09, subclass=0x00, vendor=0x8087, product=0x0024
USB Device Generischer USB-Hub, class=0x09, subclass=0x00, vendor=0x05E3, product=0x0607
USB Device Logitech Download Assistant, class=0x00, subclass=0x00, vendor=0x046D, product=0xC22B
USB Device USB-Verbundgerät, class=0x00, subclass=0x00, vendor=0x046D, product=0xC22A
USB Device Logitech Download Assistant, class=0x00, subclass=0x00, vendor=0x046D, product=0xC245
USB Device Generic USB Hub, class=0x09, subclass=0x00, vendor=0x8087, product=0x0024
Graphic APIs
-------------------------------------------------------------------------
API NVIDIA I/O
API NVIDIA NVAPI
API Intel I/O
Display Adapters
-------------------------------------------------------------------------
Display adapter 0
Display name \\.\DISPLAY5
Name Intel(R) HD Graphics 3000
Board Manufacturer ASRock Inc.
Codename Sandy Bridge
Technology 32 nm
PCI device bus 0 (0x0), device 2 (0x2), function 0 (0x0)
Vendor ID 0x8086 (0x1849)
Model ID 0x0112 (0x0112)
Performance Level 0
Core clock 848.0 MHz
Display adapter 1
Name NVIDIA GeForce GTX 960
Board Manufacturer GIGABYTE Technology
Revision A1
Memory size 4 GB
Memory type GDDR5
PCI device bus 1 (0x1), device 0 (0x0), function 0 (0x0)
Vendor ID 0x10DE (0x1458)
Model ID 0x1401 (0x36D2)
Performance Level 2D Desktop
Core clock 405.0 MHz
Memory clock 405.0 MHz
Performance Level Default
Core clock 405.0 MHz
Memory clock 810.0 MHz
Performance Level 3D Applications
Core clock 540.0 MHz
Memory clock 3004.0 MHz
Performance Level 3D Applications
Core clock 540.0 MHz
Memory clock 3505.0 MHz
Monitor 0
Model BenQ GL2450 ()
ID BNQ78A5
Serial 9AF02887019
Manufacturing Date Week 41, Year 2015
Size 24.0 inches
Max Resolution 1920 x 1080 @ 60 Hz
Horizontal Freq. Range 30-83 kHz
Vertical Freq. Range 50-76 Hz
Max Pixel Clock 170 MHz
Gamma Factor 2.2
ACPI
-------------------------------------------------------------------------
ACPI Tree
_GPE
_L07
_L1B
_L1D
_L08
_L0B
_L0D
_L09
_L06
_PR_
SSDT
CSDT
NCST
NPSS
HNDL
CHDL
TNLP
CINT
PDCV
APSS
PTCI
TSSI
TSSM
C1ST
CMST
CIST
CST_
PDC_
OSC_
P000
_PDC
_OSC
_PCT
_PSS
_PPC
_PSD
_TPC
_PTC
_TSS
_CST
P001
_PDC
_OSC
_PCT
_PSS
_PPC
_PSD
_TPC
_PTC
_TSS
_CST
P002
_PDC
_OSC
_PCT
_PSS
_PPC
_PSD
_TPC
_PTC
_TSS
_CST
P003
_PDC
_OSC
_PCT
_PSS
_PPC
_PSD
_TPC
_PTC
_TSS
_CST
_SB_
PR00
AR00
PR20
AR20
PR11
AR11
PR12
AR12
PR13
AR13
PR15
AR15
PR16
AR16
PR17
AR17
PR18
AR18
PR01
AR01
PR02
AR02
PR03
AR03
PR04
AR04
PR21
AR21
PRSA
PRSB
PRSC
PRSD
PRSE
PRSF
PRSG
PRSH
PCI0
_HID
_CID
_ADR
_BBN
_UID
_PRT
_S3D
MCH_
_HID
_UID
MCHR
_CRS
NBNV
[ ]
NBSG
[ ]
PEXB
PEXL
MCHB
MCHL
VTDB
VTLN
NPTS
NWAK
CPRB
STAV
BRB_
BRL_
IOB_
IOL_
MBB_
MBL_
MABL
MABH
MALL
MALH
MAML
MAMH
CRS1
CRS2
_STA
_CRS
_OSC
SBRG
_ADR
SPTS
SWAK
APMP
[ ]
APMC
APMS
[ ]
[ ]
[ ]
BRTC
SMIE
[ ]
[ ]
PS1E
[ ]
PS1S
[ ]
SIO1
_HID
_UID
CRS_
_CRS
DCAT
MUT0
ENFG
EXFG
LPTM
UHID
IOID
[ ]
INDX
DATA
[ ]
[ ]
LDN_
[ ]
SCF1
SCF2
SCF3
SCF4
SCF5
SCF6
SCF7
[ ]
CKCF
[ ]
ACTR
[ ]
IOAH
IOAL
IOH2
IOL2
[ ]
INTR
[ ]
DMCH
[ ]
RGE0
RGE1
RGE2
RGE3
RGE4
RGE5
RGE6
RGE7
RGE8
[ ]
OPT0
OPT1
OPT2
OPT3
OPT4
OPT5
OPT6
OPT7
CGLD
DSTA
DCNT
CRS1
IRQM
DMAM
IO11
IO12
LEN1
CRS2
IRQE
DMAE
IO21
IO22
LEN2
IO31
IO32
LEN3
CRS4
IRQL
IOHL
IORL
ALMN
LENG
DCRS
DSRS
DSR2
SIOK
SLED
PMFG
SIOS
SIOW
UAR2
_UID
_HID
_STA
_DIS
_CRS
_SRS
_PRS
WIN2
[ ]
IND1
DAT1
[ ]
[ ]
LDN1
[ ]
MFP1
[ ]
MFP2
[ ]
GLO1
GLO2
[ ]
MFP3
[ ]
ACT1
[ ]
IOH1
IOL1
[ ]
INT1
[ ]
VBAT
ENF1
EXF1
CIR_
_HID
_STA
_DIS
_CRS
_SRS
IRST
NCAP
NRXL
NTXP
NLED
_PSW
_PRW
PIC_
_HID
_CRS
DMAD
_HID
_CRS
TMR_
_HID
_CRS
RTC0
_HID
_CRS
SPKR
_HID
_CRS
RMSC
_HID
_UID
CRS_
_CRS
COPR
_HID
_CRS
PS2K
_HID
_CID
_STA
_CRS
_PRS
_PSW
_PRW
PS2M
_HID
_CID
_STA
CRS1
CRS2
_CRS
_PRS
_PSW
_PRW
UAR1
_UID
_HID
_STA
_DIS
_CRS
_SRS
_PRS
_PRW
PIX0
SIOH
TPM_
_HID
_STR
_UID
_CRS
TMMB
[ ]
ACCS
[ ]
TSTA
TBCA
[ ]
TVID
TDID
_STA
TSMI
[ ]
INQ_
DAT_
_DSM
PCH_
_HID
_UID
_STA
ICHR
_CRS
CWDT
_HID
_CID
BUF0
_STA
_CRS
BR20
_ADR
_PRW
_PRT
SAT0
_ADR
REGF
_REG
TIM0
TMD0
PIO0
DMA0
PIO1
DMA1
CHNF
CFG2
[ ]
PMPT
PSPT
PMRI
[ ]
SMPT
SSPT
SMRI
[ ]
PSRI
SSRI
[ ]
PM3E
PS3E
SM3E
SS3E
[ ]
PMUT
[ ]
PSUT
[ ]
SMUT
[ ]
SSUT
[ ]
[ ]
PM6E
PS6E
SM6E
SS6E
PMCR
PSCR
SMCR
SSCR
[ ]
PMAE
PSAE
SMAE
SSAE
GMPT
GMUE
GMUT
GMCR
GSPT
GSUE
GSUT
GSCR
CHN0
_ADR
_GTM
_STM
DRV0
_ADR
_GTF
DRV1
_ADR
_GTF
CHN1
_ADR
_GTM
_STM
DRV0
_ADR
_GTF
DRV1
_ADR
_GTF
GTM_
STM_
AT01
AT02
AT03
AT04
ATA0
ATA1
ATA2
ATA3
ATAB
CMDC
GTFB
GTF_
RATA
NATA
SAT1
_ADR
REGF
_REG
TIM0
TMD0
PIO0
DMA0
PIO1
DMA1
CHNF
CFG2
[ ]
PMPT
PSPT
PMRI
[ ]
SMPT
SSPT
SMRI
[ ]
PSRI
SSRI
[ ]
PM3E
PS3E
SM3E
SS3E
[ ]
PMUT
[ ]
PSUT
[ ]
SMUT
[ ]
SSUT
[ ]
[ ]
PM6E
PS6E
SM6E
SS6E
PMCR
PSCR
SMCR
SSCR
[ ]
PMAE
PSAE
SMAE
SSAE
GMPT
GMUE
GMUT
GMCR
GSPT
GSUE
GSUT
GSCR
CHN0
_ADR
_GTM
_STM
DRV0
_ADR
_GTF
DRV1
_ADR
_GTF
CHN1
_ADR
_GTM
_STM
DRV0
_ADR
_GTF
DRV1
_ADR
_GTF
GTM_
STM_
AT01
AT02
AT03
AT04
ATA0
ATA1
ATA2
ATA3
ATAB
CMDC
GTFB
GTF_
RATA
SMB_
_ADR
SMIO
[ ]
HSTS
HCNT
HCMD
TSAD
HDT0
HDT1
HBDT
RSAD
RSDA
AUST
AUCT
SMLP
SMBP
SSTS
SCMD
NDAD
NDLB
NDHB
SMCS
EUSB
_ADR
_S4D
_S3D
_S2D
_S1D
HUBN
_ADR
PR10
_ADR
_UPC
_PLD
PR30
_ADR
_UPC
_PLD
PR31
_ADR
_UPC
_PLD
PR32
_ADR
_UPC
_PLD
PR33
_ADR
_UPC
_PLD
PR34
_ADR
_UPC
_PLD
PR35
_ADR
_UPC
_PLD
PR36
_ADR
_UPC
_PLD
PR37
_ADR
_UPC
_PLD
_PRW
USBE
_ADR
_S4D
_S3D
_S2D
_S1D
HUBN
_ADR
PR10
_ADR
_UPC
_PLD
PR30
_ADR
_UPC
_PLD
PR31
_ADR
_UPC
_PLD
PR32
_ADR
_UPC
_PLD
PR33
_ADR
_UPC
_PLD
PR34
_ADR
_UPC
_PLD
PR35
_ADR
_UPC
_PLD
_PRW
PEX0
_ADR
PXRC
[ ]
[ ]
[ ]
PMS_
PMP_
[ ]
[ ]
HPE_
PCE_
[ ]
HPS_
PCS_
CSS_
SPRT
WPRT
_PRW
_PRT
PEX1
_ADR
PXRC
[ ]
[ ]
[ ]
PMS_
PMP_
[ ]
[ ]
HPE_
PCE_
[ ]
HPS_
PCS_
CSS_
SPRT
WPRT
_PRW
_PRT
PEX2
_ADR
PXRC
[ ]
[ ]
[ ]
PMS_
PMP_
[ ]
[ ]
HPE_
PCE_
[ ]
HPS_
PCS_
CSS_
SPRT
WPRT
_PRW
_PRT
PEX3
_ADR
PXRC
[ ]
[ ]
[ ]
PMS_
PMP_
[ ]
[ ]
HPE_
PCE_
[ ]
HPS_
PCS_
CSS_
SPRT
WPRT
_PRW
PEX4
_ADR
PXRC
[ ]
[ ]
[ ]
PMS_
PMP_
[ ]
[ ]
HPE_
PCE_
[ ]
HPS_
PCS_
CSS_
SPRT
WPRT
_PRW
_PRT
PE2P
_ADR
_PRW
_PRT
PEX5
_ADR
PXRC
[ ]
[ ]
[ ]
PMS_
PMP_
[ ]
[ ]
HPE_
PCE_
[ ]
HPS_
PCS_
CSS_
SPRT
WPRT
_PRW
_PRT
PEX6
_ADR
PXRC
[ ]
[ ]
[ ]
PMS_
PMP_
[ ]
[ ]
HPE_
PCE_
[ ]
HPS_
PCS_
CSS_
SPRT
WPRT
_PRW
_PRT
PEX7
_ADR
PXRC
[ ]
[ ]
[ ]
PMS_
PMP_
[ ]
[ ]
HPE_
PCE_
[ ]
HPS_
PCS_
CSS_
SPRT
WPRT
_PRW
_PRT
P0P1
_ADR
_PRW
_PRT
P0P2
_ADR
_PRW
_PRT
P0P3
_ADR
_PRW
_PRT
P0P4
_ADR
_PRW
_PRT
HPET
_HID
CRS_
HCNT
[ ]
HPTS
[ ]
HPTE
_STA
_CRS
_INI
GFX0
_ADR
OPBS
OPBA
IGDP
[ ]
[ ]
[ ]
GIVD
[ ]
GUMA
[ ]
[ ]
GMFN
[ ]
[ ]
CDCT
[ ]
[ ]
GSSE
GSSB
GSES
[ ]
ASLS
M512
M1GB
IGDM
[ ]
SIGN
SIZE
OVER
SVER
VVER
GVER
MBOX
[ ]
KSV0
KSV1
[ ]
IBTT
IPSC
IPAT
IBIA
IBLC
ITVF
ITVM
IDVM
IDVS
ISSC
[ ]
DRDY
CSTS
CEVT
[ ]
DIDL
DDL2
DDL3
DDL4
DDL5
DDL6
DDL7
DDL8
CPDL
CPL2
CPL3
CPL4
CPL5
CPL6
CPL7
CPL8
CADL
CAL2
CAL3
CAL4
CAL5
CAL6
CAL7
CAL8
NADL
NDL2
NDL3
NDL4
NDL5
NDL6
NDL7
NDL8
ASLP
TIDX
CHPD
CLID
CDCK
SXSW
EVTS
CNOT
NRDY
[ ]
SCIE
GEFC
GXFC
GESF
[ ]
PARM
DSLP
[ ]
ARDY
ASLC
TCHE
ALSI
BCLP
PFIT
CBLV
BCLM
CPFM
EPFM
[ ]
GVD1
TCOI
[ ]
[ ]
[ ]
SCIS
[ ]
DBTB
GSCI
GBDA
SBCB
OPTS
OWAK
MCHP
[ ]
[ ]
TASM
[ ]
ITPD
[ ]
[ ]
TPDI
TVID
[ ]
VIDT
ITPM
_HID
_CID
_STR
_CRS
TSMI
[ ]
INQ_
DAT_
TPMR
[ ]
ACC0
_STA
_DSM
BN00
SLPS
PMS0
[ ]
[ ]
RTCS
[ ]
PEXS
WAKS
[ ]
PWBT
[ ]
SLPB
_HID
_STA
_PRW
PWRB
_HID
_UID
_STA
_PRW
BUFA
IRA0
LNKA
_HID
_UID
_STA
_PRS
_DIS
_CRS
_SRS
LNKB
_HID
_UID
_STA
_PRS
_DIS
_CRS
_SRS
LNKC
_HID
_UID
_STA
_PRS
_DIS
_CRS
_SRS
LNKD
_HID
_UID
_STA
_PRS
_DIS
_CRS
_SRS
LNKE
_HID
_UID
_STA
_PRS
_DIS
_CRS
_SRS
LNKF
_HID
_UID
_STA
_PRS
_DIS
_CRS
_SRS
LNKG
_HID
_UID
_STA
_PRS
_DIS
_CRS
_SRS
LNKH
_HID
_UID
_STA
_PRS
_DIS
_CRS
_SRS
RMEM
_HID
_UID
LUCD
_SI_
_TZ_
_REV
_OS_
_OSI
_GL_
SP1O
IO1B
IO1L
IOCB
IOCL
IOWB
IOWL
IOES
SL2P
TCBR
TCLT
SRCB
SRCL
SUSW
PMBS
PMLN
SMIP
APCB
APCL
PM30
SMBS
SMBL
HPTB
HPTC
GPBS
GPLN
PEBS
PELN
LAPB
VTDS
VTDL
ACPH
ASSB
AOTB
AAXB
PEHP
SHPC
PEPM
PEER
PECS
ITKE
DSSP
FHPP
TOBS
SUCC
NVLD
CRIT
NCRT
LDST
SMIT
OFST
TPMF
TMF1
TMF2
TMF3
PICM
_PIC
OSVR
OSFL
MCTH
PRWP
GPRW
WAKP
DEB0
[ ]
DBG8
DEB1
[ ]
DBG9
SS1_
SS2_
SS3_
SS4_
IOST
TOPM
ROMS
CRFG
KBFG
MSFG
FZTF
[ ]
PIRA
PIRB
PIRC
PIRD
[ ]
PIRE
PIRF
PIRG
PIRH
PSTE
TSTE
RRIO
RDMA
WOTB
WSSB
WAXB
_PTS
_WAK
OMSC
_HID
_UID
LEDM
[ ]
BILD
[ ]
RPR0
[ ]
GPR2
[ ]
[ ]
[ ]
GL15
[ ]
[ ]
[ ]
GB15
[ ]
LEDS
LEDW
_S0_
_S1_
_S3_
_S4_
_S5_
PTS_
WAK_
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-06-2016 02 durchgeführt von rush_ (Administrator) auf DESKTOP-K0PFM97 (06-06-2016 12:38:40) Gestartet von C:\Users\rush_\Desktop Geladene Profile: rush_ & (Verfügbare Profile: rush_) Platform: Windows 10 Pro Version 1511 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (TeamViewer GmbH) F:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Valve Corporation) F:\Program Files (x86)\Steam\Steam.exe (Spotify Ltd) C:\Users\rush_\AppData\Roaming\Spotify\SpotifyWebHelper.exe (Spotify Ltd) C:\Users\rush_\AppData\Roaming\Spotify\Spotify.exe (Electronic Arts) F:\Program Files (x86)\Origin\Origin.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe (Microsoft Corporation) C:\Windows\System32\StikyNot.exe (Wargaming.net) F:\Games\World_of_Tanks\WargamingGameUpdater.exe (File-New-Project) F:\Program Files (x86)\Ear Trumpet\EarTrumpet.exe (Creative Technology Ltd) C:\Windows\syswow64\Ctxfihlp.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe (Disc Soft Ltd) F:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (Valve Corporation) F:\Program Files (x86)\Steam\bin\steamwebhelper.exe (Spotify Ltd) C:\Users\rush_\AppData\Roaming\Spotify\SpotifyCrashService.exe (Creative Technology Ltd) C:\Windows\syswow64\CTxfispi.exe (Spotify Ltd) C:\Users\rush_\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd) C:\Users\rush_\AppData\Roaming\Spotify\Spotify.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (TeamSpeak Systems GmbH) F:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (techPowerUp (www.techpowerup.com)) F:\Program Files (x86)\GPU-Z\GPU-Z.exe (CPUID) F:\Program Files\CPUID\CPU-Z\cpuz.exe (CPUID) F:\Program Files\CPUID\HWMonitor\HWMonitor.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Malwarebytes) F:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Mozilla Corporation) F:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-05-02] (NVIDIA Corporation) HKLM-x32\...\Run: [CTxfiHlp] => CTXFIHLP.EXE HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [67840 2016-05-19] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [814608 2016-04-04] (Avira Operations GmbH & Co. KG) Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [CtxfiReg] => CTXFIREG.exe /FAIL1 HKU\S-1-5-21-2987826118-164082447-866195739-1001\...\Run: [Steam] => F:\Program Files (x86)\Steam\steam.exe [3077712 2016-04-30] (Valve Corporation) HKU\S-1-5-21-2987826118-164082447-866195739-1001\...\Run: [Spotify Web Helper] => C:\Users\rush_\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1554032 2016-05-30] (Spotify Ltd) HKU\S-1-5-21-2987826118-164082447-866195739-1001\...\Run: [Spotify] => C:\Users\rush_\AppData\Roaming\Spotify\Spotify.exe [6859888 2016-05-30] (Spotify Ltd) HKU\S-1-5-21-2987826118-164082447-866195739-1001\...\Run: [EADM] => F:\Program Files (x86)\Origin\Origin.exe [3639280 2016-06-01] (Electronic Arts) HKU\S-1-5-21-2987826118-164082447-866195739-1001\...\Run: [DAEMON Tools Lite Automount] => F:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-05-30] (Disc Soft Ltd) HKU\S-1-5-21-2987826118-164082447-866195739-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [465920 2016-02-13] (Microsoft Corporation) HKU\S-1-5-21-2987826118-164082447-866195739-1001\...\Run: [World of Tanks] => F:\Games\World_of_Tanks\WargamingGameUpdater.exe [3095816 2016-05-11] (Wargaming.net) HKU\S-1-5-21-2987826118-164082447-866195739-1001\...\MountPoints2: {fbeb8b52-272d-11e6-94f4-002522de4660} - "J:\setup.exe" HKU\S-1-5-21-2987826118-164082447-866195739-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Steam] => F:\Program Files (x86)\Steam\steam.exe [3077712 2016-04-30] (Valve Corporation) HKU\S-1-5-21-2987826118-164082447-866195739-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spotify Web Helper] => C:\Users\rush_\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1554032 2016-05-30] (Spotify Ltd) HKU\S-1-5-21-2987826118-164082447-866195739-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spotify] => C:\Users\rush_\AppData\Roaming\Spotify\Spotify.exe [6859888 2016-05-30] (Spotify Ltd) HKU\S-1-5-21-2987826118-164082447-866195739-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [EADM] => F:\Program Files (x86)\Origin\Origin.exe [3639280 2016-06-01] (Electronic Arts) HKU\S-1-5-21-2987826118-164082447-866195739-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [DAEMON Tools Lite Automount] => F:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-05-30] (Disc Soft Ltd) HKU\S-1-5-21-2987826118-164082447-866195739-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [465920 2016-02-13] (Microsoft Corporation) HKU\S-1-5-21-2987826118-164082447-866195739-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [World of Tanks] => F:\Games\World_of_Tanks\WargamingGameUpdater.exe [3095816 2016-05-11] (Wargaming.net) HKU\S-1-5-21-2987826118-164082447-866195739-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {fbeb8b52-272d-11e6-94f4-002522de4660} - "J:\setup.exe" HKU\S-1-5-18\...\Run: [CtxfiReg] => CTXFIREG.exe /FAIL1 Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Ear Trumpet.lnk [2016-06-02] ShortcutTarget: Ear Trumpet.lnk -> F:\Program Files (x86)\Ear Trumpet\EarTrumpet.exe (File-New-Project) CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 Tcpip\..\Interfaces\{5b5c8b28-4574-403f-b272-ba9ff7d52246}: [DhcpNameServer] 192.168.2.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-9c6f31ca HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-9c6f31ca HKU\S-1-5-21-2987826118-164082447-866195739-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-9c6f31ca HKU\S-1-5-21-2987826118-164082447-866195739-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-9c6f31ca SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {d4fee3d1-1014-4db8-a824-573bf9ab51c7} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-9c6f31ca&q={searchTerms} SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2987826118-164082447-866195739-1001 -> DefaultScope {d4fee3d1-1014-4db8-a824-573bf9ab51c7} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-9c6f31ca&q={searchTerms} SearchScopes: HKU\S-1-5-21-2987826118-164082447-866195739-1001 -> {d4fee3d1-1014-4db8-a824-573bf9ab51c7} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-9c6f31ca&q={searchTerms} SearchScopes: HKU\S-1-5-21-2987826118-164082447-866195739-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {d4fee3d1-1014-4db8-a824-573bf9ab51c7} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-9c6f31ca&q={searchTerms} SearchScopes: HKU\S-1-5-21-2987826118-164082447-866195739-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {d4fee3d1-1014-4db8-a824-573bf9ab51c7} URL = hxxp://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-9c6f31ca&q={searchTerms} BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> F:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-02] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-02] (Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-02] (Microsoft Corporation) DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://files.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - F:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-02] (Microsoft Corporation) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF Plugin: @microsoft.com/SharePoint,version=14.0 -> F:\Program Files\Microsoft Office\Office15\NPSPWRAP.DLL [2012-10-02] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-02] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-05-20] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-05-20] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> f:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.) Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxp://www.google.de/" CHR Profile: C:\Users\rush_\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Präsentationen) - C:\Users\rush_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-30] CHR Extension: (Google Docs) - C:\Users\rush_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-30] CHR Extension: (Google Drive) - C:\Users\rush_\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-30] CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\rush_\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2016-06-01] CHR Extension: (MEGA) - C:\Users\rush_\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2016-05-30] CHR Extension: (YouTube) - C:\Users\rush_\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-30] CHR Extension: (Adblock Plus) - C:\Users\rush_\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-06-01] CHR Extension: (Tampermonkey) - C:\Users\rush_\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2016-05-30] CHR Extension: (Google Tabellen) - C:\Users\rush_\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-30] CHR Extension: (Avira Browserschutz) - C:\Users\rush_\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-06-03] CHR Extension: (Google Docs Offline) - C:\Users\rush_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-30] CHR Extension: (MagicScroll eBook Reader) - C:\Users\rush_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgnmgfdoiplfmhgghbmlphanpfmjble [2016-04-30] CHR Extension: (AdBlock) - C:\Users\rush_\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-06-01] CHR Extension: (Mibbit webchat) - C:\Users\rush_\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbadbkkklnhamjjeagmknajgmbgcmnpi [2016-04-30] CHR Extension: (Disconnect) - C:\Users\rush_\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [2016-04-30] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\rush_\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-30] CHR Extension: (Google Mail) - C:\Users\rush_\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-30] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [970656 2016-04-04] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [467016 2016-04-04] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [467016 2016-04-04] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1435704 2016-04-04] (Avira Operations GmbH & Co. KG) R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [285176 2016-05-19] (Avira Operations GmbH & Co. KG) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1863688 2016-05-31] () S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2016-06-01] (Creative Labs) [Datei ist nicht signiert] R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [Datei ist nicht signiert] R3 Disc Soft Lite Bus Service; f:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-05-30] (Disc Soft Ltd) S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [240416 2016-06-04] (EasyAntiCheat Ltd) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1165368 2016-05-02] (NVIDIA Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-05-02] (NVIDIA Corporation) S3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-05-02] (NVIDIA Corporation) S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-05-02] (NVIDIA Corporation) S3 Origin Client Service; F:\Program Files (x86)\Origin\OriginClientService.exe [2120712 2016-06-01] (Electronic Arts) R2 TeamViewer; f:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer GmbH) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation) S2 MBAMScheduler; "\mbamscheduler.exe" [X] S2 MBAMService; "\mbamservice.exe" [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [128664 2016-04-04] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [146712 2016-04-04] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2016-04-04] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [78208 2016-04-04] (Avira Operations GmbH & Co. KG) R3 cpuz138; C:\Users\rush_\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [27320 2016-06-06] (CPUID) R3 cpuz139; C:\Users\rush_\AppData\Local\Temp\cpuz139\cpuz139_x64.sys [43328 2016-06-06] (CPUID) S3 dc1-controller; C:\Windows\System32\drivers\dc1-controller.sys [57344 2015-10-30] (Microsoft Corp.) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-05-11] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-05-11] (Disc Soft Ltd) R3 GPU-Z; C:\Users\rush_\AppData\Local\Temp\GPU-Z.sys [27008 2016-06-06] () R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-06-06] (Malwarebytes) S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation) R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [202032 2016-01-19] (Intel Corporation) S3 nuviocir; C:\Windows\system32\DRIVERS\nuviocir_x64.sys [40464 2015-05-07] (Nuvoton Technology Corp.) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-05-02] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek ) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation) R3 XSplit_Dummy; C:\Windows\system32\drivers\xspltspk.sys [26200 2015-05-25] (SplitmediaLabs Limited) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-06-06 12:38 - 2016-06-06 12:39 - 00022377 _____ C:\Users\rush_\Desktop\FRST.txt 2016-06-06 12:38 - 2016-06-06 12:38 - 02384896 _____ (Farbar) C:\Users\rush_\Desktop\FRST64.exe 2016-06-06 12:38 - 2016-06-06 12:38 - 00000000 ____D C:\FRST 2016-06-06 12:26 - 2016-06-06 12:26 - 00000846 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk 2016-06-06 12:23 - 2016-06-06 12:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2016-06-06 12:23 - 2016-06-06 12:23 - 00000803 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk 2016-06-06 01:32 - 2016-06-06 01:32 - 00000076 _____ C:\Users\rush_\Desktop\Master Overwatch — Vaux#2406 on PC (EU) — Profile Overview.url 2016-06-05 23:53 - 2016-06-05 23:53 - 00000141 _____ C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc 2016-06-05 23:53 - 2016-06-05 23:53 - 00000000 ____D C:\Users\rush_\AppData\Roaming\Fatshark 2016-06-04 16:23 - 2016-06-04 16:23 - 00000000 ____D C:\Users\rush_\AppData\Local\id Software 2016-06-04 14:44 - 2016-06-04 14:17 - 00240416 _____ (EasyAntiCheat Ltd) C:\WINDOWS\SysWOW64\EasyAntiCheat.exe 2016-06-04 14:08 - 2016-06-04 14:08 - 00000000 ____D C:\Users\rush_\AppData\Roaming\10tons 2016-06-04 13:01 - 2016-06-04 13:01 - 00000000 ____D C:\Users\rush_\AppData\LocalLow\Facepunch Studios 2016-06-03 18:31 - 2016-06-03 18:31 - 00000000 ____D C:\Users\rush_\AppData\Roaming\Avira 2016-06-03 18:30 - 2016-06-06 12:30 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2016-06-03 18:29 - 2016-06-03 18:29 - 00000861 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2016-06-03 18:29 - 2016-06-03 18:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2016-06-03 18:29 - 2016-06-03 18:29 - 00000000 ____D C:\ProgramData\Malwarebytes 2016-06-03 18:29 - 2016-04-04 17:07 - 00146712 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys 2016-06-03 18:29 - 2016-04-04 17:07 - 00128664 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys 2016-06-03 18:29 - 2016-04-04 17:07 - 00078208 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys 2016-06-03 18:29 - 2016-04-04 17:07 - 00035488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys 2016-06-03 18:29 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys 2016-06-03 18:29 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2016-06-03 18:29 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2016-06-03 18:27 - 2016-06-03 18:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2016-06-03 18:27 - 2016-06-03 18:29 - 00000000 ____D C:\ProgramData\Avira 2016-06-03 18:27 - 2016-06-03 18:29 - 00000000 ____D C:\Program Files (x86)\Avira 2016-06-03 14:51 - 2016-06-03 14:51 - 00000000 ____D C:\Users\rush_\AppData\Local\UnrealEngine 2016-06-03 14:51 - 2016-06-03 14:51 - 00000000 ____D C:\Users\rush_\AppData\Local\DreadGame 2016-06-03 11:59 - 2016-06-03 11:59 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2016-06-03 11:59 - 2016-06-03 11:59 - 00000000 ____D C:\Program Files\Reference Assemblies 2016-06-03 11:59 - 2016-06-03 11:59 - 00000000 ____D C:\Program Files\MSBuild 2016-06-03 11:59 - 2016-06-03 11:59 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies 2016-06-03 11:59 - 2016-06-03 11:59 - 00000000 ____D C:\Program Files (x86)\MSBuild 2016-06-03 11:56 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll 2016-06-03 11:56 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2016-06-03 11:56 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2016-06-03 11:56 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll 2016-06-03 11:56 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe 2016-06-03 11:56 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll 2016-06-03 11:55 - 2016-06-03 11:55 - 00001069 _____ C:\Users\rush_\Desktop\Play Dreadnought.lnk 2016-06-03 11:55 - 2016-06-03 11:55 - 00000000 ____D C:\Users\rush_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dreadnought 2016-06-02 17:42 - 2016-06-02 17:42 - 00000862 _____ C:\Users\Public\Desktop\WoT OMC ModPack entfernen.lnk 2016-06-02 17:42 - 2016-06-02 17:42 - 00000000 ____D C:\Users\rush_\AppData\Roaming\Microsoft\Windows\Start Menu\OMC ModPack 2016-06-02 17:29 - 2016-06-02 17:42 - 00000876 _____ C:\Users\Public\Desktop\OMC ModPack Aktualisierung- Rekonfiguration.lnk 2016-06-02 17:29 - 2016-06-02 17:29 - 00000000 ____D C:\Users\rush_\AppData\Roaming\Microsoft\Windows\Start Menu\OMC ModPack Client 2016-06-02 17:27 - 2016-06-02 17:28 - 02887424 _____ (Odem Mortis ) C:\Users\rush_\Desktop\OMC_ModPack_Installer.exe 2016-06-02 12:27 - 2016-06-02 12:45 - 00000000 ____D C:\Users\rush_\Documents\DayZ 2016-06-02 12:27 - 2016-06-02 12:32 - 00000000 ____D C:\Users\rush_\AppData\Local\DayZ 2016-06-02 11:04 - 2016-06-02 11:04 - 00000000 ____D C:\Users\rush_\AppData\Local\DunDefLauncher 2016-06-02 10:12 - 2016-06-02 10:12 - 00000000 ____D C:\Users\rush_\AppData\Local\SplitmediaLabs 2016-06-02 10:03 - 2016-06-02 10:03 - 00001019 _____ C:\Users\Public\Desktop\XSplit Gamecaster.lnk 2016-06-02 10:03 - 2016-06-02 10:03 - 00000000 ____D C:\ProgramData\SplitMediaLabs 2016-06-02 10:03 - 2016-06-02 10:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSplit 2016-06-02 10:02 - 2016-06-02 10:02 - 00000000 ____D C:\Users\rush_\AppData\Roaming\SplitmediaLabs 2016-06-02 09:36 - 2016-06-02 09:36 - 00000801 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Ear Trumpet.lnk 2016-06-01 22:05 - 2016-06-01 22:05 - 00000000 ____D C:\Users\rush_\AppData\Roaming\Wargaming.net 2016-06-01 22:03 - 2016-06-06 02:33 - 00000000 ____D C:\Users\rush_\AppData\Roaming\WhatsApp 2016-06-01 22:03 - 2016-06-01 22:03 - 00002234 _____ C:\Users\rush_\Desktop\WhatsApp.lnk 2016-06-01 22:03 - 2016-06-01 22:03 - 00000000 ____D C:\Users\rush_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp 2016-06-01 22:03 - 2016-06-01 22:03 - 00000000 ____D C:\Users\rush_\AppData\Local\WhatsApp 2016-06-01 22:03 - 2016-06-01 22:03 - 00000000 ____D C:\Users\rush_\AppData\Local\SquirrelTemp 2016-06-01 21:40 - 2016-06-01 21:40 - 00001258 _____ C:\Users\rush_\Desktop\reenshotsf12.lnk 2016-06-01 21:22 - 2016-06-01 21:22 - 00000000 ____D C:\ProgramData\Steam 2016-06-01 21:22 - 2016-06-01 21:22 - 00000000 ____D C:\ProgramData\Codemasters 2016-06-01 20:48 - 2016-06-01 21:11 - 00000000 ____D C:\Users\rush_\Documents\Overwatch 2016-06-01 20:46 - 2016-06-01 20:46 - 00000739 _____ C:\Users\rush_\Desktop\World of Tanks.lnk 2016-06-01 20:46 - 2016-06-01 20:46 - 00000000 ____D C:\Users\rush_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks 2016-06-01 19:27 - 2016-06-04 15:47 - 00000000 ____D C:\Users\rush_\AppData\Local\Arma 3 2016-06-01 19:27 - 2016-06-03 10:12 - 00000000 ____D C:\Users\rush_\Documents\Arma 3 2016-06-01 19:27 - 2016-06-01 19:27 - 00000000 ____D C:\ProgramData\Bohemia Interactive 2016-06-01 19:26 - 2016-06-01 20:43 - 00000000 ____D C:\Users\rush_\AppData\Local\Arma 3 Launcher 2016-06-01 19:26 - 2016-06-01 19:26 - 00000000 ____D C:\Users\rush_\AppData\Local\Bohemia_Interactive 2016-06-01 19:15 - 2016-06-06 12:18 - 00000744 _____ C:\Users\rush_\Desktop\TechPowerUp GPU-Z.lnk 2016-06-01 19:15 - 2016-06-02 11:04 - 00000000 ____D C:\Users\rush_\AppData\Roaming\NVIDIA 2016-06-01 19:15 - 2016-06-01 19:15 - 00000000 ____D C:\Users\rush_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z 2016-06-01 19:14 - 2016-06-01 19:14 - 01788712 _____ (techPowerUp (www.techpowerup.com)) C:\Users\rush_\Downloads\GPU-Z.0.8.8.exe 2016-06-01 18:33 - 2016-06-01 18:37 - 00000000 ____D C:\Users\rush_\AppData\LocalLow\Daybreak Game Company 2016-06-01 18:33 - 2016-06-01 18:33 - 00000000 ____D C:\Users\rush_\AppData\Local\SCE 2016-06-01 18:33 - 2016-06-01 18:33 - 00000000 ____D C:\Users\rush_\AppData\Local\Daybreak Game Company 2016-06-01 18:29 - 2016-06-05 17:11 - 00000000 ____D C:\Users\rush_\AppData\Local\CrashDumps 2016-06-01 18:14 - 2016-06-02 10:42 - 00000000 ____D C:\Users\rush_\AppData\Local\NVIDIA Corporation 2016-06-01 18:14 - 2016-06-01 18:14 - 00000000 ____D C:\Users\rush_\AppData\Local\NVIDIA 2016-06-01 18:14 - 2016-05-02 07:39 - 01377800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll 2016-06-01 18:14 - 2016-05-02 07:39 - 01316184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll 2016-06-01 18:14 - 2016-05-02 07:38 - 01767944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll 2016-06-01 18:14 - 2016-05-02 07:38 - 01756608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll 2016-06-01 18:14 - 2016-05-02 07:38 - 00112032 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll 2016-06-01 18:13 - 2016-06-01 18:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2016-06-01 18:13 - 2016-06-01 18:13 - 00000000 ____D C:\Program Files (x86)\VulkanRT 2016-06-01 18:13 - 2016-05-20 03:57 - 00113208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe 2016-06-01 18:13 - 2016-05-04 04:23 - 00129824 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll 2016-06-01 18:13 - 2016-05-04 04:22 - 00130848 _____ C:\WINDOWS\system32\vulkan-1.dll 2016-06-01 18:13 - 2016-05-04 04:22 - 00045344 _____ C:\WINDOWS\system32\vulkaninfo.exe 2016-06-01 18:13 - 2016-05-04 04:22 - 00040224 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe 2016-06-01 18:12 - 2016-06-06 12:15 - 00000000 ____D C:\ProgramData\NVIDIA 2016-06-01 18:12 - 2016-06-01 18:14 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2016-06-01 18:12 - 2016-06-01 18:14 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2016-06-01 18:12 - 2016-05-20 10:03 - 00213952 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2016-06-01 18:12 - 2016-05-20 04:08 - 06348344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2016-06-01 18:12 - 2016-05-20 04:08 - 02454976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2016-06-01 18:12 - 2016-05-20 04:08 - 01762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2016-06-01 18:12 - 2016-05-20 04:08 - 01352760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe 2016-06-01 18:12 - 2016-05-20 04:08 - 00533560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2016-06-01 18:12 - 2016-05-20 04:08 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll 2016-06-01 18:12 - 2016-05-20 04:08 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2016-06-01 18:12 - 2016-05-20 04:08 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2016-06-01 18:12 - 2016-05-18 10:37 - 06448223 _____ C:\WINDOWS\system32\nvcoproc.bin 2016-06-01 18:11 - 2016-05-21 23:09 - 01581624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco64.dll 2016-06-01 18:11 - 2016-05-21 23:09 - 00046024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 39977920 _____ C:\WINDOWS\system32\nvcompiler.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 35117112 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 31639096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 25401280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 21802816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 21346520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 20305768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 18145256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 17740664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 17662432 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 17379520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 14410024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 10642912 _____ C:\WINDOWS\system32\nvptxJitCompiler.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 08733280 _____ C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 03811440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 03371648 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 02791360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 02419768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 01922496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436822.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 01573432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436822.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00985024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00909760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00787200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00786360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00772152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00708032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00669952 _____ C:\WINDOWS\system32\nvfatbinaryLoader.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00632664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00631104 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00601936 _____ C:\WINDOWS\system32\nvmcumd.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00565208 _____ C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00549240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00452616 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00423360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00385080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00379480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00377792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00346560 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00315936 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00178136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00155952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00153416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00131768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll 2016-06-01 18:11 - 2016-05-20 10:03 - 00000594 _____ C:\WINDOWS\SysWOW64\nv-vk32.json 2016-06-01 18:11 - 2016-05-20 10:03 - 00000594 _____ C:\WINDOWS\system32\nv-vk64.json 2016-06-01 18:11 - 2016-04-14 07:38 - 00113216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll 2016-06-01 18:11 - 2016-04-14 07:38 - 00102976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll 2016-06-01 18:11 - 2016-04-14 07:38 - 00056384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys 2016-06-01 18:10 - 2016-06-01 18:14 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2016-06-01 18:09 - 2016-06-06 12:18 - 00061088 _____ C:\WINDOWS\system32\BMXStateBkp-{00000004-00000000-00000000-00001102-00000005-00291102}.rfx 2016-06-01 18:09 - 2016-06-06 12:18 - 00061088 _____ C:\WINDOWS\system32\BMXState-{00000004-00000000-00000000-00001102-00000005-00291102}.rfx 2016-06-01 18:09 - 2016-06-06 12:18 - 00000788 _____ C:\WINDOWS\system32\DVCState-{00000004-00000000-00000000-00001102-00000005-00291102}.rfx 2016-06-01 18:09 - 2016-06-01 18:09 - 00000000 ____D C:\NVIDIA 2016-06-01 16:25 - 2016-06-01 17:34 - 00001080 _____ C:\WINDOWS\system32\settingsbkup.sfm 2016-06-01 16:25 - 2016-06-01 17:34 - 00001080 _____ C:\WINDOWS\system32\settings.sfm 2016-06-01 15:40 - 2016-06-01 15:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative 2016-06-01 15:40 - 2016-06-01 15:40 - 00000000 ___HD C:\Program Files (x86)\Creative Installation Information 2016-06-01 15:40 - 2003-06-12 23:25 - 00007062 _____ C:\WINDOWS\SysWOW64\audiopid.vxd 2016-06-01 15:39 - 2016-06-01 15:48 - 00000000 ____D C:\ProgramData\Creative 2016-06-01 15:39 - 2016-06-01 15:40 - 00000000 ____D C:\Program Files\Creative 2016-06-01 15:39 - 2016-06-01 15:39 - 00000159 ___RH C:\WINDOWS\ctfile.rfc 2016-06-01 15:39 - 2009-03-26 14:48 - 00190976 _____ C:\WINDOWS\system32\APOMgr64.DLL 2016-06-01 15:39 - 2009-03-26 14:46 - 00148480 _____ C:\WINDOWS\SysWOW64\APOMngr.DLL 2016-06-01 15:39 - 2009-02-06 18:53 - 00089088 _____ C:\WINDOWS\system32\CmdRtr64.DLL 2016-06-01 15:39 - 2009-02-06 18:52 - 00073728 _____ C:\WINDOWS\SysWOW64\CmdRtr.DLL 2016-06-01 15:38 - 2016-06-01 18:22 - 00000000 ____D C:\Program Files (x86)\Creative 2016-06-01 15:38 - 2006-06-09 15:20 - 00003072 _____ () C:\WINDOWS\SysWOW64\CTXFIGER.DLL 2016-06-01 15:38 - 2006-06-09 15:20 - 00003072 _____ () C:\WINDOWS\system32\CTXFIGER.DLL 2016-06-01 15:38 - 2004-07-30 14:46 - 00020480 _____ (Creative Technology Limited) C:\WINDOWS\SysWOW64\INRESGER.DLL 2016-06-01 15:38 - 2004-07-30 14:46 - 00020480 _____ (Creative Technology Limited) C:\WINDOWS\system32\INRESGER.DLL 2016-06-01 15:33 - 2016-06-01 15:52 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2016-06-01 15:08 - 2016-06-01 15:08 - 00000471 _____ C:\Users\Public\Desktop\DiRT Rally.lnk 2016-06-01 15:08 - 2016-06-01 15:08 - 00000471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DiRT Rally.lnk 2016-06-01 15:06 - 2016-06-01 15:06 - 00000901 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk 2016-06-01 15:06 - 2016-06-01 15:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite 2016-06-01 13:27 - 2016-06-01 15:37 - 00000000 ____D C:\Users\rush_\AppData\Roaming\Origin 2016-06-01 13:27 - 2016-06-01 13:28 - 00000000 ____D C:\Users\rush_\AppData\Local\Origin 2016-06-01 13:25 - 2016-06-06 12:18 - 00000000 ____D C:\ProgramData\Origin 2016-06-01 13:25 - 2016-06-04 15:41 - 00000000 ____D C:\ProgramData\Package Cache 2016-06-01 13:25 - 2016-06-01 13:25 - 00000756 _____ C:\Users\Public\Desktop\Origin.lnk 2016-06-01 13:25 - 2016-06-01 13:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2016-06-01 13:25 - 2016-06-01 13:25 - 00000000 ____D C:\ProgramData\Electronic Arts 2016-05-31 21:04 - 2016-05-31 21:04 - 02466968 _____ (Logitech, Inc.) C:\WINDOWS\system32\LdaCx2.dll 2016-05-31 14:36 - 2016-06-06 12:31 - 00000000 ____D C:\Users\rush_\AppData\Roaming\TS3Client 2016-05-31 14:35 - 2016-05-31 14:35 - 00000877 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk 2016-05-31 14:35 - 2016-05-31 14:35 - 00000827 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk 2016-05-30 23:08 - 2016-05-30 23:08 - 00000191 _____ C:\Users\rush_\Desktop\Schwab Online Shop - Mode, Möbel und Technik kaufen.url 2016-05-30 23:08 - 2016-05-30 23:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm 2016-05-30 23:06 - 2016-06-04 20:59 - 00000000 ____D C:\Users\rush_\Documents\My Games 2016-05-30 22:56 - 2016-06-01 21:17 - 00000000 ____D C:\Users\rush_\Documents\Heroes of the Storm 2016-05-30 22:52 - 2016-06-06 02:36 - 00000000 ____D C:\Users\rush_\AppData\Local\Battle.net 2016-05-30 22:52 - 2016-06-01 21:17 - 00000000 ____D C:\ProgramData\Blizzard Entertainment 2016-05-30 22:52 - 2016-05-30 22:52 - 00000871 _____ C:\Users\Public\Desktop\Battle.net.lnk 2016-05-30 22:52 - 2016-05-30 22:52 - 00000000 ____D C:\Users\rush_\AppData\Local\Blizzard Entertainment 2016-05-30 22:52 - 2016-05-30 22:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net 2016-05-30 22:49 - 2016-05-30 22:55 - 00000000 ____D C:\Users\rush_\AppData\Roaming\Battle.net 2016-05-30 22:49 - 2016-05-30 22:49 - 00000000 ____D C:\ProgramData\Battle.net 2016-05-29 23:55 - 2016-05-29 23:55 - 00004381 _____ C:\WINDOWS\diagwrn.xml 2016-05-29 23:55 - 2016-05-29 23:55 - 00002515 _____ C:\WINDOWS\diagerr.xml 2016-05-29 23:55 - 2016-05-29 23:55 - 00000000 ___HD C:\$Windows.~WS 2016-05-29 23:53 - 2016-05-29 23:53 - 00000000 ____D C:\$WINDOWS.~BT 2016-05-29 23:52 - 2016-05-29 23:52 - 00000731 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10-Upgrade-Assistent.lnk 2016-05-29 23:52 - 2016-05-29 23:52 - 00000000 ____D C:\Windows10Upgrade 2016-05-25 09:50 - 2016-05-25 09:51 - 00000000 ____D C:\Users\rush_\AppData\Roaming\GHISLER 2016-05-25 09:50 - 2016-05-25 09:50 - 00000632 _____ C:\Users\rush_\Desktop\Total Commander 64 bit.lnk 2016-05-25 09:50 - 2016-05-25 09:50 - 00000000 ____D C:\Users\rush_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander 2016-05-24 11:37 - 2016-05-24 11:37 - 00025884 _____ C:\Users\rush_\Desktop\Otelo-Kuendigung.pdf 2016-05-20 23:13 - 2016-05-31 21:05 - 03941528 _____ (Logitech, Inc.) C:\WINDOWS\system32\LogiLDA.DLL 2016-05-17 13:12 - 2016-05-18 15:43 - 00000000 ____D C:\Users\rush_\AppData\Roaming\TeamViewer 2016-05-17 13:12 - 2016-05-17 13:12 - 00000796 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk 2016-05-17 13:12 - 2016-05-17 13:12 - 00000796 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk 2016-05-11 06:33 - 2016-06-03 09:39 - 00005358 _____ C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for DESKTOP-K0PFM97-rush_ DESKTOP-K0PFM97 2016-05-11 06:24 - 2016-04-23 06:26 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll 2016-05-11 06:24 - 2016-04-23 06:25 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll 2016-05-11 06:24 - 2016-04-23 06:18 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll 2016-05-11 06:24 - 2016-04-23 06:16 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll 2016-05-11 06:23 - 2016-05-06 06:53 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdport.sys 2016-05-11 06:23 - 2016-05-06 06:03 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll 2016-05-11 06:23 - 2016-05-06 05:53 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll 2016-05-11 06:23 - 2016-05-06 05:49 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll 2016-05-11 06:23 - 2016-05-06 05:44 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll 2016-05-11 06:23 - 2016-05-06 05:23 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll 2016-05-11 06:23 - 2016-04-30 08:42 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2016-05-11 06:23 - 2016-04-30 08:31 - 03591168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2016-05-11 06:23 - 2016-04-23 08:12 - 01401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2016-05-11 06:23 - 2016-04-23 08:12 - 01184960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2016-05-11 06:23 - 2016-04-23 08:12 - 00713920 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2016-05-11 06:23 - 2016-04-23 08:12 - 00514752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2016-05-11 06:23 - 2016-04-23 08:12 - 00294592 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2016-05-11 06:23 - 2016-04-23 08:12 - 00190144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2016-05-11 06:23 - 2016-04-23 08:12 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2016-05-11 06:23 - 2016-04-23 08:12 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2016-05-11 06:23 - 2016-04-23 07:28 - 01557768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2016-05-11 06:23 - 2016-04-23 07:28 - 01542816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2016-05-11 06:23 - 2016-04-23 07:26 - 00707608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2016-05-11 06:23 - 2016-04-23 07:24 - 07474528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2016-05-11 06:23 - 2016-04-23 07:24 - 01997328 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2016-05-11 06:23 - 2016-04-23 07:24 - 01819208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2016-05-11 06:23 - 2016-04-23 07:24 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2016-05-11 06:23 - 2016-04-23 07:24 - 00638816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys 2016-05-11 06:23 - 2016-04-23 07:24 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys 2016-05-11 06:23 - 2016-04-23 07:22 - 01161120 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2016-05-11 06:23 - 2016-04-23 07:13 - 00306832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll 2016-05-11 06:23 - 2016-04-23 07:12 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll 2016-05-11 06:23 - 2016-04-23 07:12 - 00451928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll 2016-05-11 06:23 - 2016-04-23 07:12 - 00413536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe 2016-05-11 06:23 - 2016-04-23 07:11 - 01092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2016-05-11 06:23 - 2016-04-23 07:11 - 00498960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll 2016-05-11 06:23 - 2016-04-23 07:11 - 00390496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll 2016-05-11 06:23 - 2016-04-23 07:10 - 03673424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2016-05-11 06:23 - 2016-04-23 07:10 - 02919832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2016-05-11 06:23 - 2016-04-23 07:10 - 00330072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys 2016-05-11 06:23 - 2016-04-23 07:09 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2016-05-11 06:23 - 2016-04-23 07:09 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2016-05-11 06:23 - 2016-04-23 07:09 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2016-05-11 06:23 - 2016-04-23 07:09 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2016-05-11 06:23 - 2016-04-23 07:09 - 00569744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll 2016-05-11 06:23 - 2016-04-23 07:09 - 00565600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe 2016-05-11 06:23 - 2016-04-23 07:09 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2016-05-11 06:23 - 2016-04-23 07:09 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe 2016-05-11 06:23 - 2016-04-23 07:09 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe 2016-05-11 06:23 - 2016-04-23 07:08 - 06605504 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2016-05-11 06:23 - 2016-04-23 07:08 - 04515256 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2016-05-11 06:23 - 2016-04-23 07:08 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll 2016-05-11 06:23 - 2016-04-23 07:07 - 01848072 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll 2016-05-11 06:23 - 2016-04-23 07:07 - 01536088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll 2016-05-11 06:23 - 2016-04-23 07:07 - 00204048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll 2016-05-11 06:23 - 2016-04-23 07:07 - 00183904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll 2016-05-11 06:23 - 2016-04-23 07:06 - 00291360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe 2016-05-11 06:23 - 2016-04-23 07:02 - 00188256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2016-05-11 06:23 - 2016-04-23 07:01 - 01996640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2016-05-11 06:23 - 2016-04-23 07:01 - 00650304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll 2016-05-11 06:23 - 2016-04-23 07:01 - 00619296 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll 2016-05-11 06:23 - 2016-04-23 07:01 - 00577368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2016-05-11 06:23 - 2016-04-23 07:01 - 00522176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll 2016-05-11 06:23 - 2016-04-23 07:01 - 00513368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll 2016-05-11 06:23 - 2016-04-23 07:01 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2016-05-11 06:23 - 2016-04-23 07:01 - 00217440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll 2016-05-11 06:23 - 2016-04-23 07:00 - 01776768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2016-05-11 06:23 - 2016-04-23 07:00 - 01594920 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2016-05-11 06:23 - 2016-04-23 07:00 - 01522152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2016-05-11 06:23 - 2016-04-23 07:00 - 01399224 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2016-05-11 06:23 - 2016-04-23 07:00 - 01372304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2016-05-11 06:23 - 2016-04-23 07:00 - 01337240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2016-05-11 06:23 - 2016-04-23 07:00 - 00550656 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll 2016-05-11 06:23 - 2016-04-23 07:00 - 00453472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll 2016-05-11 06:23 - 2016-04-23 07:00 - 00058208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwminit.dll 2016-05-11 06:23 - 2016-04-23 06:56 - 00534872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS 2016-05-11 06:23 - 2016-04-23 06:39 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll 2016-05-11 06:23 - 2016-04-23 06:35 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll 2016-05-11 06:23 - 2016-04-23 06:32 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll 2016-05-11 06:23 - 2016-04-23 06:32 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll 2016-05-11 06:23 - 2016-04-23 06:31 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2016-05-11 06:23 - 2016-04-23 06:31 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll 2016-05-11 06:23 - 2016-04-23 06:30 - 22379008 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2016-05-11 06:23 - 2016-04-23 06:30 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll 2016-05-11 06:23 - 2016-04-23 06:30 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll 2016-05-11 06:23 - 2016-04-23 06:29 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe 2016-05-11 06:23 - 2016-04-23 06:29 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll 2016-05-11 06:23 - 2016-04-23 06:28 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2016-05-11 06:23 - 2016-04-23 06:28 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll 2016-05-11 06:23 - 2016-04-23 06:28 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll 2016-05-11 06:23 - 2016-04-23 06:26 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll 2016-05-11 06:23 - 2016-04-23 06:25 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll 2016-05-11 06:23 - 2016-04-23 06:25 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2016-05-11 06:23 - 2016-04-23 06:25 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2016-05-11 06:23 - 2016-04-23 06:24 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll 2016-05-11 06:23 - 2016-04-23 06:24 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2016-05-11 06:23 - 2016-04-23 06:24 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2016-05-11 06:23 - 2016-04-23 06:24 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll 2016-05-11 06:23 - 2016-04-23 06:24 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll 2016-05-11 06:23 - 2016-04-23 06:23 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2016-05-11 06:23 - 2016-04-23 06:23 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll 2016-05-11 06:23 - 2016-04-23 06:22 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2016-05-11 06:23 - 2016-04-23 06:22 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll 2016-05-11 06:23 - 2016-04-23 06:21 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll 2016-05-11 06:23 - 2016-04-23 06:21 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll 2016-05-11 06:23 - 2016-04-23 06:20 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2016-05-11 06:23 - 2016-04-23 06:20 - 18676224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2016-05-11 06:23 - 2016-04-23 06:20 - 00606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2016-05-11 06:23 - 2016-04-23 06:20 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll 2016-05-11 06:23 - 2016-04-23 06:20 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll 2016-05-11 06:23 - 2016-04-23 06:20 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll 2016-05-11 06:23 - 2016-04-23 06:20 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll 2016-05-11 06:23 - 2016-04-23 06:20 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll 2016-05-11 06:23 - 2016-04-23 06:19 - 07977472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2016-05-11 06:23 - 2016-04-23 06:19 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll 2016-05-11 06:23 - 2016-04-23 06:19 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2016-05-11 06:23 - 2016-04-23 06:19 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2016-05-11 06:23 - 2016-04-23 06:19 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll 2016-05-11 06:23 - 2016-04-23 06:18 - 24604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2016-05-11 06:23 - 2016-04-23 06:18 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll 2016-05-11 06:23 - 2016-04-23 06:18 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll 2016-05-11 06:23 - 2016-04-23 06:18 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2016-05-11 06:23 - 2016-04-23 06:18 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2016-05-11 06:23 - 2016-04-23 06:18 - 00804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2016-05-11 06:23 - 2016-04-23 06:18 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2016-05-11 06:23 - 2016-04-23 06:18 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2016-05-11 06:23 - 2016-04-23 06:18 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll 2016-05-11 06:23 - 2016-04-23 06:18 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll 2016-05-11 06:23 - 2016-04-23 06:17 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2016-05-11 06:23 - 2016-04-23 06:17 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2016-05-11 06:23 - 2016-04-23 06:17 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll 2016-05-11 06:23 - 2016-04-23 06:16 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll 2016-05-11 06:23 - 2016-04-23 06:16 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2016-05-11 06:23 - 2016-04-23 06:15 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll 2016-05-11 06:23 - 2016-04-23 06:15 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll 2016-05-11 06:23 - 2016-04-23 06:15 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2016-05-11 06:23 - 2016-04-23 06:15 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll 2016-05-11 06:23 - 2016-04-23 06:15 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll 2016-05-11 06:23 - 2016-04-23 06:15 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll 2016-05-11 06:23 - 2016-04-23 06:15 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll 2016-05-11 06:23 - 2016-04-23 06:14 - 13383168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2016-05-11 06:23 - 2016-04-23 06:14 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2016-05-11 06:23 - 2016-04-23 06:14 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2016-05-11 06:23 - 2016-04-23 06:14 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll 2016-05-11 06:23 - 2016-04-23 06:14 - 00647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2016-05-11 06:23 - 2016-04-23 06:14 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2016-05-11 06:23 - 2016-04-23 06:14 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll 2016-05-11 06:23 - 2016-04-23 06:14 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2016-05-11 06:23 - 2016-04-23 06:13 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2016-05-11 06:23 - 2016-04-23 06:13 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2016-05-11 06:23 - 2016-04-23 06:13 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2016-05-11 06:23 - 2016-04-23 06:13 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll 2016-05-11 06:23 - 2016-04-23 06:13 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll 2016-05-11 06:23 - 2016-04-23 06:12 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll 2016-05-11 06:23 - 2016-04-23 06:10 - 12125696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2016-05-11 06:23 - 2016-04-23 06:10 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2016-05-11 06:23 - 2016-04-23 06:09 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2016-05-11 06:23 - 2016-04-23 06:09 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2016-05-11 06:23 - 2016-04-23 06:08 - 05324288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2016-05-11 06:23 - 2016-04-23 06:08 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2016-05-11 06:23 - 2016-04-23 06:07 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2016-05-11 06:23 - 2016-04-23 06:07 - 02598912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2016-05-11 06:23 - 2016-04-23 06:07 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2016-05-11 06:23 - 2016-04-23 06:07 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll 2016-05-11 06:23 - 2016-04-23 06:06 - 06974464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2016-05-11 06:23 - 2016-04-23 06:05 - 05502976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll 2016-05-11 06:23 - 2016-04-23 06:05 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2016-05-11 06:23 - 2016-04-23 06:05 - 02066432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2016-05-11 06:23 - 2016-04-23 06:05 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2016-05-11 06:23 - 2016-04-23 06:05 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2016-05-11 06:23 - 2016-04-23 06:05 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll 2016-05-11 06:23 - 2016-04-23 06:04 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll 2016-05-11 06:23 - 2016-04-23 06:04 - 01731072 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2016-05-11 06:23 - 2016-04-23 06:03 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2016-05-11 06:23 - 2016-04-23 06:03 - 04894208 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2016-05-11 06:23 - 2016-04-23 06:03 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2016-05-11 06:23 - 2016-04-23 06:03 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll 2016-05-11 06:23 - 2016-04-23 06:03 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll 2016-05-11 06:23 - 2016-04-23 06:03 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll 2016-05-11 06:23 - 2016-04-23 06:02 - 07832576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2016-05-11 06:23 - 2016-04-23 06:02 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll 2016-05-11 06:23 - 2016-04-23 06:01 - 04775424 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll 2016-05-11 06:23 - 2016-04-23 06:00 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll 2016-05-11 06:23 - 2016-04-23 06:00 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll 2016-05-11 06:23 - 2016-04-23 05:45 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll 2016-05-11 06:23 - 2016-04-23 04:10 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2016-05-11 06:22 - 2016-05-06 06:05 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll 2016-05-11 06:22 - 2016-05-06 05:43 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll 2016-05-11 06:22 - 2016-04-23 07:24 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys 2016-05-11 06:22 - 2016-04-23 07:18 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2016-05-11 06:22 - 2016-04-23 07:13 - 00502104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll 2016-05-11 06:22 - 2016-04-23 07:13 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll 2016-05-11 06:22 - 2016-04-23 07:11 - 00696672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll 2016-05-11 06:22 - 2016-04-23 07:11 - 00131424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys 2016-05-11 06:22 - 2016-04-23 07:11 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll 2016-05-11 06:22 - 2016-04-23 06:34 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys 2016-05-11 06:22 - 2016-04-23 06:34 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll 2016-05-11 06:22 - 2016-04-23 06:34 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll 2016-05-11 06:22 - 2016-04-23 06:33 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll 2016-05-11 06:22 - 2016-04-23 06:33 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll 2016-05-11 06:22 - 2016-04-23 06:33 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys 2016-05-11 06:22 - 2016-04-23 06:33 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ByteCodeGenerator.exe 2016-05-11 06:22 - 2016-04-23 06:32 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll 2016-05-11 06:22 - 2016-04-23 06:29 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2016-05-11 06:22 - 2016-04-23 06:29 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll 2016-05-11 06:22 - 2016-04-23 06:29 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\filecrypt.sys 2016-05-11 06:22 - 2016-04-23 06:29 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll 2016-05-11 06:22 - 2016-04-23 06:29 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe 2016-05-11 06:22 - 2016-04-23 06:29 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll 2016-05-11 06:22 - 2016-04-23 06:28 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll 2016-05-11 06:22 - 2016-04-23 06:28 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll 2016-05-11 06:22 - 2016-04-23 06:28 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll 2016-05-11 06:22 - 2016-04-23 06:27 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys 2016-05-11 06:22 - 2016-04-23 06:27 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll 2016-05-11 06:22 - 2016-04-23 06:26 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll 2016-05-11 06:22 - 2016-04-23 06:25 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll 2016-05-11 06:22 - 2016-04-23 06:24 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2016-05-11 06:22 - 2016-04-23 06:24 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll 2016-05-11 06:22 - 2016-04-23 06:23 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe 2016-05-11 06:22 - 2016-04-23 06:23 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrowserSettingSync.dll 2016-05-11 06:22 - 2016-04-23 06:23 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll 2016-05-11 06:22 - 2016-04-23 06:22 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll 2016-05-11 06:22 - 2016-04-23 06:19 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll 2016-05-11 06:22 - 2016-04-23 06:19 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BrowserSettingSync.dll 2016-05-11 06:22 - 2016-04-23 06:18 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2016-05-11 06:22 - 2016-04-23 06:18 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll 2016-05-11 06:22 - 2016-04-23 06:17 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll 2016-05-11 06:22 - 2016-04-23 06:05 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll 2016-05-11 06:22 - 2016-04-23 06:05 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll 2016-05-11 06:22 - 2016-04-23 06:03 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll 2016-05-11 06:22 - 2016-04-23 04:10 - 00002186 _____ C:\WINDOWS\system32\AppxProvisioning.xml 2016-05-11 06:22 - 2016-04-19 00:30 - 00002186 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml 2016-05-11 02:53 - 2016-05-11 02:53 - 00000000 ____D C:\Users\rush_\AppData\Local\Disc_Soft_Ltd 2016-05-11 02:50 - 2016-05-11 02:50 - 00000000 ____D C:\Users\rush_\AppData\LocalLow\Adobe 2016-05-11 02:46 - 2016-06-03 00:26 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2016-05-11 02:46 - 2016-05-11 02:46 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2016-05-11 02:45 - 2016-05-11 02:51 - 00000000 ____D C:\Users\rush_\AppData\Local\Adobe 2016-05-11 02:45 - 2016-05-11 02:51 - 00000000 ____D C:\ProgramData\Adobe 2016-05-11 02:45 - 2016-05-11 02:45 - 00000000 ____D C:\Program Files (x86)\Adobe 2016-05-11 02:39 - 2016-05-11 02:39 - 00000000 ____D C:\Users\rush_\Documents\Benutzerdefinierte Office-Vorlagen 2016-05-11 02:33 - 2016-06-04 12:31 - 00003808 _____ C:\WINDOWS\System32\Tasks\AutoKMS 2016-05-11 02:33 - 2016-05-11 06:02 - 00000000 ____D C:\WINDOWS\AutoKMS 2016-05-11 02:32 - 2016-05-11 02:32 - 00000000 ____D C:\ProgramData\Microsoft Toolkit 2016-05-11 02:31 - 2016-05-11 02:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2016-05-11 02:30 - 2016-05-11 02:30 - 00000000 ____D C:\WINDOWS\PCHEALTH 2016-05-11 02:30 - 2016-05-11 02:30 - 00000000 ____D C:\Program Files\Microsoft SQL Server 2016-05-11 02:30 - 2016-05-11 02:30 - 00000000 ____D C:\Program Files\Common Files\DESIGNER 2016-05-11 02:30 - 2016-05-11 02:30 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server 2016-05-11 02:29 - 2016-05-11 02:29 - 00000000 ____D C:\Users\rush_\AppData\Local\Microsoft Help 2016-05-11 02:29 - 2016-05-11 02:29 - 00000000 ____D C:\Program Files\Microsoft Analysis Services 2016-05-11 02:29 - 2016-05-11 02:29 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2016-05-11 02:29 - 2016-05-11 02:29 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services 2016-05-11 02:25 - 2016-05-11 02:25 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images 2016-05-11 02:24 - 2016-05-11 02:27 - 00000000 ____D C:\Users\rush_\AppData\Roaming\DAEMON Tools Lite 2016-05-11 02:24 - 2016-05-11 02:24 - 00047672 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtliteusbbus.sys 2016-05-11 02:24 - 2016-05-11 02:24 - 00030264 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtlitescsibus.sys 2016-05-11 02:24 - 2016-05-11 02:24 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite 2016-05-11 02:23 - 2016-05-11 02:23 - 00692072 _____ (Disc Soft Ltd.) C:\Users\rush_\Downloads\DTLiteInstaller.exe 2016-05-10 00:31 - 2016-05-10 00:31 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2016-05-09 19:52 - 2016-05-09 19:52 - 00000000 ____D C:\Users\rush_\AppData\Roaming\Samsung 2016-05-09 19:51 - 2016-05-09 19:51 - 00199192 _____ C:\Users\rush_\Downloads\DHL_label_2016-5-9_10-52-16.pdf 2016-05-09 19:51 - 2016-05-09 19:51 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers 2016-05-09 19:50 - 2016-05-09 19:50 - 00000000 ____D C:\Program Files (x86)\Samsung 2016-05-09 19:50 - 2015-09-14 07:09 - 02073600 ____N C:\WINDOWS\SysWOW64\DlgSearchEngine.dll 2016-05-09 19:50 - 2015-03-12 04:43 - 00158016 _____ C:\WINDOWS\system32\us003ci.exe 2016-05-09 19:50 - 2015-03-12 04:43 - 00089600 _____ (SS) C:\WINDOWS\system32\us003ci.dll 2016-05-09 19:50 - 2015-03-12 04:43 - 00022528 _____ () C:\WINDOWS\system32\us003lm.dll 2016-05-09 19:49 - 2016-05-09 19:49 - 25121584 _____ C:\Users\rush_\Downloads\SamsungUniversalPrintDriver3.exe 2016-05-09 19:49 - 2016-05-09 19:49 - 00000000 ____D C:\ProgramData\Samsung ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-06-06 12:18 - 2016-04-30 07:12 - 00000000 ____D C:\Users\rush_\AppData\Roaming\Spotify 2016-06-06 12:17 - 2016-04-30 07:13 - 00000000 ____D C:\Users\rush_\AppData\Local\Spotify 2016-06-06 12:15 - 2016-04-30 05:30 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-06-06 10:21 - 2016-04-30 06:58 - 00000000 ____D C:\Users\rush_ 2016-06-05 20:03 - 2016-04-30 05:35 - 01799166 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2016-06-05 20:03 - 2016-04-29 21:16 - 00775524 _____ C:\WINDOWS\system32\perfh007.dat 2016-06-05 20:03 - 2016-04-29 21:16 - 00155338 _____ C:\WINDOWS\system32\perfc007.dat 2016-06-05 20:03 - 2016-04-29 21:10 - 00000000 ____D C:\WINDOWS\INF 2016-06-05 19:54 - 2016-04-30 08:18 - 00000000 ____D C:\Users\rush_\AppData\Roaming\vlc 2016-06-05 14:24 - 2016-04-29 21:11 - 00000000 ___HD C:\Program Files\WindowsApps 2016-06-05 14:24 - 2016-04-29 21:11 - 00000000 ____D C:\WINDOWS\AppReadiness 2016-06-04 14:48 - 2016-04-29 21:04 - 00524288 ___SH C:\WINDOWS\system32\config\BBI 2016-06-04 14:43 - 2016-04-30 07:43 - 00000302 _____ C:\WINDOWS\Tasks\{46678FB0-9F52-8338-E82F-2C35B4A7DEDC}.job 2016-06-04 14:19 - 2016-04-30 07:09 - 00001150 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2016-06-04 12:27 - 2016-04-30 07:59 - 00004168 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{34C35238-F3AC-42E8-A344-380A0E3ED0C6} 2016-06-04 12:25 - 2016-04-30 07:09 - 00001146 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2016-06-03 22:29 - 2016-04-29 21:06 - 00000000 ____D C:\WINDOWS\CbsTemp 2016-06-03 19:45 - 2016-04-30 06:59 - 00000000 ____D C:\Users\rush_\AppData\Local\Packages 2016-06-03 19:23 - 2016-04-30 07:43 - 00000306 __RSH C:\ProgramData\ntuser.pol 2016-06-03 19:21 - 2016-04-30 05:22 - 00284840 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2016-06-03 19:20 - 2016-04-29 21:11 - 00000000 ____D C:\WINDOWS\L2Schemas 2016-06-03 18:30 - 2016-04-30 07:17 - 00000000 ____D C:\Users\rush_\AppData\Roaming\Mozilla 2016-06-03 11:59 - 2016-04-29 21:11 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI 2016-06-03 11:59 - 2016-04-29 21:11 - 00000000 ____D C:\WINDOWS\system32\MUI 2016-06-02 09:43 - 2016-05-04 03:43 - 00000213 _____ C:\Users\rush_\AppData\Roaming\WB.CFG 2016-06-01 20:44 - 2016-04-30 07:02 - 00002383 _____ C:\Users\rush_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2016-06-01 20:44 - 2016-04-30 07:02 - 00000000 ___RD C:\Users\rush_\OneDrive 2016-06-01 18:22 - 2016-04-29 21:11 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files 2016-06-01 18:12 - 2016-04-29 21:11 - 00000000 ____D C:\WINDOWS\Help 2016-06-01 17:34 - 2016-04-30 06:00 - 00061352 _____ C:\WINDOWS\system32\BMXStateBkp-{00000003-00000000-00000000-00001102-00000005-00291102}.rfx 2016-06-01 17:34 - 2016-04-30 06:00 - 00061352 _____ C:\WINDOWS\system32\BMXState-{00000003-00000000-00000000-00001102-00000005-00291102}.rfx 2016-06-01 17:34 - 2016-04-30 06:00 - 00000788 _____ C:\WINDOWS\system32\DVCState-{00000003-00000000-00000000-00001102-00000005-00291102}.rfx 2016-06-01 15:39 - 2016-04-30 05:26 - 00466520 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll 2016-06-01 15:39 - 2016-04-30 05:26 - 00445016 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll 2016-06-01 15:39 - 2016-04-30 05:26 - 00123480 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll 2016-06-01 15:39 - 2016-04-30 05:26 - 00109144 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll 2016-06-01 15:39 - 2016-04-30 05:24 - 00000000 ____D C:\WINDOWS\system32\data 2016-06-01 15:38 - 2016-04-30 05:24 - 00000000 ____D C:\WINDOWS\SysWOW64\data 2016-06-01 13:25 - 2016-04-29 21:11 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2016-05-29 23:55 - 2016-04-29 21:18 - 00000000 ___DC C:\WINDOWS\Panther 2016-05-22 23:02 - 2015-11-10 03:15 - 13509184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys 2016-05-21 23:09 - 2015-11-10 03:14 - 00141256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2016-05-20 10:03 - 2015-11-10 01:12 - 00040084 _____ C:\WINDOWS\system32\nvinfo.pb 2016-05-17 13:20 - 2016-04-30 07:10 - 00002264 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-05-17 13:20 - 2016-04-30 07:10 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-05-15 21:52 - 2016-04-30 06:59 - 00000000 __RHD C:\Users\Public\AccountPictures 2016-05-12 12:55 - 2016-04-29 21:11 - 00000000 ____D C:\WINDOWS\rescache 2016-05-12 12:31 - 2016-04-29 21:11 - 00000000 ____D C:\WINDOWS\system32\oobe 2016-05-12 12:31 - 2016-04-29 21:11 - 00000000 ____D C:\WINDOWS\system32\appraiser 2016-05-12 12:31 - 2016-04-29 21:11 - 00000000 ____D C:\WINDOWS\Provisioning 2016-05-12 12:31 - 2016-04-29 21:11 - 00000000 ____D C:\WINDOWS\bcastdvr 2016-05-12 12:31 - 2016-04-29 21:11 - 00000000 ____D C:\Program Files\Windows Journal 2016-05-12 12:30 - 2016-04-29 21:11 - 00015703 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml 2016-05-11 21:57 - 2016-04-29 21:13 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2016-05-11 21:57 - 2016-04-29 21:13 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2016-05-11 18:14 - 2016-04-30 07:09 - 00004208 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2016-05-11 18:14 - 2016-04-30 07:09 - 00003976 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2016-05-11 06:36 - 2016-04-30 07:16 - 00000000 ____D C:\WINDOWS\system32\MRT 2016-05-11 06:26 - 2016-04-30 07:15 - 139319312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2016-05-11 02:50 - 2016-04-30 06:59 - 00000000 ____D C:\Users\rush_\AppData\Roaming\Adobe 2016-05-11 02:30 - 2016-04-29 21:11 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2016-05-11 02:29 - 2016-04-29 21:11 - 00000000 ____D C:\WINDOWS\ShellNew ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2016-05-04 03:43 - 2016-06-02 09:43 - 0000213 _____ () C:\Users\rush_\AppData\Roaming\WB.CFG 2016-06-05 23:53 - 2016-06-05 23:53 - 0000141 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc Dateien, die verschoben oder gelöscht werden sollten: ==================== C:\Windows\Tasks\{46678FB0-9F52-8338-E82F-2C35B4A7DEDC}.job Einige Dateien in TEMP: ==================== C:\Users\rush_\AppData\Local\Temp\avgnt.exe ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert C:\WINDOWS\explorer.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert C:\WINDOWS\system32\services.exe => Datei ist digital signiert C:\WINDOWS\system32\User32.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2016-05-25 10:09 ==================== Ende von FRST.txt ============================ Geändert von rushace (06.06.2016 um 12:43 Uhr) |
|
06.06.2016, 11:52
| #2 |
| | PC startet ohne Vorwarnung neu. Kein Bluescreen. Viele Logfiles für euch. Anleitung / HilfeCode:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-06-2016 02
durchgeführt von rush_ (2016-06-06 12:39:37)
Gestartet von C:\Users\rush_\Desktop
Windows 10 Pro Version 1511 (X64) (2016-04-30 04:57:47)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2987826118-164082447-866195739-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2987826118-164082447-866195739-503 - Limited - Disabled)
Gast (S-1-5-21-2987826118-164082447-866195739-501 - Limited - Disabled)
rush_ (S-1-5-21-2987826118-164082447-866195739-1001 - Administrator - Enabled) => C:\Users\rush_
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
3DMark Demo (HKLM\...\Steam App 231350) (Version: - Futuremark)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated)
Age of Empires II: HD Edition (HKLM\...\Steam App 221380) (Version: - Skybox Labs)
Aliens: Colonial Marines (HKLM\...\Steam App 49540) (Version: - Gearbox Software)
Arma 3 (HKLM\...\Steam App 107410) (Version: - Bohemia Interactive)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.17.273 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{761cd2c4-5249-4346-8318-a499d06d2681}) (Version: 1.1.63.21885 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.63.21885 - Avira Operations GmbH & Co. KG) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Company of Heroes 2 (HKLM\...\Steam App 231430) (Version: - Relic Entertainment)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.76 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
Creative ALchemy (HKLM-x32\...\ALchemy) (Version: 1.45 - Creative Technology Limited)
Creative Audio-Systemsteuerung (HKLM-x32\...\AudioCS) (Version: 3.00 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.41 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: 1.03 - Creative Technology Limited)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0190 - Disc Soft Ltd)
DayZ (HKLM\...\Steam App 221100) (Version: - Bohemia Interactive)
DOOM (HKLM\...\Steam App 379720) (Version: - id Software)
Dreadnought (HKLM-x32\...\Dreadnought) (Version: 1.0.0 - Grey Box)
Dungeon Defenders II (HKLM\...\Steam App 236110) (Version: - Trendy Entertainment)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Grow Home (HKLM\...\Steam App 323320) (Version: - Reflections, a Ubisoft Studio)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Hotline Miami 2: Wrong Number (HKLM\...\Steam App 274170) (Version: - Dennaton Games)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0 - Mozilla)
Mozilla Thunderbird 45.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 45.0 (x86 de)) (Version: 45.0 - Mozilla)
Mozilla Thunderbird 45.1.1 (x86 de) (HKU\S-1-5-21-2987826118-164082447-866195739-1001\...\Mozilla Thunderbird 45.1.1 (x86 de)) (Version: 45.1.1 - Mozilla)
Mozilla Thunderbird 45.1.1 (x86 de) (HKU\S-1-5-21-2987826118-164082447-866195739-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Mozilla Thunderbird 45.1.1 (x86 de)) (Version: 45.1.1 - Mozilla)
Next Car Game: Wreckfest (HKLM\...\Steam App 228380) (Version: - Bugbear)
NVIDIA 3D Vision Controller-Treiber 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.22 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.3.5 - NVIDIA Corporation)
NVIDIA Grafiktreiber 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.22 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.14 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.12.1.43352 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Planetary Annihilation (HKLM\...\Steam App 233250) (Version: - Uber Entertainment)
PlanetSide 2 (HKLM\...\Steam App 218230) (Version: - Daybreak Game Company)
PlanetSide 2 (HKU\S-1-5-21-2987826118-164082447-866195739-1001\...\DG0-PlanetSide 2) (Version: - Sony Online Entertainment)
PlanetSide 2 (HKU\S-1-5-21-2987826118-164082447-866195739-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\DG0-PlanetSide 2) (Version: - Sony Online Entertainment)
Rust (HKLM\...\Steam App 252490) (Version: - Facepunch Studios)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.3.5 - NVIDIA Corporation) Hidden
Sonic Generations (HKLM\...\Steam App 71340) (Version: - Devil's Details)
Sparkle 2 (HKLM\...\Steam App 370550) (Version: - 10tons Ltd)
Spotify (HKU\S-1-5-21-2987826118-164082447-866195739-1001\...\Spotify) (Version: 1.0.29.92.g67727800 - Spotify AB)
Spotify (HKU\S-1-5-21-2987826118-164082447-866195739-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Spotify) (Version: 1.0.29.92.g67727800 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.59518 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.52a - Ghisler Software GmbH)
UE4 Prerequisites (HKLM\...\{E8F64548-5B1F-405A-89EA-9D3147E9DE39}) (Version: 1.0.6.0 - Epic Games, Inc.)
Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.13 - Samsung Electronics CO., LTD.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.2 - VideoLAN)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Warhammer: End Times - Vermintide (HKLM\...\Steam App 235540) (Version: - Fatshark)
WhatsApp (HKU\S-1-5-21-2987826118-164082447-866195739-1001\...\WhatsApp) (Version: 0.2.777 - WhatsApp)
WhatsApp (HKU\S-1-5-21-2987826118-164082447-866195739-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\WhatsApp) (Version: 0.2.777 - WhatsApp)
Windows 10-Upgrade-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17305 - Microsoft Corporation)
WinRAR 5.31 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
XSplit Gamecaster (HKLM-x32\...\{86A5284F-3B7F-44D2-9A22-68E22834468E}) (Version: 2.7.1602.1938 - SplitmediaLabs)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2987826118-164082447-866195739-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\rush_\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
"{011FB6C0-B2D3-401C-9E90-5F4DBDE524C2}" task wurde entsperrt. <===== ACHTUNG
Task: {03D9AE6F-818C-4458-AA08-F7AAD8262471} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
"{043AA0C9-9E3C-4644-8A1E-2D2B26EA94D6}" task wurde entsperrt. <===== ACHTUNG
"{073BE37E-EF72-41FD-9013-151CE5A132AB}" task wurde entsperrt. <===== ACHTUNG
"{0802D91D-5E7C-49CD-B8EF-219FC1CBDFBA}" task wurde entsperrt. <===== ACHTUNG
"{08EFEDFD-0BFC-4EC0-A449-CB630EFA5E40}" task wurde entsperrt. <===== ACHTUNG
"{09CA18BA-0C68-4C91-9022-26D0BA5034F3}" task wurde entsperrt. <===== ACHTUNG
Task: {0A51FD5D-D4E6-433C-BC1D-E2E54C63F882} - System32\Tasks\Microsoft Office 15 Sync Maintenance for DESKTOP-K0PFM97-rush_ DESKTOP-K0PFM97 => F:\Program Files\Microsoft Office\Office15\MsoSync.exe [2012-10-02] (Microsoft Corporation)
"{0E76AEB5-FF6E-4909-98F2-81767907BB67}" task wurde entsperrt. <===== ACHTUNG
"{10707107-6B2E-4C8E-B028-A85162CF65B2}" task wurde entsperrt. <===== ACHTUNG
"{1111635D-2024-4440-9EB9-6563586E12C3}" task wurde entsperrt. <===== ACHTUNG
"{17E11E68-CBD8-444A-8660-CBE2E07675A8}" task wurde entsperrt. <===== ACHTUNG
"{19115FB3-5E9B-4C3C-8D75-5397B71AD0AE}" task wurde entsperrt. <===== ACHTUNG
"{1A296F89-8FB1-4290-92B5-F7984E7A2112}" task wurde entsperrt. <===== ACHTUNG
"{1B432F59-802E-4295-8713-F8B85EEAF017}" task wurde entsperrt. <===== ACHTUNG
"{1D1D1CC5-C407-4B81-8EFB-1BDE65EE56B5}" task wurde entsperrt. <===== ACHTUNG
"{1D737F79-3684-4FBF-9BB9-BEFEB2569508}" task wurde entsperrt. <===== ACHTUNG
"{1FF40EB2-7186-4054-BF5B-6CEBA02923F1}" task wurde entsperrt. <===== ACHTUNG
"{22A0992E-B7D2-481F-9794-8809F09E9590}" task wurde entsperrt. <===== ACHTUNG
"{25578C52-D6AF-4446-907A-6B523080E60B}" task wurde entsperrt. <===== ACHTUNG
"{26BFE2B3-CA70-4598-9BAD-5FDA731A0EA0}" task wurde entsperrt. <===== ACHTUNG
"{2B523445-209A-43BC-9F27-C7B0FAE74B93}" task wurde entsperrt. <===== ACHTUNG
"{2E3141FD-82A6-41CB-B569-B376613D470E}" task wurde entsperrt. <===== ACHTUNG
"{2ED301B8-E7DF-4BB5-84D8-F92441B0B03A}" task wurde entsperrt. <===== ACHTUNG
"{30CB4217-C1FF-476E-BC23-D6FA77269AF6}" task wurde entsperrt. <===== ACHTUNG
"{33CC9D68-10B3-4640-9116-15D56EE627DE}" task wurde entsperrt. <===== ACHTUNG
"{379C2E32-DD33-4D5D-8248-381AD2AFFB40}" task wurde entsperrt. <===== ACHTUNG
"{37B5E23B-CB8A-4637-8163-5573F0AAE8F9}" task wurde entsperrt. <===== ACHTUNG
"{37B731A3-4613-4970-AF5F-70109DEE1EAD}" task wurde entsperrt. <===== ACHTUNG
"{381324BA-3387-444C-AE30-10A9B7663C72}" task wurde entsperrt. <===== ACHTUNG
Task: {3913D650-37CE-4A4B-91F1-FA28F9382A81} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-30] (Google Inc.)
"{3A5D7479-CBAC-46D5-85EC-877F0B09EB36}" task wurde entsperrt. <===== ACHTUNG
"{3DDD17FD-55BD-4545-9251-A8E8C1828531}" task wurde entsperrt. <===== ACHTUNG
"{406452EB-6AA9-4C9B-A9FD-46F5648F9424}" task wurde entsperrt. <===== ACHTUNG
"{41983C81-49BE-4F5F-BE12-4653DA8E8A91}" task wurde entsperrt. <===== ACHTUNG
"{421DB63A-6C68-4DC0-B468-921C72083B38}" task wurde entsperrt. <===== ACHTUNG
"{42BCBBFC-2735-4E14-8D50-1802811722A9}" task wurde entsperrt. <===== ACHTUNG
"{4330A836-48DF-42AA-B8C6-95735ED66AAC}" task wurde entsperrt. <===== ACHTUNG
"{47178381-E193-4133-99B5-9AE6BFB71996}" task wurde entsperrt. <===== ACHTUNG
"{47B39D24-2BF0-47A4-AE8D-C738E71000E9}" task wurde entsperrt. <===== ACHTUNG
"{47D35B9B-68A5-46FB-AB54-08CF133762BC}" task wurde entsperrt. <===== ACHTUNG
"{482177FF-8926-4D83-A75F-DA314873EA17}" task wurde entsperrt. <===== ACHTUNG
Task: {4868BE78-7148-4077-B73A-6BFAD6D91450} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS\AutoKMS.exe [2016-05-11] ()
"{4A0CCE06-E765-4E2D-9184-BC5130ED5512}" task wurde entsperrt. <===== ACHTUNG
"{4C03BA85-F897-499E-897E-066C18A5348E}" task wurde entsperrt. <===== ACHTUNG
"{4CC1D3C9-B9ED-4C13-B261-E4AD092DF65F}" task wurde entsperrt. <===== ACHTUNG
"{50C08035-AE31-417F-9CD4-0D970A6F3D10}" task wurde entsperrt. <===== ACHTUNG
"{5621CC85-B7F8-4443-A572-EB2DE38C948D}" task wurde entsperrt. <===== ACHTUNG
"{590A02B9-B81B-4A11-A26D-69DA0DA8043E}" task wurde entsperrt. <===== ACHTUNG
Task: {59B766C3-0EC4-4D5B-9A6B-98D25394219C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-30] (Google Inc.)
"{60953162-C518-4580-AE86-AEF07573AEBF}" task wurde entsperrt. <===== ACHTUNG
"{6139BF0E-A70A-45A5-B9BF-4B95E5BEC64C}" task wurde entsperrt. <===== ACHTUNG
"{629B61DB-88B4-4F2E-8DBC-847998AFF621}" task wurde entsperrt. <===== ACHTUNG
"{62DB81BC-378D-46A2-BC20-40E6417D5637}" task wurde entsperrt. <===== ACHTUNG
"{63266B05-7D59-4284-80F7-963B87067CA6}" task wurde entsperrt. <===== ACHTUNG
"{6526E5A0-218A-4A06-8181-76D5A811ACF2}" task wurde entsperrt. <===== ACHTUNG
"{6734C96E-E739-490A-9D19-4E37030B2783}" task wurde entsperrt. <===== ACHTUNG
"{70D29391-1016-4FFA-A3CB-19D872F2265F}" task wurde entsperrt. <===== ACHTUNG
"{76145C97-37D9-4DE4-811A-049AF7E86D7B}" task wurde entsperrt. <===== ACHTUNG
"{79B7207F-F6DA-465E-AD91-74C03AE2BD08}" task wurde entsperrt. <===== ACHTUNG
"{7C52715C-344F-4970-AEB8-250E7C93A2D7}" task wurde entsperrt. <===== ACHTUNG
"{7DD03677-02AA-4C7F-ABE3-BA73BBD0DBB5}" task wurde entsperrt. <===== ACHTUNG
"{7E772A1D-ACA5-4EB0-AA85-14C8351C11FE}" task wurde entsperrt. <===== ACHTUNG
"{8105A47B-E56E-43D0-9E7F-2B0F73F71748}" task wurde entsperrt. <===== ACHTUNG
"{822479DE-4C04-45CE-8344-89A1792F0A90}" task wurde entsperrt. <===== ACHTUNG
"{8435BE36-69F7-4851-88BD-5E9E7B7D24D1}" task wurde entsperrt. <===== ACHTUNG
"{847E5A9B-E515-4388-81CD-C3E844C46EB1}" task wurde entsperrt. <===== ACHTUNG
"{84A042E1-15E2-4AF9-BDF0-465DB8752034}" task wurde entsperrt. <===== ACHTUNG
"{88D3396A-07A0-4E2B-8396-4A18CE241721}" task wurde entsperrt. <===== ACHTUNG
"{8B89D8D0-C534-4772-8D5B-FA814995C6D5}" task wurde entsperrt. <===== ACHTUNG
"{8FC41E8F-472F-4335-9501-BE685F7F08B2}" task wurde entsperrt. <===== ACHTUNG
"{8FF6767F-2749-4C15-91E2-8DAFE01D4A21}" task wurde entsperrt. <===== ACHTUNG
"{9087F143-5A1B-4D14-9B54-1AE30907E123}" task wurde entsperrt. <===== ACHTUNG
Task: {932B203D-17E3-42A2-8AEE-952D116AB6FC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => F:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-02] (Microsoft Corporation)
"{946FFCA5-1F8C-4009-B089-B8A94B376415}" task wurde entsperrt. <===== ACHTUNG
"{965BB6AE-B290-4C40-8A88-A351A0AAE3CD}" task wurde entsperrt. <===== ACHTUNG
"{97B1F212-A128-4DD9-963C-713BE638B2FB}" task wurde entsperrt. <===== ACHTUNG
"{97CF0F35-F4A1-4AAC-815A-D6456ADEF245}" task wurde entsperrt. <===== ACHTUNG
"{99392767-20BA-4390-AB9F-D96C7FEE63FA}" task wurde entsperrt. <===== ACHTUNG
"{99FA5439-10D0-475C-9DB4-9579C8273749}" task wurde entsperrt. <===== ACHTUNG
"{9ACC7D5A-7917-4A9C-AF3F-0ACB3DE5B8FF}" task wurde entsperrt. <===== ACHTUNG
"{9AE0F259-04B9-4196-8282-1BB2B8B6625A}" task wurde entsperrt. <===== ACHTUNG
Task: {9BBD2937-A2C0-4A5C-93F6-E1B0E240D613} - System32\Tasks\{46678FB0-9F52-8338-E82F-2C35B4A7DEDC} => C:\Users\rush_\AppData\Local\{8969B~1\UNINST~1.EXE
"{9BCF74E0-7253-4954-8B40-D22E737DE5E0}" task wurde entsperrt. <===== ACHTUNG
"{9BE18074-5037-42DB-93C6-A049A2A39B08}" task wurde entsperrt. <===== ACHTUNG
"{9C786FAD-D25F-463D-86F1-E0598AE8CF71}" task wurde entsperrt. <===== ACHTUNG
"{9EE7868A-8BD5-4D7E-BCAD-1B4ACD32CDAA}" task wurde entsperrt. <===== ACHTUNG
"{A047F10E-D5DA-4DAA-9E47-39C751D67C33}" task wurde entsperrt. <===== ACHTUNG
"{A1D9F8F8-DA91-4121-90E9-0DE29DEAA884}" task wurde entsperrt. <===== ACHTUNG
"{A3B7FD26-D696-47C6-B502-975CF24E0ACE}" task wurde entsperrt. <===== ACHTUNG
"{A439AFF3-8555-4400-838D-B39E5BE280AF}" task wurde entsperrt. <===== ACHTUNG
"{A47599FA-32A4-4760-B139-79824C72B2D7}" task wurde entsperrt. <===== ACHTUNG
"{A57E5902-05BE-44FB-A021-88750D3BA831}" task wurde entsperrt. <===== ACHTUNG
Task: {AAA59514-DDF2-4049-A935-DB8B152F78DD} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-02] (Microsoft Corporation)
"{AFD93869-D56F-4FDC-AA40-64483F458EED}" task wurde entsperrt. <===== ACHTUNG
"{B12D7D73-7995-4113-B1AE-F9178155BFFB}" task wurde entsperrt. <===== ACHTUNG
"{B2005267-2F24-4701-9CC4-7F91C625BCFA}" task wurde entsperrt. <===== ACHTUNG
"{B29058D0-1F48-4D82-AC31-6EA73121522F}" task wurde entsperrt. <===== ACHTUNG
"{B3008E13-053E-4FE1-AC57-DCFAD62AC068}" task wurde entsperrt. <===== ACHTUNG
"{B6050BA7-5CCE-4AED-9E13-C54A34B9AB2C}" task wurde entsperrt. <===== ACHTUNG
"{B8F71AA5-DE26-48C3-A662-CB02D6E7013C}" task wurde entsperrt. <===== ACHTUNG
"{B9F0B959-77DF-4A17-8730-6221783EDED0}" task wurde entsperrt. <===== ACHTUNG
"{BD3AFAC1-DFD7-40EB-871A-731A8C0ECA38}" task wurde entsperrt. <===== ACHTUNG
"{BE187122-F042-422C-B01B-F23A7F0FCC03}" task wurde entsperrt. <===== ACHTUNG
"{BF1F22CB-2604-4D4E-8471-8D85C773989D}" task wurde entsperrt. <===== ACHTUNG
"{C2157413-F69D-4F28-BB99-73D45E0751C7}" task wurde entsperrt. <===== ACHTUNG
"{C40AC6C5-B6CC-419F-8B07-CAA737735194}" task wurde entsperrt. <===== ACHTUNG
"{C424F4D0-C3B5-4122-B968-012AFF841427}" task wurde entsperrt. <===== ACHTUNG
"{C6B91FD7-7F99-4C96-87FF-E48A77E90A3A}" task wurde entsperrt. <===== ACHTUNG
"{C892DF53-D086-4C9D-B5CB-D9BC30B7D5C0}" task wurde entsperrt. <===== ACHTUNG
"{CA0BCBFE-5F39-4EF1-A811-4ABD265DF50E}" task wurde entsperrt. <===== ACHTUNG
"{CB55D07A-C4EE-409A-9FEC-C91049A03008}" task wurde entsperrt. <===== ACHTUNG
"{CBE0B7C3-FE0E-41FA-A84E-CDFD2CFAC1D5}" task wurde entsperrt. <===== ACHTUNG
"{CDBF195D-5B72-44A7-A9E0-A379B5D7B993}" task wurde entsperrt. <===== ACHTUNG
Task: {CFF2588D-2E7A-47F2-A31F-B3FB81F979B0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => F:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-02] (Microsoft Corporation)
"{D4086618-9BE9-47D2-BBB5-FEB9A6DF4439}" task wurde entsperrt. <===== ACHTUNG
"{D6C6B5E6-CEF0-46FF-9FF7-E26E1DD26E88}" task wurde entsperrt. <===== ACHTUNG
"{D6ECF39A-47C3-4659-9637-39177CAD49FA}" task wurde entsperrt. <===== ACHTUNG
"{D75C40AC-4E86-4D5D-B3C1-6494A21EEB5F}" task wurde entsperrt. <===== ACHTUNG
"{D7DA12AD-D1D6-46BD-B640-3BD5E28E3E54}" task wurde entsperrt. <===== ACHTUNG
"{DC3B08A2-107A-4B64-BEF3-4B70DB27D9B3}" task wurde entsperrt. <===== ACHTUNG
"{DC55D493-C559-4C06-8E65-76AC5530E2B7}" task wurde entsperrt. <===== ACHTUNG
"{DF397C14-44CB-44AE-A27A-A4D9E04C0212}" task wurde entsperrt. <===== ACHTUNG
"{E194F04C-40CA-4A1A-AFA5-425C05419CA5}" task wurde entsperrt. <===== ACHTUNG
"{E403F492-E2CE-4544-9926-F904A807C240}" task wurde entsperrt. <===== ACHTUNG
"{E468743E-A522-4593-8477-FA16C9A1CC68}" task wurde entsperrt. <===== ACHTUNG
"{E50B9A14-7DFC-4E46-937E-DF83C1CAD163}" task wurde entsperrt. <===== ACHTUNG
"{E8723F76-EFB6-445E-841E-4FED3D787F3C}" task wurde entsperrt. <===== ACHTUNG
"{EB2405BE-4FE7-46B5-9C50-468DBC3E5A7F}" task wurde entsperrt. <===== ACHTUNG
"{EB7BB782-519A-45E0-A923-72684C9534A7}" task wurde entsperrt. <===== ACHTUNG
"{EBBF0FEB-F860-4F74-9369-84F159D5C622}" task wurde entsperrt. <===== ACHTUNG
"{ED41646B-10A3-4BDE-8886-589863D41E28}" task wurde entsperrt. <===== ACHTUNG
"{EEA69A47-973F-4A8E-A793-152CC9D2FD09}" task wurde entsperrt. <===== ACHTUNG
"{EF58AE7E-8763-4083-ACDA-6CFEDFB98E32}" task wurde entsperrt. <===== ACHTUNG
"{F005DB21-B899-473D-BF2D-17A23C027209}" task wurde entsperrt. <===== ACHTUNG
"{F1C4EFFF-0318-4867-9EE5-EB4166178DBA}" task wurde entsperrt. <===== ACHTUNG
"{F25DF59A-0A72-44B1-8203-FDCFA1BC85CA}" task wurde entsperrt. <===== ACHTUNG
"{F54A20EF-1DA4-4ECA-A099-389C2819EFE1}" task wurde entsperrt. <===== ACHTUNG
"{F57B51E8-104F-4607-AEF1-F0BF8199E79B}" task wurde entsperrt. <===== ACHTUNG
"{FBE7C7C0-7BE9-41E6-8069-0F1E4A2901D1}" task wurde entsperrt. <===== ACHTUNG
"{FC4ADAEC-DB13-4A44-9066-E7720FE1F9CA}" task wurde entsperrt. <===== ACHTUNG
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\{46678FB0-9F52-8338-E82F-2C35B4A7DEDC}.job =>
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\rush_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WorldofTanks\WorldofTanks.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://mmotraffic.com/catalog/goplay/1327/MTE3NjYvLy8xMzI3/
ShortcutWithArgument: C:\Users\rush_\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WorldofTanks.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://mmotraffic.com/catalog/goplay/1327/MTE3NjYvLy8xMzI3/
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-10-30 09:17 - 2015-10-30 09:17 - 00028672 _____ () C:\WINDOWS\SYSTEM32\efsext.dll
2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-05-09 19:50 - 2015-03-12 04:43 - 00022528 _____ () C:\WINDOWS\System32\us003lm.dll
2016-02-16 06:01 - 2016-02-16 06:01 - 00031256 _____ () C:\WINDOWS\System32\us008lm.dll
2016-04-13 11:54 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-05-11 06:23 - 2016-04-23 05:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-04-13 11:54 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-06-01 20:44 - 2016-06-01 20:44 - 00959168 _____ () C:\Users\rush_\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-04-30 07:51 - 2016-04-30 07:51 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-02-13 19:02 - 2016-02-13 19:02 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-05-11 06:22 - 2016-04-23 06:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-05-11 06:23 - 2016-04-23 06:02 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-05-11 06:23 - 2016-04-23 05:58 - 00936960 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-05-11 06:23 - 2016-04-23 05:58 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-05-11 06:23 - 2016-04-23 06:01 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-05-11 06:23 - 2016-04-23 05:57 - 00529408 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.NodeWinrtWrap.dll
2015-10-30 09:18 - 2016-02-13 19:13 - 00037888 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\winrt-projections\bin\Winrt_Projections.node
2015-10-30 09:18 - 2016-02-13 19:12 - 00796160 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http\bin\NodeRT_Windows_Web_Http.node
2015-10-30 09:18 - 2016-02-13 19:12 - 00961024 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http.headers\bin\NodeRT_Windows_Web_Http_Headers.node
2015-10-30 09:18 - 2016-02-13 19:12 - 00206336 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.web.http.filters\bin\NodeRT_Windows_Web_Http_Filters.node
2015-10-30 09:18 - 2016-02-13 19:12 - 00558592 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.storage.streams\bin\NodeRT_Windows_Storage_Streams.node
2015-10-30 09:18 - 2016-02-13 19:13 - 00397824 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\windows.foundation\bin\NodeRT_Windows_Foundation.node
2015-10-30 09:18 - 2016-02-13 19:12 - 00181248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\dss_service\node_modules\nodert-buffer-utils\bin\NodeRT_Buffer_Utils.node
2015-06-01 22:00 - 2015-06-01 22:00 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll
2016-04-25 15:12 - 2016-04-25 15:12 - 00174872 _____ () F:\Program Files\TeamSpeak 3 Client\quazip.dll
2016-04-25 15:12 - 2016-04-25 15:12 - 00103192 _____ () F:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2016-04-25 15:12 - 2016-04-25 15:12 - 00107800 _____ () F:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2016-04-25 15:13 - 2016-04-25 15:13 - 00312088 _____ () F:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2016-04-25 15:13 - 2016-04-25 15:13 - 00485656 _____ () F:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2016-04-30 07:51 - 2016-04-30 07:51 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-30 07:51 - 2016-04-30 07:51 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2016-06-01 18:13 - 2016-05-02 08:02 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-05-11 06:10 - 2016-04-29 22:10 - 00785920 _____ () F:\Program Files (x86)\Steam\SDL2.dll
2016-04-30 07:11 - 2015-07-03 18:12 - 04962816 _____ () F:\Program Files (x86)\Steam\v8.dll
2016-05-11 06:10 - 2016-04-30 02:10 - 02549840 _____ () F:\Program Files (x86)\Steam\video.dll
2016-04-30 07:11 - 2016-02-09 01:14 - 02549760 _____ () F:\Program Files (x86)\Steam\libavcodec-56.dll
2016-04-30 07:11 - 2016-02-09 01:14 - 00491008 _____ () F:\Program Files (x86)\Steam\libavformat-56.dll
2016-04-30 07:11 - 2016-02-09 01:14 - 00332800 _____ () F:\Program Files (x86)\Steam\libavresample-2.dll
2016-04-30 07:11 - 2016-02-09 01:14 - 00442880 _____ () F:\Program Files (x86)\Steam\libavutil-54.dll
2016-04-30 07:11 - 2016-02-09 01:14 - 00485888 _____ () F:\Program Files (x86)\Steam\libswscale-3.dll
2016-04-30 07:11 - 2015-07-03 18:12 - 01556992 _____ () F:\Program Files (x86)\Steam\icui18n.dll
2016-04-30 07:11 - 2015-07-03 18:12 - 01187840 _____ () F:\Program Files (x86)\Steam\icuuc.dll
2016-05-11 06:10 - 2016-04-30 02:10 - 00829008 _____ () F:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-04-30 07:11 - 2016-02-18 00:25 - 00281088 _____ () F:\Program Files (x86)\Steam\openvr_api.dll
2016-04-30 07:13 - 2016-05-30 00:12 - 47503472 _____ () C:\Users\rush_\AppData\Roaming\Spotify\libcef.dll
2016-06-01 13:26 - 2016-06-01 13:26 - 01016832 _____ () F:\Program Files (x86)\Origin\platforms\qwindows.dll
2016-06-01 13:26 - 2016-06-01 13:26 - 00028160 _____ () F:\Program Files (x86)\Origin\imageformats\qgif.dll
2016-06-01 13:26 - 2016-06-01 13:26 - 00029696 _____ () F:\Program Files (x86)\Origin\imageformats\qico.dll
2016-06-01 13:26 - 2016-06-01 13:26 - 00256000 _____ () F:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2016-06-01 13:26 - 2016-06-01 13:26 - 00266240 _____ () F:\Program Files (x86)\Origin\imageformats\qmng.dll
2016-06-01 13:26 - 2016-06-01 13:26 - 00023552 _____ () F:\Program Files (x86)\Origin\imageformats\qtga.dll
2016-06-01 13:26 - 2016-06-01 13:26 - 00346112 _____ () F:\Program Files (x86)\Origin\imageformats\qtiff.dll
2016-06-01 13:26 - 2016-06-01 13:26 - 00023552 _____ () F:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2016-06-01 20:44 - 2016-06-01 20:44 - 00679624 _____ () C:\Users\rush_\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2016-06-01 15:38 - 2006-06-09 15:20 - 00003072 _____ () C:\WINDOWS\system32\CTXFIGER.DLL
2016-05-11 06:10 - 2016-04-28 03:00 - 49825056 _____ () F:\Program Files (x86)\Steam\bin\libcef.dll
2016-04-30 07:13 - 2016-05-30 00:12 - 01584240 _____ () C:\Users\rush_\AppData\Roaming\Spotify\libglesv2.dll
2016-04-30 07:13 - 2016-05-30 00:12 - 00082032 _____ () C:\Users\rush_\AppData\Roaming\Spotify\libegl.dll
2016-05-17 13:20 - 2016-05-11 13:48 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libglesv2.dll
2016-05-17 13:20 - 2016-05-11 13:48 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libegl.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2016-04-29 21:11 - 2016-04-29 21:09 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> $(runtime.windows)\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> $(runtime.windows)\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-2987826118-164082447-866195739-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\rush_\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-2987826118-164082447-866195739-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\rush_\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{BFFFF3CA-B16E-4458-BA83-164088C2A41D}] => (Allow) F:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A229F129-AB22-4F24-BED1-05966DF085B3}] => (Allow) F:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{4559B03A-2739-48B1-886A-A03DC9415ED7}] => (Allow) F:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{915155BE-D387-4276-9CA1-7B23E34095A9}] => (Allow) F:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{6543F2F0-9A07-4E3E-B0E5-B0FE1AEA7AB2}C:\users\rush_\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\rush_\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{A80ADFE9-D3F3-4EAF-8493-37F1F2DFCBC2}C:\users\rush_\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\rush_\appdata\roaming\spotify\spotify.exe
FirewallRules: [{5ACE14B3-361A-42D3-AF0E-557FD977013F}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{5A5191A2-B9F0-4816-9695-535F810E6B41}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{DD8A812E-B8A7-48D8-9ED4-398FD3C92AF2}] => (Allow) F:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{9587074D-BA54-4CC5-AAA3-A6D16553F4F6}] => (Allow) F:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{C4BC9AD2-8EA2-418A-9352-4D5DFD7F8C1D}] => (Allow) F:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{D461074A-A402-4A48-8C26-F46CE62ABC27}] => (Allow) F:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{F7E52039-B499-4769-9A77-12F85CA47F6B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{6699F85D-3163-43D5-A818-9B2F6623468C}F:\totalcmd\totalcmd64.exe] => (Allow) F:\totalcmd\totalcmd64.exe
FirewallRules: [UDP Query User{6722C6BA-0516-4285-B4B6-4E3F43AA3900}F:\totalcmd\totalcmd64.exe] => (Allow) F:\totalcmd\totalcmd64.exe
FirewallRules: [{7960AFF7-329C-4841-B381-D255F4CF9D62}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\GrowHome\GrowHome.exe
FirewallRules: [{BE3401D5-53CB-4D48-862F-C1C932F68581}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\GrowHome\GrowHome.exe
FirewallRules: [{C6B4236C-05F5-481B-8DD9-92C4FF645FF9}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{615FCEF7-F769-42F4-8DD8-50D2CE15431A}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{B28F207C-ECB8-4753-B50D-D579FC21A614}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Hotline Miami 2\HotlineMiami2.exe
FirewallRules: [{D00E8E23-D2F2-4ABB-9B92-D79F29799A8F}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Hotline Miami 2\HotlineMiami2.exe
FirewallRules: [{A9AAA2D0-6DC9-4BA9-9FA2-942CD12AB2A6}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{4507EC2D-3905-4EF8-B94C-3F06C9A7FF12}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{53BE4A1A-AB76-4148-99AD-1DD51FDE61A6}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Sonic Generations\SonicGenerations.exe
FirewallRules: [{336640F1-149A-4407-BE6F-87B92B6DC6DB}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Sonic Generations\SonicGenerations.exe
FirewallRules: [{E28AF2C7-9D9A-4D7E-9089-CDBB6C1A2EEE}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Sonic Generations\ConfigurationTool.exe
FirewallRules: [{79D8D3EC-BB26-426C-823A-4113D5126FDB}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Sonic Generations\ConfigurationTool.exe
FirewallRules: [{186F08C5-5BFD-484C-AE47-868CE5034525}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{3C17A9F3-C2C9-413B-9BC5-225CA1842889}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\PlanetSide 2\LaunchPad.exe
FirewallRules: [{F2CB6008-96F4-40AD-82BD-358CF5268E87}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{141F395A-C98C-4D33-89C1-389C648BFAC4}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{2A297CB3-9734-4F5D-93D2-657598B469A6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B943C533-D794-4113-9BF0-49F152A11B22}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{FDCC9976-EA73-448F-8A01-065AEF2C5965}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{6BB4F2EA-251D-4F1A-83D9-D392109FC6A8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CDBA831A-9C67-4821-803C-0A291D7B8C65}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{721C39EF-6138-4AD9-AF2D-BBD92C920BE4}F:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Block) F:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe
FirewallRules: [UDP Query User{3C27A72C-1AB5-4934-84AD-633D5D1399AB}F:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Block) F:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe
FirewallRules: [TCP Query User{0742FBE5-DE69-4BAC-BBFE-068767B50B28}F:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [UDP Query User{93981BF8-42C9-46A3-9B3E-3C75A2623074}F:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [{DFD4DAF6-C039-43E4-A614-B13DE6239989}] => (Allow) f:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{98F6F70F-688C-44E6-87E3-B2BA299847A7}] => (Allow) f:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{BF9CBD04-2308-4FEC-9DF7-0FC1ACAEA6E5}] => (Allow) f:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{D8FB09AC-93CC-4226-8760-91ABDBE03EA1}] => (Allow) f:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [TCP Query User{CE829C51-8366-45C0-913D-6226F2E347BD}F:\program files (x86)\battlenet games\overwatch\overwatch.exe] => (Allow) F:\program files (x86)\battlenet games\overwatch\overwatch.exe
FirewallRules: [UDP Query User{2AB85778-1BF7-43D6-9245-B1289475BF2C}F:\program files (x86)\battlenet games\overwatch\overwatch.exe] => (Allow) F:\program files (x86)\battlenet games\overwatch\overwatch.exe
FirewallRules: [TCP Query User{F9D1F101-6FAF-4BC8-A05C-FC86D3F340A5}F:\program files (x86)\battlenet games\heroes of the storm\versions\base43170\heroesofthestorm_x64.exe] => (Allow) F:\program files (x86)\battlenet games\heroes of the storm\versions\base43170\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{497FB0A7-FCA2-410A-8518-A5B794B4F380}F:\program files (x86)\battlenet games\heroes of the storm\versions\base43170\heroesofthestorm_x64.exe] => (Allow) F:\program files (x86)\battlenet games\heroes of the storm\versions\base43170\heroesofthestorm_x64.exe
FirewallRules: [{57008F84-D6D2-4D1D-B913-668B17214B5F}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{FB79BDC7-8103-4CAE-B36F-25C2EF0C490A}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{3C2D7BC8-763E-4539-8553-5E8292A39B14}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{A3893B85-5D43-4200-8B89-95EE8F8E339D}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [TCP Query User{F2149C61-603F-4C9A-A086-E93074EE9D77}F:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{8BE90630-2352-4DDE-8052-D92BDC24AFE1}F:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [{B2B931CA-D768-4155-99C8-60AE04535556}] => (Allow) f:\Program Files (x86)\OMC ModPack Client\OMC ModPack Client.exe
FirewallRules: [TCP Query User{BE407C58-2CAA-42AB-943A-4FC9C3BEE718}F:\program files (x86)\grey box\dreadnought\dreadnoughtlauncher.exe] => (Allow) F:\program files (x86)\grey box\dreadnought\dreadnoughtlauncher.exe
FirewallRules: [UDP Query User{A7321D2F-AF2E-4C2F-AA5F-3B78AA6F4596}F:\program files (x86)\grey box\dreadnought\dreadnoughtlauncher.exe] => (Allow) F:\program files (x86)\grey box\dreadnought\dreadnoughtlauncher.exe
FirewallRules: [TCP Query User{B56929A3-AC2A-476A-AB99-2D8D4D935033}F:\program files (x86)\grey box\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe] => (Allow) F:\program files (x86)\grey box\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe
FirewallRules: [UDP Query User{52296B4A-E7F8-4E80-B1BA-671981C50582}F:\program files (x86)\grey box\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe] => (Allow) F:\program files (x86)\grey box\dreadnought\dreadgame\dreadgame\binaries\win64\dreadgame-win64-shipping.exe
FirewallRules: [{9A67F420-83DD-4498-96B7-590E005D990B}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{4EC4D629-4C05-471E-8C8E-3AC5318F6446}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\3DMark\3DMarkLauncher.exe
FirewallRules: [{7573F523-AD52-4CC2-9C6A-4D3E3315E30C}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{B891DB52-32DE-4203-A5A6-41E505E7C106}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe
FirewallRules: [{32684047-A033-4270-93DC-C9DD8813028F}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{973C5F65-8569-4533-AB2F-032E7E8D646C}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe
FirewallRules: [{CEB8EEC3-F29F-4200-910F-CE5715D56B70}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{8B5FF058-4D66-4D0F-8F6D-2F2489088891}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{31678E48-8AF0-4881-B0AD-FC38ABCC9688}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Sparkle 2\Sparkle2.exe
FirewallRules: [{94A5770D-356C-4979-A267-CF0650DC8751}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Sparkle 2\Sparkle2.exe
FirewallRules: [{B2AF582A-59DA-42E6-8CEE-9E17BF8AD5ED}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\DOOM\DOOMx64.exe
FirewallRules: [{26013E21-B472-446B-BF2F-B813C1DBD490}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\DOOM\DOOMx64.exe
FirewallRules: [{747E4D18-ECFA-41EB-B8E9-572FB61A8BCC}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Aliens Colonial Marines\Binaries\Win32\ACM.exe
FirewallRules: [{4561CC29-247D-48DA-B461-B123B3F97DA1}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Aliens Colonial Marines\Binaries\Win32\ACM.exe
FirewallRules: [{34C38B39-1DD4-45C9-96AA-D69CAA5ADFF6}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Bugbear Entertainment\Wreckfest_x64.exe
FirewallRules: [{DEC5AF99-8949-427E-B982-E4287BF2DB6D}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Bugbear Entertainment\Wreckfest_x64.exe
FirewallRules: [{70CD902A-6687-4554-BA7B-9CA002CCFEDC}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Bugbear Entertainment\Wreckfest.exe
FirewallRules: [{FAABC774-9BF4-4EA9-BA99-FFC4A9D1D699}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Bugbear Entertainment\Wreckfest.exe
FirewallRules: [{90E0CF5F-780B-41E4-ADF6-C047848FAB03}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{89F62D0C-8CC1-4645-B46D-447B019C0C33}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{C189055F-08CE-4D33-999D-383A68054A4C}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Planetary Annihilation\bin_x64\PA.exe
FirewallRules: [{79C7A7B3-88F3-43EC-82D0-77158AD4633A}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Planetary Annihilation\bin_x64\PA.exe
FirewallRules: [{D871E267-187C-46ED-A900-E35F415F5636}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Warhammer End Times Vermintide\launcher\launcher.exe
FirewallRules: [{66949242-9FD8-437D-AE07-C7F3E6742E28}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Warhammer End Times Vermintide\launcher\launcher.exe
FirewallRules: [{88C97F28-3099-4AC4-B042-F2D89B640DDF}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Warhammer End Times Vermintide\binaries\vermintide.exe
FirewallRules: [{6D0F4B99-2702-4F2E-BACF-EFE87E0E9723}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Warhammer End Times Vermintide\binaries\vermintide.exe
==================== Wiederherstellungspunkte =========================
04-06-2016 13:43:54 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (06/06/2016 12:39:30 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2016-07-04T10:31:30Z. Fehlercode: 0x80070005.
Error: (06/06/2016 12:39:00 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2016-07-04T10:31:00Z. Fehlercode: 0x80070005.
Error: (06/06/2016 12:38:30 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2016-07-04T10:31:30Z. Fehlercode: 0x80070005.
Error: (06/06/2016 12:38:00 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2016-07-04T10:31:00Z. Fehlercode: 0x80070005.
Error: (06/06/2016 12:37:30 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2016-07-04T10:31:30Z. Fehlercode: 0x80070005.
Error: (06/06/2016 12:37:00 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2016-07-04T10:31:00Z. Fehlercode: 0x80070005.
Error: (06/06/2016 12:36:30 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2016-07-04T10:31:30Z. Fehlercode: 0x80070005.
Error: (06/06/2016 12:36:00 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2016-07-04T10:31:00Z. Fehlercode: 0x80070005.
Error: (06/06/2016 12:35:30 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2016-07-04T10:31:30Z. Fehlercode: 0x80070005.
Error: (06/06/2016 12:35:00 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Fehler beim Planen des Softwareschutzdiensts für den erneuten Start bei 2016-07-04T10:31:00Z. Fehlercode: 0x80070005.
Systemfehler:
=============
Error: (06/06/2016 12:30:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "MBAMScheduler" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (06/06/2016 12:30:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "MBAMScheduler" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (06/06/2016 12:30:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "MBAMService" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (06/06/2016 12:15:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "MBAMService" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (06/06/2016 12:15:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "MBAMScheduler" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (06/06/2016 12:15:09 PM) (Source: Microsoft-Windows-TaskScheduler) (EventID: 413) (User: NT-AUTORITÄT)
Description: Beim Start des Aufgabenplanungsdiensts konnten Aufgaben nicht geladen werden. Zusätzliche Daten: Fehlerwert: 2147942405.
Error: (06/06/2016 12:15:09 PM) (Source: Microsoft-Windows-TaskScheduler) (EventID: 413) (User: NT-AUTORITÄT)
Description: Beim Start des Aufgabenplanungsdiensts konnten Aufgaben nicht geladen werden. Zusätzliche Daten: Fehlerwert: 2147942405.
Error: (06/06/2016 12:15:09 PM) (Source: Microsoft-Windows-TaskScheduler) (EventID: 412) (User: NT-AUTORITÄT)
Description: Die Aufgabenplanungdienst konnte durch den Computerstart ausgelöste Aufgaben nicht starten. Zusätzliche Daten: Fehlerwert: 2147942405.
Error: (06/06/2016 12:15:10 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 06.06.2016 um 12:04:26 unerwartet heruntergefahren.
Error: (06/06/2016 10:23:58 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-K0PFM97)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}DESKTOP-K0PFM97rush_S-1-5-21-2987826118-164082447-866195739-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.FeatureOnDemand.InsiderHub_10.0.10586.0_neutral_neutral_cw5n1h2txyewyS-1-15-2-4016783169-893401051-2237370320-274899566-412088533-2398988950-2155762795
CodeIntegrity:
===================================
Date: 2016-06-04 02:21:40.449
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-03 17:45:15.407
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-02 17:15:13.601
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-02 12:21:55.286
Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume6\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-06-01 15:38:36.349
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\UDAAPO64.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-01 15:38:35.851
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\CTMLFX64.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-01 15:38:35.815
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\CTMLFX64.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-01 15:33:31.611
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\CTMLFX64.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-01 15:22:47.142
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\CTMLFX64.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-06-01 15:21:54.651
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\CTMLFX64.dll because the set of per-page image hashes could not be found on the system.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-2500K CPU @ 3.30GHz
Prozentuale Nutzung des RAM: 38%
Installierter physikalischer RAM: 8104.68 MB
Verfügbarer physikalischer RAM: 4987.86 MB
Summe virtueller Speicher: 11176.68 MB
Verfügbarer virtueller Speicher: 7295.75 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:149.31 GB) (Free:115.15 GB) NTFS
Drive d: (Dokumente) (Fixed) (Total:48.83 GB) (Free:21.73 GB) NTFS
Drive e: (Daten) (Fixed) (Total:781.25 GB) (Free:97.57 GB) NTFS
Drive f: (Installiertes) (Fixed) (Total:649.81 GB) (Free:322.63 GB) NTFS
Drive h: (DiRT Rally) (CDROM) (Total:19.96 GB) (Free:0 GB) UDF
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 65E6503D)
Partition 1: (Active) - (Size=48.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=649.8 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 1780D6CF)
Partition: GPT.
==================== Ende von Addition.txt ============================
Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 06.06.2016 Suchlaufzeit: 12:30 Protokolldatei: Antimalwarebytes.txt Administrator: Ja Version: 2.2.1.1043 Malware-Datenbank: v2016.06.06.02 Rootkit-Datenbank: v2016.05.27.01 Lizenz: Testversion Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 10 CPU: x64 Dateisystem: NTFS Benutzer: rush_ Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 290074 Abgelaufene Zeit: 9 Min., 36 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 0 (keine bösartigen Elemente erkannt) Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) Code:
ATTFilter Protokollname: System
Quelle: Microsoft-Windows-Kernel-Power
Datum: 06.06.2016 12:14:27
Ereignis-ID: 41
Aufgabenkategorie:(63)
Ebene: Kritisch
Schlüsselwörter:(70368744177664),(2)
Benutzer: SYSTEM
Computer: DESKTOP-K0PFM97
Beschreibung:
Das System wurde neu gestartet, ohne dass es zuvor ordnungsgemäß heruntergefahren wurde. Dieser Fehler kann auftreten, wenn das System nicht mehr reagiert hat oder abgestürzt ist oder die Stromzufuhr unerwartet unterbrochen wurde.
Ereignis-XML:
<Event xmlns="hxxp://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-Kernel-Power" Guid="{331C3B3A-2005-44C2-AC5E-77220C37D6B4}" />
<EventID>41</EventID>
<Version>3</Version>
<Level>1</Level>
<Task>63</Task>
<Opcode>0</Opcode>
<Keywords>0x8000400000000002</Keywords>
<TimeCreated SystemTime="2016-06-06T10:14:27.931618900Z" />
<EventRecordID>2458</EventRecordID>
<Correlation />
<Execution ProcessID="4" ThreadID="8" />
<Channel>System</Channel>
<Computer>DESKTOP-K0PFM97</Computer>
<Security UserID="S-1-5-18" />
</System>
<EventData>
<Data Name="BugcheckCode">0</Data>
<Data Name="BugcheckParameter1">0x0</Data>
<Data Name="BugcheckParameter2">0x0</Data>
<Data Name="BugcheckParameter3">0x0</Data>
<Data Name="BugcheckParameter4">0x0</Data>
<Data Name="SleepInProgress">0</Data>
<Data Name="PowerButtonTimestamp">0</Data>
<Data Name="BootAppStatus">0</Data>
</EventData>
</Event>
|
|
| Themen zu PC startet ohne Vorwarnung neu. Kein Bluescreen. Viele Logfiles für euch. |
| administrator, adobe, antivirus, avira, bluescreen, cpu, cpu-z, defender, dnsapi.dll, explorer, geforce, google, homepage, iexplore.exe, installation, mozilla, nvidia, problem, prozesse, realtek, registry, services.exe, software, svchost.exe, system, teamspeak, total commander, windows, windowsapps |
PC startet ohne Vorwarnung neu. Kein Bluescreen. Viele Logfiles für euch.
Linear-Darstellung
