Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org"

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 14.03.2017, 02:09   #1
Drebing
 
Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org" - Standard

Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org"



Guten Morgen zusammen,

ich habe seit gestern das Problem, daß in den Browsern MS Edge (ehem. IE) und in Google Chrome als Startseite immer "launchpage.org" benutzt wird. In den Einstellungen der Browser ist diese Seite (Toolbar?) aber nicht eingetragen. Zusätzlich kann ich Chrome nicht mehr als Standardbrowser definieren.

Bisheriger Rettungsversuch:

- Avast Internet Security: Vollständiger Systemscan = negativ
- Malwarebytes (kostenlose Version): Durchsuchen = negativ
- CCleaner: Registry bereinigt und CCleaner Scan durchgeführt = keine Veränderung
- MS Edge & Google Chrome resetet = Keine Veränderung

Ich bin mit meinem Latein am Ende und hoffe nun hier auf Hilfe.

Anbei die erforderlichen Logs von FRST.

FRST
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 13-03-2017
durchgeführt von Tim (Administrator) auf HOME-PC (14-03-2017 01:35:25)
Gestartet von D:\Downloads
Geladene Profile: Tim (Verfügbare Profile: Tim & DefaultAppPool)
Platform: Windows 10 Home Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Guillemot Corporation ®) C:\Program Files\DJHERCULESMIX\Audio\DJ Console Series\drivers\amd64\HerculesDJControlMP3.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Realtek) C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtlService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Electronic Arts) F:\Programme\Origin\OriginWebHelperService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtWLan.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDCountdown.exe
() C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.exe
(Dropbox, Inc.) C:\Users\Tim\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Dropbox, Inc.) C:\Users\Tim\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Dominik Reichl) C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7611608 2014-05-27] (Realtek Semiconductor)
HKLM\...\Run: [Cm106Sound] => C:\WINDOWS\syswow64\RunDll32.exe C:\WINDOWS\Syswow64\cm106.dll,CMICtrlWnd
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15818872 2016-04-28] (Logitech Inc.)
HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2015-09-22] (Saitek)
HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [157696 2015-09-22] (Saitek)
HKLM\...\Run: [Hercules DJ Series TrayAgent] => C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe [1817248 2015-12-07] (DJHERCULESMIX®)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2017-01-19] (Apple Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [205512 2017-03-14] (AVAST Software)
HKLM-x32\...\Run: [RoccatKoneXTD] => C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.EXE [552960 2014-10-19] (ROCCAT GmbH)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2867712 2017-01-09] (Dominik Reichl)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [9363672 2017-02-08] (Piriform Ltd)
HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\Run: [KeePass Password Safe 2] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2867712 2017-01-09] (Dominik Reichl)
HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\Run: [Dropbox Update] => C:\Users\Tim\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\MountPoints2: {be129d6b-19e9-11e5-b1c1-74d435bbf5f0} - "I:\LaunchU3.exe" -a
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-03-14] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-03-14] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2016-08-14]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2016-05-05]
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe ()
Startup: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2017-03-09]
ShortcutTarget: Dropbox.lnk -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{257679c5-d672-4a4b-bdec-b2571136dafa}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{3961559e-6d54-45a6-af6d-bb334e9e4541}: [DhcpNameServer] 192.168.178.1
ManualProxies: 

Internet Explorer:
==================
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-02-12] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-12] (Oracle Corporation)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-09]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-09]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-02-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-02-12] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-02-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-02-23] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-27] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1066145973-1361776141-3635688471-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2017-02-28] ()

Chrome: 
=======
CHR DefaultProfile: Profile 1
CHR HomePage: Profile 1 -> hxxp://harmony-gouvernors.de/hgclan/
CHR StartupUrls: Profile 1 -> "hxxp://harmony-gouvernors.de/hgclan/","hxxp://81.169.250.232/forum/","hxxps://www.google.de/"
CHR Profile: C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-03-14]
CHR Profile: C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-03-14]
CHR Extension: (ProxFlow) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aakchaleigkohafkfjfjbblobjifikek [2017-01-24]
CHR Extension: (Google Drive) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (YouTube) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Google-Suche) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Avast Online Security (BETA)) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2017-02-22]
CHR Extension: (AdBlock) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-02-25]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-08]
CHR Extension: (Audio Converter) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ojfphighcpfimfhblaigjckljcoeipga [2016-05-08]
CHR Extension: (Google Mail) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-04]
CHR Extension: (Chrome Media Router) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-07]
CHR Profile: C:\Users\Tim\AppData\Local\Google\Chrome\User Data\System Profile [2017-03-14]
CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <nicht gefunden>

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2014-11-16] (Adobe Systems) [Datei ist nicht signiert]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7147320 2017-03-14] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [262736 2017-03-14] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [278784 2017-03-14] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1486344 2017-02-01] ()
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [239376 2015-10-28] (EasyAntiCheat Ltd)
R2 HerculesDJControlMP3; C:\Program Files\DJHERCULESMIX\Audio\DJ Console Series\drivers\amd64\HerculesDJControlMP3.EXE [105472 2015-10-14] (Guillemot Corporation ®) [Datei ist nicht signiert]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-04-11] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-01] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193656 2016-04-28] (Logitech Inc.)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-23] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-23] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-02-23] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2017-02-23] (NVIDIA Corporation)
S3 Origin Client Service; F:\Programme\Origin\OriginClientService.exe [2122248 2017-02-23] (Electronic Arts)
R2 Origin Web Helper Service; F:\Programme\Origin\OriginWebHelperService.exe [2184208 2017-02-23] (Electronic Arts)
S3 OverwolfUpdater; F:\Programme\Overwolf\OverwolfUpdater.exe [1325384 2017-03-05] (Overwolf LTD)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2017-02-13] ()
R2 Realtek11nSU; C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtlService.exe [36864 2010-04-16] (Realtek) [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [309272 2017-03-14] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [189768 2017-03-14] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [334600 2017-03-14] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [48528 2017-03-14] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [38296 2017-03-14] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [32088 2017-03-14] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [126600 2017-03-14] (AVAST Software)
S3 aswNetNd6; C:\WINDOWS\system32\DRIVERS\aswNetNd6.sys [28312 2016-04-15] (AVAST Software)
R1 aswNetSec; C:\WINDOWS\system32\drivers\aswNetSec.sys [461640 2017-03-14] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [100640 2017-03-14] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [75704 2017-03-14] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [993608 2017-03-14] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [548928 2017-03-14] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [162528 2017-03-14] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [337592 2017-03-14] (AVAST Software)
S3 avmeject; C:\WINDOWS\System32\drivers\avmeject.sys [14120 2013-12-17] (AVM Berlin)
S3 Bulk; C:\WINDOWS\System32\Drivers\HDJBulk.sys [339104 2016-01-13] (© Guillemot R&D, 2015. All rights reserved.)
S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [27040 2012-09-25] (Windows (R) Win 7 DDK provider)
S3 fwlanusb6; C:\WINDOWS\System32\DRIVERS\fwlanusb6.sys [1327744 2014-03-27] (AVM GmbH) [Datei ist nicht signiert]
S3 HDJMidi; C:\WINDOWS\system32\DRIVERS\HDJMidi.sys [283296 2016-01-13] (© Guillemot R&D, 2015. All rights reserved.)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (EZB Systems, Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyHidFilter; C:\WINDOWS\system32\drivers\LGJoyHidFilter.sys [74920 2016-04-19] (Logitech Inc.)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [85160 2016-04-19] (Logitech Inc.)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 npusbio; C:\WINDOWS\System32\Drivers\npusbio_x64.sys [38400 2012-07-09] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_2a6e383a1adc0e24\nvlddmkm.sys [14569528 2017-02-24] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-02-23] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2017-01-20] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [59448 2017-02-23] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek                                            )
S3 SaiH0BAC; C:\WINDOWS\System32\DRIVERS\SaiH0BAC.sys [176128 2007-07-02] (Saitek)
S3 SaiK0bac; C:\WINDOWS\System32\drivers\SaiK0bac.sys [180896 2015-09-23] (Saitek)
R3 SaiMini; C:\WINDOWS\System32\drivers\SaiMini.sys [23968 2015-09-23] (Saitek)
R3 SaiNtBus; C:\WINDOWS\system32\drivers\SaiBus.sys [51488 2015-09-23] (Saitek)
S3 USBMULCD; C:\WINDOWS\system32\drivers\CM10664.sys [4135936 2014-01-17] (C-Media Electronics Inc)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
U3 idsvc; kein ImagePath
S3 RTTEAMPT; \SystemRoot\system32\DRIVERS\RtTeam620.sys [X]
S3 RTVLANPT; \SystemRoot\system32\DRIVERS\RtVlan620.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-03-14 01:35 - 2017-03-14 01:35 - 00000000 ____D C:\FRST
2017-03-14 00:50 - 2017-03-14 00:50 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-03-14 00:45 - 2017-03-14 00:45 - 00004028 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1450443547
2017-03-14 00:45 - 2017-03-14 00:45 - 00001100 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-03-14 00:40 - 2017-03-14 00:40 - 00548928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2017-03-14 00:40 - 2017-03-14 00:40 - 00547904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys.148944840765604
2017-03-14 00:40 - 2017-03-14 00:40 - 00398408 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-03-14 00:40 - 2017-03-14 00:40 - 00337592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-03-14 00:40 - 2017-03-14 00:40 - 00162528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-03-14 00:40 - 2017-03-14 00:40 - 00126600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-03-14 00:40 - 2017-03-14 00:40 - 00100640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-03-14 00:40 - 2017-03-14 00:40 - 00075704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-03-14 00:40 - 2017-03-14 00:40 - 00038296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-03-14 00:40 - 2017-03-14 00:40 - 00003994 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-03-14 00:40 - 2017-03-14 00:39 - 00993608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-03-14 00:40 - 2017-03-14 00:39 - 00461640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetSec.sys
2017-03-14 00:40 - 2017-03-14 00:39 - 00334600 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys
2017-03-14 00:40 - 2017-03-14 00:39 - 00309272 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2017-03-14 00:40 - 2017-03-14 00:39 - 00189768 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2017-03-14 00:40 - 2017-03-14 00:39 - 00048528 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2017-03-14 00:40 - 2017-03-14 00:39 - 00032088 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2017-03-14 00:39 - 2017-03-14 00:39 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-03-14 00:15 - 2017-03-14 00:19 - 00000000 ____D C:\ProgramData\HitmanPro
2017-03-14 00:06 - 2017-03-14 00:13 - 00000000 ____D C:\AdwCleaner
2017-03-13 15:25 - 2017-03-13 15:27 - 00000000 ____D C:\Users\Tim\AppData\Local\SniperV2
2017-03-09 22:13 - 2017-03-09 22:13 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-03-09 18:24 - 2017-02-23 09:17 - 00136064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-03-09 18:24 - 2017-01-26 01:13 - 00103936 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-03-09 18:24 - 2017-01-26 01:12 - 00326656 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-03-09 18:24 - 2017-01-26 01:09 - 00322560 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-03-09 18:24 - 2017-01-26 01:09 - 00118272 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-03-09 18:23 - 2017-03-09 18:24 - 00000000 ____D C:\WINDOWS\LastGood
2017-03-09 18:22 - 2017-02-23 23:55 - 01600056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2017-03-09 18:22 - 2017-02-23 23:55 - 00217528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2017-03-09 18:22 - 2017-02-23 23:55 - 00047664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2017-03-09 18:22 - 2017-02-23 19:34 - 00059448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-03-09 18:22 - 2017-02-23 11:32 - 40192056 _____ C:\WINDOWS\system32\nvcompiler.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 35272760 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 34992184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 28252608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 19007528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 14674896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 11122728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 11019888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 09306312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 08990256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 04078008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 03596616 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 03168192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 02717752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 01985080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437878.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 01589696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437878.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 01052096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00989632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00959424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00946456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00944224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00910784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00721768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00719856 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00687408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00618416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00609728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00605120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00576008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00573632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00499136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00483384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00447984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00043566 _____ C:\WINDOWS\system32\nvinfo.pb
2017-03-09 18:05 - 2017-03-09 18:05 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-03-09 18:05 - 00003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-03-09 18:05 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-03-09 18:05 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-03-09 18:05 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-03-09 18:05 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-03-09 18:05 - 00003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-02-23 19:35 - 01880512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-03-09 18:05 - 2017-02-23 19:35 - 01468864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-03-08 19:59 - 2017-03-08 19:59 - 00003270 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-03-08 19:59 - 2017-03-08 19:59 - 00002426 _____ C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-03-07 19:29 - 2017-03-07 19:29 - 00000000 ____D C:\Users\Tim\AppData\Local\Afl0Sim
2017-03-06 19:00 - 2017-03-06 19:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FsDreamTeam
2017-03-04 12:10 - 2017-03-04 12:10 - 00000000 ____D C:\Users\Tim\Documents\Avalanche Studios
2017-03-04 12:10 - 2017-03-04 12:10 - 00000000 ____D C:\Users\Tim\AppData\Local\CrashRpt
2017-03-03 16:10 - 2017-03-03 16:10 - 00002553 _____ C:\Users\Tim\Desktop\Hearthstone Deck Tracker.lnk
2017-02-24 20:49 - 2017-02-24 20:49 - 00000000 ____D C:\Users\Tim\ansel
2017-02-24 20:48 - 2017-02-24 20:48 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2017-02-24 20:48 - 2017-01-20 19:39 - 00156608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-02-24 20:48 - 2017-01-20 19:39 - 00124352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-02-24 20:48 - 2017-01-20 19:39 - 00046016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2017-02-23 18:11 - 2017-02-23 23:48 - 00005110 _____ C:\ProgramData\NvTelemetryContainer.log_backup1
2017-02-22 19:36 - 2017-02-06 20:48 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-02-22 19:36 - 2017-02-06 20:48 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-02-22 19:27 - 2017-02-22 19:27 - 00002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-18 12:15 - 2017-02-10 03:33 - 01983424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437866.dll
2017-02-18 12:15 - 2017-02-10 03:33 - 01589696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437866.dll
2017-02-18 12:15 - 2017-02-10 03:33 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-02-18 12:15 - 2017-02-10 03:33 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-02-17 22:36 - 2017-02-17 22:36 - 00001866 _____ C:\Users\Tim\Desktop\UTX Setup Tool.lnk
2017-02-17 20:24 - 2017-02-17 20:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flight One Software
2017-02-13 22:18 - 2017-02-13 22:18 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Ubisoft
2017-02-12 18:38 - 2017-02-12 18:37 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-02-12 18:11 - 2017-02-12 18:11 - 00337080 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys.148691948232804

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-03-14 01:27 - 2015-12-23 10:49 - 00000000 ____D C:\Users\Tim\AppData\Local\CrashDumps
2017-03-14 01:12 - 2014-11-09 14:37 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-03-14 00:52 - 2016-08-04 16:53 - 00000000 ____D C:\ProgramData\NVIDIA
2017-03-14 00:50 - 2014-11-09 00:59 - 00000000 ____D C:\Users\Tim\AppData\Roaming\KeePass
2017-03-14 00:50 - 2014-11-09 00:30 - 00000000 ___RD C:\Users\Tim\Dropbox
2017-03-14 00:50 - 2014-11-08 18:55 - 00000000 __SHD C:\Users\Tim\IntelGraphicsProfiles
2017-03-14 00:49 - 2016-08-04 16:54 - 10811148 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-03-14 00:49 - 2016-07-16 23:51 - 05473974 _____ C:\WINDOWS\system32\perfh007.dat
2017-03-14 00:49 - 2016-07-16 23:51 - 01532564 _____ C:\WINDOWS\system32\perfc007.dat
2017-03-14 00:45 - 2016-08-04 16:59 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-03-14 00:44 - 2016-07-16 07:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2017-03-13 23:41 - 2016-08-04 16:52 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-03-13 16:55 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-03-13 16:54 - 2016-08-04 16:54 - 00000000 ____D C:\Users\Tim
2017-03-13 16:54 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Cursors
2017-03-13 15:15 - 2014-11-08 18:28 - 00002464 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-03-13 14:47 - 2016-05-07 17:38 - 00000000 ____D C:\Users\Tim\Documents\Flight Simulator X Files
2017-03-13 13:37 - 2016-05-17 22:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimMarket
2017-03-13 04:04 - 2016-05-14 02:08 - 00000000 ____D C:\ProgramData\EditVoicepackX
2017-03-13 03:45 - 2014-11-09 15:30 - 00000000 ____D C:\Users\Tim\AppData\Local\Battle.net
2017-03-13 01:40 - 2015-05-02 14:59 - 00000000 ____D C:\Users\Tim\AppData\Local\Ubisoft Game Launcher
2017-03-13 00:08 - 2016-06-10 15:25 - 00000000 ____D C:\ProgramData\InstallMate
2017-03-13 00:08 - 2016-05-28 11:49 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons
2017-03-11 03:36 - 2014-11-16 14:21 - 00000000 ____D C:\Users\Tim\AppData\Roaming\OBS
2017-03-10 18:25 - 2016-03-01 23:35 - 00000000 ____D C:\Users\Tim\AppData\Roaming\vlc
2017-03-09 22:14 - 2014-11-09 00:27 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Dropbox
2017-03-09 18:25 - 2016-05-05 15:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-03-09 18:24 - 2016-03-07 17:07 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-03-09 18:23 - 2016-08-04 16:53 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-03-09 18:05 - 2016-09-13 22:12 - 00001527 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-03-09 18:05 - 2016-08-04 16:53 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-03-09 18:05 - 2016-08-04 16:53 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-03-09 17:36 - 2015-06-17 19:10 - 00000000 ____D C:\Users\Tim\AppData\Local\Dropbox
2017-03-08 22:41 - 2014-11-09 01:09 - 00000000 ____D C:\Users\Tim\AppData\Roaming\TS3Client
2017-03-08 19:59 - 2016-05-05 15:05 - 00000000 ___RD C:\Users\Tim\OneDrive
2017-03-08 17:26 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-03-07 17:05 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-03-06 19:34 - 2015-08-07 17:15 - 00000000 ____D C:\ProgramData\Virtuali
2017-03-05 12:06 - 2016-09-16 14:51 - 00323152 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-03-04 12:10 - 2014-11-08 21:02 - 00000000 ____D C:\ProgramData\Package Cache
2017-03-03 23:36 - 2016-01-13 23:48 - 00001559 _____ C:\Users\Tim\Desktop\TES5Edit.lnk
2017-03-03 16:10 - 2016-08-04 19:08 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HearthSim
2017-03-03 16:10 - 2016-08-04 19:08 - 00000000 ____D C:\Users\Tim\AppData\Local\HearthstoneDeckTracker
2017-03-03 16:10 - 2016-05-02 21:34 - 00000000 ____D C:\Users\Tim\AppData\Local\SquirrelTemp
2017-03-03 16:07 - 2014-11-10 18:07 - 00000000 ____D C:\Users\Tim\AppData\Local\Overwolf
2017-02-24 22:05 - 2014-11-09 01:08 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2017-02-23 19:53 - 2016-05-11 21:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft
2017-02-23 19:53 - 2014-11-08 18:15 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-02-23 19:35 - 2016-09-13 22:12 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-02-23 19:35 - 2016-09-13 22:12 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-02-23 19:35 - 2016-09-13 22:12 - 00120256 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-02-23 19:35 - 2014-11-08 18:53 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-02-23 19:33 - 2014-11-08 18:53 - 138020592 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-02-23 19:06 - 2016-06-21 19:58 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Origin
2017-02-23 19:05 - 2016-06-21 19:54 - 00000000 ____D C:\ProgramData\Origin
2017-02-23 19:04 - 2016-06-21 19:54 - 00000000 ____D C:\ProgramData\Electronic Arts
2017-02-23 18:55 - 2016-06-30 19:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA Creation Master
2017-02-23 15:30 - 2016-12-22 22:45 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-02-23 09:43 - 2016-09-13 22:12 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-02-23 09:28 - 2016-12-15 00:31 - 00548288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-02-23 09:28 - 2016-08-04 16:53 - 06401984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-02-23 09:28 - 2016-08-04 16:53 - 02479160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-02-23 09:28 - 2016-08-04 16:53 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-02-23 09:28 - 2016-08-04 16:53 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-02-23 09:28 - 2016-08-04 16:53 - 00083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-02-23 09:28 - 2016-08-04 16:53 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-02-23 07:38 - 2016-08-04 16:53 - 07807027 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-02-22 19:36 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-02-21 18:16 - 2016-07-20 15:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LHSimulations
2017-02-18 00:35 - 2014-11-09 00:23 - 00000869 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-02-15 19:46 - 2014-11-08 18:43 - 00000000 ____D C:\ProgramData\AVAST Software
2017-02-14 22:06 - 2016-05-06 15:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
2017-02-13 22:18 - 2016-05-28 17:01 - 00270408 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2017-02-13 22:18 - 2014-11-15 23:54 - 00270408 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2017-02-13 22:18 - 2014-11-15 23:54 - 00000000 ____D C:\Users\Tim\AppData\Local\PunkBuster
2017-02-13 22:18 - 2014-11-15 23:52 - 00075136 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2017-02-12 18:38 - 2016-05-18 23:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-02-12 18:38 - 2016-05-18 23:04 - 00000000 ____D C:\Program Files (x86)\Java
2017-02-12 18:38 - 2014-11-09 13:43 - 00000000 ____D C:\ProgramData\Oracle
2017-02-12 18:14 - 2016-12-15 00:30 - 00000000 ____D C:\temp

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-10-03 14:45 - 2016-05-11 21:36 - 0011984 _____ () C:\Program Files (x86)\INSTALL.LOG
2016-11-25 20:41 - 2016-11-25 20:41 - 0113701 _____ () C:\Program Files (x86)\unEZCA.exe
2016-05-11 21:36 - 1998-09-25 12:16 - 0270848 _____ () C:\Program Files (x86)\UNWISE.EXE
2015-01-30 18:31 - 2015-01-30 18:39 - 0000600 _____ () C:\Users\Tim\AppData\Local\PUTTY.RND
2016-11-02 19:14 - 2016-11-02 19:14 - 0000017 _____ () C:\Users\Tim\AppData\Local\resmon.resmoncfg
2016-08-04 16:53 - 2016-08-04 16:53 - 0000000 _____ () C:\ProgramData\DP45977C.lfl
2014-11-10 17:28 - 2016-08-14 17:00 - 0017950 _____ () C:\ProgramData\hpzinstall.log
2016-12-21 22:21 - 2016-12-21 22:21 - 0000118 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2017-02-24 19:20 - 2017-02-24 20:48 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log
2017-02-23 18:11 - 2017-02-23 23:48 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\Tim\FSDreamTeam_JFK V2.reg


Einige Dateien in TEMP:
====================
2017-03-13 11:09 - 2017-03-13 11:09 - 0043520 ____N () C:\Users\Tim\AppData\Local\Temp\proxy_vole1407115911256630049.dll
2017-03-13 11:09 - 2017-03-13 11:09 - 0043520 ____N () C:\Users\Tim\AppData\Local\Temp\proxy_vole4885055423835027718.dll
2017-03-13 11:09 - 2017-03-13 11:09 - 0043520 ____N () C:\Users\Tim\AppData\Local\Temp\proxy_vole6919976429660740148.dll

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-03-05 12:32

==================== Ende von FRST.txt ============================
         
Addition (Leider nur als Anhang, da alles zusammen zu lang gewesen wäre laut Board)
Code:
ATTFilter
Addition.txt
         
Gruß und Danke im Vorraus,
Drebing

Alt 14.03.2017, 10:58   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org" - Standard

Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org"



Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________

Alt 14.03.2017, 11:31   #3
Drebing
 
Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org" - Standard

Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org"



Hallo Cosinus.

Hier noch mal beide Log-Files in Code-Form:

FRST.txt
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 13-03-2017
durchgeführt von Tim (Administrator) auf HOME-PC (14-03-2017 01:35:25)
Gestartet von D:\Downloads
Geladene Profile: Tim (Verfügbare Profile: Tim & DefaultAppPool)
Platform: Windows 10 Home Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Guillemot Corporation ®) C:\Program Files\DJHERCULESMIX\Audio\DJ Console Series\drivers\amd64\HerculesDJControlMP3.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Realtek) C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtlService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Electronic Arts) F:\Programme\Origin\OriginWebHelperService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtWLan.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDCountdown.exe
() C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.exe
(Dropbox, Inc.) C:\Users\Tim\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Dropbox, Inc.) C:\Users\Tim\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Dominik Reichl) C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7611608 2014-05-27] (Realtek Semiconductor)
HKLM\...\Run: [Cm106Sound] => C:\WINDOWS\syswow64\RunDll32.exe C:\WINDOWS\Syswow64\cm106.dll,CMICtrlWnd
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15818872 2016-04-28] (Logitech Inc.)
HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2015-09-22] (Saitek)
HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [157696 2015-09-22] (Saitek)
HKLM\...\Run: [Hercules DJ Series TrayAgent] => C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe [1817248 2015-12-07] (DJHERCULESMIX®)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2017-01-19] (Apple Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [205512 2017-03-14] (AVAST Software)
HKLM-x32\...\Run: [RoccatKoneXTD] => C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.EXE [552960 2014-10-19] (ROCCAT GmbH)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2867712 2017-01-09] (Dominik Reichl)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [9363672 2017-02-08] (Piriform Ltd)
HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\Run: [KeePass Password Safe 2] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2867712 2017-01-09] (Dominik Reichl)
HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\Run: [Dropbox Update] => C:\Users\Tim\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\MountPoints2: {be129d6b-19e9-11e5-b1c1-74d435bbf5f0} - "I:\LaunchU3.exe" -a
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-03-14] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-03-14] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2016-08-14]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2016-05-05]
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe ()
Startup: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2017-03-09]
ShortcutTarget: Dropbox.lnk -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{257679c5-d672-4a4b-bdec-b2571136dafa}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{3961559e-6d54-45a6-af6d-bb334e9e4541}: [DhcpNameServer] 192.168.178.1
ManualProxies: 

Internet Explorer:
==================
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-02-12] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-12] (Oracle Corporation)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-09]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-09]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-02-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-02-12] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-02-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-02-23] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-27] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1066145973-1361776141-3635688471-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2017-02-28] ()

Chrome: 
=======
CHR DefaultProfile: Profile 1
CHR HomePage: Profile 1 -> hxxp://harmony-gouvernors.de/hgclan/
CHR StartupUrls: Profile 1 -> "hxxp://harmony-gouvernors.de/hgclan/","hxxp://81.169.250.232/forum/","hxxps://www.google.de/"
CHR Profile: C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-03-14]
CHR Profile: C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-03-14]
CHR Extension: (ProxFlow) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aakchaleigkohafkfjfjbblobjifikek [2017-01-24]
CHR Extension: (Google Drive) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (YouTube) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Google-Suche) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Avast Online Security (BETA)) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2017-02-22]
CHR Extension: (AdBlock) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-02-25]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-08]
CHR Extension: (Audio Converter) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ojfphighcpfimfhblaigjckljcoeipga [2016-05-08]
CHR Extension: (Google Mail) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-04]
CHR Extension: (Chrome Media Router) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-07]
CHR Profile: C:\Users\Tim\AppData\Local\Google\Chrome\User Data\System Profile [2017-03-14]
CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <nicht gefunden>

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2014-11-16] (Adobe Systems) [Datei ist nicht signiert]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7147320 2017-03-14] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [262736 2017-03-14] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [278784 2017-03-14] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1486344 2017-02-01] ()
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [239376 2015-10-28] (EasyAntiCheat Ltd)
R2 HerculesDJControlMP3; C:\Program Files\DJHERCULESMIX\Audio\DJ Console Series\drivers\amd64\HerculesDJControlMP3.EXE [105472 2015-10-14] (Guillemot Corporation ®) [Datei ist nicht signiert]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-04-11] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-01] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193656 2016-04-28] (Logitech Inc.)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-23] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-23] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-02-23] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2017-02-23] (NVIDIA Corporation)
S3 Origin Client Service; F:\Programme\Origin\OriginClientService.exe [2122248 2017-02-23] (Electronic Arts)
R2 Origin Web Helper Service; F:\Programme\Origin\OriginWebHelperService.exe [2184208 2017-02-23] (Electronic Arts)
S3 OverwolfUpdater; F:\Programme\Overwolf\OverwolfUpdater.exe [1325384 2017-03-05] (Overwolf LTD)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2017-02-13] ()
R2 Realtek11nSU; C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtlService.exe [36864 2010-04-16] (Realtek) [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [309272 2017-03-14] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [189768 2017-03-14] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [334600 2017-03-14] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [48528 2017-03-14] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [38296 2017-03-14] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [32088 2017-03-14] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [126600 2017-03-14] (AVAST Software)
S3 aswNetNd6; C:\WINDOWS\system32\DRIVERS\aswNetNd6.sys [28312 2016-04-15] (AVAST Software)
R1 aswNetSec; C:\WINDOWS\system32\drivers\aswNetSec.sys [461640 2017-03-14] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [100640 2017-03-14] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [75704 2017-03-14] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [993608 2017-03-14] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [548928 2017-03-14] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [162528 2017-03-14] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [337592 2017-03-14] (AVAST Software)
S3 avmeject; C:\WINDOWS\System32\drivers\avmeject.sys [14120 2013-12-17] (AVM Berlin)
S3 Bulk; C:\WINDOWS\System32\Drivers\HDJBulk.sys [339104 2016-01-13] (© Guillemot R&D, 2015. All rights reserved.)
S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [27040 2012-09-25] (Windows (R) Win 7 DDK provider)
S3 fwlanusb6; C:\WINDOWS\System32\DRIVERS\fwlanusb6.sys [1327744 2014-03-27] (AVM GmbH) [Datei ist nicht signiert]
S3 HDJMidi; C:\WINDOWS\system32\DRIVERS\HDJMidi.sys [283296 2016-01-13] (© Guillemot R&D, 2015. All rights reserved.)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (EZB Systems, Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyHidFilter; C:\WINDOWS\system32\drivers\LGJoyHidFilter.sys [74920 2016-04-19] (Logitech Inc.)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [85160 2016-04-19] (Logitech Inc.)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 npusbio; C:\WINDOWS\System32\Drivers\npusbio_x64.sys [38400 2012-07-09] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_2a6e383a1adc0e24\nvlddmkm.sys [14569528 2017-02-24] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-02-23] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2017-01-20] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [59448 2017-02-23] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek                                            )
S3 SaiH0BAC; C:\WINDOWS\System32\DRIVERS\SaiH0BAC.sys [176128 2007-07-02] (Saitek)
S3 SaiK0bac; C:\WINDOWS\System32\drivers\SaiK0bac.sys [180896 2015-09-23] (Saitek)
R3 SaiMini; C:\WINDOWS\System32\drivers\SaiMini.sys [23968 2015-09-23] (Saitek)
R3 SaiNtBus; C:\WINDOWS\system32\drivers\SaiBus.sys [51488 2015-09-23] (Saitek)
S3 USBMULCD; C:\WINDOWS\system32\drivers\CM10664.sys [4135936 2014-01-17] (C-Media Electronics Inc)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
U3 idsvc; kein ImagePath
S3 RTTEAMPT; \SystemRoot\system32\DRIVERS\RtTeam620.sys [X]
S3 RTVLANPT; \SystemRoot\system32\DRIVERS\RtVlan620.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-03-14 01:35 - 2017-03-14 01:35 - 00000000 ____D C:\FRST
2017-03-14 00:50 - 2017-03-14 00:50 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-03-14 00:45 - 2017-03-14 00:45 - 00004028 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1450443547
2017-03-14 00:45 - 2017-03-14 00:45 - 00001100 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-03-14 00:40 - 2017-03-14 00:40 - 00548928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2017-03-14 00:40 - 2017-03-14 00:40 - 00547904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys.148944840765604
2017-03-14 00:40 - 2017-03-14 00:40 - 00398408 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-03-14 00:40 - 2017-03-14 00:40 - 00337592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-03-14 00:40 - 2017-03-14 00:40 - 00162528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-03-14 00:40 - 2017-03-14 00:40 - 00126600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-03-14 00:40 - 2017-03-14 00:40 - 00100640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-03-14 00:40 - 2017-03-14 00:40 - 00075704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-03-14 00:40 - 2017-03-14 00:40 - 00038296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-03-14 00:40 - 2017-03-14 00:40 - 00003994 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-03-14 00:40 - 2017-03-14 00:39 - 00993608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-03-14 00:40 - 2017-03-14 00:39 - 00461640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetSec.sys
2017-03-14 00:40 - 2017-03-14 00:39 - 00334600 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys
2017-03-14 00:40 - 2017-03-14 00:39 - 00309272 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2017-03-14 00:40 - 2017-03-14 00:39 - 00189768 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2017-03-14 00:40 - 2017-03-14 00:39 - 00048528 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2017-03-14 00:40 - 2017-03-14 00:39 - 00032088 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2017-03-14 00:39 - 2017-03-14 00:39 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-03-14 00:15 - 2017-03-14 00:19 - 00000000 ____D C:\ProgramData\HitmanPro
2017-03-14 00:06 - 2017-03-14 00:13 - 00000000 ____D C:\AdwCleaner
2017-03-13 15:25 - 2017-03-13 15:27 - 00000000 ____D C:\Users\Tim\AppData\Local\SniperV2
2017-03-09 22:13 - 2017-03-09 22:13 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-03-09 18:24 - 2017-02-23 09:17 - 00136064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-03-09 18:24 - 2017-01-26 01:13 - 00103936 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-03-09 18:24 - 2017-01-26 01:12 - 00326656 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-03-09 18:24 - 2017-01-26 01:09 - 00322560 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-03-09 18:24 - 2017-01-26 01:09 - 00118272 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-03-09 18:23 - 2017-03-09 18:24 - 00000000 ____D C:\WINDOWS\LastGood
2017-03-09 18:22 - 2017-02-23 23:55 - 01600056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2017-03-09 18:22 - 2017-02-23 23:55 - 00217528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2017-03-09 18:22 - 2017-02-23 23:55 - 00047664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2017-03-09 18:22 - 2017-02-23 19:34 - 00059448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-03-09 18:22 - 2017-02-23 11:32 - 40192056 _____ C:\WINDOWS\system32\nvcompiler.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 35272760 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 34992184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 28252608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 19007528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 14674896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 11122728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 11019888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 09306312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 08990256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 04078008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 03596616 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 03168192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 02717752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 01985080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437878.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 01589696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437878.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 01052096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00989632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00959424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00946456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00944224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00910784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00721768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00719856 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00687408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00618416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00609728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00605120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00576008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00573632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00499136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00483384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00447984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00043566 _____ C:\WINDOWS\system32\nvinfo.pb
2017-03-09 18:05 - 2017-03-09 18:05 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-03-09 18:05 - 00003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-03-09 18:05 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-03-09 18:05 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-03-09 18:05 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-03-09 18:05 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-03-09 18:05 - 00003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-02-23 19:35 - 01880512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-03-09 18:05 - 2017-02-23 19:35 - 01468864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-03-08 19:59 - 2017-03-08 19:59 - 00003270 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-03-08 19:59 - 2017-03-08 19:59 - 00002426 _____ C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-03-07 19:29 - 2017-03-07 19:29 - 00000000 ____D C:\Users\Tim\AppData\Local\Afl0Sim
2017-03-06 19:00 - 2017-03-06 19:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FsDreamTeam
2017-03-04 12:10 - 2017-03-04 12:10 - 00000000 ____D C:\Users\Tim\Documents\Avalanche Studios
2017-03-04 12:10 - 2017-03-04 12:10 - 00000000 ____D C:\Users\Tim\AppData\Local\CrashRpt
2017-03-03 16:10 - 2017-03-03 16:10 - 00002553 _____ C:\Users\Tim\Desktop\Hearthstone Deck Tracker.lnk
2017-02-24 20:49 - 2017-02-24 20:49 - 00000000 ____D C:\Users\Tim\ansel
2017-02-24 20:48 - 2017-02-24 20:48 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2017-02-24 20:48 - 2017-01-20 19:39 - 00156608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-02-24 20:48 - 2017-01-20 19:39 - 00124352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-02-24 20:48 - 2017-01-20 19:39 - 00046016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2017-02-23 18:11 - 2017-02-23 23:48 - 00005110 _____ C:\ProgramData\NvTelemetryContainer.log_backup1
2017-02-22 19:36 - 2017-02-06 20:48 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-02-22 19:36 - 2017-02-06 20:48 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-02-22 19:27 - 2017-02-22 19:27 - 00002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-18 12:15 - 2017-02-10 03:33 - 01983424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437866.dll
2017-02-18 12:15 - 2017-02-10 03:33 - 01589696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437866.dll
2017-02-18 12:15 - 2017-02-10 03:33 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-02-18 12:15 - 2017-02-10 03:33 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-02-17 22:36 - 2017-02-17 22:36 - 00001866 _____ C:\Users\Tim\Desktop\UTX Setup Tool.lnk
2017-02-17 20:24 - 2017-02-17 20:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flight One Software
2017-02-13 22:18 - 2017-02-13 22:18 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Ubisoft
2017-02-12 18:38 - 2017-02-12 18:37 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-02-12 18:11 - 2017-02-12 18:11 - 00337080 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys.148691948232804

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-03-14 01:27 - 2015-12-23 10:49 - 00000000 ____D C:\Users\Tim\AppData\Local\CrashDumps
2017-03-14 01:12 - 2014-11-09 14:37 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-03-14 00:52 - 2016-08-04 16:53 - 00000000 ____D C:\ProgramData\NVIDIA
2017-03-14 00:50 - 2014-11-09 00:59 - 00000000 ____D C:\Users\Tim\AppData\Roaming\KeePass
2017-03-14 00:50 - 2014-11-09 00:30 - 00000000 ___RD C:\Users\Tim\Dropbox
2017-03-14 00:50 - 2014-11-08 18:55 - 00000000 __SHD C:\Users\Tim\IntelGraphicsProfiles
2017-03-14 00:49 - 2016-08-04 16:54 - 10811148 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-03-14 00:49 - 2016-07-16 23:51 - 05473974 _____ C:\WINDOWS\system32\perfh007.dat
2017-03-14 00:49 - 2016-07-16 23:51 - 01532564 _____ C:\WINDOWS\system32\perfc007.dat
2017-03-14 00:45 - 2016-08-04 16:59 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-03-14 00:44 - 2016-07-16 07:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2017-03-13 23:41 - 2016-08-04 16:52 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-03-13 16:55 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-03-13 16:54 - 2016-08-04 16:54 - 00000000 ____D C:\Users\Tim
2017-03-13 16:54 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Cursors
2017-03-13 15:15 - 2014-11-08 18:28 - 00002464 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-03-13 14:47 - 2016-05-07 17:38 - 00000000 ____D C:\Users\Tim\Documents\Flight Simulator X Files
2017-03-13 13:37 - 2016-05-17 22:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimMarket
2017-03-13 04:04 - 2016-05-14 02:08 - 00000000 ____D C:\ProgramData\EditVoicepackX
2017-03-13 03:45 - 2014-11-09 15:30 - 00000000 ____D C:\Users\Tim\AppData\Local\Battle.net
2017-03-13 01:40 - 2015-05-02 14:59 - 00000000 ____D C:\Users\Tim\AppData\Local\Ubisoft Game Launcher
2017-03-13 00:08 - 2016-06-10 15:25 - 00000000 ____D C:\ProgramData\InstallMate
2017-03-13 00:08 - 2016-05-28 11:49 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons
2017-03-11 03:36 - 2014-11-16 14:21 - 00000000 ____D C:\Users\Tim\AppData\Roaming\OBS
2017-03-10 18:25 - 2016-03-01 23:35 - 00000000 ____D C:\Users\Tim\AppData\Roaming\vlc
2017-03-09 22:14 - 2014-11-09 00:27 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Dropbox
2017-03-09 18:25 - 2016-05-05 15:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-03-09 18:24 - 2016-03-07 17:07 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-03-09 18:23 - 2016-08-04 16:53 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-03-09 18:05 - 2016-09-13 22:12 - 00001527 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-03-09 18:05 - 2016-08-04 16:53 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-03-09 18:05 - 2016-08-04 16:53 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-03-09 17:36 - 2015-06-17 19:10 - 00000000 ____D C:\Users\Tim\AppData\Local\Dropbox
2017-03-08 22:41 - 2014-11-09 01:09 - 00000000 ____D C:\Users\Tim\AppData\Roaming\TS3Client
2017-03-08 19:59 - 2016-05-05 15:05 - 00000000 ___RD C:\Users\Tim\OneDrive
2017-03-08 17:26 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-03-07 17:05 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-03-06 19:34 - 2015-08-07 17:15 - 00000000 ____D C:\ProgramData\Virtuali
2017-03-05 12:06 - 2016-09-16 14:51 - 00323152 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-03-04 12:10 - 2014-11-08 21:02 - 00000000 ____D C:\ProgramData\Package Cache
2017-03-03 23:36 - 2016-01-13 23:48 - 00001559 _____ C:\Users\Tim\Desktop\TES5Edit.lnk
2017-03-03 16:10 - 2016-08-04 19:08 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HearthSim
2017-03-03 16:10 - 2016-08-04 19:08 - 00000000 ____D C:\Users\Tim\AppData\Local\HearthstoneDeckTracker
2017-03-03 16:10 - 2016-05-02 21:34 - 00000000 ____D C:\Users\Tim\AppData\Local\SquirrelTemp
2017-03-03 16:07 - 2014-11-10 18:07 - 00000000 ____D C:\Users\Tim\AppData\Local\Overwolf
2017-02-24 22:05 - 2014-11-09 01:08 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2017-02-23 19:53 - 2016-05-11 21:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft
2017-02-23 19:53 - 2014-11-08 18:15 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-02-23 19:35 - 2016-09-13 22:12 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-02-23 19:35 - 2016-09-13 22:12 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-02-23 19:35 - 2016-09-13 22:12 - 00120256 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-02-23 19:35 - 2014-11-08 18:53 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-02-23 19:33 - 2014-11-08 18:53 - 138020592 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-02-23 19:06 - 2016-06-21 19:58 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Origin
2017-02-23 19:05 - 2016-06-21 19:54 - 00000000 ____D C:\ProgramData\Origin
2017-02-23 19:04 - 2016-06-21 19:54 - 00000000 ____D C:\ProgramData\Electronic Arts
2017-02-23 18:55 - 2016-06-30 19:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA Creation Master
2017-02-23 15:30 - 2016-12-22 22:45 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-02-23 09:43 - 2016-09-13 22:12 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-02-23 09:28 - 2016-12-15 00:31 - 00548288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-02-23 09:28 - 2016-08-04 16:53 - 06401984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-02-23 09:28 - 2016-08-04 16:53 - 02479160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-02-23 09:28 - 2016-08-04 16:53 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-02-23 09:28 - 2016-08-04 16:53 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-02-23 09:28 - 2016-08-04 16:53 - 00083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-02-23 09:28 - 2016-08-04 16:53 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-02-23 07:38 - 2016-08-04 16:53 - 07807027 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-02-22 19:36 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-02-21 18:16 - 2016-07-20 15:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LHSimulations
2017-02-18 00:35 - 2014-11-09 00:23 - 00000869 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-02-15 19:46 - 2014-11-08 18:43 - 00000000 ____D C:\ProgramData\AVAST Software
2017-02-14 22:06 - 2016-05-06 15:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
2017-02-13 22:18 - 2016-05-28 17:01 - 00270408 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2017-02-13 22:18 - 2014-11-15 23:54 - 00270408 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2017-02-13 22:18 - 2014-11-15 23:54 - 00000000 ____D C:\Users\Tim\AppData\Local\PunkBuster
2017-02-13 22:18 - 2014-11-15 23:52 - 00075136 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2017-02-12 18:38 - 2016-05-18 23:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-02-12 18:38 - 2016-05-18 23:04 - 00000000 ____D C:\Program Files (x86)\Java
2017-02-12 18:38 - 2014-11-09 13:43 - 00000000 ____D C:\ProgramData\Oracle
2017-02-12 18:14 - 2016-12-15 00:30 - 00000000 ____D C:\temp

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-10-03 14:45 - 2016-05-11 21:36 - 0011984 _____ () C:\Program Files (x86)\INSTALL.LOG
2016-11-25 20:41 - 2016-11-25 20:41 - 0113701 _____ () C:\Program Files (x86)\unEZCA.exe
2016-05-11 21:36 - 1998-09-25 12:16 - 0270848 _____ () C:\Program Files (x86)\UNWISE.EXE
2015-01-30 18:31 - 2015-01-30 18:39 - 0000600 _____ () C:\Users\Tim\AppData\Local\PUTTY.RND
2016-11-02 19:14 - 2016-11-02 19:14 - 0000017 _____ () C:\Users\Tim\AppData\Local\resmon.resmoncfg
2016-08-04 16:53 - 2016-08-04 16:53 - 0000000 _____ () C:\ProgramData\DP45977C.lfl
2014-11-10 17:28 - 2016-08-14 17:00 - 0017950 _____ () C:\ProgramData\hpzinstall.log
2016-12-21 22:21 - 2016-12-21 22:21 - 0000118 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2017-02-24 19:20 - 2017-02-24 20:48 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log
2017-02-23 18:11 - 2017-02-23 23:48 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\Tim\FSDreamTeam_JFK V2.reg


Einige Dateien in TEMP:
====================
2017-03-13 11:09 - 2017-03-13 11:09 - 0043520 ____N () C:\Users\Tim\AppData\Local\Temp\proxy_vole1407115911256630049.dll
2017-03-13 11:09 - 2017-03-13 11:09 - 0043520 ____N () C:\Users\Tim\AppData\Local\Temp\proxy_vole4885055423835027718.dll
2017-03-13 11:09 - 2017-03-13 11:09 - 0043520 ____N () C:\Users\Tim\AppData\Local\Temp\proxy_vole6919976429660740148.dll

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-03-05 12:32

==================== Ende von FRST.txt ============================
         
__________________

Alt 14.03.2017, 11:31   #4
Drebing
 
Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org" - Standard

Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org"



Addition.txt

Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 13-03-2017
durchgeführt von Tim (14-03-2017 01:35:45)
Gestartet von D:\Downloads
Windows 10 Home Version 1607 (X64) (2016-08-04 16:00:21)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1066145973-1361776141-3635688471-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1066145973-1361776141-3635688471-503 - Limited - Disabled)
Gast (S-1-5-21-1066145973-1361776141-3635688471-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1066145973-1361776141-3635688471-1002 - Limited - Enabled)
Tim (S-1-5-21-1066145973-1361776141-3635688471-1000 - Administrator - Enabled) => C:\Users\Tim

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

4500_G510nz_Help (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
4500G510nz (x32 Version: 140.0.001.000 - Hewlett-Packard) Hidden
4500G510nz_Software_Min (x32 Version: 140.0.001.000 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Aarhus Airport X 1.2 (HKLM-x32\...\Aarhus Airport X 1.2) (Version:  - )
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
Adobe Flash Player 15 Pepper (HKLM-x32\...\Adobe Flash Player Pepper) (Version: 15.0.0.215 - Adobe Systems Incorporated)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Aerosoft's - Airbus A320-A321 - FSX (HKLM-x32\...\Airbus A320-A321 - FSX) (Version: 1.31 - Aerosoft)
Aerosoft's - Alta X - FSX STEAM Edition (HKLM-x32\...\Alta X - FSX STEAM Edition) (Version: 1.00 - Aerosoft)
Aerosoft's - Catalina Island Demo - FSX (HKLM-x32\...\Catalina Island Demo - FSX) (Version: 1.00 - Aerosoft)
aerosoft's - German Airports 2 - 2012 (Cologne-Bonn X) (HKLM-x32\...\{440B6103-AF8B-4254-8B5C-D05AA82B5F98}) (Version: 1.00 - aerosoft)
aerosoft's - German Airports 3 - 2012 (Berlin-Tegel FSX) (HKLM-x32\...\{3DAD565E-1275-4EE8-9568-932CB7B75FB8}) (Version: 1.02 - aerosoft)
Aerosoft's - HelgolandX (HKLM-x32\...\{61957FA7-34C1-4F46-871C-A0FD49848832}) (Version: 1.00 - Aerosoft)
aerosoft's - Holiday Airports FSX (HKLM-x32\...\{D1F56041-DDC6-4508-994D-D70FC4022DB0}) (Version: 1.00 - aerosoft)
aerosoft's - Lukla X - Mount Everest (HKLM-x32\...\{EF32F291-8B08-43EF-8BAA-58B9F8C9540F}) (Version: 2.10 - aerosoft)
aerosoft's - Maldives X (HKLM-x32\...\{17BA8B2D-BF89-4D10-B9D1-1CC5F322A6BB}) (Version: 1.02 - aerosoft)
aerosoft's - Mallorca X for FSX (HKLM-x32\...\{07CC448E-4FFC-444F-999D-10F11AE559FB}) (Version: 1.01 - aerosoft)
aerosoft's - Mega Airport Amsterdam FSX (HKLM-x32\...\{0A297C87-BF52-43FD-AD75-EE72228E4457}) (Version: 1.04 - aerosoft)
Aerosoft's - Mega Airport Duesseldorf - FSX STEAM Edition (HKLM-x32\...\Mega Airport Duesseldorf - FSX STEAM Edition) (Version: 1.10 - Aerosoft)
aerosoft's - Mega Airport Madrid Barajas (HKLM-x32\...\{8233F99B-C4C2-44E9-8486-374E9B300BF2}) (Version: 1.03 - aerosoft)
Aerosoft's - Mega Airport Prag - FSX (HKLM-x32\...\Mega Airport Prag - FSX) (Version: 1.05 - Aerosoft)
Aerosoft's - Mykonos X - FSX (HKLM-x32\...\Mykonos X - FSX) (Version: 1.02 - )
Aerosoft's - Sacramento Airport - FSX STEAM Edition (HKLM-x32\...\Sacramento Airport - FSX STEAM Edition) (Version: 1.00 - Aerosoft)
aerosoft's - SIMstarter NG (HKLM-x32\...\{5AD0AAA2-42E8-437D-9CD5-7A6A343DCD19}) (Version: 1.01 - aerosoft)
Afl0Sim Henri Coanda Airport version 2.4 (HKLM-x32\...\{DA8D38A8-6ECF-4B45-88CC-0A1F00151376}_is1) (Version: 2.4 - Afl0Sim)
AIDA64 Extreme v4.30 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 4.30 - FinalWire Ltd.)
Air Berlin Fleet (HKLM\...\{6CCC2BF0-C76E-4F22-809E-601CD7C62555}) (Version: 1 - Rikoooo (Full authors list in the pack))
Airbus A300 Multi-livery Mega Pack FSX & P3D (HKLM\...\{00BFBEE5-A753-4688-AD01-62FAB81756CE}) (Version: 1 - Thomas Ruth & his team/collaborators, repack by Luis Quintero)
Airbus A330 Multi-Livery package (HKLM\...\{574F8D5F-ECE6-4269-B1DA-F9A9A2962A4D}) (Version: 1 - Project Opensky Team, repack by Luis Quintero)
Airport Design Editor 1.65 (HKLM-x32\...\{E8A70E2D-4315-407E-9B03-B4665EDD3A94}) (Version: 1.66.5555.0 - ScruffyDuck Software)
Albany International Airport for FSX (HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\Albany International Airport for FSX) (Version:  - )
Aleppo Extreme FSX 1.00 (HKLM-x32\...\Aleppo Extreme FSX 1.00) (Version:  - )
AlienFX for KoneXTD (HKLM-x32\...\InstallShield_{48725548-E470-4816-99DD-6667EABAB982}) (Version: 1.02 - Roccat GmbH)
AlienFX for KoneXTD (Version: 1.02 - Roccat GmbH) Hidden
Anna's Quest (HKLM-x32\...\Steam App 327220) (Version:  - Daedalic Entertainment)
Ansel (Version: 378.78 - NVIDIA Corporation) Hidden
APB Reloaded (HKLM-x32\...\Steam App 113400) (Version:  - Reloaded Productions)
Apple Application Support (32-Bit) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
ATR 42-500 72-500 Pack FSX & P3D (HKLM\...\{2A080C46-F37A-4C7E-9676-173807C136CA}) (Version: 1 - Francisco Sánchez-Castañer, Philippe Wallaert, repack by Rikoooo)
Avast Internet Security (HKLM-x32\...\Avast Antivirus) (Version: 17.2.2288 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Boeing B737-823 Advanced VC FSX & P3D (HKLM\...\{330F6375-B0DB-4CDD-B1EB-B83C43810D11}) (Version: 1 - Project OpenSky, Alejandro Rojas Lucenda, FSRepaintsGER, Adam Murphy)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.27 - Piriform)
CINEMA 4D 17.016 (HKLM\...\MAXOND2C48F0C) (Version: 17.016 - MAXON Computer GmbH)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Cities: Skylines (HKLM\...\Steam App 255710) (Version:  - Colossal Order Ltd.)
COMALAPA VIRTUAL FSX (HKLM-x32\...\COMALAPA VIRTUAL FSX) (Version:  - )
CYFB Iqaluit version 1.0 (HKLM-x32\...\{40C371BB-EF79-41A9-8DBB-D51495857466}}_is1) (Version: 1.0 - Jean-Pierre Fillion)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
DJHERCULESMIX Products Series drivers (HKLM-x32\...\{33999F1F-EA46-4E55-A239-1BA803235396}) (Version: 1.HDJS.2016 - Guillemot Corporation)
DocProc (x32 Version: 140.0.185.000 - Hewlett-Packard) Hidden
Dropbox (HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\Dropbox) (Version: 21.4.25 - Dropbox, Inc.)
EasyJet Fleet FSX & P3D (HKLM\...\{31198E95-D05B-4689-AA70-715ED7170F9A}) (Version: 1 - Multiples authors)
EditVoicepack XL (HKLM-x32\...\{40a9bd4e-bb79-4c70-84ea-511d5532d538}) (Version: 5.3.1.0 - Bevelstone Production)
EditVoicepack XL (x32 Version: 5.3.1.0 - Bevelstone Production) Hidden
Eiresim Belfast City Ultimate FSX (HKLM-x32\...\Eiresim Belfast City Ultimate FSXV1.1) (Version: V1.1 - Eiresim)
Eiresim Shannon Ultimate FsX (HKLM-x32\...\Eiresim Shannon Ultimate FsXV1.0) (Version: V1.0 - Eiresim)
El Calafate SIMARG FSX & P3D (HKLM\...\{AFDDC076-BA91-4598-861F-DCA278D9C84B}) (Version: 1 - SIMARG - Simulacion Argentina)
Emirates Fleet FSX & P3D (HKLM\...\{52C598AB-00EE-48B1-8D32-1660AC2CE524}) (Version: 2 - BENDER Erik)
EZ Scenery Library (HKLM-x32\...\EZ Scenery Library) (Version:  - )
EZdok Camera (HKLM-x32\...\EZdok Camera) (Version:  - )
Fallout 4 (HKLM-x32\...\Steam App 377160) (Version:  - Bethesda Game Studios)
Fax (x32 Version: 140.0.307.000 - Hewlett-Packard) Hidden
FDC Accumulative Update (3.13) (HKLM-x32\...\FDC Accumulative Update (3.13)) (Version:  - )
FDC Live Cockpit 2011 (HKLM-x32\...\{56C595BA-E2EC-4319-863B-3D8787D49FBF}) (Version: 3.14.0 - aerosoft)
ffdshow [rev 497] [2006-11-04] (HKLM-x32\...\ffdshow_is1) (Version: 1.0 - )
FlightPort - FlightPort Dynamic Library FSX (HKLM-x32\...\FlightPort FlightPort Dynamic Library FSX) (Version: 6.2.3 - FlightPort)
Flightport - FlightPortLib - FSX (HKLM-x32\...\FlightPortLib - FSX 4.9.0) (Version: 4.9.0 - Flightport)
FlightPortLib - FSX (x32 Version: 4.9.0 - Flightport) Hidden
flyBalaton Sármellék LHSM scenery FSXSE v1.0 (HKLM-x32\...\ flyBalaton Sármellék LHSM scenery FSXSE v1.0) (Version:  - )
FormatFactory 3.8.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.8.0.0 - Free Time)
FSCloud version 1.xxxx beta (HKLM-x32\...\{EAEDE38E-4126-42B7-BC6D-93E3A2EC06E9}_is1) (Version: 1.xxxx beta - FSCloud.net)
FSDG-Marsa Alam (HKLM-x32\...\FSDG-Marsa Alam) (Version:  - )
FSDG-Oresund (HKLM-x32\...\FSDG-Oresund) (Version:  - )
FSDreamTeam GSX FSX-SE (HKLM-x32\...\FSDreamTeam GSX FSX-SE_is1) (Version: 1.9.9.11 - VIRTUALI Sagl)
FSDreamTeam KJFK V2 FSX-SE (HKLM-x32\...\FSDreamTeam KJFK V2 FSX-SE_is1) (Version: 2.4.2 - VIRTUALI Sagl)
FsPassengersX for Microsoft Flight Simulator X (HKLM-x32\...\FsPassengersX) (Version: 20160123 - SecondReality Software)
Godzone VLC Ashburton 1.0 (HKLM-x32\...\Godzone VLC Ashburton) (Version: 1.0 - Godzone Virtual Flight)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
GrenadaX v1.1 (HKLM-x32\...\FSX_RICHERSIM_GRENADAX_is1) (Version: 1.1.0.0 - SimMarket)
Ground Environment X Africa and the Middle East (HKLM-x32\...\Ground Environment X Africa and the Middle East) (Version:  - Flight One Software)
Ground Environment X Asia and South America (HKLM-x32\...\Ground Environment X Asia and South America) (Version:  - Flight One Software)
Ground Environment X Atlantic and Pacific Tropics (HKLM-x32\...\Ground Environment X Atlantic and Pacific Tropics) (Version:  - Flight One Software)
Ground Environment X Europe (HKLM-x32\...\Ground Environment X Europe) (Version:  - Flight One Software)
Ground Environment X North America (HKLM-x32\...\Ground Environment X North America) (Version:  - Flight One Software)
Hama Wireless LAN Adapter (HKLM-x32\...\{9C049499-055C-4a0c-A916-1D8CA1FF45EB}) (Version: 1.00.0159 - Hama GmbH & Co KG)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Hearthstone Deck Tracker (HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\HearthstoneDeckTracker) (Version: 1.1.7 - HearthSim)
HITMAN™ (HKLM\...\Steam App 236870) (Version:  - Io-Interactive)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Officejet 4500 G510n-z 14.0 Rel. 6 (HKLM\...\{6B9B2E57-D988-4258-8A2C-6F3657A600BD}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.3.1001 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.20 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{9D0D2A8B-7E7B-4D88-8D50-24286ED6A5EB}) (Version: 12.5.5.5 - Apple Inc.)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
KATL Atlanta 2016 FSX (HKLM-x32\...\{D274FA40-971F-476E-840A-67347A3EC1DE}) (Version: 4.0.0 - Imagine Simulation)
KCVG Cincinnati 2007 FSX (HKLM-x32\...\{A60218A6-5A2F-419A-9433-9F05D490FD5D}) (Version: 1.0.0 - Imagine Simulation)
KeePass Password Safe 2.35 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.35 - Dominik Reichl)
KELP-KBIF-EL PASO Tx-USA (HKLM-x32\...\KELP-KBIF-EL PASO Tx-USA) (Version:  - )
Lebanon Terrain X V1.5 (HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\Lebanon Terrain X V1.5) (Version:  - )
Liguria 110 (HKLM-x32\...\Liguria 110) (Version:  - )
Logitech Gaming Software 8.83 (HKLM\...\Logitech Gaming Software) (Version: 8.83.85 - Logitech Inc.)
LOOT Version 0.10.2 (HKLM-x32\...\{BF634210-A0D4-443F-A657-0DCE38040374}_is1) (Version: 0.10.2 - LOOT Team)
Lufthansa Pack FSX & P3D (HKLM\...\{857A84CF-6EBF-4EFA-9522-C50C81F4C387}) (Version: 1 - Project Airbus & Project OpenSky & Skyspirit)
MAGIX Music Maker MX (HKLM-x32\...\MAGIX_MSI_mm18) (Version: 18.0.0.42 - MAGIX AG)
MAGIX Music Maker MX (x32 Version: 18.0.0.42 - MAGIX AG) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Flight Simulator SimConnect Client v10.0.61259.0 (HKLM-x32\...\{D61CA184-3F6D-4A50-B2CC-7A18447D6A8D}) (Version: 10.0.61259.0 - Microsoft Corporation)
Microsoft Flight Simulator SimConnect Client v10.0.62615.0 (HKLM-x32\...\{33D89314-361A-4495-A1E1-0ACBCE08F78D}) (Version: 10.0.62615.0 - Microsoft Corporation)
Microsoft Flight Simulator X: Steam Edition (HKLM\...\Steam App 314160) (Version:  - Microsoft Game Studios)
Microsoft OneDrive (HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\OneDriveSetup.exe) (Version: 17.3.6798.0207 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{E75776B2-EAE5-42F9-A800-0A10763DEDF0}) (Version: 11.0.2318.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{09298F26-A95C-31E2-9D95-2C60F586F075}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Miscreated (HKLM-x32\...\Steam App 299740) (Version:  - Entrada Interactive LLC)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MUHG Holguin Cuba pour FSX version 1.0 (HKLM-x32\...\{89D85468-D2CC-4B30-BEA1-A00C0B6A2E5D}}_is1) (Version: 1.0 - Pierre Gallant)
MZBZ-Philip Goldson- Belize (HKLM-x32\...\MZBZ-Philip Goldson- Belize) (Version:  - )
NaturalPoint USB Drivers x64 (HKLM\...\{B408139D-04D6-4464-A979-D335E48F7063}) (Version: 2.50.0000 - NaturalPoint)
Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden
NewBlue 3D Explosions for Windows (HKLM-x32\...\NewBlue 3D Explosions for Windows) (Version: 1.4 - NewBlue)
NewBlue 3D Transformations for Windows (HKLM-x32\...\NewBlue 3D Transformations for Windows) (Version: 1.4 - NewBlue)
NewBlue Art Blends for Windows (HKLM-x32\...\NewBlue Art Blends for Windows) (Version:  - )
NewBlue Art Effects for Windows (HKLM-x32\...\NewBlue Art Effects for Windows) (Version:  - )
NewBlue Film Effects for Windows (HKLM-x32\...\NewBlue Film Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Light Blends for Windows (HKLM-x32\...\NewBlue Light Blends for Windows) (Version: 1.4 - NewBlue)
NewBlue Light Effects for Windows (HKLM-x32\...\NewBlue Light Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Motion Blends for Windows (HKLM-x32\...\NewBlue Motion Blends for Windows) (Version: 2.4 - NewBlue)
NewBlue Motion Effects for Windows (HKLM-x32\...\NewBlue Motion Effects for Windows) (Version: 2.4 - NewBlue)
NewBlue Paint Blends for Windows (HKLM-x32\...\NewBlue Paint Blends for Windows) (Version: 1.4 - NewBlue)
NewBlue Paint Effects for Windows (HKLM-x32\...\NewBlue Paint Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials II for Windows (HKLM-x32\...\NewBlue Video Essentials II for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials III for Windows (HKLM-x32\...\NewBlue Video Essentials III for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials IV for Windows (HKLM-x32\...\NewBlue Video Essentials IV for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials V for Windows (HKLM-x32\...\NewBlue Video Essentials V for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials VI for Windows (HKLM-x32\...\NewBlue Video Essentials VI for Windows) (Version: 3.0 - NewBlue)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.13 - Black Tree Gaming)
NL2000V4_Installer 4.0.68 (HKLM-x32\...\{1ce825d0-ab60-4770-833d-8af2036c8186}_is1) (Version: 4.0.68 - NL2000 scenery design team)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 378.78 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 378.78 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.4.0.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.4.0.70 - NVIDIA Corporation)
NVIDIA Grafiktreiber 378.78 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 378.78 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.23 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.4.0.70 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.3.16.0 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Omerta - City of Gangsters (HKLM\...\Steam App 208520) (Version:  - Haemimont Games)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenOffice 4.1.3 (HKLM-x32\...\{8D5FCC56-BB9F-4122-923C-71753F50F6F5}) (Version: 4.13.9783 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 10.4.3.15631 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.103.32.0 - Overwolf Ltd.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.990 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.88.617.2014 - Realtek)
Realtek Ethernet Diagnostic Utility (HKLM-x32\...\{DADC7AB0-E554-4705-9F6A-83EA82ED708E}) (Version: 2.0.2.7 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7256 - Realtek Semiconductor Corp.)
REX 4 - Texture Direct with Soft Clouds - SP5 - Hotfix 1 (HKLM-x32\...\{C0A5CA46-9C59-460C-95F7-364F4E8084B3}) (Version: 4.7.2015.1006 - REX Game Studios, LLC.)
REX 4 - Texture Direct with Soft Clouds - SP6 Hotfix 1 (HKLM-x32\...\{FD1D5968-2CAE-41CB-A0BA-485CAE1DCD36}) (Version: 4.8.2016.0314 - REX Game Studios, LLC.)
REX 4 - Texture Direct with Soft Clouds - SP6 Hotfix 2 (HKLM-x32\...\{340C77EE-02BE-41F9-A315-F9F5C369DB83}) (Version: 4.8.2016.0325 - REX Game Studios, LLC.)
REX 4 - Texture Direct with Soft Clouds - SP6 Hotfix 3 (HKLM-x32\...\{B3EA18AC-A7B1-4659-B1B5-3A1D6451371C}) (Version: 4.8.2016.0622 - REX Game Studios, LLC.)
REX 4 - Texture Direct with Soft Clouds - SP6 Hotfix 4 (HKLM-x32\...\{D6FB5779-E95C-4717-B251-A89914D158A2}) (Version: 4.8.2016.0928 - REX Game Studios, LLC.)
REX 4 Texture Direct (with Soft Clouds) (HKLM-x32\...\{6ADD2C22-B737-4493-BC72-8998F3103849}) (Version: 4.8.2016.0210 - REX Game Studios, LLC.)
REX Download Manager (HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\860d8069cbae6675) (Version: 1.4.2015.23 - REX Game Studios, LLC.)
REX Essential Plus Overdrive SP3 Hotfix (HKLM-x32\...\REX Essential Plus Overdrive SP3 Hotfix 3.8.2014.1211) (Version: 3.8.2014.1211 - REX Game Studios, LLC.)
REX Essential Plus Overdrive SP3 Hotfix (x32 Version: 3.8.2014.1211 - REX Game Studios, LLC.) Hidden
REX Essential Plus Overdrive with SP3 (HKLM-x32\...\{7A508B19-650C-42CB-99F1-CF0F38EA093D}) (Version: 3.8.2014.1126 - REX Game Studios, LLC.)
REX Worldwide Airports HD - Service Pack 1 - Hotfix 1 (HKLM-x32\...\{8BCAA7DE-0FFE-4656-8E6B-2703CD6DDFEC}) (Version: 5.1.2016.1220 - REX Game Studios, LLC.)
REX Worldwide Airports HD - Service Pack 1 (HKLM-x32\...\{B2564888-FD09-465B-B30E-ABF4BDF2E8BF}) (Version: 5.1.2016.1212 - REX Game Studios, LLC.)
ROCCAT Kone XTD Mouse Driver (HKLM-x32\...\{7133137D-DF48-4522-AD88-13C82B7D0A63}) (Version:  - Roccat GmbH)
Roccat Talk (HKLM-x32\...\{605D671E-1D1E-4840-84D9-BFACE17F160D}) (Version: 1.00.0013 - Roccat GmbH)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.0.5 - Rockstar Games)
SafeZone Stable 3.55.2393.561 (x32 Version: 3.55.2393.561 - Avast Software) Hidden
Saitek ProFlight Fsx Plugin 7.0.50.1 (HKLM\...\{918582C7-0F0E-4FA1-A49C-65CA9864DDD8}) (Version: 7.0.50.1 - Saitek)
Salalah X (HKLM-x32\...\Salalah X) (Version:  - )
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
SHIELD Streaming (Version: 7.1.0351 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.4.0.70 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
SIMADDONS CYOW 2011 (HKLM-x32\...\SIMADDONS CYOW 2011) (Version:  - )
Simaddons Halifax 2014 "lite" (HKLM-x32\...\Simaddons Halifax 2014 "lite") (Version:  - )
SimObject Display Engine (HKLM-x32\...\{6A625293-A52F-46B1-B04B-E37418C70110}) (Version: 1.4.2.0 - 12bPilot)
Simware's - Valencia X - FSX STEAM Edition (HKLM-x32\...\Valencia X - FSX STEAM Edition) (Version: 1.00 - Simware)
SkyHighSim Belgrade X v2 for FSXSE (HKLM-x32\...\SkyHighSim Belgrade X v2 for FSXSE) (Version: 2.02.0000 - SkyHighSim)
SkyHighSim Osijek X for FSXSE (HKLM-x32\...\SkyHighSim Osijek X for FSXSE) (Version: 1.00.0000 - SkyHighSim)
Skyrim Creation Kit (HKLM\...\Steam App 202480) (Version:  - bgs.bethsoft.com)
Smart Technology Programming Software 7.0.44.1 (HKLM\...\{CBDF3481-051D-4360-95D9-08B7BE6E35A5}) (Version: 7.0.44.1 - Mad Catz)
smartCARS - FSCloud (en-US) (HKLM\...\{795F7631-80BB-DDF2-9EF2-11F336C21AFE_en-US}) (Version: 2.1.27.0 - TFDi Design)
Sniper Elite V2 (HKLM\...\Steam App 63380) (Version:  - Rebellion)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
SSD Fresh 2017 (HKLM-x32\...\{71149886-0AA3-4F31-81F9-CC90EA0D55EF}_is1) (Version: 6.1 - Abelssoft)
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stranded Deep (HKLM-x32\...\Steam App 313120) (Version:  - Beam Team Games)
Sultan Ismail Petra Airport X (HKLM-x32\...\Sultan Ismail Petra Airport X) (Version: 1 - Soarfly Concepts)
Suvarnabhumi International Airport (HKLM-x32\...\FSX_A_A_SCENERIES_SUVARNABHUMI_INT_is1) (Version: 1.0.0.0 - SimMarket)
Syria Sim Damascus Extreme 1.1 (HKLM-x32\...\Syria Sim Damascus Extreme 1.1) (Version:  - )
Sz-FlightDataRecorder (HKLM-x32\...\{7A3B74C4-32DE-4A12-82F6-274E3E96284F}) (Version: 1.2.0.0 - Eszett Solutions)
T2G Hamad Intl Airport (HKLM-x32\...\T2G_HAMAD_INTL_AIRPORT_is1) (Version: 1.0.0.1 - SimMarket)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.59518 - TeamViewer)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Walking Dead: A New Frontier (HKLM\...\Steam App 536220) (Version:  - Telltale Games)
theHunter™: Call of the Wild (HKLM\...\Steam App 518790) (Version:  - Expansive Worlds)
This War of Mine (HKLM-x32\...\Steam App 282070) (Version:  - 11 bit studios)
TJSJ v1.2.2 Upgrade for FSX (HKLM\...\{7130E980-9845-4A29-BFD6-54219CD6290C}) (Version: 1.2.2 - BluePrint Simulations)
TJSJv1.1.2 for FSX (HKLM\...\{C9F3C36E-EA14-4AEC-A6F2-B5B7DF91D461}) (Version: 1.1.2 - BluePrint Simulations)
TKPN Vance Winkworth P3D (HKLM-x32\...\TKPN Vance Winkworth P3D) (Version:  - )
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TP-LINK Archer T2U_T2UH Driver (HKLM-x32\...\{F2496892-5295-4208-AB93-21F1AFD07C97}) (Version: 1.3.1 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
TrackIR 5 (HKLM-x32\...\{2f2e6053-043c-4d69-94d0-4d42304ea4ee}) (Version: 5.2.0200 - NaturalPoint)
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
UK2000 Common Library FSX  (HKLM-x32\...\UK2000 Common Library FSX) (Version: 3.36 - UK2000 Scenery)
UK2000 Gatwick Xtreme FSX  (HKLM-x32\...\UK2000 Gatwick Xtreme FSX) (Version: 3.01 - UK2000 Scenery)
UK2000 Manchester Xtreme FSX  (HKLM-x32\...\UK2000 Manchester Xtreme FSX) (Version: 2.02 - UK2000 Scenery)
UK2000 Stansted Xtreme FSX  (HKLM-x32\...\UK2000 Stansted Xtreme FSX) (Version: 4.10 - UK2000 Scenery)
Ultimate Terrain Lights For FSX-SE (HKLM-x32\...\Ultimate Terrain Lights For FSX-SE) (Version:  - )
Ultimate Terrain X - Europe V2.1 (FSX SE Support) (HKLM-x32\...\Ultimate Terrain X - Europe V2.1 (FSX SE Support)) (Version:  - )
UltraISO Premium V9.62 (HKLM-x32\...\UltraISO_is1) (Version:  - )
USB Multi-Channel Audio Device (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392006206}) (Version: 1.00.0019 - C-Media Electronics, Inc.)
UTX Europe V2.1 Install Manager (HKLM-x32\...\UTX Europe V2.1 Install Manager) (Version:  - )
Vector Land Class Libraries (HKLM-x32\...\Vector Land Class Libraries) (Version: 1.4 - Vector Land Class)
Vegas Pro 12.0 (64-bit) (HKLM\...\{6592B670-2680-11E3-B0E0-F04DA23A5C58}) (Version: 12.0.726 - Sony)
VirtualDJ Home FREE (HKLM-x32\...\{A6AC699F-8315-40CA-8F70-E917494978AB}) (Version: 7.4 - Atomix Productions)
VIRTUALI Addon ManagerX FSX-SE (HKLM-x32\...\VIRTUALI Addon ManagerX FSX-SE_is1) (Version: 3.1.0.1 - VIRTUALI Sagl)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VLC North Island Airfield Pack (HKLM-x32\...\VLC North Island Airfield Pack) (Version: 1.22 - VectorLandClass)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
Wildlife Park 2 - Crazy Zoo (HKLM-x32\...\Steam App 306480) (Version:  - b-alive gmbh)
Wildlife Park 2 - Dino World (HKLM-x32\...\Steam App 307930) (Version:  - b-alive gmbh)
Wildlife Park 2 - Fantasy (HKLM-x32\...\Steam App 307990) (Version:  - b-alive gmbh)
Wildlife Park 2 - Farm World (HKLM-x32\...\Steam App 307920) (Version:  - b-alive gmbh)
Wildlife Park 2 - Horses (HKLM-x32\...\Steam App 307770) (Version:  - b-alive gmbh)
Wildlife Park 2 - Marine World (HKLM-x32\...\Steam App 307900) (Version:  - b-alive gmbh)
Wildlife Park 2 (HKLM-x32\...\Steam App 304350) (Version:  - b-alive gmbh)
WinRAR 5.40 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0298BC8C-351F-45F9-B548-8F36FAC40436} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Keine Datei <==== ACHTUNG
Task: {0335480D-59C7-437E-837B-87D918F5F29D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {03F7713A-0B8D-4E06-8148-495F74D395B3} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {078967E7-B47A-4549-A85A-5F67176E3E74} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-02-23] (NVIDIA Corporation)
Task: {0CA40BCB-2AFC-4DF2-AF9D-CAE5A5B12B09} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {101480B7-76CE-476E-AC49-E14D803CD6BB} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {102B1B1E-477C-4985-9AC5-20D61DD1BDEC} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {11B5578C-83A2-4C8A-ADD9-AEBBB2DA6385} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {12319E8A-3E86-4BF7-B2F0-0CEEA6B093E3} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-02-23] (NVIDIA Corporation)
Task: {1602C90A-EC92-49A4-A68E-CF16040B86E2} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Keine Datei <==== ACHTUNG
Task: {1789392A-8660-44EE-94FA-4D4CFFFC2B65} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-02-23] (NVIDIA Corporation)
Task: {187D584D-D051-489E-952B-E1CCB365B001} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {28E913B8-3328-4143-A3F9-A5E7A6120FEA} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {2C034BAB-D3C5-49E6-9E86-7AC8E05619C0} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-03-14] (AVAST Software)
Task: {42ABE557-0E83-48D2-97A5-9F49152D15D6} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate.exe 
Task: {44C84F8A-7D5D-4992-BBF9-D3140C9C4C52} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe 
Task: {451BFA8A-B698-4308-B2F3-6C9D043C8758} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {473BC359-E0BA-48FC-AD90-E235DD2F527B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {489698C9-CDA4-485A-BB1E-36F32904D03F} - System32\Tasks\Overwolf Updater Task => F:\Programme\Overwolf\OverwolfUpdater.exe [2017-03-05] (Overwolf LTD)
Task: {4C6794F1-2073-4CCC-AC1F-83AFCA0D9405} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe 
Task: {518CBD61-E504-45E2-93BB-08B205324253} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {57425CF3-07AF-45B4-9B82-464012DEB830} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {6258FEF3-26EA-466D-BFEE-A12E85BCD25E} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {7A1A42FC-5CA0-4136-B360-1F69AD2F834D} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1066145973-1361776141-3635688471-1000Core => C:\Users\Tim\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {7A955A7B-06C4-45D7-80DC-09FE897AE79D} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => %SystemRoot%\ehome\mcupdate.exe 
Task: {7EE6517D-7E54-47FC-9180-C0365AF15AEB} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {8C1AD8B2-6738-4C6D-8931-6B41491FB4D1} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-02-23] (NVIDIA Corporation)
Task: {942E51FB-3DE6-4C1B-8396-F4DFD851F596} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-02-08] (Piriform Ltd)
Task: {97776DAA-1C3A-400E-A42E-703E13E96D24} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {99A7B9B7-F256-4D8D-BF55-71306BF95510} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {9BB116E4-21EE-4503-B976-2F0183A09FAC} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe 
Task: {9C8F0ED7-0EFE-49E0-88BC-F4F7633D8B6B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {9EA480E5-18D9-4C39-91F3-8426EC68E108} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {9F0F502F-908B-4A5D-84EF-1E4808A99B3E} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {A5E3C44E-1965-4E86-9E33-C552D6FEF4B8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {AC3C4B01-D452-4FFD-BBDC-82A91A37A566} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Keine Datei <==== ACHTUNG
Task: {AD095B07-6245-4B0F-9C71-146BAD7D6A41} - System32\Tasks\{EA63FBC5-7EB9-4BB6-B5E9-3AAFF24CBE8F} => pcalua.exe -a "F:\Programme\Steam\steamapps\common\FSX\FlyTampa\FlyTampa - Configurator &amp; Libraries - FSX Uninstall.exe" -d F:\Programme\Steam\steamapps\common\FSX\FlyTampa
Task: {ADC12AE9-2133-4B09-A949-8B7A473A3E52} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-02-23] (NVIDIA Corporation)
Task: {B39A9C69-7F99-4BF0-A853-101E8358214D} - System32\Tasks\SafeZone scheduled Autoupdate 1450443547 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-02-15] (Avast Software)
Task: {B53826A5-2FFE-4116-BA14-3CCEC656975C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {C090F36F-328B-46C1-A653-D4AF45C07055} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec.exe 
Task: {D102BEF5-DF0E-4007-A003-7F136BAFCF95} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe 
Task: {D1570699-C736-42F1-93A1-12E027BADC4B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {D2A2A7E6-3B30-4A37-B0A9-8AA6911C598C} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-01-27] (AVAST Software)
Task: {DB4961F2-6EB6-452B-8AF3-3D5E64AD036F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-02-23] (NVIDIA Corporation)
Task: {DB4E5FFF-7A9B-42F0-AD0A-42EB470DE6A6} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe 
Task: {E42BCB6B-6A96-467A-858A-1522ACBC87C3} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {E8C33A26-A632-44FC-84D7-E19A55D27802} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {F16BFF22-F42A-4D3E-81CC-58ECD3A3D247} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1066145973-1361776141-3635688471-1000UA => C:\Users\Tim\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {F7E93BD8-C728-430A-A01D-2F1F3B448917} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe 
Task: {F7FE2EA0-18C6-45EE-B733-F7B2BB4BFA09} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe 
Task: {F92EB2F6-F312-4C2E-A1F3-075C4643E760} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {FADEBDEB-8681-4BFC-A49F-BB6C788FAE21} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {FCEE935E-7DE2-4E51-AC71-AC59268060BA} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-02-23] (NVIDIA Corporation)
Task: {FEAF843D-D433-4A0B-90EF-F09CBF93E5E0} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1066145973-1361776141-3635688471-1000Core.job => C:\Users\Tim\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1066145973-1361776141-3635688471-1000UA.job => C:\Users\Tim\AppData\Local\Dropbox\Update\DropboxUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

Shortcut: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com
Shortcut: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\POSKY CRJ 900 FSX\www.projectopensky.com.lnk -> hxxp://www.projectopensky.com
Shortcut: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\POSKY CRJ 900 FSX\www.rikoooo.com.lnk -> hxxp://www.rikoooo.com
Shortcut: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\POSKY Boeing 757-300 Thomas Cook FSX\www.projectopensky.com.lnk -> hxxp://www.projectopensky.com
Shortcut: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\POSKY Boeing 757-300 Thomas Cook FSX\www.rikoooo.com.lnk -> hxxp://www.rikoooo.com
Shortcut: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programme\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programme\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com

ShortcutWithArgument: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programme\Music Maker MX\Service und Support\Online registrieren.lnk -> E:\Programme\Music Maker MX\Explore.exe () -> hxxp://www.magix.com/user/register/product_registration/login_screen.php3?VARPROGRAM=mm18&VARCHARGE=18.0.0.42&VARREGISTER=onlineregister&VARLAND=D
ShortcutWithArgument: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programme\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxps://launchpage.org/?uid=qTxKGKjchx0cXe9WkuWzGboiLNqw1thyEbBii%2Fino9bIEXUYVjSJ2rObkSvEVDQbrw%3D%3D
ShortcutWithArgument: C:\Users\Tim\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxps://launchpage.org/?uid=qTxKGKjchx0cXe9WkuWzGboiLNqw1thyEbBii%2Fino9bIEXUYVjSJ2rObkSvEVDQbrw%3D%3D
ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxps://launchpage.org/?uid=qTxKGKjchx0cXe9WkuWzGboiLNqw1thyEbBii%2Fino9bIEXUYVjSJ2rObkSvEVDQbrw%3D%3D

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-16 12:29 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-01-13 13:56 - 2017-01-13 13:56 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-09-13 22:12 - 2017-02-23 19:35 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-09-13 22:12 - 2017-02-23 19:35 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2014-11-15 23:52 - 2017-02-13 22:18 - 00075136 _____ () C:\WINDOWS\SysWoW64\PnkBstrA.exe
2016-08-04 16:53 - 2017-02-23 09:28 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-12-16 12:29 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-09-13 20:46 - 2016-09-07 05:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-01-11 19:14 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-01-11 19:13 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-01-11 19:13 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-01-11 19:13 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-01-11 19:13 - 2016-12-21 07:48 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-01-11 19:13 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-01-11 19:13 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-03-07 01:07 - 2015-03-07 01:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2016-04-28 23:49 - 2016-04-28 23:49 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 01:07 - 2015-03-07 01:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2016-04-28 23:49 - 2016-04-28 23:49 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2016-05-05 16:46 - 2014-08-08 14:00 - 00844800 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
2017-02-23 18:19 - 2017-02-23 18:19 - 02493440 _____ () F:\Programme\Origin\libGLESv2.dll
2014-03-20 11:43 - 2014-03-20 11:43 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-07-09 00:50 - 2017-02-23 19:35 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2017-02-24 20:48 - 2017-02-23 19:35 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2017-02-24 20:48 - 2017-02-23 19:35 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2015-04-18 22:57 - 2009-12-09 20:20 - 00126976 _____ () C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\EnumDevLib.dll
2016-05-05 16:46 - 2014-08-08 14:02 - 01411072 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\nicLan.dll
2016-05-05 16:46 - 2014-05-13 16:59 - 00195072 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\DC_WFF.dll
2016-05-05 16:46 - 2014-05-27 09:54 - 00194560 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WJRa.dll
2016-05-05 16:46 - 2014-04-17 08:52 - 01206576 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\RaWLAPI.dll
2017-03-14 00:39 - 2017-03-14 00:39 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-06-30 21:54 - 2016-06-30 21:54 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-03-14 00:39 - 2017-03-14 00:39 - 00290352 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-03-14 00:39 - 2017-03-14 00:39 - 00655056 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2015-06-08 19:19 - 2012-06-17 10:20 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\hiddriver.dll
2017-03-09 22:13 - 2017-03-06 21:59 - 00807232 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\dropbox_watchdog.dll
2017-03-09 22:13 - 2017-02-09 03:19 - 00035792 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd
2017-03-09 22:13 - 2017-02-09 03:19 - 00100296 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\_ctypes.pyd
2017-03-09 22:13 - 2017-02-09 03:19 - 00018888 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\select.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00019776 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd
2017-03-09 22:13 - 2017-02-09 03:19 - 00694224 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\unicodedata.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00020824 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd
2017-03-09 22:13 - 2017-02-09 03:20 - 00123856 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 01682768 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00020816 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd
2017-03-09 22:13 - 2017-02-09 03:19 - 00145864 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\pyexpat.pyd
2017-03-09 22:13 - 2017-02-09 03:20 - 00019408 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\faulthandler.pyd
2017-03-09 22:13 - 2017-02-09 03:19 - 00116688 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\pywintypes27.dll
2017-03-09 22:13 - 2017-02-09 03:22 - 00105928 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32api.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00022864 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winffi.crt.compiled._winffi_crt.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00038712 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\fastpath.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00060736 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00024528 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32event.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00175560 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32gui.pyd
2017-03-09 22:13 - 2017-02-09 03:19 - 00392144 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\pythoncom27.dll
2017-03-09 22:13 - 2017-02-09 03:22 - 00020936 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\mmapfile.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00116176 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32security.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00381760 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00124880 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32file.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00026456 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winffi.kernel32.compiled._winffi_kernel32.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00024016 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32clipboard.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00030160 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32pipe.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00043472 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32process.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00048592 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32service.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00057808 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32evtlog.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00024016 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32profile.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00246608 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\breakpad.client.windows.handler.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00027488 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\dropbox.infinite.win.compiled._driverinstallation.pyd
2017-03-09 22:13 - 2017-02-09 03:21 - 00241104 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\_jpegtran.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00022336 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00025432 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00028616 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32ts.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 01826104 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd
2017-03-09 22:13 - 2017-02-09 03:20 - 00083912 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\sip.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 01972536 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 03928896 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00531264 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00053072 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winrpcserver.compiled._RPCServer.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00133432 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00224064 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00207680 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00022864 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winffi.user32.compiled._winffi_user32.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00069968 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\windisplaytoast.compiled._DisplayToast.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00022872 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00021848 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winffi.winerror.compiled._winffi_winerror.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00022872 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winffi.wininet.compiled._winffi_wininet.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00350152 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winxpgui.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00103232 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtWinExtras.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00023896 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winverifysignature.compiled._VerifySignature.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00025936 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd
2017-03-09 22:13 - 2017-02-09 03:17 - 00036296 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\librsync.dll
2017-03-09 22:13 - 2017-03-06 22:01 - 00033112 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\enterprise_data.compiled._enterprise_data.pyd
2017-03-09 22:13 - 2016-12-02 22:44 - 00293392 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\EnterpriseDataAdapter.dll
2017-03-09 22:13 - 2017-03-06 22:01 - 00084288 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL
2017-03-09 22:13 - 2017-02-09 03:27 - 00017864 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\libEGL.dll
2017-03-09 22:13 - 2017-02-09 03:27 - 01631184 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2017-03-09 22:13 - 2017-03-06 22:01 - 00042816 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtWebChannel.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00171336 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineWidgets.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00357688 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00060880 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32print.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00546104 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.pyd
2016-09-13 22:12 - 2017-02-23 15:30 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-09-13 22:12 - 2017-02-23 15:30 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-09-13 22:12 - 2017-02-23 15:30 - 02443320 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-09-13 22:12 - 2017-02-23 15:30 - 00385592 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-09-13 22:12 - 2017-02-23 15:30 - 00543288 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-09-13 22:12 - 2017-02-23 15:30 - 00468536 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2017-02-07 00:41 - 2017-02-01 10:01 - 01870168 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libglesv2.dll
2017-02-07 00:41 - 2017-02-01 10:01 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)

HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\Software\Classes\.exe:  =>  <===== ACHTUNG

==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\Control Panel\Desktop\\Wallpaper -> D:\Wallpaper\Spiele\Assassin's Creed - Brotherhood.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist deaktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Roccat Talk.lnk => C:\Windows\pss\Roccat Talk.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Tim^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk => C:\Windows\pss\Adobe Gamma.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Cm106Sound => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cm106.dll,CMICtrlWnd
MSCONFIG\startupreg: Dropbox Update => "C:\Users\Tim\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
MSCONFIG\startupreg: Hercules DJ Series TrayAgent => C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe /boot
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: IAStorIcon => "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
MSCONFIG\startupreg: iCloudDrive => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: KeePass 2 PreLoad => "C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe" --preload
MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: ProfilerU => C:\Program Files\SmartTechnology\Software\ProfilerU.exe
MSCONFIG\startupreg: SaiMfd => C:\Program Files\SmartTechnology\Software\SaiMfd.exe
MSCONFIG\startupreg: ShadowPlay => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
HKLM\...\StartupApproved\StartupFolder: => "HP Digital Imaging Monitor.lnk"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "Hercules DJ Series TrayAgent"
HKLM\...\StartupApproved\Run: => "Cm106Sound"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "SaiMfd"
HKLM\...\StartupApproved\Run: => "ProfilerU"
HKLM\...\StartupApproved\Run32: => "KeePass 2 PreLoad"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\StartupApproved\Run: => "Dropbox Update"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{81D4A36B-E07B-4FAB-953E-3D76DF04E247}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{52435D91-08CB-4076-88D2-9A8F435BC3D9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{D09B611A-E25B-4009-B110-6447716FFA80}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{381DAE10-D2FB-4022-89B1-FA0E9C38DD03}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{3062B92D-ACF5-44F5-A12E-73B76FACC5B4}] => (Allow) F:\Spiele\Flight Simulator X\REX Essential Plus Overdrive\rex.exe
FirewallRules: [{05FD203A-06E5-4C57-AD74-44D91D06E4FE}] => (Allow) F:\Programme\Format Factory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{9306C7DC-059D-4F6B-900A-C05842645F62}] => (Allow) F:\Programme\Format Factory\FormatFactory.exe
FirewallRules: [{6F7D0410-AFF9-4083-9AFC-0E6A533390DF}] => (Allow) F:\Programme\Format Factory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{D6B03ED2-D1A1-4E2A-A056-7D0F3D9DEBCC}] => (Allow) F:\Programme\Format Factory\FormatFactory.exe
FirewallRules: [{3B0C1EC5-13EF-4811-A2C1-E0B5EAA42D6C}] => (Allow) F:\Programme\Steam\steamapps\common\FSX\fsx.exe
FirewallRules: [{B2D0FEA0-7747-4CC6-9039-4166D6431559}] => (Allow) F:\Programme\Steam\steamapps\common\FSX\fsx.exe
FirewallRules: [{59193171-9A8A-4616-8E99-F5D14A356A1D}] => (Allow) F:\Programme\Steam\steamapps\common\Skyrim\CreationKit.exe
FirewallRules: [{ED41B578-CED5-493F-A025-E8719843A7E8}] => (Allow) F:\Programme\Steam\steamapps\common\Skyrim\CreationKit.exe
FirewallRules: [{C7B5F6EE-01AE-4E36-A9A4-F2770305BD86}] => (Allow) C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtWLan.exe
FirewallRules: [{5CA841B9-9297-4D13-9DC0-75D6A4DEDCD3}] => (Allow) C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtWLan.exe
FirewallRules: [{B315841F-8EDB-4801-A038-F881ED8699F2}] => (Allow) LPort=1542
FirewallRules: [{99F57970-6A04-4E24-8B34-5B997947E438}] => (Allow) LPort=1542
FirewallRules: [{BA460502-638A-4503-9C74-356A8551C139}] => (Allow) LPort=53
FirewallRules: [{8E3082F1-90AC-4D17-B6DE-BF45CF8066A2}] => (Allow) C:\Users\Tim\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{89DD6F91-7B4A-4BC5-A85A-BCE029BFA3ED}] => (Allow) C:\Users\Tim\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{569A86D4-89E9-45EE-BE5C-96347552DD34}] => (Allow) E:\Programme\Steam\Steam.exe
FirewallRules: [{D47E7219-819C-4929-A131-5AFCF39584C6}] => (Allow) E:\Programme\Steam\Steam.exe
FirewallRules: [{B633CB80-AF79-41CC-8975-00C54E5681FF}] => (Allow) E:\Programme\Steam\SteamApps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [{7434CE76-D9F6-4ECF-87B5-088A3548CC71}] => (Allow) E:\Programme\Steam\SteamApps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [TCP Query User{C910CC57-B713-4B1D-B82A-D380B6E8C864}C:\users\tim\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\tim\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{4A690739-F91E-47AE-9526-E46C983623FA}C:\users\tim\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\tim\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{C42BA9EB-422B-4D87-AA29-D9EBDBEECEA6}] => (Allow) E:\Programme\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{3748BAEB-9C9D-40B3-BB70-38CFA740B1DC}] => (Allow) E:\Programme\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{508CEB4D-9688-4B0E-9537-A7F6682096B4}] => (Allow) E:\Programme\Battle.net\Battle.net.exe
FirewallRules: [{D3F08A74-0038-47F2-B5D2-113F55BDCFAB}] => (Allow) E:\Programme\Battle.net\Battle.net.exe
FirewallRules: [{329DAD61-7631-4F8C-83F1-F3680CABA14F}] => (Allow) E:\Spiele\Hearthstone\Hearthstone.exe
FirewallRules: [{F010E9FF-72C2-4232-8961-4C9FB4C50A20}] => (Allow) E:\Spiele\Hearthstone\Hearthstone.exe
FirewallRules: [{872B9AED-3CBC-47C2-B037-60481EAFA795}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{236FA72C-4E99-4368-A9AC-AD349B4A5377}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{0371AF91-5898-4172-826B-9B94185DC266}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{BE3A0D97-CE0D-42AE-998C-002652AA5D80}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{793C0272-A6A6-46E0-8EEB-95CAF6F6766F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [TCP Query User{1224180A-22E9-4F8C-9174-A926D2E174F0}C:\program files\guillemot\hdjtray\hdjseries2traybar.exe] => (Allow) C:\program files\guillemot\hdjtray\hdjseries2traybar.exe
FirewallRules: [UDP Query User{4AA41065-5D02-4E59-9360-00EE45530A6D}C:\program files\guillemot\hdjtray\hdjseries2traybar.exe] => (Allow) C:\program files\guillemot\hdjtray\hdjseries2traybar.exe
FirewallRules: [{C9834843-66B7-4CC9-960F-E77421C78EC6}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2-Steam.exe
FirewallRules: [{7BBB19D6-99D5-4A2C-8907-7942636D273E}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2-Steam.exe
FirewallRules: [{E5F37EBA-9258-4311-A5A5-007FA906A148}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon1-Steam.exe
FirewallRules: [{E066693A-7561-4B11-BFE2-E6D37F4B473D}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon1-Steam.exe
FirewallRules: [{63B4E369-F230-40BA-B79E-24BB8372296B}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon5-Steam.exe
FirewallRules: [{A04EA818-E19E-4BB3-9CC3-295D291DB3C6}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon5-Steam.exe
FirewallRules: [{02EC553D-21B2-4C02-B20F-391987AE44FB}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2fantasy-Steam.exe
FirewallRules: [{87D54B50-C9D6-41BC-A51F-4970B9C56BEF}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2fantasy-Steam.exe
FirewallRules: [{672527AF-5B4B-48FB-A36F-43123D3CF40B}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon4-Steam.exe
FirewallRules: [{AF24FC58-809D-4F4D-ABBC-21D49DFBCB7B}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon4-Steam.exe
FirewallRules: [{AA8BF414-C807-4F03-9E24-C3BC7D856FA0}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon2-Steam.exe
FirewallRules: [{7866F27D-5FC2-4AA8-B9D0-72692C78B991}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon2-Steam.exe
FirewallRules: [{81C84676-EB64-4805-89AC-539E471982C5}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon3-Steam.exe
FirewallRules: [{D6BFE5AF-15EB-4820-9EDB-9B010E991DCA}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon3-Steam.exe
FirewallRules: [{D6BB9ECE-05DD-44C4-908E-9F40428557B9}] => (Allow) C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtWLan.exe
FirewallRules: [{A683B9D3-C988-4982-8D49-3FE38CE95F89}] => (Allow) C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtWLan.exe
FirewallRules: [{8EEBBB99-8EDF-4603-84C0-6E7215CA93BB}] => (Allow) LPort=1542
FirewallRules: [{782C4989-AEB5-4B3A-853D-B2619D0E3194}] => (Allow) LPort=1542
FirewallRules: [{0A5FC314-3F12-4A4A-91BA-EF5AD118ABB1}] => (Allow) LPort=53
FirewallRules: [{1531D213-F540-4F4C-8986-A83897A83523}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{D9D97F91-150C-4E20-B046-2DA849A7F970}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{0D5C2E1C-800B-437E-BD95-AE70C72B8562}] => (Allow) F:\Programme\Steam\steamapps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{E18B4B64-9C56-487A-B7AD-6F7C7E04AF53}] => (Allow) F:\Programme\Steam\steamapps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{C2A98E01-3829-43A6-B26B-4B3CB122FCE6}] => (Allow) F:\Programme\Steam\steamapps\common\Stranded Deep\Stranded_Deep_x64.exe
FirewallRules: [{79FEB8F0-4D76-4C59-8535-DD78228C5ED6}] => (Allow) F:\Programme\Steam\steamapps\common\Stranded Deep\Stranded_Deep_x64.exe
FirewallRules: [{A855F781-F534-49D2-9C8D-C2B6015C57A8}] => (Allow) F:\Programme\Steam\steamapps\common\Miscreated\Miscreated.exe
FirewallRules: [{52853D47-4F45-4662-B210-3906E4EBD5C7}] => (Allow) F:\Programme\Steam\steamapps\common\Miscreated\Miscreated.exe
FirewallRules: [{F4032DF3-11D9-4918-A167-785FFC0871B5}] => (Allow) F:\Programme\Steam\steamapps\common\Miscreated\Bin64\Miscreated.exe
FirewallRules: [{D1914276-9B31-4C8A-94BB-C2EAC46E4005}] => (Allow) F:\Programme\Steam\steamapps\common\Miscreated\Bin64\Miscreated.exe
FirewallRules: [{E786B3F3-E6A5-4E7C-BCA6-577B959F191C}] => (Allow) F:\Programme\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{E68C261D-48F3-4E9E-B711-CBA232B0385D}] => (Allow) F:\Programme\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{E2EDD1F7-1175-40A5-BCB0-480271B274F3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{0ED676EA-3E91-4B25-80F6-09C70BE1B4EF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{55FD5784-41F6-40F6-8047-B3173DCE0586}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3839E42B-2438-4C8B-8E0E-0457E8D43FF7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{EF6710F2-873B-456D-988B-46642F08E380}] => (Allow) F:\Programme\Steam\steamapps\common\This War of Mine\Storyteller.exe
FirewallRules: [{4EA879E7-7305-4BF1-849E-366120BD997E}] => (Allow) F:\Programme\Steam\steamapps\common\This War of Mine\Storyteller.exe
FirewallRules: [{81CA41B9-4A62-4A9D-949D-D5FDEE2DCF25}] => (Allow) F:\Programme\Steam\steamapps\common\Anna's Quest\anna.exe
FirewallRules: [{2C805E34-AFED-49F3-9094-AD4D6ACDE8A6}] => (Allow) F:\Programme\Steam\steamapps\common\Anna's Quest\anna.exe
FirewallRules: [{D782CF12-9B59-4760-A1A8-569078CE4045}] => (Allow) F:\Programme\Steam\steamapps\common\Anna's Quest\VisionaireConfigurationTool.exe
FirewallRules: [{8ADB36B6-6CA0-444F-97E6-C58702D24DE6}] => (Allow) F:\Programme\Steam\steamapps\common\Anna's Quest\VisionaireConfigurationTool.exe
FirewallRules: [{593E6D42-393C-4B58-9FF4-04E7F8F7BD59}] => (Allow) F:\Programme\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{287CF4AE-5EA9-4959-B33B-A95C82E555E1}] => (Allow) F:\Programme\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{DBCFE68E-AA2F-4F85-B439-CC2CF1DC1A5C}] => (Allow) F:\Programme\Steam\steamapps\common\Anna's Quest\bonus content\Prologue\ANNAS_QUEST_PROLOGUE.exe
FirewallRules: [{F69CC381-49D8-4925-B249-9A35F8EC5F0B}] => (Allow) F:\Programme\Steam\steamapps\common\Anna's Quest\bonus content\Prologue\ANNAS_QUEST_PROLOGUE.exe
FirewallRules: [{421CA432-4773-4AA1-B96D-8305F0E3E627}] => (Allow) F:\Programme\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{7F9AC22E-948A-48C0-875C-F82A5389652D}] => (Allow) F:\Programme\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{7DEECFFE-DBA2-4C75-A21C-BE02DFD35B01}] => (Allow) F:\Programme\Steam\steamapps\common\Hitman™\Launcher.exe
FirewallRules: [{4BD982A0-5289-44BB-AAC2-9F147E511F45}] => (Allow) F:\Programme\Steam\steamapps\common\Hitman™\Launcher.exe
FirewallRules: [{2F8E8B25-8F29-43F9-B72B-E293F7949F3C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{51B8B7A9-ED56-4A4E-9CFD-246990D7B559}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{91F380BD-3CBC-45D9-A086-90AC170C2E87}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{2CCE675F-3DF2-40B1-8105-426B5EDE8A11}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{1E2CB50B-61AB-4E7E-B584-ED43AF00CCD5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{52FAAEB3-6081-4037-85BE-B72B6B63E430}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{014EC9A2-4F61-4CA6-B9AF-D1141CA9BA6C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{F27154EB-EC97-4F1A-8312-7B32E5CF2BFD}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{1E5014EB-D527-4D6C-8E77-9196D378AA4D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{A814712B-7FE9-493B-B5F4-ADD1E1A3C54E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{F2F730DE-E57A-4E3F-9F59-92BD36E1EA78}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{E2D10F58-146A-47FD-9D58-BD22A5B42F73}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{800247D2-982B-4937-AAC6-6B30741427BB}] => (Allow) F:\Programme\Steam\steamapps\common\Omerta\OmertaSteam.exe
FirewallRules: [{07EFAF36-DF8C-4855-B974-C5CA5D2192A3}] => (Allow) F:\Programme\Steam\steamapps\common\Omerta\OmertaSteam.exe
FirewallRules: [{23D7DFA6-69C7-435C-A4F7-67F279CA197C}] => (Allow) E:\Programme\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{06B1714A-4198-41B3-84FA-32CA5DB2F83A}] => (Allow) E:\Programme\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{2F03B6C0-A214-4CDC-B8FB-AA6B1A6932B7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{FDCA7F04-435B-47BE-9A55-8A942C4DA803}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{0B75BD38-FFE2-4F48-AADD-C6312B6F304A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{36D24E82-71B1-4626-BA29-096AD430EE25}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B10694DE-A7AE-4984-A152-865442F2722B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{84D28CF8-33DB-4D91-A3EB-0BBFEDDB058D}] => (Allow) F:\Programme\Steam\steamapps\common\The Walking Dead - A New Frontier (Season 3)\WalkingDead3_win8.exe
FirewallRules: [{4DE456FF-D8C2-40E2-B520-6A82417C020C}] => (Allow) F:\Programme\Steam\steamapps\common\The Walking Dead - A New Frontier (Season 3)\WalkingDead3_win8.exe
FirewallRules: [{8F704D61-52F7-4E5D-94B5-358C371204E3}] => (Allow) F:\Programme\Steam\steamapps\common\The Walking Dead - A New Frontier (Season 3)\WalkingDead3_win7.exe
FirewallRules: [{8D45F0D3-5F8E-45C0-8798-74E320B67C12}] => (Allow) F:\Programme\Steam\steamapps\common\The Walking Dead - A New Frontier (Season 3)\WalkingDead3_win7.exe
FirewallRules: [{D8CDBACF-EB4D-4342-8D58-419A52215912}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{00A9F07B-10F5-4559-ADB5-9FA36EB290CF}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{64908382-860F-4866-8789-3653216EACC7}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D34A8656-6C6B-4D29-BCBE-02B3C02B8F55}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D59ABFF3-25EA-470F-8F75-5774FE611A78}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{61851F64-ECC7-4EB8-BCAC-38A9BCA89A23}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{36673601-9A5C-4154-99A3-5D5C1BF44DF9}] => (Allow) F:\Programme\Steam\steamapps\common\theHunterCotW\theHunterCotW_F.exe
FirewallRules: [{B21C9002-74E6-4F69-8C4C-8CDFDA032EF3}] => (Allow) F:\Programme\Steam\steamapps\common\theHunterCotW\theHunterCotW_F.exe
FirewallRules: [{D3CA87F9-BCD4-439B-837D-DC14BEA62CBB}] => (Allow) E:\Programme\Steam\SteamApps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{DF156B7B-DB55-45AD-86CC-F715927EDD4A}] => (Allow) E:\Programme\Steam\SteamApps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{63595A12-616C-42CC-A574-5864E32AEC4A}] => (Allow) E:\Programme\Steam\SteamApps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{228EA2BF-37D0-4C6E-BEC3-CC6A7AC6A489}] => (Allow) E:\Programme\Steam\SteamApps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{9A7C9BA1-6EBF-4804-8D21-B21E8D46A6D8}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.590\SZBrowser.exe
FirewallRules: [{5C1C67E7-BAAE-4DEA-8FB9-6F0A98E3F040}] => (Allow) F:\Programme\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{F8A338E9-83D2-4196-BBF1-963E6C8CC773}] => (Allow) F:\Programme\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{B5DF2557-CA1A-4F60-9EEA-EE78C2838602}] => (Allow) F:\Programme\Steam\steamapps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{9ACDAA43-0A79-4A9A-AB93-2251A4DAFFD5}] => (Allow) F:\Programme\Steam\steamapps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{74222E99-AA86-4215-8317-006ABF857364}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.561_0\SZBrowser.exe

==================== Wiederherstellungspunkte =========================

ACHTUNG: Systemwiederherstellung ist deaktiviert

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Officejet 4500 G510n-z
Description: Officejet 4500 G510n-z
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Officejet 4500 G510n-z
Description: Officejet 4500 G510n-z
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (03/14/2017 01:27:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: microsoftedgecp.exe, Version: 11.0.14393.82, Zeitstempel: 0x57a55786
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000604
Fehleroffset: 0x0000000000000000
ID des fehlerhaften Prozesses: 0x1380
Startzeit der fehlerhaften Anwendung: 0x01d29c599b8a9c36
Pfad der fehlerhaften Anwendung: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 11682013-6031-49ef-8870-aa75820bfa38
Vollständiger Name des fehlerhaften Pakets: Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MicrosoftEdge

Error: (03/14/2017 01:27:53 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: microsoftedgecp.exe, Version: 11.0.14393.82, Zeitstempel: 0x57a55786
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000604
Fehleroffset: 0x0000000000000000
ID des fehlerhaften Prozesses: 0x1380
Startzeit der fehlerhaften Anwendung: 0x01d29c599b8a9c36
Pfad der fehlerhaften Anwendung: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 6d7009d4-128c-44ca-8793-4901d435a4d5
Vollständiger Name des fehlerhaften Pakets: Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MicrosoftEdge

Error: (03/14/2017 12:52:11 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (03/13/2017 04:40:21 PM) (Source: Microsoft-Windows-EFS) (EventID: 4401) (User: Home-PC)
Description: 7.488: Der EFS-Dienst*konnte keinen Benutzer für „Unternehmensdatenschutz“ bereitstellen. Fehlercode: 0x80070005.

Error: (03/13/2017 02:39:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: EZCA.exe, Version: 1.1.8.7, Zeitstempel: 0x2a425e19
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0xf81e0000
ID des fehlerhaften Prozesses: 0x2e08
Startzeit der fehlerhaften Anwendung: 0x01d29bff03241110
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\EZCA\EZCA.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 17da9c5c-fdbb-4cac-9b3e-02ff7acd1c6f
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (03/13/2017 02:39:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: EZCA.exe, Version: 1.1.8.7, Zeitstempel: 0x2a425e19
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0xf81e0000
ID des fehlerhaften Prozesses: 0x2e08
Startzeit der fehlerhaften Anwendung: 0x01d29bff03241110
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\EZCA\EZCA.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 33214c4f-8a00-421c-97d5-abb60c327432
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (03/13/2017 02:38:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: EZCA.exe, Version: 1.1.8.7, Zeitstempel: 0x2a425e19
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0xf8060000
ID des fehlerhaften Prozesses: 0x2e08
Startzeit der fehlerhaften Anwendung: 0x01d29bff03241110
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\EZCA\EZCA.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: fb1ce15b-e887-4acd-8bb5-e184d27ab693
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (03/13/2017 02:38:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: EZCA.exe, Version: 1.1.8.7, Zeitstempel: 0x2a425e19
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0xf8060000
ID des fehlerhaften Prozesses: 0x2e08
Startzeit der fehlerhaften Anwendung: 0x01d29bff03241110
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\EZCA\EZCA.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 16a24bcb-6004-4483-929e-5b0b0fbd2dcb
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (03/13/2017 02:38:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: EZCA.exe, Version: 1.1.8.7, Zeitstempel: 0x2a425e19
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0xf8060000
ID des fehlerhaften Prozesses: 0x2e08
Startzeit der fehlerhaften Anwendung: 0x01d29bff03241110
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\EZCA\EZCA.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 647ce4bf-6140-40bc-84ca-5af36b207770
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (03/13/2017 02:38:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: EZCA.exe, Version: 1.1.8.7, Zeitstempel: 0x2a425e19
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0xf8060000
ID des fehlerhaften Prozesses: 0x2e08
Startzeit der fehlerhaften Anwendung: 0x01d29bff03241110
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\EZCA\EZCA.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 7c7b2490-9dae-439c-b5d3-a542ef217789
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:


Systemfehler:
=============
Error: (03/14/2017 12:50:13 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (03/14/2017 12:45:24 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.

Error: (03/14/2017 12:27:51 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (03/14/2017 12:27:41 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.

Error: (03/14/2017 12:13:59 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA LocalSystem Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (03/14/2017 12:11:22 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (03/14/2017 12:10:02 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.

Error: (03/14/2017 12:07:54 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (03/14/2017 12:07:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Rapid Storage Technology" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (03/14/2017 12:07:53 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Presentation Foundation-Schriftartcache 3.0.0.0" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.


CodeIntegrity:
===================================
  Date: 2017-03-14 01:29:48.623
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-03-14 01:26:22.725
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-03-06 23:31:22.712
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-01-03 22:13:20.383
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2016-12-21 21:19:16.187
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-4690 CPU @ 3.50GHz
Prozentuale Nutzung des RAM: 19%
Installierter physikalischer RAM: 16300.86 MB
Verfügbarer physikalischer RAM: 13043.32 MB
Summe virtueller Speicher: 17324.86 MB
Verfügbarer virtueller Speicher: 14016.54 MB

==================== Laufwerke ================================

Drive c: (System) (Fixed) (Total:111.25 GB) (Free:54.72 GB) NTFS
Drive d: (Daten) (Fixed) (Total:232.88 GB) (Free:106.8 GB) NTFS
Drive e: (Software) (Fixed) (Total:232.88 GB) (Free:201.85 GB) NTFS
Drive f: (Software) (Fixed) (Total:931.51 GB) (Free:467.02 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 1 (Size: 232.9 GB) (Disk ID: BDC3BDC3)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: BD99BD99)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 684D8459)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         

Alt 14.03.2017, 11:36   #5
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org" - Standard

Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org"



Bitte Avast deinstallieren. Das Teil können wir einfach nicht mehr guten Gewissens empfehlen. => Antivirensoftware: Schutz Für Ihre Dateien, Aber Auf Kosten Ihrer Privatsphäre? | Emsisoft Blog

Auch andere Freewareanbieter wie Avira, AVG oder Panda springen auf diesen oder ähnlichen Zügen rauf, basteln Junkware in die Setups, arbeiten mit ASK zusammen etc; so was ist bei Sicherheitssoftware einfach inakzeptabel.

Gib Bescheid wenn Avast weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren!

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 14.03.2017, 11:57   #6
Drebing
 
Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org" - Standard

Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org"



So, Avast wurde deinstalliert. Anbei dir neuen Logs von FRST.

FRST.txt
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 13-03-2017
durchgeführt von Tim (Administrator) auf HOME-PC (14-03-2017 11:51:28)
Gestartet von D:\Downloads
Geladene Profile: Tim (Verfügbare Profile: Tim & DefaultAppPool)
Platform: Windows 10 Home Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Edge)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Guillemot Corporation ®) C:\Program Files\DJHERCULESMIX\Audio\DJ Console Series\drivers\amd64\HerculesDJControlMP3.EXE
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Realtek) C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtlService.exe
(Electronic Arts) F:\Programme\Origin\OriginWebHelperService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtWLan.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDCountdown.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Dominik Reichl) C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.exe
() C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
(Dropbox, Inc.) C:\Users\Tim\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Dropbox, Inc.) C:\Users\Tim\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7611608 2014-05-27] (Realtek Semiconductor)
HKLM\...\Run: [Cm106Sound] => C:\WINDOWS\syswow64\RunDll32.exe C:\WINDOWS\Syswow64\cm106.dll,CMICtrlWnd
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15818872 2016-04-28] (Logitech Inc.)
HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2015-09-22] (Saitek)
HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [157696 2015-09-22] (Saitek)
HKLM\...\Run: [Hercules DJ Series TrayAgent] => C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe [1817248 2015-12-07] (DJHERCULESMIX®)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2017-01-19] (Apple Inc.)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-09-07] (Microsoft Corporation)
HKLM-x32\...\Run: [RoccatKoneXTD] => C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.EXE [552960 2014-10-19] (ROCCAT GmbH)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2867712 2017-01-09] (Dominik Reichl)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [9363672 2017-02-08] (Piriform Ltd)
HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\Run: [KeePass Password Safe 2] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2867712 2017-01-09] (Dominik Reichl)
HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\Run: [Dropbox Update] => C:\Users\Tim\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\MountPoints2: {be129d6b-19e9-11e5-b1c1-74d435bbf5f0} - "I:\LaunchU3.exe" -a
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt.14.0.dll [2017-03-06] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2016-08-14]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2016-05-05]
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe ()
Startup: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2017-03-09]
ShortcutTarget: Dropbox.lnk -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{257679c5-d672-4a4b-bdec-b2571136dafa}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{3961559e-6d54-45a6-af6d-bb334e9e4541}: [DhcpNameServer] 192.168.178.1
ManualProxies: 

Internet Explorer:
==================
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-02-12] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-12] (Oracle Corporation)

Edge: 
======
Edge HomeButtonPage: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000 -> hxxp://google.de/

FireFox:
========
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-02-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-02-12] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-02-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-02-23] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-27] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1066145973-1361776141-3635688471-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2017-02-28] ()

Chrome: 
=======
CHR DefaultProfile: Profile 1
CHR HomePage: Profile 1 -> hxxp://harmony-gouvernors.de/hgclan/
CHR StartupUrls: Profile 1 -> "hxxp://harmony-gouvernors.de/hgclan/","hxxp://81.169.250.232/forum/","hxxps://www.google.de/"
CHR Profile: C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-03-14]
CHR Profile: C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-03-14]
CHR Extension: (ProxFlow) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aakchaleigkohafkfjfjbblobjifikek [2017-01-24]
CHR Extension: (Google Drive) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (YouTube) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Google-Suche) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Avast Online Security (BETA)) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2017-02-22]
CHR Extension: (AdBlock) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-02-25]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-08]
CHR Extension: (Audio Converter) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ojfphighcpfimfhblaigjckljcoeipga [2016-05-08]
CHR Extension: (Google Mail) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-04]
CHR Extension: (Chrome Media Router) - C:\Users\Tim\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-07]
CHR Profile: C:\Users\Tim\AppData\Local\Google\Chrome\User Data\System Profile [2017-03-14]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2014-11-16] (Adobe Systems) [Datei ist nicht signiert]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1486344 2017-02-01] ()
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [239376 2015-10-28] (EasyAntiCheat Ltd)
R2 HerculesDJControlMP3; C:\Program Files\DJHERCULESMIX\Audio\DJ Console Series\drivers\amd64\HerculesDJControlMP3.EXE [105472 2015-10-14] (Guillemot Corporation ®) [Datei ist nicht signiert]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [Datei ist nicht signiert]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-04-11] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-01] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193656 2016-04-28] (Logitech Inc.)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-23] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-23] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-02-23] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2017-02-23] (NVIDIA Corporation)
S3 Origin Client Service; F:\Programme\Origin\OriginClientService.exe [2122248 2017-02-23] (Electronic Arts)
R2 Origin Web Helper Service; F:\Programme\Origin\OriginWebHelperService.exe [2184208 2017-02-23] (Electronic Arts)
S3 OverwolfUpdater; F:\Programme\Overwolf\OverwolfUpdater.exe [1325384 2017-03-05] (Overwolf LTD)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2017-02-13] ()
R2 Realtek11nSU; C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtlService.exe [36864 2010-04-16] (Realtek) [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 avmeject; C:\WINDOWS\System32\drivers\avmeject.sys [14120 2013-12-17] (AVM Berlin)
S3 Bulk; C:\WINDOWS\System32\Drivers\HDJBulk.sys [339104 2016-01-13] (© Guillemot R&D, 2015. All rights reserved.)
S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [27040 2012-09-25] (Windows (R) Win 7 DDK provider)
S3 fwlanusb6; C:\WINDOWS\System32\DRIVERS\fwlanusb6.sys [1327744 2014-03-27] (AVM GmbH) [Datei ist nicht signiert]
S3 HDJMidi; C:\WINDOWS\system32\DRIVERS\HDJMidi.sys [283296 2016-01-13] (© Guillemot R&D, 2015. All rights reserved.)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (EZB Systems, Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyHidFilter; C:\WINDOWS\system32\drivers\LGJoyHidFilter.sys [74920 2016-04-19] (Logitech Inc.)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [85160 2016-04-19] (Logitech Inc.)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 npusbio; C:\WINDOWS\System32\Drivers\npusbio_x64.sys [38400 2012-07-09] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_2a6e383a1adc0e24\nvlddmkm.sys [14569528 2017-02-24] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-02-23] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2017-01-20] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [59448 2017-02-23] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek                                            )
S3 SaiH0BAC; C:\WINDOWS\System32\DRIVERS\SaiH0BAC.sys [176128 2007-07-02] (Saitek)
S3 SaiK0bac; C:\WINDOWS\System32\drivers\SaiK0bac.sys [180896 2015-09-23] (Saitek)
R3 SaiMini; C:\WINDOWS\System32\drivers\SaiMini.sys [23968 2015-09-23] (Saitek)
R3 SaiNtBus; C:\WINDOWS\system32\drivers\SaiBus.sys [51488 2015-09-23] (Saitek)
S3 USBMULCD; C:\WINDOWS\system32\drivers\CM10664.sys [4135936 2014-01-17] (C-Media Electronics Inc)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
U3 idsvc; kein ImagePath
S3 RTTEAMPT; \SystemRoot\system32\DRIVERS\RtTeam620.sys [X]
S3 RTVLANPT; \SystemRoot\system32\DRIVERS\RtVlan620.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-03-14 11:46 - 2017-03-14 11:46 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-03-14 01:35 - 2017-03-14 11:51 - 00000000 ____D C:\FRST
2017-03-14 00:40 - 2017-03-14 00:40 - 00547904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys.148944840765604
2017-03-13 15:25 - 2017-03-13 15:27 - 00000000 ____D C:\Users\Tim\AppData\Local\SniperV2
2017-03-09 22:13 - 2017-03-09 22:13 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-03-09 18:24 - 2017-02-23 09:17 - 00136064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-03-09 18:24 - 2017-01-26 01:13 - 00103936 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-03-09 18:24 - 2017-01-26 01:12 - 00326656 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-03-09 18:24 - 2017-01-26 01:09 - 00322560 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-03-09 18:24 - 2017-01-26 01:09 - 00118272 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-03-09 18:23 - 2017-03-09 18:24 - 00000000 ____D C:\WINDOWS\LastGood
2017-03-09 18:22 - 2017-02-23 23:55 - 01600056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2017-03-09 18:22 - 2017-02-23 23:55 - 00217528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2017-03-09 18:22 - 2017-02-23 23:55 - 00047664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2017-03-09 18:22 - 2017-02-23 19:34 - 00059448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-03-09 18:22 - 2017-02-23 11:32 - 40192056 _____ C:\WINDOWS\system32\nvcompiler.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 35272760 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 34992184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 28252608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 19007528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 14674896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 11122728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 11019888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 09306312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 08990256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 04078008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 03596616 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 03168192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 02717752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 01985080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437878.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 01589696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437878.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 01052096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00989632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00959424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00946456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00944224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00910784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00721768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00719856 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00687408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00618416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00609728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00605120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00576008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00573632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00499136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00483384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00447984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-03-09 18:22 - 2017-02-23 11:32 - 00043566 _____ C:\WINDOWS\system32\nvinfo.pb
2017-03-09 18:05 - 2017-03-09 18:05 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-03-09 18:05 - 00003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-03-09 18:05 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-03-09 18:05 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-03-09 18:05 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-03-09 18:05 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-03-09 18:05 - 00003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-09 18:05 - 2017-02-23 19:35 - 01880512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-03-09 18:05 - 2017-02-23 19:35 - 01468864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-03-08 19:59 - 2017-03-08 19:59 - 00003270 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-03-08 19:59 - 2017-03-08 19:59 - 00002426 _____ C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-03-07 19:29 - 2017-03-07 19:29 - 00000000 ____D C:\Users\Tim\AppData\Local\Afl0Sim
2017-03-06 19:00 - 2017-03-06 19:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FsDreamTeam
2017-03-04 12:10 - 2017-03-04 12:10 - 00000000 ____D C:\Users\Tim\Documents\Avalanche Studios
2017-03-04 12:10 - 2017-03-04 12:10 - 00000000 ____D C:\Users\Tim\AppData\Local\CrashRpt
2017-03-03 16:10 - 2017-03-03 16:10 - 00002553 _____ C:\Users\Tim\Desktop\Hearthstone Deck Tracker.lnk
2017-02-24 20:49 - 2017-02-24 20:49 - 00000000 ____D C:\Users\Tim\ansel
2017-02-24 20:48 - 2017-02-24 20:48 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2017-02-24 20:48 - 2017-01-20 19:39 - 00156608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-02-24 20:48 - 2017-01-20 19:39 - 00124352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-02-24 20:48 - 2017-01-20 19:39 - 00046016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2017-02-23 18:11 - 2017-02-23 23:48 - 00005110 _____ C:\ProgramData\NvTelemetryContainer.log_backup1
2017-02-22 19:36 - 2017-02-06 20:48 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-02-22 19:36 - 2017-02-06 20:48 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-02-22 19:27 - 2017-02-22 19:27 - 00002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-18 12:15 - 2017-02-10 03:33 - 01983424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437866.dll
2017-02-18 12:15 - 2017-02-10 03:33 - 01589696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437866.dll
2017-02-18 12:15 - 2017-02-10 03:33 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-02-18 12:15 - 2017-02-10 03:33 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-02-17 22:36 - 2017-02-17 22:36 - 00001866 _____ C:\Users\Tim\Desktop\UTX Setup Tool.lnk
2017-02-17 20:24 - 2017-02-17 20:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flight One Software
2017-02-13 22:18 - 2017-02-13 22:18 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Ubisoft
2017-02-12 18:38 - 2017-02-12 18:37 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-02-12 18:11 - 2017-02-12 18:11 - 00337080 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys.148691948232804

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-03-14 11:49 - 2016-08-04 16:53 - 00000000 ____D C:\ProgramData\NVIDIA
2017-03-14 11:47 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-03-14 11:47 - 2014-11-09 00:30 - 00000000 ___RD C:\Users\Tim\Dropbox
2017-03-14 11:47 - 2014-11-08 18:55 - 00000000 __SHD C:\Users\Tim\IntelGraphicsProfiles
2017-03-14 11:46 - 2016-08-04 16:54 - 10869528 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-03-14 11:46 - 2016-07-16 23:51 - 05505350 _____ C:\WINDOWS\system32\perfh007.dat
2017-03-14 11:46 - 2016-07-16 23:51 - 01541600 _____ C:\WINDOWS\system32\perfc007.dat
2017-03-14 11:42 - 2016-08-04 16:59 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-03-14 11:42 - 2016-07-16 12:47 - 00000000 __SHD C:\Program Files\Windows Sidebar
2017-03-14 11:42 - 2014-11-08 18:43 - 00000000 ____D C:\ProgramData\AVAST Software
2017-03-14 11:41 - 2016-07-16 07:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2017-03-14 11:41 - 2014-11-09 00:59 - 00000000 ____D C:\Users\Tim\AppData\Roaming\KeePass
2017-03-14 11:40 - 2014-11-08 18:27 - 00485032 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-03-14 04:04 - 2015-12-23 10:49 - 00000000 ____D C:\Users\Tim\AppData\Local\CrashDumps
2017-03-14 01:12 - 2014-11-09 14:37 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-03-14 00:08 - 2016-08-04 16:54 - 00000000 ____D C:\Users\Tim
2017-03-13 23:41 - 2016-08-04 16:52 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-03-13 16:54 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Cursors
2017-03-13 15:15 - 2014-11-08 18:28 - 00002464 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-03-13 14:47 - 2016-05-07 17:38 - 00000000 ____D C:\Users\Tim\Documents\Flight Simulator X Files
2017-03-13 13:37 - 2016-05-17 22:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimMarket
2017-03-13 04:04 - 2016-05-14 02:08 - 00000000 ____D C:\ProgramData\EditVoicepackX
2017-03-13 03:45 - 2014-11-09 15:30 - 00000000 ____D C:\Users\Tim\AppData\Local\Battle.net
2017-03-13 01:40 - 2015-05-02 14:59 - 00000000 ____D C:\Users\Tim\AppData\Local\Ubisoft Game Launcher
2017-03-13 00:08 - 2016-06-10 15:25 - 00000000 ____D C:\ProgramData\InstallMate
2017-03-13 00:08 - 2016-05-28 11:49 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons
2017-03-11 03:36 - 2014-11-16 14:21 - 00000000 ____D C:\Users\Tim\AppData\Roaming\OBS
2017-03-10 18:25 - 2016-03-01 23:35 - 00000000 ____D C:\Users\Tim\AppData\Roaming\vlc
2017-03-09 22:14 - 2014-11-09 00:27 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Dropbox
2017-03-09 18:25 - 2016-05-05 15:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-03-09 18:24 - 2016-03-07 17:07 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-03-09 18:23 - 2016-08-04 16:53 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-03-09 18:05 - 2016-09-13 22:12 - 00001527 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-03-09 18:05 - 2016-08-04 16:53 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-03-09 18:05 - 2016-08-04 16:53 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-03-09 17:36 - 2015-06-17 19:10 - 00000000 ____D C:\Users\Tim\AppData\Local\Dropbox
2017-03-08 22:41 - 2014-11-09 01:09 - 00000000 ____D C:\Users\Tim\AppData\Roaming\TS3Client
2017-03-08 19:59 - 2016-05-05 15:05 - 00000000 ___RD C:\Users\Tim\OneDrive
2017-03-08 17:26 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-03-07 17:05 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-03-06 19:34 - 2015-08-07 17:15 - 00000000 ____D C:\ProgramData\Virtuali
2017-03-05 12:06 - 2016-09-16 14:51 - 00323152 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-03-04 12:10 - 2014-11-08 21:02 - 00000000 ____D C:\ProgramData\Package Cache
2017-03-03 23:36 - 2016-01-13 23:48 - 00001559 _____ C:\Users\Tim\Desktop\TES5Edit.lnk
2017-03-03 16:10 - 2016-08-04 19:08 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HearthSim
2017-03-03 16:10 - 2016-08-04 19:08 - 00000000 ____D C:\Users\Tim\AppData\Local\HearthstoneDeckTracker
2017-03-03 16:10 - 2016-05-02 21:34 - 00000000 ____D C:\Users\Tim\AppData\Local\SquirrelTemp
2017-03-03 16:07 - 2014-11-10 18:07 - 00000000 ____D C:\Users\Tim\AppData\Local\Overwolf
2017-02-24 22:05 - 2014-11-09 01:08 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2017-02-23 19:53 - 2016-05-11 21:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft
2017-02-23 19:53 - 2014-11-08 18:15 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-02-23 19:35 - 2016-09-13 22:12 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-02-23 19:35 - 2016-09-13 22:12 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-02-23 19:35 - 2016-09-13 22:12 - 00120256 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-02-23 19:35 - 2014-11-08 18:53 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-02-23 19:33 - 2014-11-08 18:53 - 138020592 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-02-23 19:06 - 2016-06-21 19:58 - 00000000 ____D C:\Users\Tim\AppData\Roaming\Origin
2017-02-23 19:05 - 2016-06-21 19:54 - 00000000 ____D C:\ProgramData\Origin
2017-02-23 19:04 - 2016-06-21 19:54 - 00000000 ____D C:\ProgramData\Electronic Arts
2017-02-23 18:55 - 2016-06-30 19:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA Creation Master
2017-02-23 15:30 - 2016-12-22 22:45 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-02-23 09:43 - 2016-09-13 22:12 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-02-23 09:28 - 2016-12-15 00:31 - 00548288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-02-23 09:28 - 2016-08-04 16:53 - 06401984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-02-23 09:28 - 2016-08-04 16:53 - 02479160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-02-23 09:28 - 2016-08-04 16:53 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-02-23 09:28 - 2016-08-04 16:53 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-02-23 09:28 - 2016-08-04 16:53 - 00083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-02-23 09:28 - 2016-08-04 16:53 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-02-23 07:38 - 2016-08-04 16:53 - 07807027 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-02-22 19:36 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-02-21 18:16 - 2016-07-20 15:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LHSimulations
2017-02-18 00:35 - 2014-11-09 00:23 - 00000869 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-02-14 22:06 - 2016-05-06 15:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
2017-02-13 22:18 - 2016-05-28 17:01 - 00270408 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2017-02-13 22:18 - 2014-11-15 23:54 - 00270408 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2017-02-13 22:18 - 2014-11-15 23:54 - 00000000 ____D C:\Users\Tim\AppData\Local\PunkBuster
2017-02-13 22:18 - 2014-11-15 23:52 - 00075136 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2017-02-12 18:38 - 2016-05-18 23:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-02-12 18:38 - 2016-05-18 23:04 - 00000000 ____D C:\Program Files (x86)\Java
2017-02-12 18:38 - 2014-11-09 13:43 - 00000000 ____D C:\ProgramData\Oracle
2017-02-12 18:14 - 2016-12-15 00:30 - 00000000 ____D C:\temp

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-10-03 14:45 - 2016-05-11 21:36 - 0011984 _____ () C:\Program Files (x86)\INSTALL.LOG
2016-11-25 20:41 - 2016-11-25 20:41 - 0113701 _____ () C:\Program Files (x86)\unEZCA.exe
2016-05-11 21:36 - 1998-09-25 12:16 - 0270848 _____ () C:\Program Files (x86)\UNWISE.EXE
2015-01-30 18:31 - 2015-01-30 18:39 - 0000600 _____ () C:\Users\Tim\AppData\Local\PUTTY.RND
2016-11-02 19:14 - 2016-11-02 19:14 - 0000017 _____ () C:\Users\Tim\AppData\Local\resmon.resmoncfg
2016-08-04 16:53 - 2016-08-04 16:53 - 0000000 _____ () C:\ProgramData\DP45977C.lfl
2014-11-10 17:28 - 2016-08-14 17:00 - 0017950 _____ () C:\ProgramData\hpzinstall.log
2016-12-21 22:21 - 2016-12-21 22:21 - 0000118 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2017-02-24 19:20 - 2017-02-24 20:48 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log
2017-02-23 18:11 - 2017-02-23 23:48 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\Tim\FSDreamTeam_JFK V2.reg


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-03-05 12:32

==================== Ende von FRST.txt ============================
         

Alt 14.03.2017, 11:58   #7
Drebing
 
Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org" - Standard

Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org"



Addition.txt

Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 13-03-2017
durchgeführt von Tim (14-03-2017 11:51:45)
Gestartet von D:\Downloads
Windows 10 Home Version 1607 (X64) (2016-08-04 16:00:21)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1066145973-1361776141-3635688471-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1066145973-1361776141-3635688471-503 - Limited - Disabled)
Gast (S-1-5-21-1066145973-1361776141-3635688471-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1066145973-1361776141-3635688471-1002 - Limited - Enabled)
Tim (S-1-5-21-1066145973-1361776141-3635688471-1000 - Administrator - Enabled) => C:\Users\Tim

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

4500_G510nz_Help (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
4500G510nz (x32 Version: 140.0.001.000 - Hewlett-Packard) Hidden
4500G510nz_Software_Min (x32 Version: 140.0.001.000 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Aarhus Airport X 1.2 (HKLM-x32\...\Aarhus Airport X 1.2) (Version:  - )
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
Adobe Flash Player 15 Pepper (HKLM-x32\...\Adobe Flash Player Pepper) (Version: 15.0.0.215 - Adobe Systems Incorporated)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Aerosoft's - Airbus A320-A321 - FSX (HKLM-x32\...\Airbus A320-A321 - FSX) (Version: 1.31 - Aerosoft)
Aerosoft's - Alta X - FSX STEAM Edition (HKLM-x32\...\Alta X - FSX STEAM Edition) (Version: 1.00 - Aerosoft)
Aerosoft's - Catalina Island Demo - FSX (HKLM-x32\...\Catalina Island Demo - FSX) (Version: 1.00 - Aerosoft)
aerosoft's - German Airports 2 - 2012 (Cologne-Bonn X) (HKLM-x32\...\{440B6103-AF8B-4254-8B5C-D05AA82B5F98}) (Version: 1.00 - aerosoft)
aerosoft's - German Airports 3 - 2012 (Berlin-Tegel FSX) (HKLM-x32\...\{3DAD565E-1275-4EE8-9568-932CB7B75FB8}) (Version: 1.02 - aerosoft)
Aerosoft's - HelgolandX (HKLM-x32\...\{61957FA7-34C1-4F46-871C-A0FD49848832}) (Version: 1.00 - Aerosoft)
aerosoft's - Holiday Airports FSX (HKLM-x32\...\{D1F56041-DDC6-4508-994D-D70FC4022DB0}) (Version: 1.00 - aerosoft)
aerosoft's - Lukla X - Mount Everest (HKLM-x32\...\{EF32F291-8B08-43EF-8BAA-58B9F8C9540F}) (Version: 2.10 - aerosoft)
aerosoft's - Maldives X (HKLM-x32\...\{17BA8B2D-BF89-4D10-B9D1-1CC5F322A6BB}) (Version: 1.02 - aerosoft)
aerosoft's - Mallorca X for FSX (HKLM-x32\...\{07CC448E-4FFC-444F-999D-10F11AE559FB}) (Version: 1.01 - aerosoft)
aerosoft's - Mega Airport Amsterdam FSX (HKLM-x32\...\{0A297C87-BF52-43FD-AD75-EE72228E4457}) (Version: 1.04 - aerosoft)
Aerosoft's - Mega Airport Duesseldorf - FSX STEAM Edition (HKLM-x32\...\Mega Airport Duesseldorf - FSX STEAM Edition) (Version: 1.10 - Aerosoft)
aerosoft's - Mega Airport Madrid Barajas (HKLM-x32\...\{8233F99B-C4C2-44E9-8486-374E9B300BF2}) (Version: 1.03 - aerosoft)
Aerosoft's - Mega Airport Prag - FSX (HKLM-x32\...\Mega Airport Prag - FSX) (Version: 1.05 - Aerosoft)
Aerosoft's - Mykonos X - FSX (HKLM-x32\...\Mykonos X - FSX) (Version: 1.02 - )
Aerosoft's - Sacramento Airport - FSX STEAM Edition (HKLM-x32\...\Sacramento Airport - FSX STEAM Edition) (Version: 1.00 - Aerosoft)
aerosoft's - SIMstarter NG (HKLM-x32\...\{5AD0AAA2-42E8-437D-9CD5-7A6A343DCD19}) (Version: 1.01 - aerosoft)
Afl0Sim Henri Coanda Airport version 2.4 (HKLM-x32\...\{DA8D38A8-6ECF-4B45-88CC-0A1F00151376}_is1) (Version: 2.4 - Afl0Sim)
AIDA64 Extreme v4.30 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 4.30 - FinalWire Ltd.)
Air Berlin Fleet (HKLM\...\{6CCC2BF0-C76E-4F22-809E-601CD7C62555}) (Version: 1 - Rikoooo (Full authors list in the pack))
Airbus A300 Multi-livery Mega Pack FSX & P3D (HKLM\...\{00BFBEE5-A753-4688-AD01-62FAB81756CE}) (Version: 1 - Thomas Ruth & his team/collaborators, repack by Luis Quintero)
Airbus A330 Multi-Livery package (HKLM\...\{574F8D5F-ECE6-4269-B1DA-F9A9A2962A4D}) (Version: 1 - Project Opensky Team, repack by Luis Quintero)
Airport Design Editor 1.65 (HKLM-x32\...\{E8A70E2D-4315-407E-9B03-B4665EDD3A94}) (Version: 1.66.5555.0 - ScruffyDuck Software)
Albany International Airport for FSX (HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\Albany International Airport for FSX) (Version:  - )
Aleppo Extreme FSX 1.00 (HKLM-x32\...\Aleppo Extreme FSX 1.00) (Version:  - )
AlienFX for KoneXTD (HKLM-x32\...\InstallShield_{48725548-E470-4816-99DD-6667EABAB982}) (Version: 1.02 - Roccat GmbH)
AlienFX for KoneXTD (Version: 1.02 - Roccat GmbH) Hidden
Anna's Quest (HKLM-x32\...\Steam App 327220) (Version:  - Daedalic Entertainment)
Ansel (Version: 378.78 - NVIDIA Corporation) Hidden
APB Reloaded (HKLM-x32\...\Steam App 113400) (Version:  - Reloaded Productions)
Apple Application Support (32-Bit) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
ATR 42-500 72-500 Pack FSX & P3D (HKLM\...\{2A080C46-F37A-4C7E-9676-173807C136CA}) (Version: 1 - Francisco Sánchez-Castañer, Philippe Wallaert, repack by Rikoooo)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Boeing B737-823 Advanced VC FSX & P3D (HKLM\...\{330F6375-B0DB-4CDD-B1EB-B83C43810D11}) (Version: 1 - Project OpenSky, Alejandro Rojas Lucenda, FSRepaintsGER, Adam Murphy)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.27 - Piriform)
CINEMA 4D 17.016 (HKLM\...\MAXOND2C48F0C) (Version: 17.016 - MAXON Computer GmbH)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Cities: Skylines (HKLM\...\Steam App 255710) (Version:  - Colossal Order Ltd.)
COMALAPA VIRTUAL FSX (HKLM-x32\...\COMALAPA VIRTUAL FSX) (Version:  - )
CYFB Iqaluit version 1.0 (HKLM-x32\...\{40C371BB-EF79-41A9-8DBB-D51495857466}}_is1) (Version: 1.0 - Jean-Pierre Fillion)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
DJHERCULESMIX Products Series drivers (HKLM-x32\...\{33999F1F-EA46-4E55-A239-1BA803235396}) (Version: 1.HDJS.2016 - Guillemot Corporation)
DocProc (x32 Version: 140.0.185.000 - Hewlett-Packard) Hidden
Dropbox (HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\Dropbox) (Version: 21.4.25 - Dropbox, Inc.)
EasyJet Fleet FSX & P3D (HKLM\...\{31198E95-D05B-4689-AA70-715ED7170F9A}) (Version: 1 - Multiples authors)
EditVoicepack XL (HKLM-x32\...\{40a9bd4e-bb79-4c70-84ea-511d5532d538}) (Version: 5.3.1.0 - Bevelstone Production)
EditVoicepack XL (x32 Version: 5.3.1.0 - Bevelstone Production) Hidden
Eiresim Belfast City Ultimate FSX (HKLM-x32\...\Eiresim Belfast City Ultimate FSXV1.1) (Version: V1.1 - Eiresim)
Eiresim Shannon Ultimate FsX (HKLM-x32\...\Eiresim Shannon Ultimate FsXV1.0) (Version: V1.0 - Eiresim)
El Calafate SIMARG FSX & P3D (HKLM\...\{AFDDC076-BA91-4598-861F-DCA278D9C84B}) (Version: 1 - SIMARG - Simulacion Argentina)
Emirates Fleet FSX & P3D (HKLM\...\{52C598AB-00EE-48B1-8D32-1660AC2CE524}) (Version: 2 - BENDER Erik)
EZ Scenery Library (HKLM-x32\...\EZ Scenery Library) (Version:  - )
EZdok Camera (HKLM-x32\...\EZdok Camera) (Version:  - )
Fallout 4 (HKLM-x32\...\Steam App 377160) (Version:  - Bethesda Game Studios)
Fax (x32 Version: 140.0.307.000 - Hewlett-Packard) Hidden
FDC Accumulative Update (3.13) (HKLM-x32\...\FDC Accumulative Update (3.13)) (Version:  - )
FDC Live Cockpit 2011 (HKLM-x32\...\{56C595BA-E2EC-4319-863B-3D8787D49FBF}) (Version: 3.14.0 - aerosoft)
ffdshow [rev 497] [2006-11-04] (HKLM-x32\...\ffdshow_is1) (Version: 1.0 - )
FlightPort - FlightPort Dynamic Library FSX (HKLM-x32\...\FlightPort FlightPort Dynamic Library FSX) (Version: 6.2.3 - FlightPort)
Flightport - FlightPortLib - FSX (HKLM-x32\...\FlightPortLib - FSX 4.9.0) (Version: 4.9.0 - Flightport)
FlightPortLib - FSX (x32 Version: 4.9.0 - Flightport) Hidden
flyBalaton Sármellék LHSM scenery FSXSE v1.0 (HKLM-x32\...\ flyBalaton Sármellék LHSM scenery FSXSE v1.0) (Version:  - )
FormatFactory 3.8.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.8.0.0 - Free Time)
FSCloud version 1.xxxx beta (HKLM-x32\...\{EAEDE38E-4126-42B7-BC6D-93E3A2EC06E9}_is1) (Version: 1.xxxx beta - FSCloud.net)
FSDG-Marsa Alam (HKLM-x32\...\FSDG-Marsa Alam) (Version:  - )
FSDG-Oresund (HKLM-x32\...\FSDG-Oresund) (Version:  - )
FSDreamTeam GSX FSX-SE (HKLM-x32\...\FSDreamTeam GSX FSX-SE_is1) (Version: 1.9.9.11 - VIRTUALI Sagl)
FSDreamTeam KJFK V2 FSX-SE (HKLM-x32\...\FSDreamTeam KJFK V2 FSX-SE_is1) (Version: 2.4.2 - VIRTUALI Sagl)
FsPassengersX for Microsoft Flight Simulator X (HKLM-x32\...\FsPassengersX) (Version: 20160123 - SecondReality Software)
Godzone VLC Ashburton 1.0 (HKLM-x32\...\Godzone VLC Ashburton) (Version: 1.0 - Godzone Virtual Flight)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
GrenadaX v1.1 (HKLM-x32\...\FSX_RICHERSIM_GRENADAX_is1) (Version: 1.1.0.0 - SimMarket)
Ground Environment X Africa and the Middle East (HKLM-x32\...\Ground Environment X Africa and the Middle East) (Version:  - Flight One Software)
Ground Environment X Asia and South America (HKLM-x32\...\Ground Environment X Asia and South America) (Version:  - Flight One Software)
Ground Environment X Atlantic and Pacific Tropics (HKLM-x32\...\Ground Environment X Atlantic and Pacific Tropics) (Version:  - Flight One Software)
Ground Environment X Europe (HKLM-x32\...\Ground Environment X Europe) (Version:  - Flight One Software)
Ground Environment X North America (HKLM-x32\...\Ground Environment X North America) (Version:  - Flight One Software)
Hama Wireless LAN Adapter (HKLM-x32\...\{9C049499-055C-4a0c-A916-1D8CA1FF45EB}) (Version: 1.00.0159 - Hama GmbH & Co KG)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Hearthstone Deck Tracker (HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\HearthstoneDeckTracker) (Version: 1.1.7 - HearthSim)
HITMAN™ (HKLM\...\Steam App 236870) (Version:  - Io-Interactive)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Officejet 4500 G510n-z 14.0 Rel. 6 (HKLM\...\{6B9B2E57-D988-4258-8A2C-6F3657A600BD}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.3.1001 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.20 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{9D0D2A8B-7E7B-4D88-8D50-24286ED6A5EB}) (Version: 12.5.5.5 - Apple Inc.)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
KATL Atlanta 2016 FSX (HKLM-x32\...\{D274FA40-971F-476E-840A-67347A3EC1DE}) (Version: 4.0.0 - Imagine Simulation)
KCVG Cincinnati 2007 FSX (HKLM-x32\...\{A60218A6-5A2F-419A-9433-9F05D490FD5D}) (Version: 1.0.0 - Imagine Simulation)
KeePass Password Safe 2.35 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.35 - Dominik Reichl)
KELP-KBIF-EL PASO Tx-USA (HKLM-x32\...\KELP-KBIF-EL PASO Tx-USA) (Version:  - )
Lebanon Terrain X V1.5 (HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\Lebanon Terrain X V1.5) (Version:  - )
Liguria 110 (HKLM-x32\...\Liguria 110) (Version:  - )
Logitech Gaming Software 8.83 (HKLM\...\Logitech Gaming Software) (Version: 8.83.85 - Logitech Inc.)
LOOT Version 0.10.2 (HKLM-x32\...\{BF634210-A0D4-443F-A657-0DCE38040374}_is1) (Version: 0.10.2 - LOOT Team)
Lufthansa Pack FSX & P3D (HKLM\...\{857A84CF-6EBF-4EFA-9522-C50C81F4C387}) (Version: 1 - Project Airbus & Project OpenSky & Skyspirit)
MAGIX Music Maker MX (HKLM-x32\...\MAGIX_MSI_mm18) (Version: 18.0.0.42 - MAGIX AG)
MAGIX Music Maker MX (x32 Version: 18.0.0.42 - MAGIX AG) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Flight Simulator SimConnect Client v10.0.61259.0 (HKLM-x32\...\{D61CA184-3F6D-4A50-B2CC-7A18447D6A8D}) (Version: 10.0.61259.0 - Microsoft Corporation)
Microsoft Flight Simulator SimConnect Client v10.0.62615.0 (HKLM-x32\...\{33D89314-361A-4495-A1E1-0ACBCE08F78D}) (Version: 10.0.62615.0 - Microsoft Corporation)
Microsoft Flight Simulator X: Steam Edition (HKLM\...\Steam App 314160) (Version:  - Microsoft Game Studios)
Microsoft OneDrive (HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\OneDriveSetup.exe) (Version: 17.3.6798.0207 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{E75776B2-EAE5-42F9-A800-0A10763DEDF0}) (Version: 11.0.2318.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{09298F26-A95C-31E2-9D95-2C60F586F075}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Miscreated (HKLM-x32\...\Steam App 299740) (Version:  - Entrada Interactive LLC)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MUHG Holguin Cuba pour FSX version 1.0 (HKLM-x32\...\{89D85468-D2CC-4B30-BEA1-A00C0B6A2E5D}}_is1) (Version: 1.0 - Pierre Gallant)
MZBZ-Philip Goldson- Belize (HKLM-x32\...\MZBZ-Philip Goldson- Belize) (Version:  - )
NaturalPoint USB Drivers x64 (HKLM\...\{B408139D-04D6-4464-A979-D335E48F7063}) (Version: 2.50.0000 - NaturalPoint)
Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden
NewBlue 3D Explosions for Windows (HKLM-x32\...\NewBlue 3D Explosions for Windows) (Version: 1.4 - NewBlue)
NewBlue 3D Transformations for Windows (HKLM-x32\...\NewBlue 3D Transformations for Windows) (Version: 1.4 - NewBlue)
NewBlue Art Blends for Windows (HKLM-x32\...\NewBlue Art Blends for Windows) (Version:  - )
NewBlue Art Effects for Windows (HKLM-x32\...\NewBlue Art Effects for Windows) (Version:  - )
NewBlue Film Effects for Windows (HKLM-x32\...\NewBlue Film Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Light Blends for Windows (HKLM-x32\...\NewBlue Light Blends for Windows) (Version: 1.4 - NewBlue)
NewBlue Light Effects for Windows (HKLM-x32\...\NewBlue Light Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Motion Blends for Windows (HKLM-x32\...\NewBlue Motion Blends for Windows) (Version: 2.4 - NewBlue)
NewBlue Motion Effects for Windows (HKLM-x32\...\NewBlue Motion Effects for Windows) (Version: 2.4 - NewBlue)
NewBlue Paint Blends for Windows (HKLM-x32\...\NewBlue Paint Blends for Windows) (Version: 1.4 - NewBlue)
NewBlue Paint Effects for Windows (HKLM-x32\...\NewBlue Paint Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials II for Windows (HKLM-x32\...\NewBlue Video Essentials II for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials III for Windows (HKLM-x32\...\NewBlue Video Essentials III for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials IV for Windows (HKLM-x32\...\NewBlue Video Essentials IV for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials V for Windows (HKLM-x32\...\NewBlue Video Essentials V for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials VI for Windows (HKLM-x32\...\NewBlue Video Essentials VI for Windows) (Version: 3.0 - NewBlue)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.13 - Black Tree Gaming)
NL2000V4_Installer 4.0.68 (HKLM-x32\...\{1ce825d0-ab60-4770-833d-8af2036c8186}_is1) (Version: 4.0.68 - NL2000 scenery design team)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 378.78 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 378.78 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.4.0.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.4.0.70 - NVIDIA Corporation)
NVIDIA Grafiktreiber 378.78 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 378.78 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.23 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.4.0.70 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.3.16.0 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Omerta - City of Gangsters (HKLM\...\Steam App 208520) (Version:  - Haemimont Games)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenOffice 4.1.3 (HKLM-x32\...\{8D5FCC56-BB9F-4122-923C-71753F50F6F5}) (Version: 4.13.9783 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 10.4.3.15631 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.103.32.0 - Overwolf Ltd.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.990 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.88.617.2014 - Realtek)
Realtek Ethernet Diagnostic Utility (HKLM-x32\...\{DADC7AB0-E554-4705-9F6A-83EA82ED708E}) (Version: 2.0.2.7 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7256 - Realtek Semiconductor Corp.)
REX 4 - Texture Direct with Soft Clouds - SP5 - Hotfix 1 (HKLM-x32\...\{C0A5CA46-9C59-460C-95F7-364F4E8084B3}) (Version: 4.7.2015.1006 - REX Game Studios, LLC.)
REX 4 - Texture Direct with Soft Clouds - SP6 Hotfix 1 (HKLM-x32\...\{FD1D5968-2CAE-41CB-A0BA-485CAE1DCD36}) (Version: 4.8.2016.0314 - REX Game Studios, LLC.)
REX 4 - Texture Direct with Soft Clouds - SP6 Hotfix 2 (HKLM-x32\...\{340C77EE-02BE-41F9-A315-F9F5C369DB83}) (Version: 4.8.2016.0325 - REX Game Studios, LLC.)
REX 4 - Texture Direct with Soft Clouds - SP6 Hotfix 3 (HKLM-x32\...\{B3EA18AC-A7B1-4659-B1B5-3A1D6451371C}) (Version: 4.8.2016.0622 - REX Game Studios, LLC.)
REX 4 - Texture Direct with Soft Clouds - SP6 Hotfix 4 (HKLM-x32\...\{D6FB5779-E95C-4717-B251-A89914D158A2}) (Version: 4.8.2016.0928 - REX Game Studios, LLC.)
REX 4 Texture Direct (with Soft Clouds) (HKLM-x32\...\{6ADD2C22-B737-4493-BC72-8998F3103849}) (Version: 4.8.2016.0210 - REX Game Studios, LLC.)
REX Download Manager (HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\860d8069cbae6675) (Version: 1.4.2015.23 - REX Game Studios, LLC.)
REX Essential Plus Overdrive SP3 Hotfix (HKLM-x32\...\REX Essential Plus Overdrive SP3 Hotfix 3.8.2014.1211) (Version: 3.8.2014.1211 - REX Game Studios, LLC.)
REX Essential Plus Overdrive SP3 Hotfix (x32 Version: 3.8.2014.1211 - REX Game Studios, LLC.) Hidden
REX Essential Plus Overdrive with SP3 (HKLM-x32\...\{7A508B19-650C-42CB-99F1-CF0F38EA093D}) (Version: 3.8.2014.1126 - REX Game Studios, LLC.)
REX Worldwide Airports HD - Service Pack 1 - Hotfix 1 (HKLM-x32\...\{8BCAA7DE-0FFE-4656-8E6B-2703CD6DDFEC}) (Version: 5.1.2016.1220 - REX Game Studios, LLC.)
REX Worldwide Airports HD - Service Pack 1 (HKLM-x32\...\{B2564888-FD09-465B-B30E-ABF4BDF2E8BF}) (Version: 5.1.2016.1212 - REX Game Studios, LLC.)
ROCCAT Kone XTD Mouse Driver (HKLM-x32\...\{7133137D-DF48-4522-AD88-13C82B7D0A63}) (Version:  - Roccat GmbH)
Roccat Talk (HKLM-x32\...\{605D671E-1D1E-4840-84D9-BFACE17F160D}) (Version: 1.00.0013 - Roccat GmbH)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.0.5 - Rockstar Games)
Saitek ProFlight Fsx Plugin 7.0.50.1 (HKLM\...\{918582C7-0F0E-4FA1-A49C-65CA9864DDD8}) (Version: 7.0.50.1 - Saitek)
Salalah X (HKLM-x32\...\Salalah X) (Version:  - )
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
SHIELD Streaming (Version: 7.1.0351 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.4.0.70 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
SIMADDONS CYOW 2011 (HKLM-x32\...\SIMADDONS CYOW 2011) (Version:  - )
Simaddons Halifax 2014 "lite" (HKLM-x32\...\Simaddons Halifax 2014 "lite") (Version:  - )
SimObject Display Engine (HKLM-x32\...\{6A625293-A52F-46B1-B04B-E37418C70110}) (Version: 1.4.2.0 - 12bPilot)
Simware's - Valencia X - FSX STEAM Edition (HKLM-x32\...\Valencia X - FSX STEAM Edition) (Version: 1.00 - Simware)
SkyHighSim Belgrade X v2 for FSXSE (HKLM-x32\...\SkyHighSim Belgrade X v2 for FSXSE) (Version: 2.02.0000 - SkyHighSim)
SkyHighSim Osijek X for FSXSE (HKLM-x32\...\SkyHighSim Osijek X for FSXSE) (Version: 1.00.0000 - SkyHighSim)
Skyrim Creation Kit (HKLM\...\Steam App 202480) (Version:  - bgs.bethsoft.com)
Smart Technology Programming Software 7.0.44.1 (HKLM\...\{CBDF3481-051D-4360-95D9-08B7BE6E35A5}) (Version: 7.0.44.1 - Mad Catz)
smartCARS - FSCloud (en-US) (HKLM\...\{795F7631-80BB-DDF2-9EF2-11F336C21AFE_en-US}) (Version: 2.1.27.0 - TFDi Design)
Sniper Elite V2 (HKLM\...\Steam App 63380) (Version:  - Rebellion)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
SSD Fresh 2017 (HKLM-x32\...\{71149886-0AA3-4F31-81F9-CC90EA0D55EF}_is1) (Version: 6.1 - Abelssoft)
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stranded Deep (HKLM-x32\...\Steam App 313120) (Version:  - Beam Team Games)
Sultan Ismail Petra Airport X (HKLM-x32\...\Sultan Ismail Petra Airport X) (Version: 1 - Soarfly Concepts)
Suvarnabhumi International Airport (HKLM-x32\...\FSX_A_A_SCENERIES_SUVARNABHUMI_INT_is1) (Version: 1.0.0.0 - SimMarket)
Syria Sim Damascus Extreme 1.1 (HKLM-x32\...\Syria Sim Damascus Extreme 1.1) (Version:  - )
Sz-FlightDataRecorder (HKLM-x32\...\{7A3B74C4-32DE-4A12-82F6-274E3E96284F}) (Version: 1.2.0.0 - Eszett Solutions)
T2G Hamad Intl Airport (HKLM-x32\...\T2G_HAMAD_INTL_AIRPORT_is1) (Version: 1.0.0.1 - SimMarket)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.59518 - TeamViewer)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Walking Dead: A New Frontier (HKLM\...\Steam App 536220) (Version:  - Telltale Games)
theHunter™: Call of the Wild (HKLM\...\Steam App 518790) (Version:  - Expansive Worlds)
This War of Mine (HKLM-x32\...\Steam App 282070) (Version:  - 11 bit studios)
TJSJ v1.2.2 Upgrade for FSX (HKLM\...\{7130E980-9845-4A29-BFD6-54219CD6290C}) (Version: 1.2.2 - BluePrint Simulations)
TJSJv1.1.2 for FSX (HKLM\...\{C9F3C36E-EA14-4AEC-A6F2-B5B7DF91D461}) (Version: 1.1.2 - BluePrint Simulations)
TKPN Vance Winkworth P3D (HKLM-x32\...\TKPN Vance Winkworth P3D) (Version:  - )
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TP-LINK Archer T2U_T2UH Driver (HKLM-x32\...\{F2496892-5295-4208-AB93-21F1AFD07C97}) (Version: 1.3.1 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
TrackIR 5 (HKLM-x32\...\{2f2e6053-043c-4d69-94d0-4d42304ea4ee}) (Version: 5.2.0200 - NaturalPoint)
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
UK2000 Common Library FSX  (HKLM-x32\...\UK2000 Common Library FSX) (Version: 3.36 - UK2000 Scenery)
UK2000 Gatwick Xtreme FSX  (HKLM-x32\...\UK2000 Gatwick Xtreme FSX) (Version: 3.01 - UK2000 Scenery)
UK2000 Manchester Xtreme FSX  (HKLM-x32\...\UK2000 Manchester Xtreme FSX) (Version: 2.02 - UK2000 Scenery)
UK2000 Stansted Xtreme FSX  (HKLM-x32\...\UK2000 Stansted Xtreme FSX) (Version: 4.10 - UK2000 Scenery)
Ultimate Terrain Lights For FSX-SE (HKLM-x32\...\Ultimate Terrain Lights For FSX-SE) (Version:  - )
Ultimate Terrain X - Europe V2.1 (FSX SE Support) (HKLM-x32\...\Ultimate Terrain X - Europe V2.1 (FSX SE Support)) (Version:  - )
UltraISO Premium V9.62 (HKLM-x32\...\UltraISO_is1) (Version:  - )
USB Multi-Channel Audio Device (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392006206}) (Version: 1.00.0019 - C-Media Electronics, Inc.)
UTX Europe V2.1 Install Manager (HKLM-x32\...\UTX Europe V2.1 Install Manager) (Version:  - )
Vector Land Class Libraries (HKLM-x32\...\Vector Land Class Libraries) (Version: 1.4 - Vector Land Class)
Vegas Pro 12.0 (64-bit) (HKLM\...\{6592B670-2680-11E3-B0E0-F04DA23A5C58}) (Version: 12.0.726 - Sony)
VirtualDJ Home FREE (HKLM-x32\...\{A6AC699F-8315-40CA-8F70-E917494978AB}) (Version: 7.4 - Atomix Productions)
VIRTUALI Addon ManagerX FSX-SE (HKLM-x32\...\VIRTUALI Addon ManagerX FSX-SE_is1) (Version: 3.1.0.1 - VIRTUALI Sagl)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VLC North Island Airfield Pack (HKLM-x32\...\VLC North Island Airfield Pack) (Version: 1.22 - VectorLandClass)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
Wildlife Park 2 - Crazy Zoo (HKLM-x32\...\Steam App 306480) (Version:  - b-alive gmbh)
Wildlife Park 2 - Dino World (HKLM-x32\...\Steam App 307930) (Version:  - b-alive gmbh)
Wildlife Park 2 - Fantasy (HKLM-x32\...\Steam App 307990) (Version:  - b-alive gmbh)
Wildlife Park 2 - Farm World (HKLM-x32\...\Steam App 307920) (Version:  - b-alive gmbh)
Wildlife Park 2 - Horses (HKLM-x32\...\Steam App 307770) (Version:  - b-alive gmbh)
Wildlife Park 2 - Marine World (HKLM-x32\...\Steam App 307900) (Version:  - b-alive gmbh)
Wildlife Park 2 (HKLM-x32\...\Steam App 304350) (Version:  - b-alive gmbh)
WinRAR 5.40 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1066145973-1361776141-3635688471-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Tim\AppData\Roaming\Dropbox\bin\DropboxExt64.14.0.dll (Dropbox, Inc.)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0298BC8C-351F-45F9-B548-8F36FAC40436} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Keine Datei <==== ACHTUNG
Task: {0335480D-59C7-437E-837B-87D918F5F29D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {03F7713A-0B8D-4E06-8148-495F74D395B3} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {078967E7-B47A-4549-A85A-5F67176E3E74} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-02-23] (NVIDIA Corporation)
Task: {0CA40BCB-2AFC-4DF2-AF9D-CAE5A5B12B09} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {101480B7-76CE-476E-AC49-E14D803CD6BB} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {102B1B1E-477C-4985-9AC5-20D61DD1BDEC} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {11B5578C-83A2-4C8A-ADD9-AEBBB2DA6385} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {12319E8A-3E86-4BF7-B2F0-0CEEA6B093E3} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-02-23] (NVIDIA Corporation)
Task: {1602C90A-EC92-49A4-A68E-CF16040B86E2} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Keine Datei <==== ACHTUNG
Task: {1789392A-8660-44EE-94FA-4D4CFFFC2B65} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-02-23] (NVIDIA Corporation)
Task: {187D584D-D051-489E-952B-E1CCB365B001} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {28E913B8-3328-4143-A3F9-A5E7A6120FEA} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {42ABE557-0E83-48D2-97A5-9F49152D15D6} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate.exe 
Task: {44C84F8A-7D5D-4992-BBF9-D3140C9C4C52} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe 
Task: {451BFA8A-B698-4308-B2F3-6C9D043C8758} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {473BC359-E0BA-48FC-AD90-E235DD2F527B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {489698C9-CDA4-485A-BB1E-36F32904D03F} - System32\Tasks\Overwolf Updater Task => F:\Programme\Overwolf\OverwolfUpdater.exe [2017-03-05] (Overwolf LTD)
Task: {4C6794F1-2073-4CCC-AC1F-83AFCA0D9405} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe 
Task: {518CBD61-E504-45E2-93BB-08B205324253} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {57425CF3-07AF-45B4-9B82-464012DEB830} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {6258FEF3-26EA-466D-BFEE-A12E85BCD25E} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {7A1A42FC-5CA0-4136-B360-1F69AD2F834D} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1066145973-1361776141-3635688471-1000Core => C:\Users\Tim\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {7A955A7B-06C4-45D7-80DC-09FE897AE79D} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => %SystemRoot%\ehome\mcupdate.exe 
Task: {7EE6517D-7E54-47FC-9180-C0365AF15AEB} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {8C1AD8B2-6738-4C6D-8931-6B41491FB4D1} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-02-23] (NVIDIA Corporation)
Task: {942E51FB-3DE6-4C1B-8396-F4DFD851F596} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-02-08] (Piriform Ltd)
Task: {97776DAA-1C3A-400E-A42E-703E13E96D24} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {99A7B9B7-F256-4D8D-BF55-71306BF95510} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {9BB116E4-21EE-4503-B976-2F0183A09FAC} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe 
Task: {9C8F0ED7-0EFE-49E0-88BC-F4F7633D8B6B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {9EA480E5-18D9-4C39-91F3-8426EC68E108} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {9F0F502F-908B-4A5D-84EF-1E4808A99B3E} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {A5E3C44E-1965-4E86-9E33-C552D6FEF4B8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {AC3C4B01-D452-4FFD-BBDC-82A91A37A566} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Keine Datei <==== ACHTUNG
Task: {AD095B07-6245-4B0F-9C71-146BAD7D6A41} - System32\Tasks\{EA63FBC5-7EB9-4BB6-B5E9-3AAFF24CBE8F} => pcalua.exe -a "F:\Programme\Steam\steamapps\common\FSX\FlyTampa\FlyTampa - Configurator &amp; Libraries - FSX Uninstall.exe" -d F:\Programme\Steam\steamapps\common\FSX\FlyTampa
Task: {ADC12AE9-2133-4B09-A949-8B7A473A3E52} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-02-23] (NVIDIA Corporation)
Task: {B53826A5-2FFE-4116-BA14-3CCEC656975C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {C090F36F-328B-46C1-A653-D4AF45C07055} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec.exe 
Task: {D102BEF5-DF0E-4007-A003-7F136BAFCF95} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe 
Task: {D1570699-C736-42F1-93A1-12E027BADC4B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {D2A2A7E6-3B30-4A37-B0A9-8AA6911C598C} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe 
Task: {DB4961F2-6EB6-452B-8AF3-3D5E64AD036F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-02-23] (NVIDIA Corporation)
Task: {DB4E5FFF-7A9B-42F0-AD0A-42EB470DE6A6} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe 
Task: {E42BCB6B-6A96-467A-858A-1522ACBC87C3} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {E8C33A26-A632-44FC-84D7-E19A55D27802} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {F16BFF22-F42A-4D3E-81CC-58ECD3A3D247} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1066145973-1361776141-3635688471-1000UA => C:\Users\Tim\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {F7E93BD8-C728-430A-A01D-2F1F3B448917} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe 
Task: {F7FE2EA0-18C6-45EE-B733-F7B2BB4BFA09} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe 
Task: {F92EB2F6-F312-4C2E-A1F3-075C4643E760} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {FADEBDEB-8681-4BFC-A49F-BB6C788FAE21} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe 
Task: {FCEE935E-7DE2-4E51-AC71-AC59268060BA} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-02-23] (NVIDIA Corporation)
Task: {FEAF843D-D433-4A0B-90EF-F09CBF93E5E0} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1066145973-1361776141-3635688471-1000Core.job => C:\Users\Tim\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1066145973-1361776141-3635688471-1000UA.job => C:\Users\Tim\AppData\Local\Dropbox\Update\DropboxUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

Shortcut: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com
Shortcut: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\POSKY CRJ 900 FSX\www.projectopensky.com.lnk -> hxxp://www.projectopensky.com
Shortcut: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\POSKY CRJ 900 FSX\www.rikoooo.com.lnk -> hxxp://www.rikoooo.com
Shortcut: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\POSKY Boeing 757-300 Thomas Cook FSX\www.projectopensky.com.lnk -> hxxp://www.projectopensky.com
Shortcut: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\POSKY Boeing 757-300 Thomas Cook FSX\www.rikoooo.com.lnk -> hxxp://www.rikoooo.com
Shortcut: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programme\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programme\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com

ShortcutWithArgument: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programme\Music Maker MX\Service und Support\Online registrieren.lnk -> E:\Programme\Music Maker MX\Explore.exe () -> hxxp://www.magix.com/user/register/product_registration/login_screen.php3?VARPROGRAM=mm18&VARCHARGE=18.0.0.42&VARREGISTER=onlineregister&VARLAND=D
ShortcutWithArgument: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programme\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxps://launchpage.org/?uid=qTxKGKjchx0cXe9WkuWzGboiLNqw1thyEbBii%2Fino9bIEXUYVjSJ2rObkSvEVDQbrw%3D%3D
ShortcutWithArgument: C:\Users\Tim\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxps://launchpage.org/?uid=qTxKGKjchx0cXe9WkuWzGboiLNqw1thyEbBii%2Fino9bIEXUYVjSJ2rObkSvEVDQbrw%3D%3D
ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxps://launchpage.org/?uid=qTxKGKjchx0cXe9WkuWzGboiLNqw1thyEbBii%2Fino9bIEXUYVjSJ2rObkSvEVDQbrw%3D%3D

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-16 12:29 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-01-13 13:56 - 2017-01-13 13:56 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-11-15 23:52 - 2017-02-13 22:18 - 00075136 _____ () C:\WINDOWS\SysWoW64\PnkBstrA.exe
2016-09-13 22:12 - 2017-02-23 19:35 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-09-13 22:12 - 2017-02-23 19:35 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-08-04 16:53 - 2017-02-23 09:28 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-12-16 12:29 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-09-13 20:46 - 2016-09-07 05:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-01-11 19:14 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-01-11 19:13 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-01-11 19:13 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-01-11 19:13 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-01-11 19:13 - 2016-12-21 07:48 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-01-11 19:13 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-01-11 19:13 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-03-07 01:07 - 2015-03-07 01:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2016-04-28 23:49 - 2016-04-28 23:49 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 01:07 - 2015-03-07 01:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2016-04-28 23:49 - 2016-04-28 23:49 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2016-05-05 16:46 - 2014-08-08 14:00 - 00844800 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
2017-02-23 18:19 - 2017-02-23 18:19 - 02493440 _____ () F:\Programme\Origin\libGLESv2.dll
2014-03-20 11:43 - 2014-03-20 11:43 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-07-09 00:50 - 2017-02-23 19:35 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2017-02-24 20:48 - 2017-02-23 19:35 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2017-02-24 20:48 - 2017-02-23 19:35 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2015-04-18 22:57 - 2009-12-09 20:20 - 00126976 _____ () C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\EnumDevLib.dll
2015-06-08 19:19 - 2012-06-17 10:20 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\hiddriver.dll
2016-05-05 16:46 - 2014-08-08 14:02 - 01411072 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\nicLan.dll
2016-05-05 16:46 - 2014-05-13 16:59 - 00195072 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\DC_WFF.dll
2016-05-05 16:46 - 2014-05-27 09:54 - 00194560 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WJRa.dll
2016-05-05 16:46 - 2014-04-17 08:52 - 01206576 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\RaWLAPI.dll
2017-03-09 22:13 - 2017-03-06 21:59 - 00807232 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\dropbox_watchdog.dll
2017-03-09 22:13 - 2017-02-09 03:19 - 00035792 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd
2017-03-09 22:13 - 2017-02-09 03:19 - 00100296 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\_ctypes.pyd
2017-03-09 22:13 - 2017-02-09 03:19 - 00018888 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\select.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00019776 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd
2017-03-09 22:13 - 2017-02-09 03:19 - 00694224 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\unicodedata.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00020824 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd
2017-03-09 22:13 - 2017-02-09 03:20 - 00123856 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 01682768 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00020816 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd
2017-03-09 22:13 - 2017-02-09 03:19 - 00145864 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\pyexpat.pyd
2017-03-09 22:13 - 2017-02-09 03:20 - 00019408 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\faulthandler.pyd
2017-03-09 22:13 - 2017-02-09 03:19 - 00116688 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\pywintypes27.dll
2017-03-09 22:13 - 2017-02-09 03:22 - 00105928 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32api.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00022864 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winffi.crt.compiled._winffi_crt.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00038712 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\fastpath.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00060736 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00024528 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32event.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00175560 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32gui.pyd
2017-03-09 22:13 - 2017-02-09 03:19 - 00392144 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\pythoncom27.dll
2017-03-09 22:13 - 2017-02-09 03:22 - 00020936 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\mmapfile.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00116176 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32security.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00381760 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00124880 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32file.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00026456 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winffi.kernel32.compiled._winffi_kernel32.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00024016 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32clipboard.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00030160 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32pipe.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00043472 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32process.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00048592 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32service.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00057808 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32evtlog.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00024016 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32profile.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00246608 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\breakpad.client.windows.handler.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00027488 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\dropbox.infinite.win.compiled._driverinstallation.pyd
2017-03-09 22:13 - 2017-02-09 03:21 - 00241104 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\_jpegtran.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00022336 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00025432 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00028616 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32ts.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 01826104 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd
2017-03-09 22:13 - 2017-02-09 03:20 - 00083912 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\sip.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 01972536 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 03928896 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00531264 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00053072 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winrpcserver.compiled._RPCServer.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00133432 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00224064 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00207680 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00022864 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winffi.user32.compiled._winffi_user32.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00069968 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\windisplaytoast.compiled._DisplayToast.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00022872 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00021848 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winffi.winerror.compiled._winffi_winerror.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00022872 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winffi.wininet.compiled._winffi_wininet.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00350152 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winxpgui.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00103232 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtWinExtras.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00023896 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\winverifysignature.compiled._VerifySignature.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00025936 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd
2017-03-09 22:13 - 2017-02-09 03:17 - 00036296 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\librsync.dll
2017-03-09 22:13 - 2017-03-06 22:01 - 00033112 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\enterprise_data.compiled._enterprise_data.pyd
2017-03-09 22:13 - 2016-12-02 22:44 - 00293392 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\EnterpriseDataAdapter.dll
2017-03-09 22:13 - 2017-03-06 22:01 - 00084288 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL
2017-03-09 22:13 - 2017-02-09 03:27 - 00017864 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\libEGL.dll
2017-03-09 22:13 - 2017-02-09 03:27 - 01631184 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2017-03-09 22:13 - 2017-03-06 22:01 - 00042816 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtWebChannel.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00171336 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineWidgets.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00357688 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.pyd
2017-03-09 22:13 - 2017-02-09 03:22 - 00060880 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\win32print.pyd
2017-03-09 22:13 - 2017-03-06 22:01 - 00546104 _____ () C:\Users\Tim\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.pyd
2016-09-13 22:12 - 2017-02-23 15:30 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-09-13 22:12 - 2017-02-23 15:30 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-09-13 22:12 - 2017-02-23 15:30 - 02443320 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-09-13 22:12 - 2017-02-23 15:30 - 00385592 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-09-13 22:12 - 2017-02-23 15:30 - 00543288 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-09-13 22:12 - 2017-02-23 15:30 - 00468536 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)

HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\Software\Classes\.exe:  =>  <===== ACHTUNG

==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\Control Panel\Desktop\\Wallpaper -> D:\Wallpaper\Spiele\Assassin's Creed - Brotherhood.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Roccat Talk.lnk => C:\Windows\pss\Roccat Talk.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Tim^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk => C:\Windows\pss\Adobe Gamma.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Cm106Sound => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cm106.dll,CMICtrlWnd
MSCONFIG\startupreg: Dropbox Update => "C:\Users\Tim\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
MSCONFIG\startupreg: Hercules DJ Series TrayAgent => C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe /boot
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: IAStorIcon => "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
MSCONFIG\startupreg: iCloudDrive => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
MSCONFIG\startupreg: iCloudServices => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: KeePass 2 PreLoad => "C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe" --preload
MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: ProfilerU => C:\Program Files\SmartTechnology\Software\ProfilerU.exe
MSCONFIG\startupreg: SaiMfd => C:\Program Files\SmartTechnology\Software\SaiMfd.exe
MSCONFIG\startupreg: ShadowPlay => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
HKLM\...\StartupApproved\StartupFolder: => "HP Digital Imaging Monitor.lnk"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "Hercules DJ Series TrayAgent"
HKLM\...\StartupApproved\Run: => "Cm106Sound"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "SaiMfd"
HKLM\...\StartupApproved\Run: => "ProfilerU"
HKLM\...\StartupApproved\Run32: => "KeePass 2 PreLoad"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1066145973-1361776141-3635688471-1000\...\StartupApproved\Run: => "Dropbox Update"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{81D4A36B-E07B-4FAB-953E-3D76DF04E247}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{52435D91-08CB-4076-88D2-9A8F435BC3D9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{D09B611A-E25B-4009-B110-6447716FFA80}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{381DAE10-D2FB-4022-89B1-FA0E9C38DD03}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{3062B92D-ACF5-44F5-A12E-73B76FACC5B4}] => (Allow) F:\Spiele\Flight Simulator X\REX Essential Plus Overdrive\rex.exe
FirewallRules: [{05FD203A-06E5-4C57-AD74-44D91D06E4FE}] => (Allow) F:\Programme\Format Factory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{9306C7DC-059D-4F6B-900A-C05842645F62}] => (Allow) F:\Programme\Format Factory\FormatFactory.exe
FirewallRules: [{6F7D0410-AFF9-4083-9AFC-0E6A533390DF}] => (Allow) F:\Programme\Format Factory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{D6B03ED2-D1A1-4E2A-A056-7D0F3D9DEBCC}] => (Allow) F:\Programme\Format Factory\FormatFactory.exe
FirewallRules: [{3B0C1EC5-13EF-4811-A2C1-E0B5EAA42D6C}] => (Allow) F:\Programme\Steam\steamapps\common\FSX\fsx.exe
FirewallRules: [{B2D0FEA0-7747-4CC6-9039-4166D6431559}] => (Allow) F:\Programme\Steam\steamapps\common\FSX\fsx.exe
FirewallRules: [{59193171-9A8A-4616-8E99-F5D14A356A1D}] => (Allow) F:\Programme\Steam\steamapps\common\Skyrim\CreationKit.exe
FirewallRules: [{ED41B578-CED5-493F-A025-E8719843A7E8}] => (Allow) F:\Programme\Steam\steamapps\common\Skyrim\CreationKit.exe
FirewallRules: [{C7B5F6EE-01AE-4E36-A9A4-F2770305BD86}] => (Allow) C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtWLan.exe
FirewallRules: [{5CA841B9-9297-4D13-9DC0-75D6A4DEDCD3}] => (Allow) C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtWLan.exe
FirewallRules: [{B315841F-8EDB-4801-A038-F881ED8699F2}] => (Allow) LPort=1542
FirewallRules: [{99F57970-6A04-4E24-8B34-5B997947E438}] => (Allow) LPort=1542
FirewallRules: [{BA460502-638A-4503-9C74-356A8551C139}] => (Allow) LPort=53
FirewallRules: [{8E3082F1-90AC-4D17-B6DE-BF45CF8066A2}] => (Allow) C:\Users\Tim\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{89DD6F91-7B4A-4BC5-A85A-BCE029BFA3ED}] => (Allow) C:\Users\Tim\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{569A86D4-89E9-45EE-BE5C-96347552DD34}] => (Allow) E:\Programme\Steam\Steam.exe
FirewallRules: [{D47E7219-819C-4929-A131-5AFCF39584C6}] => (Allow) E:\Programme\Steam\Steam.exe
FirewallRules: [{B633CB80-AF79-41CC-8975-00C54E5681FF}] => (Allow) E:\Programme\Steam\SteamApps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [{7434CE76-D9F6-4ECF-87B5-088A3548CC71}] => (Allow) E:\Programme\Steam\SteamApps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [TCP Query User{C910CC57-B713-4B1D-B82A-D380B6E8C864}C:\users\tim\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\tim\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{4A690739-F91E-47AE-9526-E46C983623FA}C:\users\tim\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\tim\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{C42BA9EB-422B-4D87-AA29-D9EBDBEECEA6}] => (Allow) E:\Programme\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{3748BAEB-9C9D-40B3-BB70-38CFA740B1DC}] => (Allow) E:\Programme\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{508CEB4D-9688-4B0E-9537-A7F6682096B4}] => (Allow) E:\Programme\Battle.net\Battle.net.exe
FirewallRules: [{D3F08A74-0038-47F2-B5D2-113F55BDCFAB}] => (Allow) E:\Programme\Battle.net\Battle.net.exe
FirewallRules: [{329DAD61-7631-4F8C-83F1-F3680CABA14F}] => (Allow) E:\Spiele\Hearthstone\Hearthstone.exe
FirewallRules: [{F010E9FF-72C2-4232-8961-4C9FB4C50A20}] => (Allow) E:\Spiele\Hearthstone\Hearthstone.exe
FirewallRules: [{872B9AED-3CBC-47C2-B037-60481EAFA795}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{236FA72C-4E99-4368-A9AC-AD349B4A5377}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{0371AF91-5898-4172-826B-9B94185DC266}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{BE3A0D97-CE0D-42AE-998C-002652AA5D80}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{793C0272-A6A6-46E0-8EEB-95CAF6F6766F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [TCP Query User{1224180A-22E9-4F8C-9174-A926D2E174F0}C:\program files\guillemot\hdjtray\hdjseries2traybar.exe] => (Allow) C:\program files\guillemot\hdjtray\hdjseries2traybar.exe
FirewallRules: [UDP Query User{4AA41065-5D02-4E59-9360-00EE45530A6D}C:\program files\guillemot\hdjtray\hdjseries2traybar.exe] => (Allow) C:\program files\guillemot\hdjtray\hdjseries2traybar.exe
FirewallRules: [{C9834843-66B7-4CC9-960F-E77421C78EC6}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2-Steam.exe
FirewallRules: [{7BBB19D6-99D5-4A2C-8907-7942636D273E}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2-Steam.exe
FirewallRules: [{E5F37EBA-9258-4311-A5A5-007FA906A148}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon1-Steam.exe
FirewallRules: [{E066693A-7561-4B11-BFE2-E6D37F4B473D}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon1-Steam.exe
FirewallRules: [{63B4E369-F230-40BA-B79E-24BB8372296B}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon5-Steam.exe
FirewallRules: [{A04EA818-E19E-4BB3-9CC3-295D291DB3C6}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon5-Steam.exe
FirewallRules: [{02EC553D-21B2-4C02-B20F-391987AE44FB}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2fantasy-Steam.exe
FirewallRules: [{87D54B50-C9D6-41BC-A51F-4970B9C56BEF}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2fantasy-Steam.exe
FirewallRules: [{672527AF-5B4B-48FB-A36F-43123D3CF40B}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon4-Steam.exe
FirewallRules: [{AF24FC58-809D-4F4D-ABBC-21D49DFBCB7B}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon4-Steam.exe
FirewallRules: [{AA8BF414-C807-4F03-9E24-C3BC7D856FA0}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon2-Steam.exe
FirewallRules: [{7866F27D-5FC2-4AA8-B9D0-72692C78B991}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon2-Steam.exe
FirewallRules: [{81C84676-EB64-4805-89AC-539E471982C5}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon3-Steam.exe
FirewallRules: [{D6BFE5AF-15EB-4820-9EDB-9B010E991DCA}] => (Allow) E:\Programme\Steam\SteamApps\common\Wildlife Park 2\WLP2Addon3-Steam.exe
FirewallRules: [{D6BB9ECE-05DD-44C4-908E-9F40428557B9}] => (Allow) C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtWLan.exe
FirewallRules: [{A683B9D3-C988-4982-8D49-3FE38CE95F89}] => (Allow) C:\Program Files (x86)\Hama\Wireless LAN RTL8192SU\RtWLan.exe
FirewallRules: [{8EEBBB99-8EDF-4603-84C0-6E7215CA93BB}] => (Allow) LPort=1542
FirewallRules: [{782C4989-AEB5-4B3A-853D-B2619D0E3194}] => (Allow) LPort=1542
FirewallRules: [{0A5FC314-3F12-4A4A-91BA-EF5AD118ABB1}] => (Allow) LPort=53
FirewallRules: [{1531D213-F540-4F4C-8986-A83897A83523}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{D9D97F91-150C-4E20-B046-2DA849A7F970}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{0D5C2E1C-800B-437E-BD95-AE70C72B8562}] => (Allow) F:\Programme\Steam\steamapps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{E18B4B64-9C56-487A-B7AD-6F7C7E04AF53}] => (Allow) F:\Programme\Steam\steamapps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{C2A98E01-3829-43A6-B26B-4B3CB122FCE6}] => (Allow) F:\Programme\Steam\steamapps\common\Stranded Deep\Stranded_Deep_x64.exe
FirewallRules: [{79FEB8F0-4D76-4C59-8535-DD78228C5ED6}] => (Allow) F:\Programme\Steam\steamapps\common\Stranded Deep\Stranded_Deep_x64.exe
FirewallRules: [{A855F781-F534-49D2-9C8D-C2B6015C57A8}] => (Allow) F:\Programme\Steam\steamapps\common\Miscreated\Miscreated.exe
FirewallRules: [{52853D47-4F45-4662-B210-3906E4EBD5C7}] => (Allow) F:\Programme\Steam\steamapps\common\Miscreated\Miscreated.exe
FirewallRules: [{F4032DF3-11D9-4918-A167-785FFC0871B5}] => (Allow) F:\Programme\Steam\steamapps\common\Miscreated\Bin64\Miscreated.exe
FirewallRules: [{D1914276-9B31-4C8A-94BB-C2EAC46E4005}] => (Allow) F:\Programme\Steam\steamapps\common\Miscreated\Bin64\Miscreated.exe
FirewallRules: [{E786B3F3-E6A5-4E7C-BCA6-577B959F191C}] => (Allow) F:\Programme\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{E68C261D-48F3-4E9E-B711-CBA232B0385D}] => (Allow) F:\Programme\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{E2EDD1F7-1175-40A5-BCB0-480271B274F3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{0ED676EA-3E91-4B25-80F6-09C70BE1B4EF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{55FD5784-41F6-40F6-8047-B3173DCE0586}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3839E42B-2438-4C8B-8E0E-0457E8D43FF7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{EF6710F2-873B-456D-988B-46642F08E380}] => (Allow) F:\Programme\Steam\steamapps\common\This War of Mine\Storyteller.exe
FirewallRules: [{4EA879E7-7305-4BF1-849E-366120BD997E}] => (Allow) F:\Programme\Steam\steamapps\common\This War of Mine\Storyteller.exe
FirewallRules: [{81CA41B9-4A62-4A9D-949D-D5FDEE2DCF25}] => (Allow) F:\Programme\Steam\steamapps\common\Anna's Quest\anna.exe
FirewallRules: [{2C805E34-AFED-49F3-9094-AD4D6ACDE8A6}] => (Allow) F:\Programme\Steam\steamapps\common\Anna's Quest\anna.exe
FirewallRules: [{D782CF12-9B59-4760-A1A8-569078CE4045}] => (Allow) F:\Programme\Steam\steamapps\common\Anna's Quest\VisionaireConfigurationTool.exe
FirewallRules: [{8ADB36B6-6CA0-444F-97E6-C58702D24DE6}] => (Allow) F:\Programme\Steam\steamapps\common\Anna's Quest\VisionaireConfigurationTool.exe
FirewallRules: [{593E6D42-393C-4B58-9FF4-04E7F8F7BD59}] => (Allow) F:\Programme\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{287CF4AE-5EA9-4959-B33B-A95C82E555E1}] => (Allow) F:\Programme\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{DBCFE68E-AA2F-4F85-B439-CC2CF1DC1A5C}] => (Allow) F:\Programme\Steam\steamapps\common\Anna's Quest\bonus content\Prologue\ANNAS_QUEST_PROLOGUE.exe
FirewallRules: [{F69CC381-49D8-4925-B249-9A35F8EC5F0B}] => (Allow) F:\Programme\Steam\steamapps\common\Anna's Quest\bonus content\Prologue\ANNAS_QUEST_PROLOGUE.exe
FirewallRules: [{421CA432-4773-4AA1-B96D-8305F0E3E627}] => (Allow) F:\Programme\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{7F9AC22E-948A-48C0-875C-F82A5389652D}] => (Allow) F:\Programme\Steam\steamapps\common\DayZ\DayZ_BE.exe
FirewallRules: [{7DEECFFE-DBA2-4C75-A21C-BE02DFD35B01}] => (Allow) F:\Programme\Steam\steamapps\common\Hitman™\Launcher.exe
FirewallRules: [{4BD982A0-5289-44BB-AAC2-9F147E511F45}] => (Allow) F:\Programme\Steam\steamapps\common\Hitman™\Launcher.exe
FirewallRules: [{2F8E8B25-8F29-43F9-B72B-E293F7949F3C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{51B8B7A9-ED56-4A4E-9CFD-246990D7B559}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{91F380BD-3CBC-45D9-A086-90AC170C2E87}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{2CCE675F-3DF2-40B1-8105-426B5EDE8A11}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{1E2CB50B-61AB-4E7E-B584-ED43AF00CCD5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{52FAAEB3-6081-4037-85BE-B72B6B63E430}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{014EC9A2-4F61-4CA6-B9AF-D1141CA9BA6C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{F27154EB-EC97-4F1A-8312-7B32E5CF2BFD}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{1E5014EB-D527-4D6C-8E77-9196D378AA4D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{A814712B-7FE9-493B-B5F4-ADD1E1A3C54E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{F2F730DE-E57A-4E3F-9F59-92BD36E1EA78}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{E2D10F58-146A-47FD-9D58-BD22A5B42F73}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{800247D2-982B-4937-AAC6-6B30741427BB}] => (Allow) F:\Programme\Steam\steamapps\common\Omerta\OmertaSteam.exe
FirewallRules: [{07EFAF36-DF8C-4855-B974-C5CA5D2192A3}] => (Allow) F:\Programme\Steam\steamapps\common\Omerta\OmertaSteam.exe
FirewallRules: [{23D7DFA6-69C7-435C-A4F7-67F279CA197C}] => (Allow) E:\Programme\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{06B1714A-4198-41B3-84FA-32CA5DB2F83A}] => (Allow) E:\Programme\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{2F03B6C0-A214-4CDC-B8FB-AA6B1A6932B7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{FDCA7F04-435B-47BE-9A55-8A942C4DA803}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{0B75BD38-FFE2-4F48-AADD-C6312B6F304A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{36D24E82-71B1-4626-BA29-096AD430EE25}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B10694DE-A7AE-4984-A152-865442F2722B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{84D28CF8-33DB-4D91-A3EB-0BBFEDDB058D}] => (Allow) F:\Programme\Steam\steamapps\common\The Walking Dead - A New Frontier (Season 3)\WalkingDead3_win8.exe
FirewallRules: [{4DE456FF-D8C2-40E2-B520-6A82417C020C}] => (Allow) F:\Programme\Steam\steamapps\common\The Walking Dead - A New Frontier (Season 3)\WalkingDead3_win8.exe
FirewallRules: [{8F704D61-52F7-4E5D-94B5-358C371204E3}] => (Allow) F:\Programme\Steam\steamapps\common\The Walking Dead - A New Frontier (Season 3)\WalkingDead3_win7.exe
FirewallRules: [{8D45F0D3-5F8E-45C0-8798-74E320B67C12}] => (Allow) F:\Programme\Steam\steamapps\common\The Walking Dead - A New Frontier (Season 3)\WalkingDead3_win7.exe
FirewallRules: [{D8CDBACF-EB4D-4342-8D58-419A52215912}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{00A9F07B-10F5-4559-ADB5-9FA36EB290CF}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{64908382-860F-4866-8789-3653216EACC7}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D34A8656-6C6B-4D29-BCBE-02B3C02B8F55}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D59ABFF3-25EA-470F-8F75-5774FE611A78}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{61851F64-ECC7-4EB8-BCAC-38A9BCA89A23}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{36673601-9A5C-4154-99A3-5D5C1BF44DF9}] => (Allow) F:\Programme\Steam\steamapps\common\theHunterCotW\theHunterCotW_F.exe
FirewallRules: [{B21C9002-74E6-4F69-8C4C-8CDFDA032EF3}] => (Allow) F:\Programme\Steam\steamapps\common\theHunterCotW\theHunterCotW_F.exe
FirewallRules: [{D3CA87F9-BCD4-439B-837D-DC14BEA62CBB}] => (Allow) E:\Programme\Steam\SteamApps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{DF156B7B-DB55-45AD-86CC-F715927EDD4A}] => (Allow) E:\Programme\Steam\SteamApps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{63595A12-616C-42CC-A574-5864E32AEC4A}] => (Allow) E:\Programme\Steam\SteamApps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{228EA2BF-37D0-4C6E-BEC3-CC6A7AC6A489}] => (Allow) E:\Programme\Steam\SteamApps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{5C1C67E7-BAAE-4DEA-8FB9-6F0A98E3F040}] => (Allow) F:\Programme\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{F8A338E9-83D2-4196-BBF1-963E6C8CC773}] => (Allow) F:\Programme\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{B5DF2557-CA1A-4F60-9EEA-EE78C2838602}] => (Allow) F:\Programme\Steam\steamapps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{9ACDAA43-0A79-4A9A-AB93-2251A4DAFFD5}] => (Allow) F:\Programme\Steam\steamapps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [TCP Query User{A2F902A8-ACBB-44B9-81CA-6CB02EC9A3EB}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{318A5B55-953B-4954-89F4-CF4E56D6B806}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe

==================== Wiederherstellungspunkte =========================

ACHTUNG: Systemwiederherstellung ist deaktiviert

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Officejet 4500 G510n-z
Description: Officejet 4500 G510n-z
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Officejet 4500 G510n-z
Description: Officejet 4500 G510n-z
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (03/14/2017 02:51:35 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: microsoftedgecp.exe, Version: 11.0.14393.82, Zeitstempel: 0x57a55786
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000604
Fehleroffset: 0x0000000000000000
ID des fehlerhaften Prozesses: 0x2604
Startzeit der fehlerhaften Anwendung: 0x01d29c6549594c5e
Pfad der fehlerhaften Anwendung: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 55bc627c-f44c-4f3f-9016-b600b1a701d6
Vollständiger Name des fehlerhaften Pakets: Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MicrosoftEdge

Error: (03/14/2017 02:51:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: microsoftedgecp.exe, Version: 11.0.14393.82, Zeitstempel: 0x57a55786
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000604
Fehleroffset: 0x0000000000000000
ID des fehlerhaften Prozesses: 0x2604
Startzeit der fehlerhaften Anwendung: 0x01d29c6549594c5e
Pfad der fehlerhaften Anwendung: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 5a1f370b-c8e6-4db3-a963-4c728eb5578a
Vollständiger Name des fehlerhaften Pakets: Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MicrosoftEdge

Error: (03/14/2017 02:48:23 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: microsoftedgecp.exe, Version: 11.0.14393.82, Zeitstempel: 0x57a55786
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000604
Fehleroffset: 0x0000000000000000
ID des fehlerhaften Prozesses: 0x10e4
Startzeit der fehlerhaften Anwendung: 0x01d29c650f425fd0
Pfad der fehlerhaften Anwendung: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 2bb51431-a87a-4b5f-8cc1-ce508489f687
Vollständiger Name des fehlerhaften Pakets: Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MicrosoftEdge

Error: (03/14/2017 02:48:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: microsoftedgecp.exe, Version: 11.0.14393.82, Zeitstempel: 0x57a55786
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000604
Fehleroffset: 0x0000000000000000
ID des fehlerhaften Prozesses: 0x10e4
Startzeit der fehlerhaften Anwendung: 0x01d29c650f425fd0
Pfad der fehlerhaften Anwendung: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 8596ca2d-32b3-405f-b850-bf0b9ef2d8a5
Vollständiger Name des fehlerhaften Pakets: Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MicrosoftEdge

Error: (03/14/2017 02:35:15 AM) (Source: Microsoft-Windows-EFS) (EventID: 4401) (User: Home-PC)
Description: 7.488: Der EFS-Dienst*konnte keinen Benutzer für „Unternehmensdatenschutz“ bereitstellen. Fehlercode: 0x80070005.

Error: (03/14/2017 01:27:55 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: microsoftedgecp.exe, Version: 11.0.14393.82, Zeitstempel: 0x57a55786
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000604
Fehleroffset: 0x0000000000000000
ID des fehlerhaften Prozesses: 0x1380
Startzeit der fehlerhaften Anwendung: 0x01d29c599b8a9c36
Pfad der fehlerhaften Anwendung: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 11682013-6031-49ef-8870-aa75820bfa38
Vollständiger Name des fehlerhaften Pakets: Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MicrosoftEdge

Error: (03/14/2017 01:27:53 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: microsoftedgecp.exe, Version: 11.0.14393.82, Zeitstempel: 0x57a55786
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000604
Fehleroffset: 0x0000000000000000
ID des fehlerhaften Prozesses: 0x1380
Startzeit der fehlerhaften Anwendung: 0x01d29c599b8a9c36
Pfad der fehlerhaften Anwendung: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 6d7009d4-128c-44ca-8793-4901d435a4d5
Vollständiger Name des fehlerhaften Pakets: Microsoft.MicrosoftEdge_38.14393.0.0_neutral__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MicrosoftEdge

Error: (03/14/2017 12:52:11 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (03/13/2017 04:40:21 PM) (Source: Microsoft-Windows-EFS) (EventID: 4401) (User: Home-PC)
Description: 7.488: Der EFS-Dienst*konnte keinen Benutzer für „Unternehmensdatenschutz“ bereitstellen. Fehlercode: 0x80070005.

Error: (03/13/2017 02:39:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: EZCA.exe, Version: 1.1.8.7, Zeitstempel: 0x2a425e19
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0xf81e0000
ID des fehlerhaften Prozesses: 0x2e08
Startzeit der fehlerhaften Anwendung: 0x01d29bff03241110
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\EZCA\EZCA.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 17da9c5c-fdbb-4cac-9b3e-02ff7acd1c6f
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:


Systemfehler:
=============
Error: (03/14/2017 11:46:59 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (03/14/2017 11:42:47 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.

Error: (03/14/2017 11:28:04 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (03/14/2017 11:27:43 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.

Error: (03/14/2017 12:50:13 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (03/14/2017 12:45:24 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.

Error: (03/14/2017 12:27:51 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (03/14/2017 12:27:41 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "NetTcpActivator" ist vom Dienst "NetTcpPortSharing" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.

Error: (03/14/2017 12:13:59 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA LocalSystem Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (03/14/2017 12:11:22 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.


CodeIntegrity:
===================================
  Date: 2017-03-14 11:28:36.254
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-03-14 02:51:22.504
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-03-14 02:41:59.150
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-03-14 01:29:48.623
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-03-14 01:26:22.725
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-03-06 23:31:22.712
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-01-03 22:13:20.383
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2016-12-21 21:19:16.187
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-4690 CPU @ 3.50GHz
Prozentuale Nutzung des RAM: 13%
Installierter physikalischer RAM: 16300.86 MB
Verfügbarer physikalischer RAM: 14089.46 MB
Summe virtueller Speicher: 17324.86 MB
Verfügbarer virtueller Speicher: 15208.7 MB

==================== Laufwerke ================================

Drive c: (System) (Fixed) (Total:111.25 GB) (Free:55.85 GB) NTFS
Drive d: (Daten) (Fixed) (Total:232.88 GB) (Free:106.8 GB) NTFS
Drive e: (Software) (Fixed) (Total:232.88 GB) (Free:201.85 GB) NTFS
Drive f: (Software) (Fixed) (Total:931.51 GB) (Free:467.02 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 44C3D87F)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

========================================================
Disk: 1 (Size: 232.9 GB) (Disk ID: BDC3BDC3)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: BD99BD99)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 684D8459)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         

Alt 14.03.2017, 12:01   #8
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org" - Standard

Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org"



sehr schön


Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers



Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 14.03.2017, 12:19   #9
Drebing
 
Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org" - Standard

Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org"



Log von Malwarebytes Anti-Rootkit.
Einen Neustart gab es nicht, da er nix gefunden hat.

mbar-log-2017-03-14 (12-05-43).txt

Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2017.03.14.03
  rootkit: v2017.03.11.01

Windows 10 x64 NTFS
Internet Explorer 11.576.14393.0
Tim :: HOME-PC [administrator]

14.03.2017 12:05:43
mbar-log-2017-03-14 (12-05-43).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 402443
Time elapsed: 9 minute(s), 31 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         

Alt 14.03.2017, 12:22   #10
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org" - Standard

Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org"



Adware/Junkware/Toolbars entfernen

Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!
Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren!


1. Schritt: adwCleaner

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).




2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 14.03.2017, 12:43   #11
Drebing
 
Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org" - Standard

Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org"



Kein Neustart, da nix gefunden wurde.

AdwCleaner[S0].txt

Code:
ATTFilter
# AdwCleaner v6.044 - Bericht erstellt am 14/03/2017 um 12:36:38
# Aktualisiert am 28/02/2017 von Malwarebytes
# Datenbank : 2017-03-13.2 [Server]
# Betriebssystem : Windows 10 Home  (X64)
# Benutzername : Tim - HOME-PC
# Gestartet von : C:\Users\Tim\Desktop\AdwCleaner_6.044.exe
# Modus: Suchlauf
# Unterstützung : https://www.malwarebytes.com/support



***** [ Dienste ] *****

Keine schädlichen Dienste gefunden.


***** [ Ordner ] *****

Keine schädlichen Ordner gefunden.


***** [ Dateien ] *****

Keine schädlichen Dateien gefunden.


***** [ DLL ] *****

Keine infizierten DLLs gefunden.


***** [ WMI ] *****

Keine schädlichen Schlüssel gefunden.


***** [ Verknüpfungen ] *****

Keine infizierten Verknüpfungen gefunden.


***** [ Aufgabenplanung ] *****

Keine schädlichen Aufgaben gefunden.


***** [ Registrierungsdatenbank ] *****

Keine schädlichen Elemente in der Registrierungsdatenbank gefunden.


***** [ Internetbrowser ] *****

Keine schädlichen Elemente in Firefox basierten Browsern gefunden.
Keine schädlichen Elemente in Chrome basierten Browsern gefunden.

*************************

C:\AdwCleaner\AdwCleaner[S0].txt - [1182 Bytes] - [14/03/2017 12:36:38]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1255 Bytes] ##########
         

JRT.txt

Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.2 (03.10.2017)
Operating System: Windows 10 Home x64 
Ran by Tim (Administrator) on 14.03.2017 at 12:38:51,57
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0 




Registry: 0 





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 14.03.2017 at 12:39:26,91
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         

Alt 14.03.2017, 13:00   #12
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org" - Standard

Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org"



FRST-Fix

Virenscanner jetzt bitte komplett deaktivieren, damit sichergestellt ist, dass der Fix sauber durchläuft!


Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
HKLM-x32\...\Run: [] => [X]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Keine Datei
ShortcutWithArgument: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programme\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> https://launchpage.org/?uid=qTxKGKjchx0cXe9WkuWzGboiLNqw1thyEbBii%2Fino9bIEXUYVjSJ2rObkSvEVDQbrw%3D%3D
ShortcutWithArgument: C:\Users\Tim\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> https://launchpage.org/?uid=qTxKGKjchx0cXe9WkuWzGboiLNqw1thyEbBii%2Fino9bIEXUYVjSJ2rObkSvEVDQbrw%3D%3D
ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> https://launchpage.org/?uid=qTxKGKjchx0cXe9WkuWzGboiLNqw1thyEbBii%2Fino9bIEXUYVjSJ2rObkSvEVDQbrw%3D%3D
emptytemp:
         

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 14.03.2017, 13:14   #13
Drebing
 
Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org" - Standard

Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org"



PC wurde einmal neu gestartet.

Fixlog.txt

Code:
ATTFilter
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 13-03-2017
durchgeführt von Tim (14-03-2017 13:08:04) Run:1
Gestartet von D:\Downloads
Geladene Profile: Tim (Verfügbare Profile: Tim & DefaultAppPool)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
HKLM-x32\...\Run: [] => [X]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Keine Datei
ShortcutWithArgument: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programme\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> https://launchpage.org/?uid=qTxKGKjchx0cXe9WkuWzGboiLNqw1thyEbBii%2Fino9bIEXUYVjSJ2rObkSvEVDQbrw%3D%3D
ShortcutWithArgument: C:\Users\Tim\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> https://launchpage.org/?uid=qTxKGKjchx0cXe9WkuWzGboiLNqw1thyEbBii%2Fino9bIEXUYVjSJ2rObkSvEVDQbrw%3D%3D
ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> https://launchpage.org/?uid=qTxKGKjchx0cXe9WkuWzGboiLNqw1thyEbBii%2Fino9bIEXUYVjSJ2rObkSvEVDQbrw%3D%3D
emptytemp:
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Wert erfolgreich entfernt
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => Schlüssel erfolgreich entfernt
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => Schlüssel nicht gefunden. 
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast => Schlüssel erfolgreich entfernt
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => Schlüssel nicht gefunden. 
C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programme\Google Chrome\Google Chrome.lnk => Verknüpfung Eigenschaft erfolgreich entfernt.
C:\Users\Tim\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk => Verknüpfung Eigenschaft erfolgreich entfernt.
C:\Users\Public\Desktop\Google Chrome.lnk => Verknüpfung Eigenschaft erfolgreich entfernt.

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 67841931 B
Java, Flash, Steam htmlcache => 758383870 B
Windows/system/drivers => 99557 B
Edge => 24851800 B
Chrome => 12002304 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 0 B
NetworkService => 1933312 B
Tim => 35099396 B
DefaultAppPool => 0 B

RecycleBin => 0 B
EmptyTemp: => 858.5 MB temporäre Dateien entfernt.

================================


Das System musste neu gestartet werden.

==== Ende von Fixlog 13:08:17 ====
         

Alt 14.03.2017, 13:17   #14
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org" - Standard

Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org"



Kontrollscans mit (1) MBAM, (2) ESET und (3) SecurityCheck bitte:


1. Schritt: MBAM

Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.




2. Schritt: ESET

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset




3. Schritt: SecurityCheck

Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 14.03.2017, 18:31   #15
Drebing
 
Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org" - Standard

Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org"



So, schwere Geburt und hat ewig gedauert, aber da sind die Logs.

Malwarebytes

Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlaufdatum: 14.03.2017
Suchlaufzeit: 13:21
Protokolldatei: mbamlog.txt
Administrator: Ja

Version: 2.2.1.1043
Malware-Datenbank: v2017.03.14.04
Rootkit-Datenbank: v2017.03.11.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 10
CPU: x64
Dateisystem: NTFS
Benutzer: Tim

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 401614
Abgelaufene Zeit: 8 Min., 17 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswerte: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 0
(keine bösartigen Elemente erkannt)

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)
         

ESET

Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=cc9e04e709652945824618a9e7ef1018
# end=init
# utc_time=2017-03-14 12:34:39
# local_time=2017-03-14 01:34:39 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT 
Update Init
Update Download
Update Finalize
Updated modules version: 32709
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=cc9e04e709652945824618a9e7ef1018
# end=updated
# utc_time=2017-03-14 12:38:06
# local_time=2017-03-14 01:38:06 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT 
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=cc9e04e709652945824618a9e7ef1018
# engine=32709
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2017-03-14 04:45:14
# local_time=2017-03-14 05:45:14 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT 
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 25325 20840530 0 0
# scanned=712805
# found=0
# cleaned=0
# scan_time=14827
         

Security Check

Code:
ATTFilter
 Results of screen317's Security Check version 1.009  
   x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
Windows Defender   
 WMI entry may not exist for antivirus; attempting automatic update. 
`````````Anti-malware/Other Utilities Check:````````` 
 Java 8 Update 121  
 Java version 32-bit out of Date! 
 Google Chrome (56.0.2924.87) 
 Google Chrome (SetupMetrics...) 
````````Process Check: objlist.exe by Laurent````````  
 Windows Defender MSMpEng.exe 
 Windows Defender MpCmdRun.exe   
 Windows Defender MSASCuiL.exe   
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  % 
````````````````````End of Log``````````````````````
         

Antwort

Themen zu Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org"
adobe, antivirus, bonjour, browser, converter, defender, desktop, einstellungen, google, homepage, installation, internet, launchpage.org, problem, proxy, prozesse, realtek, registry, rundll, security, server, services.exe, software, teamspeak, usb, windows



Ähnliche Themen: Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org"


  1. Google Chrome Erweiterung installieren nicht möglich: "Download interrupted", "Netzwerkfehler"
    Log-Analyse und Auswertung - 15.08.2016 (36)
  2. Windows 10: Statt google als Startseite "nginx" - aber kein Virusfund
    Log-Analyse und Auswertung - 17.06.2016 (10)
  3. Google Chrome:Seiten werden bei Klick sofort auf Werbung für "Reimage Repair; Windows 8.1 - Pc Reparatur" geleitet
    Log-Analyse und Auswertung - 16.02.2016 (30)
  4. "Windows 7 Reperatur" Popups in Chrome und "Browsing Secure" in der Programmliste - Adware?
    Log-Analyse und Auswertung - 27.01.2016 (8)
  5. Google Chrome Werbungpopups, Weiterleitung auf eine "Windows 7 Reperatur" Seite, Downloadblocks
    Plagegeister aller Art und deren Bekämpfung - 05.01.2016 (11)
  6. Google Chrome leitet mich ständig auf Werbeseiten bzw "Windows-Repair-Seiten" weiter, Musik ploppt auf
    Log-Analyse und Auswertung - 15.10.2015 (11)
  7. ESET hat Diverses gefunden, Laptop extrem langsam, andauernde Fehlermeldungen Chrome"Ups Google Chrome ...."
    Plagegeister aller Art und deren Bekämpfung - 19.07.2015 (165)
  8. Windows 7 x64, Avast blockiert im sekundentakt werbung, Google chrome erweiterung "Unisiallees" unbekannt nicht löschbar
    Log-Analyse und Auswertung - 22.01.2015 (17)
  9. Windows 8 - Google Chrome / Internet Explorer starten nur über "mystartsearch"
    Log-Analyse und Auswertung - 15.10.2014 (19)
  10. Win 8: TR/Trash.Gen kommt immer wieder und "istart.websearch" als Google Chrome Startseite.
    Log-Analyse und Auswertung - 01.08.2014 (3)
  11. Windows 8.1: Avira findet "TR/Swrort.A.10259" in "C:\Program Files (x86)\Google\Chrome\Application\old_chrome.exe"
    Plagegeister aller Art und deren Bekämpfung - 23.07.2014 (3)
  12. Windows 7: Leerlauf Scan im BitDefender wird immer wieder ausgeschaltet und Browser Startseite "google" wird geändert
    Log-Analyse und Auswertung - 20.05.2014 (13)
  13. Ungewollte Startseite bei Chrome: " http://wisersearch.com/?channel=de_nt" - Wie entfernen?
    Plagegeister aller Art und deren Bekämpfung - 07.12.2013 (17)
  14. Windows XP Nach Installation von HP Player immer zwei Startseiten beim Öffnen von Google chrome "start.iminent.com" und "Search gol"
    Log-Analyse und Auswertung - 08.10.2013 (5)
  15. "Funmoods Search" Startseite in Chrome lässt sich nicht entfernen - möglicher Virus?
    Plagegeister aller Art und deren Bekämpfung - 22.01.2013 (9)
  16. Startseite "http://www.searchnu.com/406" beim öffnen von Chrome
    Plagegeister aller Art und deren Bekämpfung - 16.11.2012 (19)
  17. Startseite " http://www.searchnu.com/406 " bei CHROME
    Log-Analyse und Auswertung - 29.10.2012 (14)

Zum Thema Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org" - Guten Morgen zusammen, ich habe seit gestern das Problem, daß in den Browsern MS Edge (ehem. IE) und in Google Chrome als Startseite immer "launchpage.org" benutzt wird. In den Einstellungen - Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org"...
Archiv
Du betrachtest: Windows 10: Google Chrome und MS Edge - Startseite "launchpage.org" auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.