Sehr eigenartige Meldungen

Käfer_Wurm · 12.11.2017, 22:45

Hallo Leute,

Ich habe in letzter Zeit vermehrt Probleme. Es fing an das vor ein paar Tagen mein Paypal Konto vom Sicherheitssystem gesperrt wurde aufgrund eines Fremdzugriffts. Habe das Konto wieder freigeschaltet und heute eine sehr ähnliche Meldung beim einloggen in mein E-Mail Konto erhalten (web.de). Ich konnte mich zunächst nicht mehr einloggen, nach Neustart des Browsers allerdings wieder ohne Probleme Oo.

Jedenfalls brauche ich eure Hilfe, da ich eventuell vermute das mein Pc infiziert ist.
Habe auch schon einen Testlauf mit Malwarebytes gemacht und die txt datei hier hochgeladen.

LG

Käfer_Wurm · 12.11.2017, 23:56

Nach der Anleitung des Forum Users M-K-D-B habe ich hier noch die Log Datei von TDSSKiller und beide Files von FRST, hoffe das hilft.

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 12-11-2017 03
durchgeführt von alex (Administrator) auf ALEX-PC (12-11-2017 23:41:53)
Gestartet von C:\Users\alex\Downloads
Geladene Profile: alex &  (Verfügbare Profile: alex)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
() C:\ProgramData\MobileBrServ\mbbService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClient.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClientUx.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClientUxRender.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClientUxRender.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13657304 2013-10-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [SPEEDLINK KUDOS] => "C:\Program Files (x86)\SPEEDLINK\SPEEDLINK PRIME Gaming Mouse\Gaming Mouse.exe" /hide
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [1305408 2011-01-20] (DT Soft Ltd)
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3071776 2017-08-28] (Valve Corporation)
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27832264 2017-10-10] (Skype Technologies S.A.)
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\MountPoints2: {19691dfc-0cd9-11e3-b49a-1c6f65d3997a} - E:\LGAutoRun.exe
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\MountPoints2: {349232bf-0461-11e5-b4e3-e069954f83e1} - E:\AutoRun.exe
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\MountPoints2: {620a5c4c-0ab1-11e5-93d6-e069954f83e1} - H:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\MountPoints2: {780ee4a3-fa16-11e2-8d85-1c6f65d3997a} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11122017223154135\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [1305408 2011-01-20] (DT Soft Ltd)
HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11122017223154135\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3071776 2017-08-28] (Valve Corporation)
HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11122017223154135\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27832264 2017-10-10] (Skype Technologies S.A.)
HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11122017223154135\...\MountPoints2: {19691dfc-0cd9-11e3-b49a-1c6f65d3997a} - E:\LGAutoRun.exe
HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11122017223154135\...\MountPoints2: {349232bf-0461-11e5-b4e3-e069954f83e1} - E:\AutoRun.exe
HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11122017223154135\...\MountPoints2: {620a5c4c-0ab1-11e5-93d6-e069954f83e1} - H:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11122017223154135\...\MountPoints2: {780ee4a3-fa16-11e2-8d85-1c6f65d3997a} - E:\HTC_Sync_Manager_PC.exe
HKLM\...\Providers\Internet Print Provider: inetpp.dll
HKLM\...\Providers\LanMan Print Services: C:\Windows\SysWOW64\win32spl.dll [497664 2017-08-11] (Microsoft Corporation)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{347AFFFE-87B0-4B7D-BDFF-6C7930EDA7D3}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{4597ADE4-1244-49B0-BACA-836220FE22EC}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{F7935B33-8BC6-4B43-A4EB-BEAC5AB65CEB}: [DhcpNameServer] 192.168.8.1 192.168.8.1

Internet Explorer:
==================
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://nmd.msn.com
HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11122017223154135\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://nmd.msn.com
URLSearchHook: HKU\S-1-5-21-1855058041-1027751042-450180876-1001 -> Standard = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11122017223154135 -> Standard = {855F3B16-6D32-4fe6-8A56-BBB695989046}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {C4DF1EB9-3C61-4AA8-A878-EFA940BF16E9} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MNMTDF&pc=MANM&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {BD42D578-1A13-44F7-A102-56AE8D21DD41} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MNMTDF&pc=MANM&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-1855058041-1027751042-450180876-1001 -> {BD42D578-1A13-44F7-A102-56AE8D21DD41} URL = 
SearchScopes: HKU\S-1-5-21-1855058041-1027751042-450180876-1001 -> {C69CE5AC-1FF2-4C74-9129-68B65C92FF7B} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&intl=de&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
SearchScopes: HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11122017223154135 -> {BD42D578-1A13-44F7-A102-56AE8D21DD41} URL = 
SearchScopes: HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11122017223154135 -> {C69CE5AC-1FF2-4C74-9129-68B65C92FF7B} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&intl=de&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-11-02] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-11-02] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll [2017-07-29] (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-11-10] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-07-29] (Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

FireFox:
========
FF ProfilePath: C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\zdlucn6m.default [2017-11-12]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\zdlucn6m.default -> ICQ Search
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\zdlucn6m.default -> ICQ Search
FF Homepage: Mozilla\Firefox\Profiles\zdlucn6m.default -> hxxp://start.icq.com/
FF NetworkProxy: Mozilla\Firefox\Profiles\zdlucn6m.default -> type", 0
FF Extension: (ADB Helper) - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\zdlucn6m.default\Extensions\adbhelper@mozilla.org [2017-09-26]
FF Extension: (Valence) - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\zdlucn6m.default\Extensions\fxdevtools-adapters@mozilla.org [2017-09-18]
FF Extension: (Suchen und neue Registerkarte von Yahoo) - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\zdlucn6m.default\Extensions\jid1-16aeif9OQIRKxA@jetpack.xpi [2017-11-10]
FF Extension: (Safe Browsing Version 4 (temporary add-on)) - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\zdlucn6m.default\Extensions\sbv4-gradual-rollout@mozilla.com.xpi [2017-11-08]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_183.dll [2017-10-26] ()
FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-11-02] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-11-02] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_183.dll [2017-10-26] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-07-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-07-29] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-06] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-06] (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll [2012-06-28] (Nullsoft, Inc.)

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [1128432 2017-10-13] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [490968 2017-10-13] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [490968 2017-10-13] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1525240 2017-10-13] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [407408 2017-10-26] (Avira Operations GmbH & Co. KG)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Datei ist nicht signiert]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
R2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [242256 2014-08-20] ()
S3 MSCSPTISRV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [45056 2006-12-14] (Sony Corporation) [Datei ist nicht signiert]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-10-06] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [460736 2017-10-11] (NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1451336 2017-10-23] (Overwolf LTD)
S3 PACSPTISVR; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [57344 2006-12-14] () [Datei ist nicht signiert]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2012-12-15] ()
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2013-07-04] (SolidWorks) [Datei ist nicht signiert]
S3 SonicStage Back-End Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe [112184 2007-02-05] (Sony Corporation)
S3 SPTISRV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe [69632 2006-12-14] (Sony Corporation) [Datei ist nicht signiert]
S3 SSScsiSV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe [75320 2007-02-05] (Sony Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 a4djavs; C:\Windows\System32\Drivers\a4djavs.sys [359784 2012-12-18] (Native Instruments GmbH)
S3 a4djusb_svc; C:\Windows\System32\Drivers\a4djusb.sys [99688 2012-12-18] (Native Instruments GmbH)
S3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [96256 2013-07-05] (Advanced Micro Devices) [Datei ist nicht signiert]
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [64504 2017-06-16] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [194272 2017-09-19] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [151128 2017-08-31] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [35328 2017-03-22] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2017-03-22] (Avira Operations GmbH & Co. KG)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2011-03-21] (DT Soft Ltd)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77432 2017-11-01] ()
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [193464 2017-11-12] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [110016 2017-11-12] (Malwarebytes)
R3 MBAMProtection; C:\Windows\System32\DRIVERS\mbam.sys [46008 2017-11-12] (Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253880 2017-11-12] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [84256 2017-11-12] (Malwarebytes)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-10-11] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50624 2017-10-11] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-07-26] (NVIDIA Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-11-12 23:42 - 2017-11-12 23:42 - 004922400 _____ (AO Kaspersky Lab) C:\Users\alex\Desktop\tdsskiller.exe
2017-11-12 23:41 - 2017-11-12 23:42 - 000020747 _____ C:\Users\alex\Downloads\FRST.txt
2017-11-12 23:41 - 2017-11-12 23:41 - 002392576 _____ (Farbar) C:\Users\alex\Downloads\FRST64.exe
2017-11-12 23:41 - 2017-11-12 23:41 - 000000000 ____D C:\FRST
2017-11-12 22:35 - 2017-11-12 22:35 - 000110016 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-11-12 22:35 - 2017-11-12 22:35 - 000084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-11-12 22:33 - 2017-11-12 22:33 - 000040303 _____ C:\Users\alex\Desktop\riskware.txt
2017-11-12 22:13 - 2017-11-12 22:35 - 000046008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-11-12 22:13 - 2017-11-12 22:13 - 000253880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2017-11-12 22:13 - 2017-11-12 22:13 - 000193464 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2017-11-12 22:12 - 2017-11-12 22:12 - 000001875 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-11-12 22:12 - 2017-11-12 22:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-11-12 22:12 - 2017-11-12 22:12 - 000000000 ____D C:\ProgramData\MB2Migration
2017-11-12 22:12 - 2017-11-12 22:12 - 000000000 ____D C:\Program Files\Malwarebytes
2017-11-12 22:12 - 2017-11-01 08:54 - 000077432 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-11-12 22:08 - 2017-11-12 22:12 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-11-12 22:08 - 2017-11-12 22:12 - 000000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2017-11-12 22:07 - 2017-11-12 22:08 - 022851472 _____ (Malwarebytes ) C:\Users\alex\Downloads\mbam-setup-2.2.1.1043.exe
2017-11-12 21:29 - 2017-11-12 21:35 - 000000000 ____D C:\AdwCleaner
2017-11-12 21:28 - 2017-11-12 21:28 - 008261584 _____ (Malwarebytes) C:\Users\alex\Downloads\adwcleaner_7.0.4.0.exe
2017-11-11 19:29 - 2017-11-11 19:29 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3414915565_spectate.bat
2017-11-11 19:00 - 2017-11-11 19:00 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3414901227_spectate.bat
2017-11-11 18:42 - 2017-11-11 18:42 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3414809012_spectate.bat
2017-11-11 15:20 - 2017-11-11 15:20 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3414183906_spectate.bat
2017-11-10 14:50 - 2017-11-10 14:50 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3412431347_spectate.bat
2017-11-09 17:17 - 2017-11-09 17:17 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3411177660_spectate.bat
2017-11-09 11:13 - 2017-11-09 11:13 - 000006150 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3006122103_replay(1).bat
2017-11-09 10:08 - 2017-11-09 10:08 - 000006150 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3006122103_replay.bat
2017-11-07 18:06 - 2017-11-07 18:06 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3408148565_spectate.bat
2017-11-07 16:57 - 2017-11-07 16:57 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3408063225_spectate.bat
2017-11-07 04:45 - 2017-11-07 04:46 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3407804503_spectate.bat
2017-11-07 02:26 - 2017-11-07 02:26 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3407776951_spectate.bat
2017-11-07 01:58 - 2017-11-07 01:58 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3407765279_spectate.bat
2017-11-05 14:36 - 2017-11-05 14:36 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3405798172_spectate.bat
2017-11-05 12:47 - 2017-11-05 12:47 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3405682697_spectate.bat
2017-11-05 12:13 - 2017-11-05 12:13 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3405663137_spectate.bat
2017-11-05 00:21 - 2017-11-05 00:21 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3405369190_spectate.bat
2017-11-04 22:10 - 2017-11-04 22:10 - 000006462 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3401400454_replay.bat
2017-11-04 16:06 - 2017-11-04 16:06 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3404775746_spectate.bat
2017-11-03 13:55 - 2017-11-03 13:55 - 000001128 _____ C:\Users\Public\Desktop\Avira.lnk
2017-11-02 19:42 - 2017-11-02 19:42 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3402203778_spectate.bat
2017-11-02 11:49 - 2017-11-02 11:49 - 000110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2017-11-02 11:47 - 2017-11-02 11:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2017-11-02 11:46 - 2017-11-02 11:49 - 000000000 ____D C:\Program Files\Java
2017-11-02 11:45 - 2017-11-02 11:45 - 000000000 ____D C:\Users\alex\AppData\LocalLow\Oracle
2017-11-02 11:39 - 2017-11-02 11:45 - 215956536 _____ (Oracle Corporation) C:\Users\alex\Downloads\jdk-8u151-windows-x64.exe
2017-11-02 11:27 - 2017-11-02 11:27 - 001533960 _____ (CHIP Digital GmbH) C:\Users\alex\Downloads\Java SDK 64 Bit - CHIP-Installer.exe
2017-11-02 10:41 - 2017-11-02 10:41 - 002842320 _____ C:\Users\alex\Downloads\npp.7.1.Installer.exe
2017-11-02 10:41 - 2017-11-02 10:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2017-11-02 10:35 - 2017-11-02 10:35 - 002885168 _____ C:\Users\alex\Downloads\npp.7.5.1.Installer.exe
2017-11-02 10:35 - 2017-11-02 10:35 - 000000000 ____D C:\Users\alex\AppData\Local\Notepad++
2017-11-02 10:26 - 2017-11-02 11:54 - 000000000 ____D C:\Users\alex\Neuer Ordner
2017-11-02 10:20 - 2017-11-09 20:10 - 000000197 _____ C:\Users\alex\Desktop\new  2.txt
2017-11-01 13:34 - 2017-11-01 13:34 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400424993_spectate.bat
2017-11-01 12:59 - 2017-11-01 12:59 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400386257_spectate.bat
2017-11-01 12:57 - 2017-11-01 12:57 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400395525_spectate.bat
2017-11-01 12:53 - 2017-11-01 12:53 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400394446_spectate.bat
2017-11-01 12:48 - 2017-11-01 12:48 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400392720_spectate.bat
2017-11-01 12:28 - 2017-11-01 12:28 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400358273_spectate.bat
2017-11-01 11:58 - 2017-11-01 11:58 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400339264_spectate.bat
2017-11-01 09:45 - 2017-11-01 09:45 - 000006462 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3399261194_replay.bat
2017-10-31 18:37 - 2017-10-31 18:37 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3399761355_spectate.bat
2017-10-31 17:36 - 2017-10-31 17:36 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3399669975_spectate.bat
2017-10-31 15:24 - 2017-10-31 15:24 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3399532063_spectate.bat
2017-10-31 12:46 - 2017-10-31 12:46 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3399386897_spectate.bat
2017-10-31 11:26 - 2017-10-31 11:26 - 007451243 _____ C:\Users\alex\Downloads\WS_2_-_Aufbau_der_Materie.pdf
2017-10-30 16:45 - 2017-10-30 16:45 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3398226032_spectate.bat
2017-10-29 18:50 - 2017-10-29 18:50 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3397346370_spectate.bat
2017-10-29 15:23 - 2017-10-29 15:23 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3396873067_spectate.bat
2017-10-28 21:12 - 2017-10-28 21:12 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3396000728_spectate.bat
2017-10-28 20:37 - 2017-10-28 20:37 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3395942767_spectate.bat
2017-10-28 16:51 - 2017-10-28 16:51 - 000006462 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3388576043_replay.bat
2017-10-28 16:48 - 2017-10-28 16:48 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3395681308_spectate.bat
2017-10-27 12:03 - 2017-10-27 12:03 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3393932736_spectate.bat
2017-10-26 10:26 - 2017-10-26 10:26 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3392508324_spectate.bat
2017-10-26 10:05 - 2017-10-26 10:05 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3392505524_spectate.bat
2017-10-25 18:53 - 2017-10-25 18:53 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3392060140_spectate.bat
2017-10-23 20:02 - 2017-10-23 20:02 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3389889511_spectate.bat
2017-10-22 18:03 - 2017-10-22 18:03 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3388487568_spectate.bat
2017-10-22 11:02 - 2017-10-22 11:02 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-10-22 11:02 - 2017-10-06 12:52 - 000136312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-10-22 11:02 - 2017-09-14 00:20 - 000798008 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-10-22 11:02 - 2017-09-14 00:20 - 000490296 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-10-22 11:02 - 2017-09-14 00:19 - 000927544 _____ C:\Windows\system32\vulkan-1.dll
2017-10-22 11:02 - 2017-09-14 00:19 - 000591160 _____ C:\Windows\system32\vulkaninfo.exe
2017-10-22 10:59 - 2017-10-09 13:20 - 000225208 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2017-10-22 10:59 - 2017-10-09 13:20 - 000045496 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 040237176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 036184000 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 035156600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 029228480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 023261256 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 021738976 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 019035344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 019008624 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 018203456 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 016751224 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-10-22 10:59 - 2017-10-06 14:32 - 015024912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 013863000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 013251240 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 011777952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 010880672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 004283120 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 003807864 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 003796960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 003346368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 001988216 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438792.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 001606776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438792.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 001135280 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 001098360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 001030264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000981112 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000932472 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000885496 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000615360 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000527104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000505976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000492048 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000444328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000407248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000171896 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000154392 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000149736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000132256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2017-10-22 10:59 - 2017-10-06 14:32 - 000000669 _____ C:\Windows\system32\nv-vk64.json
2017-10-22 10:49 - 2017-10-11 02:05 - 000050624 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2017-10-20 16:57 - 2017-10-20 16:57 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3385398048_spectate.bat
2017-10-20 15:01 - 2017-10-20 15:01 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3385280283_spectate.bat
2017-10-20 14:55 - 2017-10-20 14:55 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3385267253_spectate.bat
2017-10-20 14:42 - 2017-10-20 14:42 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3385262154_spectate.bat
2017-10-19 18:31 - 2017-10-19 18:31 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3384661878_spectate.bat
2017-10-19 12:22 - 2017-10-19 12:22 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3383991376_spectate.bat
2017-10-18 17:44 - 2017-10-18 17:44 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3383422797_spectate.bat
2017-10-18 17:37 - 2017-10-18 17:37 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3383389042_spectate.bat
2017-10-15 19:19 - 2017-10-15 19:19 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3380511519_spectate.bat
2017-10-15 18:34 - 2017-10-15 18:34 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3380229792_spectate.bat
2017-10-15 18:13 - 2017-10-15 18:13 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3380212150_spectate.bat
2017-10-15 17:19 - 2017-10-15 17:19 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3380096714_spectate.bat
2017-10-15 17:00 - 2017-10-15 17:00 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3380070693_spectate.bat
2017-10-15 15:47 - 2017-10-15 15:47 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3379977612_spectate.bat
2017-10-15 15:44 - 2017-10-15 15:44 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3379956527_spectate.bat
2017-10-15 11:36 - 2017-10-15 11:36 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3379703439_spectate.bat
2017-10-14 17:54 - 2017-10-14 17:54 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3378996316_spectate.bat
2017-10-14 17:09 - 2017-10-14 17:09 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3378959021_spectate.bat
2017-10-14 13:21 - 2017-10-14 13:21 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3378298574_spectate.bat
2017-10-13 14:10 - 2017-10-13 14:10 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3377021745_spectate.bat
2017-10-13 13:47 - 2017-10-13 13:47 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3376955211_spectate.bat
2017-10-13 13:21 - 2017-10-13 13:21 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3376923555_spectate.bat

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-11-12 23:36 - 2011-05-25 18:11 - 000000000 ____D C:\Users\alex\AppData\Roaming\TS3Client
2017-11-12 23:34 - 2012-08-30 21:19 - 000000000 ____D C:\Users\alex\AppData\Roaming\Skype
2017-11-12 22:39 - 2009-07-14 05:45 - 000025376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-11-12 22:39 - 2009-07-14 05:45 - 000025376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-11-12 22:33 - 2016-11-18 13:01 - 000000000 ____D C:\Users\alex\AppData\LocalLow\Mozilla
2017-11-12 22:32 - 2017-07-29 10:19 - 000000000 ____D C:\ProgramData\NVIDIA
2017-11-12 22:32 - 2015-10-27 21:13 - 000000000 ____D C:\Program Files (x86)\Steam
2017-11-12 22:31 - 2011-10-31 11:39 - 000000000 ____D C:\Users\alex\AppData\Local\TSVNCache
2017-11-12 22:31 - 2011-03-19 17:43 - 000059064 _____ C:\Users\alex\AppData\Local\GDIPFONTCACHEV1.DAT
2017-11-12 22:30 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-11-12 22:30 - 2009-07-14 05:45 - 000267872 _____ C:\Windows\system32\FNTCACHE.DAT
2017-11-12 22:29 - 2017-09-19 13:49 - 000003316 _____ C:\Windows\System32\Tasks\Avira_Antivirus_Systray
2017-11-12 22:10 - 2013-07-04 18:22 - 000000000 ____D C:\Program Files\SolidWorks
2017-11-12 22:10 - 2011-02-17 16:25 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2017-11-12 22:09 - 2013-07-04 18:56 - 000000000 ____D C:\ProgramData\SolidWorks
2017-11-12 22:09 - 2013-07-04 18:22 - 000000000 ____D C:\Program Files\Common Files\SolidWorks Shared
2017-11-12 22:08 - 2013-07-04 18:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolidWorks 2011
2017-11-12 21:56 - 2012-04-17 06:29 - 000000000 ____D C:\Users\alex\AppData\Local\Samsung
2017-11-12 21:56 - 2012-04-17 06:27 - 000000000 ____D C:\ProgramData\Samsung
2017-11-12 21:56 - 2011-03-16 09:29 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-11-12 21:51 - 2016-06-01 19:49 - 000000000 ____D C:\Users\alex\Desktop\E-Technik
2017-11-12 21:51 - 2015-11-09 11:37 - 000000000 ____D C:\Program Files (x86)\SPEEDLINK
2017-11-12 21:44 - 2013-05-20 22:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo II
2017-11-12 21:42 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2017-11-12 21:36 - 2011-03-20 00:34 - 029989411 ____H C:\Users\alex\AppData\Local\IconCache.db.backup
2017-11-12 21:35 - 2011-03-19 20:40 - 000000000 ____D C:\ProgramData\ICQ
2017-11-12 21:32 - 2012-12-15 18:50 - 000000000 ____D C:\Users\alex\AppData\Local\Ubisoft Game Launcher
2017-11-12 21:32 - 2012-12-15 18:29 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2017-11-11 09:14 - 2012-08-30 21:19 - 000000000 ____D C:\ProgramData\Skype
2017-11-08 10:17 - 2010-11-21 07:50 - 003298828 _____ C:\Windows\system32\perfh007.dat
2017-11-08 10:17 - 2010-11-21 07:50 - 000958734 _____ C:\Windows\system32\perfc007.dat
2017-11-08 10:17 - 2009-07-14 06:13 - 000006818 _____ C:\Windows\system32\PerfStringBackup.INI
2017-11-03 13:55 - 2017-09-19 13:49 - 000003122 _____ C:\Windows\System32\Tasks\Avira SystrayStartTrigger
2017-11-03 13:55 - 2014-05-23 13:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-11-03 13:55 - 2013-11-05 10:23 - 000000000 ____D C:\ProgramData\Package Cache
2017-11-02 11:49 - 2017-07-29 10:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-11-02 11:12 - 2011-03-19 17:41 - 000000000 ____D C:\Users\alex
2017-11-02 10:58 - 2011-06-02 19:56 - 000000000 ____D C:\Program Files (x86)\Notepad++
2017-11-02 10:52 - 2011-06-02 19:56 - 000000000 ____D C:\Users\alex\AppData\Roaming\Notepad++
2017-10-28 13:37 - 2009-07-14 06:08 - 000032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-10-28 13:36 - 2012-05-02 20:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-10-27 10:55 - 2016-11-17 20:14 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-10-26 16:21 - 2016-04-14 16:21 - 000000000 ____D C:\Program Files (x86)\Overwolf
2017-10-26 09:39 - 2013-03-17 11:45 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-10-26 09:39 - 2013-03-17 11:45 - 000004366 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-10-26 09:39 - 2013-03-17 11:45 - 000000000 ____D C:\Windows\system32\Macromed
2017-10-26 09:39 - 2011-09-29 10:01 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-10-26 09:39 - 2011-03-19 20:59 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-10-22 11:05 - 2017-07-29 10:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-10-22 11:04 - 2017-07-29 10:19 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-10-22 11:04 - 2013-05-15 20:46 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-10-22 11:01 - 2017-07-29 10:13 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-10-22 10:50 - 2017-08-03 21:55 - 000004146 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:50 - 2017-08-03 21:55 - 000003814 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:50 - 2017-07-29 10:22 - 000001420 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-10-22 10:50 - 2017-07-29 10:21 - 000003798 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:49 - 2017-07-29 10:21 - 000003738 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:49 - 2017-07-29 10:21 - 000003738 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:49 - 2017-07-29 10:21 - 000003730 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:49 - 2017-07-29 10:21 - 000003554 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:49 - 2017-07-29 10:21 - 000003494 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-13 12:50 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2011-04-03 03:48 - 2011-04-03 03:48 - 000000092 _____ () C:\Users\alex\AppData\Local\fusioncache.dat
2017-06-26 17:52 - 2017-07-29 13:05 - 000007601 _____ () C:\Users\alex\AppData\Local\Resmon.ResmonCfg
2013-11-05 10:49 - 2013-11-05 10:49 - 000000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
2014-05-23 13:02 - 2016-06-21 18:32 - 000000000 ____D () C:\Users\alex\AppData\Local\Temp\avgnt.exe
2017-10-22 10:59 - 2016-11-17 01:46 - 000351680 _____ (NVIDIA Corporation) C:\Users\alex\AppData\Local\Temp\nvStInst.exe
2017-07-29 10:06 - 2017-07-29 10:11 - 005921792 _____ (GIGABYTE Technology Co.,Inc.                                ) C:\Users\alex\AppData\Local\Temp\setup.exe
2017-04-01 12:38 - 2017-04-01 12:38 - 014773216 _____ (Microsoft Corporation) C:\Users\alex\AppData\Local\Temp\vcredist_x64.exe

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


ACHTUNG: ==> Auf den BCD konnte nicht zugegriffen werden. 

LastRegBack: 2017-11-04 15:48

==================== Ende von FRST.txt ============================

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-11-2017 03
durchgeführt von alex (12-11-2017 23:43:31)
Gestartet von C:\Users\alex\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2011-03-19 16:41:09)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1855058041-1027751042-450180876-500 - Administrator - Disabled)
alex (S-1-5-21-1855058041-1027751042-450180876-1001 - Administrator - Enabled) => C:\Users\alex
ASPNET (S-1-5-21-1855058041-1027751042-450180876-1003 - Limited - Enabled)
Gast (S-1-5-21-1855058041-1027751042-450180876-501 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated)
Adobe Flash Player 27 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 27.0.0.183 - Adobe Systems Incorporated)
Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.183 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{5AE0838D-19B1-5D12-5FE8-E6503B2C8716}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 387.92 - NVIDIA Corporation) Hidden
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
Avira (HKLM-x32\...\{bd94e862-c44b-4f68-98ca-b35ddf9dbbfc}) (Version: 1.2.98.37213 - Avira Operations GmbH & Co. KG)
Avira (HKLM-x32\...\{D03EC4B7-E520-4A6F-974C-4F48533838EC}) (Version: 1.2.98.37213 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.32.12 - Avira Operations GmbH & Co. KG)
AVRStudio4 (HKLM-x32\...\{21742BF7-C002-40A7-9FF3-49D9A09DC3A8}) (Version: 4.16.628 - Atmel) Hidden
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Crysis(R) (HKLM-x32\...\{000E79B7-E725-4F01-870A-C12942B7F8E4}) (Version: 1.21.0000 - Electronic Arts)
Crysis® 2 (HKLM-x32\...\{6033673D-2530-4587-8AD0-EB059FC263F9}) (Version: 1.0.0.0 - Electronic Arts)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.40.2.0131 - DT Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version: 1.0.8.16603 - Blizzard Entertainment)
Far Cry 3 (HKLM-x32\...\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.04 - Ubisoft)
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Galería fotográfica de Windows Live (HKLM-x32\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8301}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Network Connections 18.7.28.0 (HKLM\...\PROSetDX) (Version: 18.7.28.0 - Intel)
Java 8 Update 144 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Java 8 Update 151 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Java SE Development Kit 8 Update 151 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180151}) (Version: 8.0.1510.12 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
League of Legends (HKLM-x32\...\{C56877FD-6BEB-4717-81B3-1254FA1FD7FC}) (Version: 4.2.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
Live 8.0.9 (HKLM-x32\...\Live 8.0.9) (Version:  - )
Malwarebytes Version 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (HKLM-x32\...\{0481A2EA-DA1D-4D10-A7C3-F8237948F6B5}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Messenger Companion (HKLM-x32\...\{50816F92-1652-4A7C-B9BC-48F682742C4B}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Messenger Companion (HKLM-x32\...\{8142D25E-028A-4563-86ED-5755783C8029}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Messenger Companion (HKLM-x32\...\{939C80FA-96C9-44A6-B318-8E7D8BD8481B}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.7 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{FD052FB9-FE90-4438-B355-15EDC89D8FB1}) (Version: 2.0.673.0 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Applications - ENU (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Applications - ENU) (Version:  - Microsoft Corporation)
Mobile Broadband HL Service (HKLM-x32\...\Mobile Broadband HL Service) (Version: 22.001.26.01.03 - Huawei Technologies Co.,Ltd)
Mozilla Firefox 56.0.2 (x64 de) (HKLM\...\Mozilla Firefox 56.0.2 (x64 de)) (Version: 56.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 56.0.2.6506 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Native Instruments Audio 4 DJ (HKLM-x32\...\Native Instruments Audio 4 DJ) (Version:  - Native Instruments)
Native Instruments Audio 4 DJ Driver (HKLM-x32\...\Native Instruments Audio 4 DJ Driver) (Version:  - Native Instruments)
Native.Instruments Battery v3.0.1.005 VSTi DXi RTAS (HKLM-x32\...\Native.Instruments Battery v3.0.1.005 VSTi DXi RTAS) (Version:  - )
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.1 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 387.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 387.92 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.10.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.10.0.95 - NVIDIA Corporation)
NVIDIA Grafiktreiber 387.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 387.92 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OpenMG Limited Patch 4.7-07-14-05-01 (HKLM-x32\...\OpenMG HotFix4.7-07-13-22-01) (Version:  - )
OpenMG Secure Module 4.7.00 (HKLM-x32\...\{CCD663AE-610D-4BDF-AAB0-E914B044527D}) (Version: 4.7.00.12140 - Sony Corporation) Hidden
OpenMG Secure Module 4.7.00 (HKLM-x32\...\InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}) (Version: 4.7.00.12140 - Sony Corporation)
Origin 2015 (HKLM-x32\...\{919C759D-DA8F-4B02-A9F1-75CE8B31CBDB}) (Version: 9.20.00 - OriginLab Corporation)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.107.256.0 - Overwolf Ltd.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7071 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.39.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.39.0 - Renesas Electronics Corporation)
Rockstar Games Social Club (HKLM-x32\...\{08B3869E-D282-424C-9AFC-870E04A4BA14}) (Version: 1.00.0000 - Rockstar Games)
SABnzbd 0.7.11 (HKLM-x32\...\SABnzbd) (Version: 0.7.11 - The SABnzbd Team)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.4.0 - SAMSUNG Electronics Co., Ltd.)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.104 - Skype Technologies S.A.)
SolidWorks Explorer 2011 SP04 x64 Edition (HKLM\...\{5F590D74-AA75-410F-A778-3CDFCE12DCD4}) (Version: 19.40.66 - SolidWorks Corporation)
SonicStage 4.3 (HKLM-x32\...\{A0EB195B-5876-48E6-879D-33D4B2102610}) (Version: 4.3 - Sony Corporation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.11.1 - TeamSpeak Systems GmbH)
Technitium MAC Address Changer v5.0 Release 3 (HKLM-x32\...\TMACv5.0R3) (Version: 5.0 Release 3 - Technitium)
TortoiseSVN 1.7.12.24070 (64 bit) (HKLM\...\{B2DCF07D-0F89-4818-8B41-50DABC1A310D}) (Version: 1.7.24070 - TortoiseSVN)
VC_CRT_x64 (HKLM\...\{54F2237F-018C-483B-8884-9FC0D88840C3}) (Version: 1.02.0000 - Intel Corporation) Hidden
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.63  - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11122017223154135\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
WinAVR 20081205 (remove only) (HKLM-x32\...\WinAVR) (Version: 20081205 - )
WinAVR 20081205 (remove only) (HKLM-x32\...\WinAVR-20081205) (Version: 20081205 - )
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinRAR 4.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

ShellIconOverlayIdentifiers: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2016-10-16] ()
ContextMenuHandlers1: [Notepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2016-10-16] ()
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\AntiVir Desktop\shlext64.dll [2017-10-13] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2013-03-29] (hxxp://tortoisesvn.net)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-03-02] ()
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-03-02] ()
ContextMenuHandlers2: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2013-03-29] (hxxp://tortoisesvn.net)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers4: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2013-03-29] (hxxp://tortoisesvn.net)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-03-02] ()
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-03-02] ()
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} =>  -> Keine Datei
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-10-06] (NVIDIA Corporation)
ContextMenuHandlers5: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2013-03-29] (hxxp://tortoisesvn.net)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\AntiVir Desktop\shlext64.dll [2017-10-13] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2013-03-29] (hxxp://tortoisesvn.net)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-03-02] ()
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-03-02] ()

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {08FF69FB-C25A-4174-B188-CFCC2452F972} - System32\Tasks\{3554E2D5-6C68-4EFB-9626-A20ABFBC5066} => C:\Users\alex\Desktop\crysis_patch_1_2.exe
Task: {0BCB5F3A-87F7-42F8-B536-9AF4B4009955} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-10-23] (Overwolf LTD)
Task: {20CB7407-3A44-4F15-B9FE-705307AEB848} - System32\Tasks\{911FEA95-F488-4667-94D0-8F0A1B68AA63} => C:\Windows\system32\pcalua.exe -a "C:\Users\alex\Desktop\Native.Instruments.Massive.v1.1.4.DXi.VSTi.RTAS-DYNAMiCS\Massive 1.1.4 Setup.exe" -d C:\Users\alex\Desktop\Native.Instruments.Massive.v1.1.4.DXi.VSTi.RTAS-DYNAMiCS
Task: {2243E1A0-FFA1-410A-B813-D67A218E940D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-10-26] (Adobe Systems Incorporated)
Task: {2A5A3DBD-C574-4CEC-BAED-489C3013DDA6} - System32\Tasks\Avira SystrayStartTrigger => Avira.SystrayStartTrigger.exe
Task: {3546DCA6-C333-48FB-A848-72F15A10A742} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation)
Task: {4AC4210C-CB75-4717-B816-A89059D57C29} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-10-11] (NVIDIA Corporation)
Task: {6D0E3A0F-5AAA-4915-8ACF-B3282FF05200} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-10-11] (NVIDIA Corporation)
Task: {7CB05093-52ED-45D7-BA59-49D551AABC3E} - System32\Tasks\{25EB3F20-3626-49B7-976E-6C27F48E9594} => C:\Windows\system32\pcalua.exe -a C:\Windows\DIIUnin.exe -c C:\Windows\DIIUnin.dat
Task: {89A5F660-FA41-4F4D-8EE9-83EDED5BF422} - System32\Tasks\{8932E624-6409-4E8B-BBBA-B4CE5F5A2E16} => C:\Windows\system32\pcalua.exe -a C:\Users\alex\Desktop\Metro\Setup.exe -d C:\Users\alex\Desktop\Metro
Task: {9F99D414-2D72-40C0-942A-1C58A82FC90E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation)
Task: {A55477C8-4F6B-4445-B5B1-2D532368859B} - System32\Tasks\{65774621-783D-45A6-9B2F-D66B555D3B51} => C:\Windows\system32\pcalua.exe -a C:\Users\alex\Desktop\solidworks\prereqs\dotNetFx\dotnetfx35.exe -d C:\Users\alex\Desktop\solidworks\prereqs\dotNetFx
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => aitagent.exe
Task: {BD001DF8-21B6-49D1-A374-77F2E6CC0C2A} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation)
Task: {C4E3016B-1FBE-45BC-AA8F-63EA380EA479} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2017-10-13] (Avira Operations GmbH & Co. KG)
Task: {CE15D4F3-4A57-4208-8A3A-373898234D41} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-10-11] (NVIDIA Corporation)
Task: {D2D53A90-8939-4C0F-9014-AED8BE8109C4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation)
Task: {D628B670-C270-4A16-BD15-585429D29F8B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-11] (NVIDIA Corporation)
Task: {E3163C33-301D-4730-A266-5518C5ED3967} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\Windows\SysWOW64\BthUdTask.exe [2009-07-14] (Microsoft Corporation)
Task: {F3D98C78-8078-4409-A3EE-E889662FBA87} - System32\Tasks\{D87B3FD5-65E9-4529-B4F4-A529300BEB7F} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/7.16.0.102/de/abandoninstall?page=tsMain
Task: {FDFE368D-BFA1-492D-8AC8-21DEC68698B6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)


==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)


==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2013-03-29 10:01 - 2013-03-29 10:01 - 000088968 _____ () C:\Program Files\TortoiseSVN\bin\libsasl.dll
2015-05-27 12:14 - 2014-08-20 08:27 - 000242256 _____ () C:\ProgramData\MobileBrServ\mbbservice.exe
2017-07-29 10:21 - 2017-10-11 02:05 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2012-12-15 18:48 - 2012-12-15 18:48 - 000076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2017-07-29 10:20 - 2017-10-06 12:44 - 000133752 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-11-12 22:12 - 2017-11-01 08:55 - 002299344 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2017-11-12 22:12 - 2017-11-01 08:54 - 002358736 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 003499648 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClient.exe
2017-11-12 22:49 - 2017-11-12 22:49 - 001763456 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClientUx.exe
2017-11-12 22:49 - 2017-11-12 22:49 - 000892032 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClientUxRender.exe
2016-04-01 11:13 - 2017-04-01 12:40 - 000176408 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll
2016-04-01 11:13 - 2017-04-01 12:40 - 000107288 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2016-04-01 11:13 - 2017-04-01 12:40 - 000125208 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2017-04-01 12:41 - 2017-04-01 12:41 - 000139264 _____ () C:\Users\alex\AppData\Roaming\TS3Client\plugins\gamepad_joystick_win64.dll
2017-04-01 12:41 - 2017-04-01 12:41 - 000337176 _____ () C:\Users\alex\AppData\Roaming\TS3Client\plugins\clientquery_plugin_win64.dll
2017-07-29 10:21 - 2017-10-11 02:05 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-09-26 21:22 - 2017-09-26 21:22 - 001984000 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll
2013-03-29 08:17 - 2013-03-29 08:17 - 000070536 _____ () C:\Program Files\TortoiseSVN\bin\libsasl32.dll
2017-07-29 10:21 - 2017-10-11 02:05 - 070805952 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2017-11-12 22:50 - 2017-11-12 22:50 - 000108672 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\zlib.dll
2017-11-12 22:50 - 2017-11-12 22:50 - 000128640 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\yaml.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 001400960 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-patcher\rcp-be-patcher.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000661120 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-rso-auth\rcp-be-rso-auth.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 001042048 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-login\rcp-be-lol-login.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000522368 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-platform-config\rcp-be-lol-platform-config.dll
2017-11-12 22:48 - 2017-10-25 14:43 - 000568960 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-riot-messaging-service\rcp-be-riot-messaging-service.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000696960 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-summoner\rcp-be-lol-summoner.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000571008 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-ranked-stats\rcp-be-lol-ranked-stats.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000495744 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-maps\rcp-be-lol-maps.dll
2017-11-12 22:48 - 2017-10-25 14:43 - 000647808 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-game-queues\rcp-be-lol-game-queues.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000539264 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-player-preferences\rcp-be-lol-player-preferences.dll
2017-11-12 22:48 - 2017-09-27 10:17 - 000619648 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-game-settings\rcp-be-lol-game-settings.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000582272 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-settings\rcp-be-lol-settings.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000803456 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-gameflow\rcp-be-lol-gameflow.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000479360 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-pre-end-of-game\rcp-be-lol-pre-end-of-game.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000572032 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-sanitizer\rcp-be-sanitizer.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000444544 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-riot-messaging-service\rcp-be-lol-riot-messaging-service.dll
2017-11-12 22:48 - 2017-09-18 14:38 - 000537216 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-acs\rcp-be-lol-acs.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000544896 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-player-notifications\rcp-be-player-notifications.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000496768 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-loyalty\rcp-be-lol-loyalty.dll
2017-11-12 22:48 - 2017-09-18 14:38 - 000899712 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-collections\rcp-be-lol-collections.dll
2017-11-12 22:48 - 2017-10-28 13:39 - 000691840 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-champions\rcp-be-lol-champions.dll
2017-11-12 22:48 - 2017-09-18 14:48 - 000496768 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-kr-shutdown-law\rcp-be-lol-kr-shutdown-law.dll
2017-11-12 22:48 - 2017-10-12 10:26 - 000720512 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-store\rcp-be-lol-store.dll
2017-11-12 22:48 - 2017-10-17 13:50 - 000537728 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-inventory\rcp-be-lol-inventory.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000601216 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-loadouts\rcp-be-lol-loadouts.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000905856 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-lobby-team-builder\rcp-be-lol-lobby-team-builder.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000613504 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-queue-eligibility\rcp-be-lol-queue-eligibility.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000693888 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-matchmaking\rcp-be-lol-matchmaking.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000518272 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-spectator\rcp-be-lol-spectator.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 001626240 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-chat\rcp-be-lol-chat.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 001499264 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-lobby\rcp-be-lol-lobby.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000798848 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-champ-select-legacy\rcp-be-lol-champ-select-legacy.dll
2017-11-12 22:48 - 2017-10-25 14:43 - 000605824 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-champ-select\rcp-be-lol-champ-select.dll
2017-11-12 22:48 - 2017-09-18 14:48 - 000493696 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-heartbeat\rcp-be-lol-heartbeat.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000518272 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-shutdown\rcp-be-lol-shutdown.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000918656 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-loot\rcp-be-lol-loot.dll
2017-11-12 22:48 - 2017-09-18 14:48 - 000472704 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-kickout\rcp-be-lol-kickout.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000486016 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-license-agreement\rcp-be-lol-license-agreement.dll
2017-11-12 22:48 - 2017-09-18 14:48 - 000479360 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-kr-playtime-reminder\rcp-be-lol-kr-playtime-reminder.dll
2017-11-12 22:48 - 2017-09-18 14:38 - 000492160 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-game-client-chat\rcp-be-lol-game-client-chat.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000536192 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-team-boosts\rcp-be-lol-team-boosts.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000724608 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-end-of-game\rcp-be-lol-end-of-game.dll
2017-11-12 22:48 - 2017-09-18 14:38 - 000522368 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-active-boosts\rcp-be-lol-active-boosts.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000435328 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-parties\rcp-be-lol-parties.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000853632 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-leagues\rcp-be-lol-leagues.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000594560 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-pft\rcp-be-lol-pft.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000615040 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-player-behavior\rcp-be-lol-player-behavior.dll
2017-11-12 22:48 - 2017-09-27 10:17 - 000584320 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-suggested-players\rcp-be-lol-suggested-players.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000530560 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-service-status\rcp-be-lol-service-status.dll
2017-11-12 22:48 - 2017-09-18 14:48 - 000558720 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-leaver-buster\rcp-be-lol-leaver-buster.dll
2017-11-12 22:48 - 2017-10-25 14:43 - 000642176 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-match-history\rcp-be-lol-match-history.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000715392 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-recofriender\rcp-be-recofriender.dll
2017-11-12 22:48 - 2017-09-18 14:38 - 000785536 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-clubs\rcp-be-lol-clubs.dll
2017-11-12 22:48 - 2017-09-18 14:38 - 000530560 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-clubs-public\rcp-be-lol-clubs-public.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000574080 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-esport-stream-notifications\rcp-be-lol-esport-stream-notifications.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000705664 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-replays\rcp-be-lol-replays.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000504960 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-player-level-up\rcp-be-lol-player-level-up.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000487040 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-tencent-qt\rcp-be-lol-tencent-qt.dll
2017-11-12 22:48 - 2017-10-12 10:26 - 000545920 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-beta-opt-in\rcp-be-lol-beta-opt-in.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000546432 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-player-messaging\rcp-be-lol-player-messaging.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000586368 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-personalized-offers\rcp-be-lol-personalized-offers.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000469632 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-user-experience\rcp-be-lol-user-experience.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000542848 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-simple-dialog-messages\rcp-be-lol-simple-dialog-messages.dll
2017-11-12 22:48 - 2017-09-18 14:48 - 000610944 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-highlights\rcp-be-lol-highlights.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000669824 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-honor-v2\rcp-be-lol-honor-v2.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000489088 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-network-testing\rcp-be-network-testing.dll
2017-11-12 22:48 - 2017-09-18 14:38 - 000539264 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-entitlements\rcp-be-entitlements.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000679552 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-missions\rcp-be-lol-missions.dll
2017-11-12 22:48 - 2017-09-18 14:48 - 000584832 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-item-sets\rcp-be-lol-item-sets.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000518272 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-email-verification\rcp-be-lol-email-verification.dll
2017-11-12 22:48 - 2017-09-18 14:48 - 000466560 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-las-toxicity\rcp-be-lol-las-toxicity.dll
2017-11-12 22:48 - 2017-10-12 10:26 - 000512128 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-geoinfo\rcp-be-lol-geoinfo.dll
2017-11-12 22:48 - 2017-09-27 10:17 - 001090176 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-clash\rcp-be-lol-clash.dll
2017-11-12 22:48 - 2017-09-18 14:38 - 000486528 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-banners\rcp-be-lol-banners.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000537216 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-featured-modes\rcp-be-lol-featured-modes.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000733824 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-perks\rcp-be-lol-perks.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 055775872 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\libcef.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 001801344 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\libglesv2.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000022144 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1855058041-1027751042-450180876-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11122017223154135\Control Panel\Desktop\\Wallpaper -> C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{A4B54830-371B-4053-AF49-3B415F13C8B8}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{26882277-030E-4116-8C83-4CE692FFBEC9}] => (Allow) LPort=2869
FirewallRules: [{9E6CD718-0BB2-495D-A4DA-A8632785BEA1}] => (Allow) LPort=1900
FirewallRules: [{D6F812A5-143D-4B84-950F-93AD80987B61}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{8BC9CA7B-31B1-49C0-AE89-21AAEB034040}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [TCP Query User{F1D71A1D-FF1B-48C2-9F5F-82C5B82B6DB2}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [UDP Query User{435B6A2B-D2D1-494D-83B7-D164A3712745}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [TCP Query User{1D9E36DB-5FCD-4BF1-8C30-C33AC3EF841E}C:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe] => (Block) C:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe
FirewallRules: [UDP Query User{514D409E-9084-468A-95FB-CF3D53A92328}C:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe] => (Block) C:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe
FirewallRules: [{0C77F6CE-698F-4549-8FDD-43231C0D1738}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe
FirewallRules: [{AA2F5F60-9B94-4D28-98DC-2BC885B5E7EE}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe
FirewallRules: [{9FD1E75F-707A-44CB-94C3-D20FD3F386C2}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe
FirewallRules: [{DBB10E88-B536-413B-A6AD-6931956DBA20}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe
FirewallRules: [{584E80A1-5409-4C7B-9309-A43ADEC99BAF}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.exe
FirewallRules: [{4348A32E-65BF-4A09-B29D-8E528D92F218}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.exe
FirewallRules: [{D38E72C7-A6C5-4FB5-8530-6118FEA02950}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.patch.exe
FirewallRules: [{27E69760-5EA3-4C7C-9A44-44060E7259E2}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.patch.exe
FirewallRules: [TCP Query User{1CE91E3F-6EDB-4596-8218-0F8B605404FA}C:\program files (x86)\world of warcraft\backgrounddownloader.exe] => (Allow) C:\program files (x86)\world of warcraft\backgrounddownloader.exe
FirewallRules: [UDP Query User{84E81722-A702-4D54-9F04-0CE0E80D2C7B}C:\program files (x86)\world of warcraft\backgrounddownloader.exe] => (Allow) C:\program files (x86)\world of warcraft\backgrounddownloader.exe
FirewallRules: [{E45884CC-1807-430B-9638-1D48FE57D839}] => (Allow) LPort=6881
FirewallRules: [TCP Query User{61AFC719-48D2-4922-B94C-BDB7B207FB64}C:\users\alex\downloads\downloader_diablo2_engb.exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb.exe
FirewallRules: [UDP Query User{BEFFF73E-445C-4421-9B4F-2891396A771C}C:\users\alex\downloads\downloader_diablo2_engb.exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb.exe
FirewallRules: [TCP Query User{F43A638F-6B92-4654-8066-EAEB786A0D9B}C:\users\alex\downloads\downloader_diablo2_engb(1).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(1).exe
FirewallRules: [UDP Query User{F25707B0-406E-4C47-8754-5E37D7862295}C:\users\alex\downloads\downloader_diablo2_engb(1).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(1).exe
FirewallRules: [TCP Query User{33AA036D-4E65-4418-9957-87A5BCDA56F0}C:\users\alex\downloads\downloader_diablo2_engb(2).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(2).exe
FirewallRules: [UDP Query User{67D6C0BE-06DA-4C38-83B2-42385EB580D9}C:\users\alex\downloads\downloader_diablo2_engb(2).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(2).exe
FirewallRules: [TCP Query User{DE56A379-202F-4FAA-BD8C-93DA92618443}C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb.exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb.exe
FirewallRules: [UDP Query User{0F763277-8526-4137-A573-524E7D853041}C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb.exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb.exe
FirewallRules: [TCP Query User{491FC145-E2AB-4B0C-8FD0-B52261ADE6B4}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe
FirewallRules: [UDP Query User{0283EC0A-B608-4493-87A1-54ECE3AE0F6A}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe
FirewallRules: [TCP Query User{5483A1B3-148F-409D-992E-D2C22AB9F6B9}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe
FirewallRules: [UDP Query User{934C2A95-71BB-4B91-90AE-CF1C25757795}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe
FirewallRules: [{24FB8791-28C8-4083-875B-822721574DB9}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{41CA17D0-F48B-40D0-9ACC-D29C7E18BA7E}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{71258FD9-8FCE-40C6-949D-8C3CD7A4AE3F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\d3tone4000\counter-strike\hl.exe
FirewallRules: [{66C8F1FD-5509-4D82-90DD-D36112FBF020}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\d3tone4000\counter-strike\hl.exe
FirewallRules: [{BCC53B5C-2F27-40E3-865C-428F967727FF}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{68F75814-5F06-4E7D-8C22-82D617243C82}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [{FFB9E54F-B5F3-4B72-B9A6-0ABEFB7C0C0A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [{0C56FB61-E88E-4A84-8F9C-0D5EF048457B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{6DD18EFD-02F3-4DE0-83EC-41F4A9021E0A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{229F7CDC-2861-41FC-94E0-BB44344EFB3D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{8B584532-01F0-4B44-A71E-271F1BDDE01C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{BFB070F7-5775-43CF-9478-8BD7132048CC}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{F74D4BD7-6820-40F5-BADA-119A596CFD72}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{569FE14B-C7B0-4998-B2AE-3537D3C12E83}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3.exe
FirewallRules: [{9FE02309-CEE1-4D2E-A9EB-F30CCF87A083}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3.exe
FirewallRules: [{5AAC8915-B6EF-4BA3-AFAF-97856634EE4B}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe
FirewallRules: [{D5C3FAD1-1F9A-4389-BD1B-EDB1F55FA8DE}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe
FirewallRules: [{0D6975BB-047C-448E-AB66-78137D016804}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Updater.exe
FirewallRules: [{C4BF0D94-64FE-4B67-8628-5DC6C1C1D700}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Updater.exe
FirewallRules: [{9A5C2EDF-5267-47DE-BB81-56A497C5B547}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exe
FirewallRules: [{027E864C-B707-4299-9F58-2038504F0F60}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exe
FirewallRules: [TCP Query User{5AE9F7CC-DD99-41C4-B126-6C9C41DA6489}C:\users\alex\downloads\downloader_diablo2_engb(3).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(3).exe
FirewallRules: [UDP Query User{7756335D-65EC-4E92-9A8A-263A665AA47A}C:\users\alex\downloads\downloader_diablo2_engb(3).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(3).exe
FirewallRules: [TCP Query User{5AA6855B-49A0-4D99-98A9-D528B275F4CD}C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(1).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(1).exe
FirewallRules: [UDP Query User{A91D7FFD-8EB0-49BB-AF57-476B55AF3BDF}C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(1).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(1).exe
FirewallRules: [TCP Query User{53092C89-97F7-4A59-8DF8-69957444C60D}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [UDP Query User{9C66A201-2BE7-4ACE-9A65-C35BF5758006}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [TCP Query User{67A2BE1E-884A-4235-9190-AE25F39584E5}C:\users\alex\downloads\downloader_diablo2_engb(4).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(4).exe
FirewallRules: [UDP Query User{EA18DBB2-671A-475C-BC03-845899E1341C}C:\users\alex\downloads\downloader_diablo2_engb(4).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(4).exe
FirewallRules: [TCP Query User{714FAFEE-7BE9-48AE-AB31-DED70C22F151}C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(2).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(2).exe
FirewallRules: [UDP Query User{57A312C2-7FEB-4D02-BD46-DD773027A122}C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(2).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(2).exe
FirewallRules: [{E1FBFD42-FE6E-4E40-807C-033834218452}] => (Allow) C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
FirewallRules: [{EB813727-0CB4-4271-9FC9-2D5E1C3BA442}] => (Allow) C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
FirewallRules: [{EB4BE0BF-3C30-4D0B-A7F3-E75354FA94FE}] => (Allow) C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [{509693BF-E720-40C2-A5C9-4422CCC85EFA}] => (Allow) C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [{374B62E8-3837-4436-84F7-2FB2898F5EF0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe
FirewallRules: [{C344DECC-27E3-4322-AF1C-7BA9C85A5BDD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe
FirewallRules: [{F29F1665-F165-45F9-B629-A90ADCE05BB9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\call of duty black ops\BlackOps.exe
FirewallRules: [{759C6F73-6353-44D1-ACED-6F2BD8C09BC2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\call of duty black ops\BlackOps.exe
FirewallRules: [{F49D07A6-97B2-43CB-854B-4E32901FF7A6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\call of duty black ops\BlackOpsMP.exe
FirewallRules: [{01944277-3721-4CAA-B004-31B47C14898A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\call of duty black ops\BlackOpsMP.exe
FirewallRules: [{348222CA-E5B8-4566-B6B6-0255AB3935D7}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Half-Life\hl.exe
FirewallRules: [{07346A0D-49CA-4967-A9A5-E59D4DC25B39}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Half-Life\hl.exe
FirewallRules: [TCP Query User{D49FB052-9E61-4250-8A21-0C9D4CF5C874}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [UDP Query User{FF9B8684-83D3-4E6E-BC27-2F5BB78A903D}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [{26D467BB-F8AB-46C5-963D-45010D1735BF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{0E18191C-2BE7-4CF3-B2CD-0F2523180205}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{ACEFA733-B358-4D83-9A94-35A9073B5690}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{A8F003BB-5370-43FA-A5C3-960628EBD129}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{7D0C57B9-AFE6-4043-A4F9-66359B9254DA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5CB9A298-12BA-4E19-98E5-5F75DCE3FA60}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{FA015D08-F942-4E15-92BE-B06C26617224}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{31A2847A-1F1C-418E-B8AF-EC27A4B56684}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{4F45BD29-ADD9-4B05-8EF6-ADD1934930E9}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{4BBF91B0-C83D-43BC-9318-5AD438C4F53F}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{8F8AFC3A-8CA3-4198-9211-5F2AE77F58CB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2DC8AE39-C009-4025-B36C-9F5BAB3247CF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5824B336-45E6-499B-8669-D041786ABFD8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{FDC41B4E-E4C6-4178-BFCC-6FF923B35C9F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{3A6E3A92-61CA-49FC-BCB3-9797550619E9}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{8EB58337-D080-497A-B340-EF3BDA5F4E79}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{16B45BDD-F2B1-4C97-9D81-E9879D5177DA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{A5364442-1305-476A-8042-690CD6B02884}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{A72AD836-7C0F-4DA4-AB6D-9AAEDC48CE09}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{7B34E1BD-60E1-4763-84BB-C58FD70EA153}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0C73DAA4-F9C3-42B7-B6DA-CD660506BE28}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8A590B05-17C1-4A95-A2E8-DF2AA3EA9F2C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{BDEF0807-0DDC-4278-95C6-C6941B8A4FD1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{1635446F-7257-4F21-90E0-34BBAECFD4E3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0623D1C4-41A3-4802-92F0-9D04922F4664}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{79C4ECEA-80E6-48D8-84DC-13DAA8823730}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{AC86A3A7-782F-4362-9090-5C610DE79D49}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{235F0F22-8FCB-4EEF-923A-62F28A25B14A}] => (Allow) C:\Windows\SysWOW64\muzapp.exe

==================== Wiederherstellungspunkte =========================

02-11-2017 11:45:37 Installed Java SE Development Kit 8 Update 151 (64-bit)
12-11-2017 21:32:21 Removed TortoiseSVN 1.7.12.24070 (64 bit)
12-11-2017 21:41:29 Removed AVRStudio4
12-11-2017 21:53:30 Removed Samsung Kies
12-11-2017 22:02:11 Removed SolidWorks 2011 x64 Edition SP04.

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (11/12/2017 11:44:31 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/12/2017 11:43:31 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/12/2017 11:42:31 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/12/2017 11:41:31 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/12/2017 11:40:31 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/12/2017 11:39:31 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/12/2017 11:38:30 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/12/2017 11:37:30 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/12/2017 11:36:30 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/12/2017 11:35:30 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start


Systemfehler:
=============
Error: (11/12/2017 10:31:51 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Client Virtualization Handler" ist vom Dienst "Application Virtualization Client" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (11/12/2017 10:31:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Application Virtualization Client" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (11/12/2017 10:31:50 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Application Virtualization Client erreicht.

Error: (11/12/2017 10:29:10 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{3FCB7074-EC9E-4AAF-9BE3-C0E356942366}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (11/12/2017 09:35:47 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{3EB3C877-1F16-487C-9050-104DBCD66683}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (11/12/2017 09:35:29 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 70.

Error: (11/12/2017 09:35:29 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 70.

Error: (11/12/2017 09:35:15 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Presentation Foundation-Schriftartcache 3.0.0.0" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/12/2017 09:35:15 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Service Host" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/12/2017 09:35:14 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Application Virtualization Client" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 52%
Installierter physikalischer RAM: 8161.4 MB
Verfügbarer physikalischer RAM: 3855.65 MB
Summe virtueller Speicher: 16320.98 MB
Verfügbarer virtueller Speicher: 11363.54 MB

==================== Laufwerke ================================

Drive c: (Windows7) (Fixed) (Total:1765.36 GB) (Free:1457.14 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive g: (Volume) (Fixed) (Total:97.65 GB) (Free:95.67 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: D2434893)
Partition 1: (Active) - (Size=1765.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.7 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt =======================

Käfer_Wurm · 12.11.2017, 23:57

Code:

ATTFilter

23:51:39.0624 0x23ec  TDSS rootkit removing tool 3.1.0.15 Apr 18 2017 11:34:02
23:51:43.0253 0x23ec  ============================================================
23:51:43.0253 0x23ec  Current date / time: 2017/11/12 23:51:43.0253
23:51:43.0253 0x23ec  SystemInfo:
23:51:43.0253 0x23ec  
23:51:43.0253 0x23ec  OS Version: 6.1.7601 ServicePack: 1.0
23:51:43.0253 0x23ec  Product type: Workstation
23:51:43.0253 0x23ec  ComputerName: ALEX-PC
23:51:43.0253 0x23ec  UserName: alex
23:51:43.0253 0x23ec  Windows directory: C:\Windows
23:51:43.0253 0x23ec  System windows directory: C:\Windows
23:51:43.0253 0x23ec  Running under WOW64
23:51:43.0253 0x23ec  Processor architecture: Intel x64
23:51:43.0253 0x23ec  Number of processors: 8
23:51:43.0253 0x23ec  Page size: 0x1000
23:51:43.0253 0x23ec  Boot type: Normal boot
23:51:43.0253 0x23ec  CodeIntegrityOptions = 0x00000001
23:51:43.0253 0x23ec  ============================================================
23:51:45.0157 0x23ec  KLMD registered as C:\Windows\system32\drivers\08431129.sys
23:51:45.0158 0x23ec  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23915, osProperties = 0x1
23:51:45.0694 0x23ec  System UUID: {5A0CF29F-B96F-65F4-5CF5-3BCBD45EF2B2}
23:51:46.0640 0x23ec  Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:51:46.0647 0x23ec  ============================================================
23:51:46.0647 0x23ec  \Device\Harddisk0\DR0:
23:51:46.0649 0x23ec  MBR partitions:
23:51:46.0649 0x23ec  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xDCAB8000
23:51:46.0649 0x23ec  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xDCAB8800, BlocksNum 0xC34F000
23:51:46.0649 0x23ec  ============================================================
23:51:46.0668 0x23ec  C: <-> \Device\Harddisk0\DR0\Partition1
23:51:46.0700 0x23ec  G: <-> \Device\Harddisk0\DR0\Partition2
23:51:46.0701 0x23ec  ============================================================
23:51:46.0701 0x23ec  Initialize success
23:51:46.0701 0x23ec  ============================================================
23:52:51.0436 0x17ec  ============================================================
23:52:51.0436 0x17ec  Scan started
23:52:51.0436 0x17ec  Mode: Manual; SigCheck; TDLFS; 
23:52:51.0436 0x17ec  ============================================================
23:52:51.0436 0x17ec  KSN ping started
23:53:02.0944 0x17ec  KSN ping finished: true
23:53:04.0576 0x17ec  ================ Scan system memory ========================
23:53:04.0577 0x17ec  System memory - ok
23:53:04.0577 0x17ec  ================ Scan services =============================
23:53:04.0718 0x17ec  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
23:53:04.0792 0x17ec  1394ohci - ok
23:53:04.0856 0x17ec  [ 1670C3512EBD413F155C16CF33BB8485, CBF2C996A3FA3B955078C62C1EA368D2859702F628E9CEDAB496680CCBCBFC68 ] a4djavs         C:\Windows\system32\Drivers\a4djavs.sys
23:53:04.0920 0x17ec  a4djavs - ok
23:53:04.0932 0x17ec  [ EC8C627CED3D477359A3589D16C27E94, 3DD425852DBF40D472BC112733119D43C9A192EDB5A21B7E569D8682D9A8D4D9 ] a4djusb_svc     C:\Windows\system32\Drivers\a4djusb.sys
23:53:04.0966 0x17ec  a4djusb_svc - ok
23:53:04.0990 0x17ec  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
23:53:05.0034 0x17ec  ACPI - ok
23:53:05.0051 0x17ec  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
23:53:05.0102 0x17ec  AcpiPmi - ok
23:53:05.0198 0x17ec  [ 9B112FDA1D5FB7B75627461001AC692A, 2EDF7C8FD59CD5FCD19FA528F60CBD6DDB9A8076AE0280B11D8EA8EAF7D39958 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:53:05.0230 0x17ec  AdobeARMservice - ok
23:53:05.0356 0x17ec  [ 1E849825D45BF597E82F86D6E99C42D2, 59103BC49849112BF2923E773B85FFA3405DF75589D3F23480B60E70933EFAA5 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:53:05.0402 0x17ec  AdobeFlashPlayerUpdateSvc - ok
23:53:05.0467 0x17ec  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
23:53:05.0517 0x17ec  adp94xx - ok
23:53:05.0543 0x17ec  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
23:53:05.0589 0x17ec  adpahci - ok
23:53:05.0626 0x17ec  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
23:53:05.0661 0x17ec  adpu320 - ok
23:53:05.0691 0x17ec  [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
23:53:05.0729 0x17ec  AeLookupSvc - ok
23:53:05.0784 0x17ec  [ 0DC2A9882540DEA4A55B08785E09D8FC, 69B15724B0034F9915AACE109A6C596D6AF2DA350FC18C9A0CD98C81CB7EDEE3 ] AFD             C:\Windows\system32\drivers\afd.sys
23:53:05.0861 0x17ec  AFD - ok
23:53:05.0891 0x17ec  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
23:53:05.0923 0x17ec  agp440 - ok
23:53:05.0962 0x17ec  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
23:53:05.0999 0x17ec  ALG - ok
23:53:06.0038 0x17ec  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
23:53:06.0067 0x17ec  aliide - ok
23:53:06.0121 0x17ec  [ 68B2C801CDB2B3838E9C27C3C6F66C73, D2E7A062973CB4D1C33A299D5AEFCE943EB59934EBA427F3C99D03A56EFF7A96 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
23:53:06.0203 0x17ec  AMD External Events Utility - ok
23:53:06.0249 0x17ec  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
23:53:06.0279 0x17ec  amdide - ok
23:53:06.0318 0x17ec  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
23:53:06.0351 0x17ec  AmdK8 - ok
23:53:06.0966 0x17ec  [ 784C941B5A19D69814F9514CFB733906, 496E78FE91B1D6E146EEB79297C4A131D50875A8385438C376CA58A245D4A77E ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
23:53:07.0485 0x17ec  amdkmdag - ok
23:53:07.0584 0x17ec  [ 954759EAE7FB2591A5E7206AB0093AE7, A47FFCE75767CFE79A1CD2B42DC1FEEC8C65C0E503289DC70B751FECDD9CE9FF ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
23:53:07.0642 0x17ec  amdkmdap - ok
23:53:07.0652 0x17ec  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
23:53:07.0684 0x17ec  AmdPPM - ok
23:53:07.0723 0x17ec  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
23:53:07.0755 0x17ec  amdsata - ok
23:53:07.0769 0x17ec  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
23:53:07.0815 0x17ec  amdsbs - ok
23:53:07.0828 0x17ec  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
23:53:07.0857 0x17ec  amdxata - ok
23:53:07.0910 0x17ec  [ 4DE0D5D747A73797C95A97DCCE5018B5, 17EC669675C2E43515EFE2D8BCC9DDFFBE64F99EBFB9A6DAB429F65A2B504560 ] androidusb      C:\Windows\system32\Drivers\ssadadb.sys
23:53:07.0961 0x17ec  androidusb - ok
23:53:08.0082 0x17ec  [ BE5AC6251F7CD342384A8E3E3694B6BA, 420C43D24047A81CFC4A2C5BE8C50D4B39A3238EDBF6F106A2F9F9895BC88AC4 ] AntiVirMailService C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
23:53:08.0157 0x17ec  AntiVirMailService - ok
23:53:08.0231 0x17ec  [ 30230481E43BC868DD46B8C045B43B87, 0A94AD3A11ACEDC1CE54FA886028EC40E33326C5CCE0E9D665DE3F4602CCC7D8 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
23:53:08.0280 0x17ec  AntiVirSchedulerService - ok
23:53:08.0331 0x17ec  [ 30230481E43BC868DD46B8C045B43B87, 0A94AD3A11ACEDC1CE54FA886028EC40E33326C5CCE0E9D665DE3F4602CCC7D8 ] AntiVirService  C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
23:53:08.0383 0x17ec  AntiVirService - ok
23:53:08.0463 0x17ec  [ ED4AB79E74D309369EA4B12DCD4F9FA2, 1CF9A18F6FBECDDA0952861A9151677EC48C2EC9508939B01955CF8A456B325C ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
23:53:08.0556 0x17ec  AntiVirWebService - ok
23:53:08.0611 0x17ec  [ C16B5B379A2A79702CC5FF923EAAE3FD, FD6A1E3C46282CF77AFA9FB4B4ACE2DB6295DFB0C69EA07BE7160538041CDB2F ] AppID           C:\Windows\system32\drivers\appid.sys
23:53:08.0649 0x17ec  AppID - ok
23:53:08.0663 0x17ec  [ 5152D6B29C61EF59537DBDA92BFE2978, 6D426A0FEE016A8899ADE864DD84BE019C5B5DB7E1DB295ED720239877FCB3EF ] AppIDSvc        C:\Windows\System32\appidsvc.dll
23:53:08.0696 0x17ec  AppIDSvc - ok
23:53:08.0733 0x17ec  [ DE23E052E557580674785CDF45B613F3, A955ADC6CC7D816BA7CE1065F911E7A3295A1908C22BE0A3C506C38CFEE8DE0D ] Appinfo         C:\Windows\System32\appinfo.dll
23:53:08.0775 0x17ec  Appinfo - ok
23:53:08.0801 0x17ec  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
23:53:08.0842 0x17ec  arc - ok
23:53:08.0875 0x17ec  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
23:53:08.0912 0x17ec  arcsas - ok
23:53:09.0012 0x17ec  [ 8637F3119057178364D200F2462E625C, 40CAE47AA6C6B23FEB95961FD06BB3EB075CA63BB91B54CB26215A368371B343 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:53:09.0047 0x17ec  aspnet_state - ok
23:53:09.0085 0x17ec  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
23:53:09.0143 0x17ec  AsyncMac - ok
23:53:09.0155 0x17ec  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
23:53:09.0184 0x17ec  atapi - ok
23:53:09.0228 0x17ec  [ 37CB595C0AB20ECBFA5170D3185690DB, 23CA3DC63C35649021AAFF0721BA8A7DF546B5CD1530A35AAAC3E742A787A7D2 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
23:53:09.0237 0x17ec  AtiHDAudioService - detected UnsignedFile.Multi.Generic ( 1 )
23:53:09.0682 0x17ec  Detect skipped due to KSN trusted
23:53:09.0682 0x17ec  AtiHDAudioService - ok
23:53:09.0737 0x17ec  [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:53:09.0792 0x17ec  AudioEndpointBuilder - ok
23:53:09.0818 0x17ec  [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
23:53:09.0880 0x17ec  AudioSrv - ok
23:53:09.0933 0x17ec  [ 6C94D74033458BC2BDF11EED4E78F027, E52134268B2CED17801EE1D7ABA713CECE4CD960AF24749B74CD84B707CB344B ] avdevprot       C:\Windows\system32\DRIVERS\avdevprot.sys
23:53:09.0971 0x17ec  avdevprot - ok
23:53:10.0018 0x17ec  [ 5F5A98E76AD853E19253CDC13510AB56, 97F8E5F7DB933E22312422B6F38A6C08A7BD10EF52B310B3C08839EEBC502AEB ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
23:53:10.0063 0x17ec  avgntflt - ok
23:53:10.0099 0x17ec  [ BECC8515CE9E2AD079CF008B5A611446, 336F6E317EC52B2D0F58C453E8DF0E532DCAEC84FDD14C265B88C2D23F2A6255 ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
23:53:10.0133 0x17ec  avipbb - ok
23:53:10.0239 0x17ec  [ DE95D50745E7A3D4CF54D63A32C9CB83, 7125BE1C830EFFDFBB906F62BCDFA107F15987DD2CCC1EB6C5014E48E1373238 ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
23:53:10.0291 0x17ec  Avira.ServiceHost - ok
23:53:10.0335 0x17ec  [ 3E0AB8C453FA433B15A30BAA8BD4B275, 30453E68013DF1A3CD9197F28E8591A67BFA6CA784129666A6F7DF9D2E12440B ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
23:53:10.0365 0x17ec  avkmgr - ok
23:53:10.0418 0x17ec  [ 19B6F9073BD606B7ABEC03A0328FDC1B, 639E6A05BB0E52CDBDF887A3FA209B32F84253D274F2A9A89E1D96F1BE4C8143 ] avnetflt        C:\Windows\system32\DRIVERS\avnetflt.sys
23:53:10.0455 0x17ec  avnetflt - ok
23:53:10.0513 0x17ec  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
23:53:10.0555 0x17ec  AxInstSV - ok
23:53:10.0591 0x17ec  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
23:53:10.0644 0x17ec  b06bdrv - ok
23:53:10.0700 0x17ec  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
23:53:10.0768 0x17ec  b57nd60a - ok
23:53:10.0796 0x17ec  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
23:53:10.0832 0x17ec  BDESVC - ok
23:53:10.0847 0x17ec  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
23:53:10.0909 0x17ec  Beep - ok
23:53:10.0962 0x17ec  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
23:53:11.0023 0x17ec  BFE - ok
23:53:11.0090 0x17ec  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
23:53:11.0199 0x17ec  BITS - ok
23:53:11.0217 0x17ec  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
23:53:11.0250 0x17ec  blbdrive - ok
23:53:11.0287 0x17ec  [ ABA3984C822E4D3F889699912D85D6C5, 2251FA135CC290DA13DAE4743F393C7CC9E6A737C054707CB8D72C369D1FFACB ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
23:53:11.0324 0x17ec  bowser - ok
23:53:11.0339 0x17ec  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
23:53:11.0375 0x17ec  BrFiltLo - ok
23:53:11.0391 0x17ec  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
23:53:11.0430 0x17ec  BrFiltUp - ok
23:53:11.0466 0x17ec  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
23:53:11.0507 0x17ec  Browser - ok
23:53:11.0545 0x17ec  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
23:53:11.0586 0x17ec  Brserid - ok
23:53:11.0596 0x17ec  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
23:53:11.0635 0x17ec  BrSerWdm - ok
23:53:11.0675 0x17ec  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
23:53:11.0709 0x17ec  BrUsbMdm - ok
23:53:11.0744 0x17ec  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
23:53:11.0793 0x17ec  BrUsbSer - ok
23:53:11.0831 0x17ec  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
23:53:11.0869 0x17ec  BTHMODEM - ok
23:53:11.0880 0x17ec  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
23:53:11.0959 0x17ec  bthserv - ok
23:53:11.0968 0x17ec  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
23:53:12.0028 0x17ec  cdfs - ok
23:53:12.0042 0x17ec  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
23:53:12.0075 0x17ec  cdrom - ok
23:53:12.0089 0x17ec  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
23:53:12.0154 0x17ec  CertPropSvc - ok
23:53:12.0185 0x17ec  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
23:53:12.0220 0x17ec  circlass - ok
23:53:12.0263 0x17ec  [ 3963FEC1892368DD500E6ED1F5C286CE, A04689CB07AF1C1B4B1032B0ACAD88DA3EB03D89A575C59FE602A65E8C246138 ] CLFS            C:\Windows\system32\CLFS.sys
23:53:12.0300 0x17ec  CLFS - ok
23:53:12.0364 0x17ec  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:53:12.0397 0x17ec  clr_optimization_v2.0.50727_32 - ok
23:53:12.0450 0x17ec  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:53:12.0482 0x17ec  clr_optimization_v2.0.50727_64 - ok
23:53:12.0562 0x17ec  [ 2BA609641FA64BAB02ACD3C0095672F5, FD1FE403864F0564CA4A2F1D7415649B8FFE16F8ED33C4B44ACB21767118AD5F ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:53:12.0608 0x17ec  clr_optimization_v4.0.30319_32 - ok
23:53:12.0636 0x17ec  [ 7C7502CD2A2CFAB399D0D8DA95DB03E7, 4AE53B468CF597FCFD912A6EEE27E87EE4D9BC73F2A794FB5DF5DA46C1DD1289 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:53:12.0671 0x17ec  clr_optimization_v4.0.30319_64 - ok
23:53:12.0690 0x17ec  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
23:53:12.0722 0x17ec  CmBatt - ok
23:53:12.0758 0x17ec  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
23:53:12.0787 0x17ec  cmdide - ok
23:53:12.0844 0x17ec  [ A98CED39AD91B445E2E442A9BD67E8B4, B4189DEEF1C0EE22AE983119047B1A40FFDD8F3E163DFFABD7C2706231B0B1B0 ] CNG             C:\Windows\system32\Drivers\cng.sys
23:53:12.0897 0x17ec  CNG - ok
23:53:12.0937 0x17ec  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
23:53:12.0966 0x17ec  Compbatt - ok
23:53:12.0973 0x17ec  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
23:53:13.0017 0x17ec  CompositeBus - ok
23:53:13.0021 0x17ec  COMSysApp - ok
23:53:13.0043 0x17ec  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
23:53:13.0072 0x17ec  crcdisk - ok
23:53:13.0112 0x17ec  [ 48FEDBE324F1EA9417BA1D62AE863011, 2C3D84F0842237A3BF2838DDB4126807977EB36588FA669B1E6671077584EF18 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
23:53:13.0158 0x17ec  CryptSvc - ok
23:53:13.0261 0x17ec  [ B4D1D62A09F09CB2DFD55628350CDAFB, 7DD3CE77D88B5AFAC4B6187F4CA6D50B7BD3398207163B2A1E4C76467801FF28 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
23:53:13.0321 0x17ec  cvhsvc - ok
23:53:13.0374 0x17ec  [ 3F1A199859B4F3F8357B2A0AF5666A54, B0ACE9384088B7D0E54CF82BF48D4FEAA518BDEF98A294BA8F5A37DFF0E45328 ] DcomLaunch      C:\Windows\system32\rpcss.dll
23:53:13.0440 0x17ec  DcomLaunch - ok
23:53:13.0484 0x17ec  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
23:53:13.0568 0x17ec  defragsvc - ok
23:53:13.0606 0x17ec  [ 9B38580063D281A99E68EF5813022A5F, D91676B0E0A8E2A090E3E5DD340ABCFC20AE0F55B4C82869D6CFB34239BD27DA ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
23:53:13.0641 0x17ec  DfsC - ok
23:53:13.0685 0x17ec  [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
23:53:13.0719 0x17ec  dg_ssudbus - ok
23:53:13.0738 0x17ec  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
23:53:13.0789 0x17ec  Dhcp - ok
23:53:13.0876 0x17ec  [ EE9954237F15BE4DD9304D12E4D305ED, F295C9BAF20F0E669B673AFCC16B4969EE31B6A3808980DAB93D9B0F167DA3C0 ] DiagTrack       C:\Windows\system32\diagtrack.dll
23:53:13.0973 0x17ec  DiagTrack - ok
23:53:14.0009 0x17ec  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
23:53:14.0079 0x17ec  discache - ok
23:53:14.0087 0x17ec  [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk            C:\Windows\system32\drivers\disk.sys
23:53:14.0120 0x17ec  Disk - ok
23:53:14.0159 0x17ec  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
23:53:14.0196 0x17ec  Dnscache - ok
23:53:14.0223 0x17ec  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
23:53:14.0299 0x17ec  dot3svc - ok
23:53:14.0316 0x17ec  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
23:53:14.0392 0x17ec  DPS - ok
23:53:14.0447 0x17ec  [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
23:53:14.0497 0x17ec  drmkaud - ok
23:53:14.0550 0x17ec  [ FB9BEF3401EE5ECC2603311B9C64F44A, 33F8B6C9593677A360F580554D4F95B9F580C4E28F8187FBB27D96AFBFA8C7C1 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
23:53:14.0618 0x17ec  dtsoftbus01 - ok
23:53:14.0684 0x17ec  [ 5CEF80AE869336376F550ECAE91E424A, 49152AC35556A5629AE7A4A762FDB2112FAD1C9CDB91E6196172809F74A3149A ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
23:53:14.0763 0x17ec  DXGKrnl - ok
23:53:14.0828 0x17ec  [ 3C1C5ABA3CF134C5378E7F1A0704C17C, F8D13025E360BD376A107C1386F6DD5F0C6012622D0A75111C2DF930748243A2 ] e1cexpress      C:\Windows\system32\DRIVERS\e1c62x64.sys
23:53:14.0878 0x17ec  e1cexpress - ok
23:53:14.0927 0x17ec  [ EDC6E9C057C9D7F83EEA22B4CEF5DCAD, 967829CE37158020F6026C588260FCFC6F9852DDDACD622FAF7AB75121DF5B3D ] E1G60           C:\Windows\system32\DRIVERS\E1G6032E.sys
23:53:14.0985 0x17ec  E1G60 - ok
23:53:15.0000 0x17ec  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
23:53:15.0081 0x17ec  EapHost - ok
23:53:15.0236 0x17ec  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
23:53:15.0450 0x17ec  ebdrv - ok
23:53:15.0479 0x17ec  [ 62056ADD38513A86C4866E912371B56B, 9465E65EB4303BF87483B9621D402E848A50E6D22B05846A621A2761B9516A57 ] EFS             C:\Windows\System32\lsass.exe
23:53:15.0516 0x17ec  EFS - ok
23:53:15.0593 0x17ec  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
23:53:15.0655 0x17ec  ehRecvr - ok
23:53:15.0668 0x17ec  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
23:53:15.0706 0x17ec  ehSched - ok
23:53:15.0738 0x17ec  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
23:53:15.0792 0x17ec  elxstor - ok
23:53:15.0805 0x17ec  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
23:53:15.0840 0x17ec  ErrDev - ok
23:53:15.0900 0x17ec  [ 7D0520A12B31E6858B3BB7E675AFA34E, 40EC97904041D9106A7F28084897462ED7478DFC1C0930A800D416E80A8FB587 ] ESProtectionDriver C:\Windows\system32\drivers\mbae64.sys
23:53:15.0933 0x17ec  ESProtectionDriver - ok
23:53:15.0964 0x17ec  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
23:53:16.0042 0x17ec  EventSystem - ok
23:53:16.0077 0x17ec  [ 7E45F8B117419ABA3BB26579F6E70324, 03FE86519860153E1BE571F10ACC9BA58FFB5A661C5C3EBDF3B77973BCD96C84 ] exfat           C:\Windows\system32\drivers\exfat.sys
23:53:16.0125 0x17ec  exfat - ok
23:53:16.0173 0x17ec  [ 6EDFA237D25433C03F42FBFDB16BDD24, A30F89A40F7AFC475D3C2D3591FB9AFC06AE3FEBC915FDCB24ED77946FBA4E2C ] fastfat         C:\Windows\system32\drivers\fastfat.sys
23:53:16.0213 0x17ec  fastfat - ok
23:53:16.0255 0x17ec  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
23:53:16.0320 0x17ec  Fax - ok
23:53:16.0332 0x17ec  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
23:53:16.0370 0x17ec  fdc - ok
23:53:16.0379 0x17ec  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
23:53:16.0444 0x17ec  fdPHost - ok
23:53:16.0461 0x17ec  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
23:53:16.0529 0x17ec  FDResPub - ok
23:53:16.0571 0x17ec  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
23:53:16.0601 0x17ec  FileInfo - ok
23:53:16.0615 0x17ec  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
23:53:16.0681 0x17ec  Filetrace - ok
23:53:16.0751 0x17ec  [ 73081CF28F0AE20A52CA4F67CEE6E6B0, 806C769F3638D25FF1892C7223E7250AA3B9F627DF3AD83BC5AE1FEF7016F86A ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
23:53:16.0832 0x17ec  FLEXnet Licensing Service - ok
23:53:16.0869 0x17ec  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
23:53:16.0929 0x17ec  flpydisk - ok
23:53:16.0953 0x17ec  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
23:53:17.0001 0x17ec  FltMgr - ok
23:53:17.0079 0x17ec  [ 785F474FB5E67E448E1931C98E8D0ABC, 911697D580CBF508A6F4A52D4F95A6976CF9A0EC3549076A8D0B5C8BD947C989 ] FontCache       C:\Windows\system32\FntCache.dll
23:53:17.0169 0x17ec  FontCache - ok
23:53:17.0219 0x17ec  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:53:17.0260 0x17ec  FontCache3.0.0.0 - ok
23:53:17.0271 0x17ec  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
23:53:17.0302 0x17ec  FsDepends - ok
23:53:17.0353 0x17ec  [ 6C06701BF1DB05405804D7EB610991CE, 75DEB2204D9AC338ED7C4742BEFAFA0AFC7E42B2C1B54A57DF8A1AD097D9EC3E ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
23:53:17.0385 0x17ec  fssfltr - ok
23:53:17.0508 0x17ec  [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
23:53:17.0602 0x17ec  fsssvc - ok
23:53:17.0646 0x17ec  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
23:53:17.0712 0x17ec  Fs_Rec - ok
23:53:17.0768 0x17ec  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
23:53:17.0809 0x17ec  fvevol - ok
23:53:17.0830 0x17ec  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
23:53:17.0863 0x17ec  gagp30kx - ok
23:53:17.0920 0x17ec  [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc           C:\Windows\System32\gpsvc.dll
23:53:18.0006 0x17ec  gpsvc - ok
23:53:18.0023 0x17ec  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
23:53:18.0060 0x17ec  hcw85cir - ok
23:53:18.0128 0x17ec  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:53:18.0181 0x17ec  HdAudAddService - ok
23:53:18.0196 0x17ec  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
23:53:18.0235 0x17ec  HDAudBus - ok
23:53:18.0251 0x17ec  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
23:53:18.0282 0x17ec  HidBatt - ok
23:53:18.0296 0x17ec  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
23:53:18.0337 0x17ec  HidBth - ok
23:53:18.0374 0x17ec  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
23:53:18.0414 0x17ec  HidIr - ok
23:53:18.0452 0x17ec  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
23:53:18.0537 0x17ec  hidserv - ok
23:53:18.0577 0x17ec  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
23:53:18.0641 0x17ec  HidUsb - ok
23:53:18.0660 0x17ec  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
23:53:18.0736 0x17ec  hkmsvc - ok
23:53:18.0759 0x17ec  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:53:18.0803 0x17ec  HomeGroupListener - ok
23:53:18.0849 0x17ec  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:53:18.0886 0x17ec  HomeGroupProvider - ok
23:53:18.0898 0x17ec  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
23:53:18.0931 0x17ec  HpSAMD - ok
23:53:18.0989 0x17ec  [ CF5C9BD985120781200D35FD445D0BD5, 91B37F595A196542458CBBCDAD80779721D228A7030A34E55995DDBB06649248 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
23:53:19.0062 0x17ec  HTTP - ok
23:53:19.0095 0x17ec  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
23:53:19.0120 0x17ec  hwpolicy - ok
23:53:19.0132 0x17ec  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
23:53:19.0171 0x17ec  i8042prt - ok
23:53:19.0200 0x17ec  [ D7921D5A870B11CC1ADAB198A519D50A, 5DF99EB5D5504E9D9EB21658E8B4A58DEE2AD143A1875DB7F9B7BF4877FCB57F ] iaStor          C:\Windows\system32\drivers\iaStor.sys
23:53:19.0237 0x17ec  iaStor - ok
23:53:19.0286 0x17ec  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
23:53:19.0324 0x17ec  iaStorV - ok
23:53:19.0391 0x17ec  [ DAF66902F08796F9C694901660E5A64A, F4A4764DED05980426BAB54AAF040BC27A39C80315F5161E8D0B4C7F694BD8E6 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
23:53:19.0400 0x17ec  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
23:53:19.0835 0x17ec  Detect skipped due to KSN trusted
23:53:19.0835 0x17ec  IDriverT - ok
23:53:19.0909 0x17ec  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:53:19.0971 0x17ec  idsvc - ok
23:53:19.0980 0x17ec  IEEtwCollectorService - ok
23:53:20.0000 0x17ec  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
23:53:20.0031 0x17ec  iirsp - ok
23:53:20.0101 0x17ec  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
23:53:20.0180 0x17ec  IKEEXT - ok
23:53:20.0392 0x17ec  [ 8CAA2A543155675D09B0D5239E31EC99, 033CF96E110136A59E01C4D26FE3681862C0993938959059A37A34DC1C0E1D49 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
23:53:20.0583 0x17ec  IntcAzAudAddService - ok
23:53:20.0622 0x17ec  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
23:53:20.0652 0x17ec  intelide - ok
23:53:20.0678 0x17ec  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\drivers\intelppm.sys
23:53:20.0744 0x17ec  intelppm - ok
23:53:20.0800 0x17ec  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
23:53:20.0884 0x17ec  IPBusEnum - ok
23:53:20.0930 0x17ec  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:53:21.0021 0x17ec  IpFilterDriver - ok
23:53:21.0066 0x17ec  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
23:53:21.0132 0x17ec  iphlpsvc - ok
23:53:21.0157 0x17ec  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
23:53:21.0198 0x17ec  IPMIDRV - ok
23:53:21.0217 0x17ec  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
23:53:21.0286 0x17ec  IPNAT - ok
23:53:21.0301 0x17ec  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
23:53:21.0351 0x17ec  IRENUM - ok
23:53:21.0364 0x17ec  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
23:53:21.0393 0x17ec  isapnp - ok
23:53:21.0430 0x17ec  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
23:53:21.0468 0x17ec  iScsiPrt - ok
23:53:21.0518 0x17ec  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
23:53:21.0553 0x17ec  kbdclass - ok
23:53:21.0590 0x17ec  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
23:53:21.0623 0x17ec  kbdhid - ok
23:53:21.0641 0x17ec  [ 62056ADD38513A86C4866E912371B56B, 9465E65EB4303BF87483B9621D402E848A50E6D22B05846A621A2761B9516A57 ] KeyIso          C:\Windows\system32\lsass.exe
23:53:21.0675 0x17ec  KeyIso - ok
23:53:21.0713 0x17ec  [ DFE85B031220F8E0271716BBB3C4C8FF, 531AB0851AE2F2B25D751605529C483B4734E5D26F94F56DEC0191730DD6A9A4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
23:53:21.0747 0x17ec  KSecDD - ok
23:53:21.0789 0x17ec  [ 70D7302DD70B979637179BFD8295C924, 7A3498C8A90AC5D7A070E9BCAF1BC0D16F478A7160A9333C58247034C5B3B59F ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
23:53:21.0825 0x17ec  KSecPkg - ok
23:53:21.0832 0x17ec  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
23:53:21.0895 0x17ec  ksthunk - ok
23:53:21.0939 0x17ec  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
23:53:22.0031 0x17ec  KtmRm - ok
23:53:22.0073 0x17ec  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
23:53:22.0148 0x17ec  LanmanServer - ok
23:53:22.0190 0x17ec  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:53:22.0261 0x17ec  LanmanWorkstation - ok
23:53:22.0296 0x17ec  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
23:53:22.0361 0x17ec  lltdio - ok
23:53:22.0413 0x17ec  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
23:53:22.0491 0x17ec  lltdsvc - ok
23:53:22.0500 0x17ec  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
23:53:22.0583 0x17ec  lmhosts - ok
23:53:22.0605 0x17ec  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
23:53:22.0642 0x17ec  LSI_FC - ok
23:53:22.0661 0x17ec  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
23:53:22.0700 0x17ec  LSI_SAS - ok
23:53:22.0717 0x17ec  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
23:53:22.0749 0x17ec  LSI_SAS2 - ok
23:53:22.0761 0x17ec  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
23:53:22.0795 0x17ec  LSI_SCSI - ok
23:53:22.0810 0x17ec  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
23:53:22.0884 0x17ec  luafv - ok
23:53:22.0945 0x17ec  [ C3C2C7E2EEFECD88A76FF626E72BF123, 746DC194315FE32E84E55D57CC22FF52BD7C92EF9AB234B27208523B02E0B93E ] MBAMChameleon   C:\Windows\System32\Drivers\MbamChameleon.sys
23:53:22.0982 0x17ec  MBAMChameleon - ok
23:53:23.0036 0x17ec  [ 20046A5DB1466EBD0DCAEB84D00C5432, AC1E264C2D8348FF543193890BE328A8AC4C9BB32A2BBB14FD36644B930C384F ] MBAMFarflt      C:\Windows\system32\DRIVERS\farflt.sys
23:53:23.0071 0x17ec  MBAMFarflt - ok
23:53:23.0120 0x17ec  [ 29BD0BB2CD7E37B8C248CFA933FBD1F4, E645641CF002F2804976DB761C2B514065957AB64A25EC478025B8D00BE808E7 ] MBAMProtection  C:\Windows\system32\DRIVERS\mbam.sys
23:53:23.0153 0x17ec  MBAMProtection - ok
23:53:23.0480 0x17ec  [ 734B435E1693386213EEFD4D17A70DEB, EC6288CB37BD420DA071E800FBEF25BCCF22F2A40F98DB22F1C86D87157EF1AA ] MBAMService     C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
23:53:23.0752 0x17ec  MBAMService - ok
23:53:23.0786 0x17ec  [ B047B9CE5A0D800E6D713B43D0405221, 9A560D6D313476F478629CFCED3DB92F3818EF9CE5E226124D02CB496549D9E1 ] MBAMSwissArmy   C:\Windows\system32\Drivers\mbamswissarmy.sys
23:53:23.0828 0x17ec  MBAMSwissArmy - ok
23:53:23.0849 0x17ec  [ 8135271183EA7C59BD865873C972159D, ECCA510FF375E706AFB8D412FD8B05C5AC7E14215D1BCC18EA7DC080BFBBB3CB ] MBAMWebProtection C:\Windows\system32\DRIVERS\mwac.sys
23:53:23.0879 0x17ec  MBAMWebProtection - ok
23:53:23.0910 0x17ec  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
23:53:23.0948 0x17ec  Mcx2Svc - ok
23:53:23.0960 0x17ec  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
23:53:23.0992 0x17ec  megasas - ok
23:53:24.0047 0x17ec  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
23:53:24.0085 0x17ec  MegaSR - ok
23:53:24.0119 0x17ec  [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
23:53:24.0148 0x17ec  MEIx64 - ok
23:53:24.0182 0x17ec  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
23:53:24.0249 0x17ec  MMCSS - ok
23:53:24.0338 0x17ec  [ 533AA4A69EE91B1C53910EF57E314DEF, A01CD81BE2FC50990DA1F3ECDEB3A80CC0D39EC6E25712FDE31B262162C9AD38 ] Mobile Broadband HL Service C:\ProgramData\MobileBrServ\mbbservice.exe
23:53:24.0374 0x17ec  Mobile Broadband HL Service - ok
23:53:24.0408 0x17ec  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
23:53:24.0509 0x17ec  Modem - ok
23:53:24.0523 0x17ec  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
23:53:24.0561 0x17ec  monitor - ok
23:53:24.0570 0x17ec  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
23:53:24.0601 0x17ec  mouclass - ok
23:53:24.0617 0x17ec  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
23:53:24.0654 0x17ec  mouhid - ok
23:53:24.0700 0x17ec  [ 072D8646E23ECF8A3F5F0157017B4DB6, EBFB1459ECC5AF94C94FB49CEBC724542612680F0777E24B5AA6E062C0EE5D94 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
23:53:24.0730 0x17ec  mountmgr - ok
23:53:24.0799 0x17ec  [ 9483990A1D62927147778E2A1C2F5775, 0721E682853D348227FA6E925CC83FC839D9CCD27DBAD81363C471D9B7155132 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:53:24.0833 0x17ec  MozillaMaintenance - ok
23:53:24.0854 0x17ec  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
23:53:24.0887 0x17ec  mpio - ok
23:53:24.0900 0x17ec  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
23:53:24.0968 0x17ec  mpsdrv - ok
23:53:25.0004 0x17ec  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
23:53:25.0103 0x17ec  MpsSvc - ok
23:53:25.0139 0x17ec  [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
23:53:25.0187 0x17ec  MRxDAV - ok
23:53:25.0222 0x17ec  [ 767C6DF04C5758B9F0790D400541B44F, BFC38D7BCF19F7246BCAD3E04273A403F6B973432EE0EF6E25B16BA3826A21B7 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
23:53:25.0281 0x17ec  mrxsmb - ok
23:53:25.0312 0x17ec  [ BD55F604FFABC911F8E5500186AE70E5, 3719EDB070E6FFE9781337A05CA0309C3CD5CD38A292DF091E05C9BA3D5A479F ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:53:25.0357 0x17ec  mrxsmb10 - ok
23:53:25.0395 0x17ec  [ 92EECFB046D4706A4B8D699A4069B6EC, 3B3E232DABA913A500CE55AD8600D8DD8F28E32B0276B9B6C8FD6239688833A4 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:53:25.0436 0x17ec  mrxsmb20 - ok
23:53:25.0478 0x17ec  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\DRIVERS\msahci.sys
23:53:25.0507 0x17ec  msahci - ok
23:53:25.0574 0x17ec  [ 8E46A7BAC823DD82D4FB2A34C3DF4C1D, FEA8FB1B8752660EC6174542B24D234A61EBFF8318A5855B3E5C91DB86856CAB ] MSCSPTISRV      C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
23:53:25.0583 0x17ec  MSCSPTISRV - detected UnsignedFile.Multi.Generic ( 1 )
23:53:25.0971 0x17ec  Detect skipped due to KSN trusted
23:53:25.0971 0x17ec  MSCSPTISRV - ok
23:53:25.0999 0x17ec  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
23:53:26.0035 0x17ec  msdsm - ok
23:53:26.0054 0x17ec  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
23:53:26.0092 0x17ec  MSDTC - ok
23:53:26.0106 0x17ec  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
23:53:26.0183 0x17ec  Msfs - ok
23:53:26.0197 0x17ec  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
23:53:26.0266 0x17ec  mshidkmdf - ok
23:53:26.0276 0x17ec  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
23:53:26.0304 0x17ec  msisadrv - ok
23:53:26.0353 0x17ec  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
23:53:26.0424 0x17ec  MSiSCSI - ok
23:53:26.0428 0x17ec  msiserver - ok
23:53:26.0442 0x17ec  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
23:53:26.0505 0x17ec  MSKSSRV - ok
23:53:26.0511 0x17ec  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
23:53:26.0578 0x17ec  MSPCLOCK - ok
23:53:26.0586 0x17ec  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
23:53:26.0658 0x17ec  MSPQM - ok
23:53:26.0682 0x17ec  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
23:53:26.0744 0x17ec  MsRPC - ok
23:53:26.0753 0x17ec  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
23:53:26.0784 0x17ec  mssmbios - ok
23:53:26.0792 0x17ec  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
23:53:26.0856 0x17ec  MSTEE - ok
23:53:26.0871 0x17ec  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
23:53:26.0927 0x17ec  MTConfig - ok
23:53:26.0938 0x17ec  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
23:53:26.0973 0x17ec  Mup - ok
23:53:27.0028 0x17ec  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
23:53:27.0102 0x17ec  napagent - ok
23:53:27.0147 0x17ec  [ 9FB2A095B1166CB3C9A06651863B3452, 808105C59C2D28C390FDE0CA48690A5CD052DE3D7F7327864EB45F80187D5BE9 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
23:53:27.0185 0x17ec  NativeWifiP - ok
23:53:27.0252 0x17ec  [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS            C:\Windows\system32\drivers\ndis.sys
23:53:27.0316 0x17ec  NDIS - ok
23:53:27.0335 0x17ec  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
23:53:27.0396 0x17ec  NdisCap - ok
23:53:27.0408 0x17ec  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
23:53:27.0481 0x17ec  NdisTapi - ok
23:53:27.0491 0x17ec  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
23:53:27.0564 0x17ec  Ndisuio - ok
23:53:27.0588 0x17ec  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
23:53:27.0654 0x17ec  NdisWan - ok
23:53:27.0667 0x17ec  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
23:53:27.0731 0x17ec  NDProxy - ok
23:53:27.0743 0x17ec  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
23:53:27.0811 0x17ec  NetBIOS - ok
23:53:27.0853 0x17ec  [ 734837208CAFD6E0959A7A0333C95C9D, 0B7CD6E3CE43ABE021DBE6516492E326265EC0273F2F4297187CE70602CB8CE1 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
23:53:27.0896 0x17ec  NetBT - ok
23:53:27.0919 0x17ec  [ 62056ADD38513A86C4866E912371B56B, 9465E65EB4303BF87483B9621D402E848A50E6D22B05846A621A2761B9516A57 ] Netlogon        C:\Windows\system32\lsass.exe
23:53:27.0962 0x17ec  Netlogon - ok
23:53:28.0006 0x17ec  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
23:53:28.0103 0x17ec  Netman - ok
23:53:28.0142 0x17ec  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:53:28.0178 0x17ec  NetMsmqActivator - ok
23:53:28.0209 0x17ec  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:53:28.0249 0x17ec  NetPipeActivator - ok
23:53:28.0276 0x17ec  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
23:53:28.0357 0x17ec  netprofm - ok
23:53:28.0368 0x17ec  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:53:28.0405 0x17ec  NetTcpActivator - ok
23:53:28.0413 0x17ec  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:53:28.0454 0x17ec  NetTcpPortSharing - ok
23:53:28.0471 0x17ec  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
23:53:28.0506 0x17ec  nfrd960 - ok
23:53:28.0555 0x17ec  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
23:53:28.0626 0x17ec  NlaSvc - ok
23:53:28.0640 0x17ec  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
23:53:28.0706 0x17ec  Npfs - ok
23:53:28.0740 0x17ec  [ 668B9EFF5CCA4542F435D2CD9CE3C778, 7409EF35D1DC0DE2BAB752694981FFA1F1855C7F11310366B80BD1EC3513262E ] nsi             C:\Windows\system32\nsisvc.dll
23:53:28.0793 0x17ec  nsi - ok
23:53:28.0801 0x17ec  [ BE313E566EEA2A4B7F9AAC9782A567D4, 377C624737B1A4FBC1DFF988F029B8ED9A368827C33A4FEEBA1B7937A87C2B47 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
23:53:28.0843 0x17ec  nsiproxy - ok
23:53:28.0942 0x17ec  [ 96FEB18D7FFA4DC10F0C3CC4EF41500E, B7F937B8579CD81CC3298E0AADDF559DB451DE04DBAC88A082C722B7E84E0494 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
23:53:29.0038 0x17ec  Ntfs - ok
23:53:29.0052 0x17ec  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
23:53:29.0133 0x17ec  Null - ok
23:53:29.0173 0x17ec  [ B01C1E6D7477961D6D1CBDCD44AF3E67, 407BD335FE7C87DFBD9EDE49BDD828263D8C8D25C8216FF04AC70320E74AE8B6 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
23:53:29.0208 0x17ec  nusb3hub - ok
23:53:29.0271 0x17ec  [ 796BAE22DD827DB8AD7AE7C3F775E92F, D26C921679888D90EEC6FBFDF3884FF151E4C28FD3920CE7F3AB58A8EEF3845E ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
23:53:29.0318 0x17ec  nusb3xhc - ok
23:53:29.0379 0x17ec  [ 6DD0B2337F74336EB1F83C3866538F9B, 9C05C63FCD8380F9F93140FB331C531D6F6DC6BAA9BF6FD918B984032A1531AA ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
23:53:29.0424 0x17ec  NVHDA - ok
23:53:30.0031 0x17ec  [ CA216429A5CDF1A8FFA4831D3EB1F605, E2E8A924BF833E4F4AFB792E84A9848DC6E98AAC470CA4882E653CB6A8E46163 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
23:53:30.0623 0x17ec  nvlddmkm - ok
23:53:30.0685 0x17ec  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
23:53:30.0714 0x17ec  nvraid - ok
23:53:30.0757 0x17ec  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
23:53:30.0786 0x17ec  nvstor - ok
23:53:30.0839 0x17ec  [ 23423E859CA253382D80D0321522A171, 79C914C0A421E0BE566B5FCD5868B1248D4F397C24F8C5E70A8EA6E260617845 ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
23:53:30.0864 0x17ec  NvStreamKms - ok
23:53:30.0972 0x17ec  [ 9DF8BBA81D0A44AA9D14B7ADE47D2200, 3F50BE14892D168032DA9AF22259A986F024E6AD43DAEEC3C1E777BFA9E5A157 ] NvTelemetryContainer C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
23:53:31.0017 0x17ec  NvTelemetryContainer - ok
23:53:31.0027 0x17ec  [ E502016A185B5BB9DC341873F82CD49C, A1F7D3E4FA5B4C81966F0E1DE8039CDD0374A9FF86AB252483FC9D98360089A1 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
23:53:31.0060 0x17ec  nvvad_WaveExtensible - ok
23:53:31.0100 0x17ec  [ A7EA9AD2DEEECE2F1211261A34C480FB, ED5D324358044D5703D5E88150F9B407A4BF51742A6E574C132AB9E7E02C0C77 ] nvvhci          C:\Windows\system32\DRIVERS\nvvhci.sys
23:53:31.0160 0x17ec  nvvhci - ok
23:53:31.0199 0x17ec  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
23:53:31.0238 0x17ec  nv_agp - ok
23:53:31.0256 0x17ec  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
23:53:31.0291 0x17ec  ohci1394 - ok
23:53:31.0330 0x17ec  [ D30981DA22F2EDB8678AF50B634A9587, 0758ACE093D62226EF045CF080A038A16CAA42FD007B4133052828DB28ABBC60 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:53:31.0366 0x17ec  ose - ok
23:53:31.0624 0x17ec  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
23:53:31.0860 0x17ec  osppsvc - ok
23:53:32.0056 0x17ec  [ 96D783363F20D9A1B099772F0504732D, 5DFF7D09710C79452FA736C3CB0F7F2ECB02458CF5D6F431B19015DA7362DABB ] OverwolfUpdater C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
23:53:32.0164 0x17ec  OverwolfUpdater - ok
23:53:32.0231 0x17ec  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
23:53:32.0284 0x17ec  p2pimsvc - ok
23:53:32.0338 0x17ec  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
23:53:32.0385 0x17ec  p2psvc - ok
23:53:32.0419 0x17ec  [ 753A8F339F231D2B857E2CCD51A6E6CA, 59510E69D623B9DA725A8097A44FD210FCF05BB3BA27D5296EA4610359DA0831 ] PACSPTISVR      C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
23:53:32.0427 0x17ec  PACSPTISVR - detected UnsignedFile.Multi.Generic ( 1 )
23:53:32.0879 0x17ec  Detect skipped due to KSN trusted
23:53:32.0879 0x17ec  PACSPTISVR - ok
23:53:32.0926 0x17ec  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
23:53:32.0962 0x17ec  Parport - ok
23:53:32.0998 0x17ec  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
23:53:33.0039 0x17ec  partmgr - ok
23:53:33.0076 0x17ec  [ 3CD83692C43D87088E85E3C916146FFB, 9E812535E8FBA045FDA30F68E9EB2031132C37721D542A2DC9D4C33E2B137FCF ] PcaSvc          C:\Windows\System32\pcasvc.dll
23:53:33.0117 0x17ec  PcaSvc - ok
23:53:33.0160 0x17ec  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
23:53:33.0194 0x17ec  pci - ok
23:53:33.0226 0x17ec  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
23:53:33.0255 0x17ec  pciide - ok
23:53:33.0271 0x17ec  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
23:53:33.0317 0x17ec  pcmcia - ok
23:53:33.0358 0x17ec  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
23:53:33.0388 0x17ec  pcw - ok
23:53:33.0426 0x17ec  [ EA4D67448BE493D543F1730D6CD04694, 24717C5E41B7CA522F3330EF2228B6685E710A5259396E9887A1C1E7A413F8CA ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
23:53:33.0489 0x17ec  PEAUTH - ok
23:53:33.0561 0x17ec  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
23:53:33.0596 0x17ec  PerfHost - ok
23:53:33.0684 0x17ec  [ BC5F8C5C7ACCD0B884FCB8B67616F537, 5C99E9D7E7095CED52B1F5F4A569E54F124602C573DD2B25731E0D57FDA22A27 ] pla             C:\Windows\system32\pla.dll
23:53:33.0776 0x17ec  pla - ok
23:53:33.0832 0x17ec  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
23:53:33.0894 0x17ec  PlugPlay - ok
23:53:33.0913 0x17ec  PnkBstrA - ok
23:53:33.0926 0x17ec  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
23:53:33.0963 0x17ec  PNRPAutoReg - ok
23:53:33.0989 0x17ec  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
23:53:34.0034 0x17ec  PNRPsvc - ok
23:53:34.0102 0x17ec  [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
23:53:34.0156 0x17ec  PolicyAgent - ok
23:53:34.0176 0x17ec  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
23:53:34.0247 0x17ec  Power - ok
23:53:34.0271 0x17ec  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
23:53:34.0340 0x17ec  PptpMiniport - ok
23:53:34.0360 0x17ec  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
23:53:34.0394 0x17ec  Processor - ok
23:53:34.0440 0x17ec  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
23:53:34.0488 0x17ec  ProfSvc - ok
23:53:34.0523 0x17ec  [ 62056ADD38513A86C4866E912371B56B, 9465E65EB4303BF87483B9621D402E848A50E6D22B05846A621A2761B9516A57 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:53:34.0569 0x17ec  ProtectedStorage - ok
23:53:34.0608 0x17ec  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
23:53:34.0672 0x17ec  Psched - ok
23:53:34.0704 0x17ec  [ 5D6C8E778F0218FCD2CCA0EFBC9766CA, 55B9BD7D168790883E748D9C09DA64E4FEEAC36EC172371DCD108F7F148887B3 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
23:53:34.0743 0x17ec  PxHlpa64 - ok
23:53:34.0817 0x17ec  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
23:53:34.0920 0x17ec  ql2300 - ok
23:53:34.0949 0x17ec  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
23:53:34.0982 0x17ec  ql40xx - ok
23:53:35.0003 0x17ec  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
23:53:35.0067 0x17ec  QWAVE - ok
23:53:35.0076 0x17ec  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
23:53:35.0116 0x17ec  QWAVEdrv - ok
23:53:35.0127 0x17ec  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
23:53:35.0196 0x17ec  RasAcd - ok
23:53:35.0232 0x17ec  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
23:53:35.0300 0x17ec  RasAgileVpn - ok
23:53:35.0317 0x17ec  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
23:53:35.0385 0x17ec  RasAuto - ok
23:53:35.0402 0x17ec  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
23:53:35.0483 0x17ec  Rasl2tp - ok
23:53:35.0503 0x17ec  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
23:53:35.0598 0x17ec  RasMan - ok
23:53:35.0609 0x17ec  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
23:53:35.0685 0x17ec  RasPppoe - ok
23:53:35.0693 0x17ec  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
23:53:35.0805 0x17ec  RasSstp - ok
23:53:35.0821 0x17ec  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
23:53:35.0886 0x17ec  rdbss - ok
23:53:35.0899 0x17ec  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
23:53:35.0933 0x17ec  rdpbus - ok
23:53:35.0950 0x17ec  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
23:53:36.0006 0x17ec  RDPCDD - ok
23:53:36.0025 0x17ec  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
23:53:36.0105 0x17ec  RDPENCDD - ok
23:53:36.0120 0x17ec  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
23:53:36.0179 0x17ec  RDPREFMP - ok
23:53:36.0261 0x17ec  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
23:53:36.0301 0x17ec  RdpVideoMiniport - ok
23:53:36.0339 0x17ec  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
23:53:36.0392 0x17ec  RDPWD - ok
23:53:36.0414 0x17ec  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
23:53:36.0447 0x17ec  rdyboost - ok
23:53:36.0483 0x17ec  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
23:53:36.0544 0x17ec  RemoteAccess - ok
23:53:36.0563 0x17ec  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
23:53:36.0626 0x17ec  RemoteRegistry - ok
23:53:36.0642 0x17ec  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
23:53:36.0706 0x17ec  RpcEptMapper - ok
23:53:36.0729 0x17ec  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
23:53:36.0762 0x17ec  RpcLocator - ok
23:53:36.0814 0x17ec  [ 3F1A199859B4F3F8357B2A0AF5666A54, B0ACE9384088B7D0E54CF82BF48D4FEAA518BDEF98A294BA8F5A37DFF0E45328 ] RpcSs           C:\Windows\system32\rpcss.dll
23:53:36.0863 0x17ec  RpcSs - ok
23:53:36.0878 0x17ec  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
23:53:36.0937 0x17ec  rspndr - ok
23:53:36.0998 0x17ec  [ 2777226EE8BF50B059D7A7C90177E99C, A22BE326F2CA3747BC27073CC4CA1B6D7A34F4D7CBA886BE3F767B7273D7229D ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
23:53:37.0054 0x17ec  RTL8167 - ok
23:53:37.0070 0x17ec  [ 62056ADD38513A86C4866E912371B56B, 9465E65EB4303BF87483B9621D402E848A50E6D22B05846A621A2761B9516A57 ] SamSs           C:\Windows\system32\lsass.exe
23:53:37.0106 0x17ec  SamSs - ok
23:53:37.0146 0x17ec  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
23:53:37.0178 0x17ec  sbp2port - ok
23:53:37.0197 0x17ec  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
23:53:37.0284 0x17ec  SCardSvr - ok
23:53:37.0294 0x17ec  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
23:53:37.0357 0x17ec  scfilter - ok
23:53:37.0436 0x17ec  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
23:53:37.0513 0x17ec  Schedule - ok
23:53:37.0560 0x17ec  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
23:53:37.0623 0x17ec  SCPolicySvc - ok
23:53:37.0636 0x17ec  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
23:53:37.0682 0x17ec  SDRSVC - ok
23:53:37.0705 0x17ec  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
23:53:37.0737 0x17ec  secdrv - ok
23:53:37.0786 0x17ec  [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon        C:\Windows\system32\seclogon.dll
23:53:37.0820 0x17ec  seclogon - ok
23:53:37.0850 0x17ec  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
23:53:37.0916 0x17ec  SENS - ok
23:53:37.0941 0x17ec  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
23:53:37.0987 0x17ec  SensrSvc - ok
23:53:38.0029 0x17ec  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
23:53:38.0061 0x17ec  Serenum - ok
23:53:38.0093 0x17ec  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
23:53:38.0128 0x17ec  Serial - ok
23:53:38.0142 0x17ec  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
23:53:38.0175 0x17ec  sermouse - ok
23:53:38.0203 0x17ec  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
23:53:38.0296 0x17ec  SessionEnv - ok
23:53:38.0313 0x17ec  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
23:53:38.0357 0x17ec  sffdisk - ok
23:53:38.0391 0x17ec  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
23:53:38.0432 0x17ec  sffp_mmc - ok
23:53:38.0449 0x17ec  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
23:53:38.0495 0x17ec  sffp_sd - ok
23:53:38.0531 0x17ec  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
23:53:38.0584 0x17ec  sfloppy - ok
23:53:38.0655 0x17ec  [ 21AB491BBCC8C1B26FDC402A374AB196, DD973C9963C840200D153A15078152D499639730D065BB8122C6BE65D4372300 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
23:53:38.0712 0x17ec  Sftfs - ok
23:53:38.0793 0x17ec  [ 4E1BB8A9CCDB4BAF41F7F9A930EB121D, D994B20DACEB187BEB6530309E2185040B58105E4FD5AC1DA435712F9DE027D0 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
23:53:38.0854 0x17ec  sftlist - ok
23:53:38.0895 0x17ec  [ 3B8D43FEEFF7A187534DDDFD675FE123, 9308D5C552FE3AF1121A3F7B7595547C6B892FF500377953F3B623511D84698C ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
23:53:38.0933 0x17ec  Sftplay - ok
23:53:38.0944 0x17ec  [ F1D1B1DC7A8765A09D7640FBF8D20970, 72E59B04BC44DAFFB88987C16CF3F9DC35438B15879E102FD83013673E0DB66F ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
23:53:38.0974 0x17ec  Sftredir - ok
23:53:39.0008 0x17ec  [ B3B9ADE7F8C4AF0C20E712E040588543, 9A6BB11DA046BF6F0239952871263E148FAE91FB21065613645114B5FA054EC5 ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
23:53:39.0044 0x17ec  Sftvol - ok
23:53:39.0065 0x17ec  [ CECFDE5D3701B2D914862F5E6C3DFE18, E7627F90630C306324A39DC3C652B37D255F90636AC19D3302EE5B85BD504BD5 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
23:53:39.0102 0x17ec  sftvsa - ok
23:53:39.0151 0x17ec  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
23:53:39.0228 0x17ec  SharedAccess - ok
23:53:39.0254 0x17ec  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:53:39.0338 0x17ec  ShellHWDetection - ok
23:53:39.0351 0x17ec  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
23:53:39.0381 0x17ec  SiSRaid2 - ok
23:53:39.0390 0x17ec  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
23:53:39.0428 0x17ec  SiSRaid4 - ok
23:53:39.0510 0x17ec  [ 22CC2A61BC77C5972B58756049AA254E, 4DF554A1C2FF8C2D9AD8633231961DE95171A17295DAA7779E607AFD7BD8FE03 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
23:53:39.0568 0x17ec  SkypeUpdate - ok
23:53:39.0622 0x17ec  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
23:53:39.0689 0x17ec  Smb - ok
23:53:39.0708 0x17ec  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
23:53:39.0745 0x17ec  SNMPTRAP - ok
23:53:39.0809 0x17ec  [ 4945020BC094C322571184A6E8056B3A, 9E09257411F7C3631537D0198E0E64CDD1A697D80430F6379139B15A2BA8A6C9 ] SolidWorks Licensing Service C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
23:53:39.0819 0x17ec  SolidWorks Licensing Service - detected UnsignedFile.Multi.Generic ( 1 )
23:53:40.0212 0x17ec  Detect skipped due to KSN trusted
23:53:40.0212 0x17ec  SolidWorks Licensing Service - ok
23:53:40.0254 0x17ec  [ 977AAA4398D7D6FA65D973F5B3F54E40, 9E7DD68E62A0BC6A8F512582E7B7BA00CC90CEA65B1F46EA6922C38C2D340021 ] SonicStage Back-End Service C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe
23:53:40.0290 0x17ec  SonicStage Back-End Service - ok
23:53:40.0298 0x17ec  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
23:53:40.0326 0x17ec  spldr - ok
23:53:40.0377 0x17ec  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
23:53:40.0434 0x17ec  Spooler - ok
23:53:40.0591 0x17ec  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
23:53:40.0813 0x17ec  sppsvc - ok
23:53:40.0832 0x17ec  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
23:53:40.0905 0x17ec  sppuinotify - ok
23:53:40.0940 0x17ec  [ E3E6C96B0EF4492C3C8FD0DEEF4E35A1, BDCCF36D760B8B92BD8DF54C6F2992D66B76EBA1999623F60F0D68CD91D3CEE1 ] SPTISRV         C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe
23:53:40.0965 0x17ec  SPTISRV - detected UnsignedFile.Multi.Generic ( 1 )
23:53:41.0318 0x17ec  Detect skipped due to KSN trusted
23:53:41.0318 0x17ec  SPTISRV - ok
23:53:41.0376 0x17ec  [ 72E6A150A8C8530B201832D1C801CDE6, EFBDD5D1FB924979E63D829A6970CB5552A746BEBB7C4D41066684CA16A374E0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
23:53:41.0475 0x17ec  srv - ok
23:53:41.0521 0x17ec  [ C4F67ABCC5033D334613F28F9E782809, A19E32E2EF790E88E7013C298AF0A34A9957A7CE55DF19FBD7BDF688D3767BA5 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
23:53:41.0570 0x17ec  srv2 - ok
23:53:41.0587 0x17ec  [ C53CB62B0E57488AAE41FDA0FF8A0AB9, 93614C72C578E348B66690585F8AC2B53C0C19D2C96AAD3E776D3389CA5E43B6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
23:53:41.0631 0x17ec  srvnet - ok
23:53:41.0678 0x17ec  [ 8F8324ED1DE63FFC7B1A02CD2D963C72, E58603F81DEAFF1D45CB83FB6E625E6A13868741B833B1C9E60D672179D18EE0 ] ssadbus         C:\Windows\system32\DRIVERS\ssadbus.sys
23:53:41.0725 0x17ec  ssadbus - ok
23:53:41.0735 0x17ec  [ 58221EFCB74167B73667F0024C661CE0, D9B67A8897B4DC3E4729187F17ABEB4710CF57440D718E17ED828439198D34DB ] ssadmdfl        C:\Windows\system32\DRIVERS\ssadmdfl.sys
23:53:41.0766 0x17ec  ssadmdfl - ok
23:53:41.0811 0x17ec  [ 4DA7C71BFAC5AD71255B7E4CAB980163, 4CC0F9C8E96ECEF36EEB021E448A9734B63512D030516DC38B1A2EEAA1043AEC ] ssadmdm         C:\Windows\system32\DRIVERS\ssadmdm.sys
23:53:41.0857 0x17ec  ssadmdm - ok
23:53:41.0874 0x17ec  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
23:53:41.0944 0x17ec  SSDPSRV - ok
23:53:41.0962 0x17ec  [ 756E371B3B86A3D3039926D32EAC0E8D, 7D3EE49848B90F0815599EC35897E23ECB69BF2686A8F1907E974B4F21419F5D ] SSScsiSV        C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe
23:53:42.0005 0x17ec  SSScsiSV - ok
23:53:42.0021 0x17ec  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
23:53:42.0112 0x17ec  SstpSvc - ok
23:53:42.0161 0x17ec  [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
23:53:42.0196 0x17ec  ssudmdm - ok
23:53:42.0257 0x17ec  [ EF806D212D34B0E173BAEB3564D53E37, 6EF229A7B7AFF0268CDF47B77F961BD44335C3B35499BB00CBA494A22B2BA39E ] ss_bbus         C:\Windows\system32\DRIVERS\ss_bbus.sys
23:53:42.0287 0x17ec  ss_bbus - ok
23:53:42.0302 0x17ec  [ 08B1B34ABEBEB6AC2DEA06900C56411E, 928EF9B9F194DB07049BA2D7127756B021C2729F562E54F7FECD0F2B2FF5A209 ] ss_bmdfl        C:\Windows\system32\DRIVERS\ss_bmdfl.sys
23:53:42.0328 0x17ec  ss_bmdfl - ok
23:53:42.0363 0x17ec  [ 71A9DA6BEAA4CB54DFB827FB78600A5D, 6393CA17CF6A6F30447FF599B2D27CAB44BA1A709D986AC5E14463303094BE5F ] ss_bmdm         C:\Windows\system32\DRIVERS\ss_bmdm.sys
23:53:42.0403 0x17ec  ss_bmdm - ok
23:53:42.0494 0x17ec  [ A831D5A4D2F5138E332AC1B98315EBB1, 2FF5C256A83ACFB5CEC17B9FA7875048F770B793C37657D6D4E37C70B2F857A8 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
23:53:42.0555 0x17ec  Steam Client Service - ok
23:53:42.0587 0x17ec  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
23:53:42.0616 0x17ec  stexstor - ok
23:53:42.0660 0x17ec  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
23:53:42.0726 0x17ec  stisvc - ok
23:53:42.0735 0x17ec  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
23:53:42.0764 0x17ec  swenum - ok
23:53:42.0796 0x17ec  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
23:53:42.0892 0x17ec  swprv - ok
23:53:42.0988 0x17ec  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
23:53:43.0089 0x17ec  SysMain - ok
23:53:43.0107 0x17ec  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:53:43.0183 0x17ec  TabletInputService - ok
23:53:43.0209 0x17ec  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
23:53:43.0288 0x17ec  TapiSrv - ok
23:53:43.0418 0x17ec  [ 7FB36A0A036ADDACE0A868E4A43C1C27, AFDCD57C49D06F31C02F37C81B67BA148CDC9B62AD62B771925D31339DDA9012 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
23:53:43.0530 0x17ec  Tcpip - ok
23:53:43.0623 0x17ec  [ 7FB36A0A036ADDACE0A868E4A43C1C27, AFDCD57C49D06F31C02F37C81B67BA148CDC9B62AD62B771925D31339DDA9012 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
23:53:43.0737 0x17ec  TCPIP6 - ok
23:53:43.0781 0x17ec  [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
23:53:43.0822 0x17ec  tcpipreg - ok
23:53:43.0865 0x17ec  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
23:53:43.0898 0x17ec  TDPIPE - ok
23:53:43.0933 0x17ec  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
23:53:43.0967 0x17ec  TDTCP - ok
23:53:44.0009 0x17ec  [ 4DD986720F7CB7A8A5D1226793097B9A, 9020375B45E9C966BF44CF425C127D7E0EC82EB99C7047F225C25402FF97743D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
23:53:44.0063 0x17ec  tdx - ok
23:53:44.0110 0x17ec  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
23:53:44.0141 0x17ec  TermDD - ok
23:53:44.0196 0x17ec  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
23:53:44.0258 0x17ec  TermService - ok
23:53:44.0272 0x17ec  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
23:53:44.0314 0x17ec  Themes - ok
23:53:44.0348 0x17ec  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
23:53:44.0418 0x17ec  THREADORDER - ok
23:53:44.0443 0x17ec  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
23:53:44.0529 0x17ec  TrkWks - ok
23:53:44.0582 0x17ec  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:53:44.0650 0x17ec  TrustedInstaller - ok
23:53:44.0686 0x17ec  [ 2CF58216424757ED29605B4F18EC443C, 9D523FC075F7F41A17F60617670A976A8F2F2943444515DC3834720BDC37DFA0 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
23:53:44.0727 0x17ec  tssecsrv - ok
23:53:44.0748 0x17ec  [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
23:53:44.0784 0x17ec  TsUsbFlt - ok
23:53:44.0807 0x17ec  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
23:53:44.0844 0x17ec  TsUsbGD - ok
23:53:44.0860 0x17ec  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
23:53:44.0943 0x17ec  tunnel - ok
23:53:44.0956 0x17ec  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
23:53:44.0994 0x17ec  uagp35 - ok
23:53:45.0020 0x17ec  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
23:53:45.0098 0x17ec  udfs - ok
23:53:45.0112 0x17ec  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
23:53:45.0151 0x17ec  UI0Detect - ok
23:53:45.0162 0x17ec  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
23:53:45.0192 0x17ec  uliagpkx - ok
23:53:45.0208 0x17ec  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
23:53:45.0247 0x17ec  umbus - ok
23:53:45.0271 0x17ec  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
23:53:45.0331 0x17ec  UmPass - ok
23:53:45.0360 0x17ec  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
23:53:45.0437 0x17ec  upnphost - ok
23:53:45.0492 0x17ec  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
23:53:45.0525 0x17ec  usbaudio - ok
23:53:45.0564 0x17ec  [ 28B81917A195B67617AF7DCF4DFE5736, 40A4D2AAE1BDE5ABA8708ED150396E913C566ECD5CDA40D6C6DB256F1B9FD4A9 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
23:53:45.0599 0x17ec  usbccgp - ok
23:53:45.0641 0x17ec  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
23:53:45.0679 0x17ec  usbcir - ok
23:53:45.0720 0x17ec  [ B626F048318DAE65A3317F0592BE592C, 284D8FFE1D35F852EFDA182A72288AC3A10D6ED825FE2CC5812497D3FE291AF1 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
23:53:45.0754 0x17ec  usbehci - ok
23:53:45.0802 0x17ec  [ 390109E8E05BA00375DCB1ED64DC60AF, B8628502590B423BEFB6F7C8C69FAD0667AD0746FF6B444EE02016E8E1052B78 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
23:53:45.0846 0x17ec  usbhub - ok
23:53:45.0880 0x17ec  [ B4DF0F4C1D9D25DFE1DAD1D8670F1D4F, 4317C2DEDC639527B53864BAEC46CBE022D298C0503E29E1072DD1C851D92BFC ] usbohci         C:\Windows\system32\drivers\usbohci.sys
23:53:45.0923 0x17ec  usbohci - ok
23:53:45.0943 0x17ec  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
23:53:45.0980 0x17ec  usbprint - ok
23:53:46.0021 0x17ec  [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR         C:\Windows\system32\drivers\USBSTOR.SYS
23:53:46.0056 0x17ec  USBSTOR - ok
23:53:46.0094 0x17ec  [ CFEAAF96E666E3DCBD8F6DFF516784AE, 006218A3DB5851790CC0A7F3DCD7B3AF82F624DA679296DE507AFD36C5468317 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
23:53:46.0141 0x17ec  usbuhci - ok
23:53:46.0170 0x17ec  [ 7B28E2FBE75115660FAB31079C0A9F29, 81BB5A3E64B652A672A0782A88ABF6DDD729D38712D0706CE0FB9DE6D1EE1515 ] usb_rndisx      C:\Windows\system32\DRIVERS\usb8023x.sys
23:53:46.0201 0x17ec  usb_rndisx - ok
23:53:46.0213 0x17ec  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
23:53:46.0284 0x17ec  UxSms - ok
23:53:46.0296 0x17ec  [ 62056ADD38513A86C4866E912371B56B, 9465E65EB4303BF87483B9621D402E848A50E6D22B05846A621A2761B9516A57 ] VaultSvc        C:\Windows\system32\lsass.exe
23:53:46.0336 0x17ec  VaultSvc - ok
23:53:46.0376 0x17ec  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
23:53:46.0406 0x17ec  vdrvroot - ok
23:53:46.0437 0x17ec  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
23:53:46.0524 0x17ec  vds - ok
23:53:46.0557 0x17ec  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
23:53:46.0595 0x17ec  vga - ok
23:53:46.0608 0x17ec  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
23:53:46.0671 0x17ec  VgaSave - ok
23:53:46.0731 0x17ec  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
23:53:46.0769 0x17ec  vhdmp - ok
23:53:46.0807 0x17ec  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
23:53:46.0839 0x17ec  viaide - ok
23:53:46.0851 0x17ec  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
23:53:46.0885 0x17ec  volmgr - ok
23:53:46.0926 0x17ec  [ 85C5468BC395819AE2A0C747334BA14C, 75EB4751F90F3347229442A5622539383CE0B1834EE7B995260D0D433BA2E25F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
23:53:46.0971 0x17ec  volmgrx - ok
23:53:47.0017 0x17ec  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
23:53:47.0056 0x17ec  volsnap - ok
23:53:47.0081 0x17ec  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
23:53:47.0115 0x17ec  vsmraid - ok
23:53:47.0183 0x17ec  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
23:53:47.0315 0x17ec  VSS - ok
23:53:47.0330 0x17ec  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
23:53:47.0367 0x17ec  vwifibus - ok
23:53:47.0393 0x17ec  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
23:53:47.0479 0x17ec  W32Time - ok
23:53:47.0500 0x17ec  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
23:53:47.0533 0x17ec  WacomPen - ok
23:53:47.0548 0x17ec  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
23:53:47.0625 0x17ec  WANARP - ok
23:53:47.0632 0x17ec  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
23:53:47.0706 0x17ec  Wanarpv6 - ok
23:53:47.0774 0x17ec  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
23:53:47.0868 0x17ec  wbengine - ok
23:53:47.0896 0x17ec  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
23:53:47.0953 0x17ec  WbioSrvc - ok
23:53:47.0980 0x17ec  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
23:53:48.0034 0x17ec  wcncsvc - ok
23:53:48.0071 0x17ec  [ BC00873272B3771CCDA38336AF2B4D4B, 3E412DEC5F172B4C5FD5C227CD790EE56B90A00A8B538704E8F973D230BE2289 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:53:48.0120 0x17ec  WcsPlugInService - ok
23:53:48.0131 0x17ec  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
23:53:48.0160 0x17ec  Wd - ok
23:53:48.0228 0x17ec  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
23:53:48.0289 0x17ec  Wdf01000 - ok
23:53:48.0335 0x17ec  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
23:53:48.0382 0x17ec  WdiServiceHost - ok
23:53:48.0388 0x17ec  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
23:53:48.0426 0x17ec  WdiSystemHost - ok
23:53:48.0469 0x17ec  [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient       C:\Windows\System32\webclnt.dll
23:53:48.0515 0x17ec  WebClient - ok
23:53:48.0535 0x17ec  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
23:53:48.0630 0x17ec  Wecsvc - ok
23:53:48.0650 0x17ec  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
23:53:48.0731 0x17ec  wercplsupport - ok
23:53:48.0750 0x17ec  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
23:53:48.0825 0x17ec  WerSvc - ok
23:53:48.0838 0x17ec  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
23:53:48.0911 0x17ec  WfpLwf - ok
23:53:48.0934 0x17ec  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
23:53:48.0964 0x17ec  WIMMount - ok
23:53:48.0979 0x17ec  WinDefend - ok
23:53:48.0993 0x17ec  WinHttpAutoProxySvc - ok
23:53:49.0043 0x17ec  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
23:53:49.0117 0x17ec  Winmgmt - ok
23:53:49.0204 0x17ec  [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM           C:\Windows\system32\WsmSvc.dll
23:53:49.0327 0x17ec  WinRM - ok
23:53:49.0389 0x17ec  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\drivers\WinUsb.sys
23:53:49.0427 0x17ec  WinUsb - ok
23:53:49.0494 0x17ec  [ 4B7912EB80820EAC543EE54806EFCAF0, 4D9186F9FE80F03C85C4DC73342EE5870DF1021BD29974BE33557CEA0D524667 ] Wlansvc         C:\Windows\System32\wlansvc.dll
23:53:49.0570 0x17ec  Wlansvc - ok
23:53:49.0636 0x17ec  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
23:53:49.0663 0x17ec  wlcrasvc - ok
23:53:49.0803 0x17ec  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:53:49.0917 0x17ec  wlidsvc - ok
23:53:49.0955 0x17ec  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
23:53:49.0990 0x17ec  WmiAcpi - ok
23:53:50.0034 0x17ec  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
23:53:50.0079 0x17ec  wmiApSrv - ok
23:53:50.0092 0x17ec  WMPNetworkSvc - ok
23:53:50.0126 0x17ec  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
23:53:50.0177 0x17ec  WPCSvc - ok
23:53:50.0200 0x17ec  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
23:53:50.0239 0x17ec  WPDBusEnum - ok
23:53:50.0276 0x17ec  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
23:53:50.0340 0x17ec  ws2ifsl - ok
23:53:50.0383 0x17ec  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
23:53:50.0427 0x17ec  wscsvc - ok
23:53:50.0431 0x17ec  WSearch - ok
23:53:50.0610 0x17ec  [ 88009DB9E1166B6B6713A858C176FECD, CBF4C63D3C5D14AF3C3F0D9C48E5AC9E7A4323BFB0363E9948FD801963BE1467 ] wuauserv        C:\Windows\system32\wuaueng.dll
23:53:50.0763 0x17ec  wuauserv - ok
23:53:50.0801 0x17ec  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
23:53:50.0839 0x17ec  WudfPf - ok
23:53:50.0861 0x17ec  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\drivers\WUDFRd.sys
23:53:50.0916 0x17ec  WUDFRd - ok
23:53:50.0935 0x17ec  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
23:53:50.0976 0x17ec  wudfsvc - ok
23:53:51.0013 0x17ec  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
23:53:51.0066 0x17ec  WwanSvc - ok
23:53:51.0079 0x17ec  ================ Scan global ===============================
23:53:51.0117 0x17ec  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
23:53:51.0160 0x17ec  [ 66A8A9412337B08E1735204B8ADEE58C, 766429FBB014A9CA6AEFD39579C3F33625335A3DFD88AB324E4534978695B887 ] C:\Windows\system32\winsrv.dll
23:53:51.0178 0x17ec  [ 66A8A9412337B08E1735204B8ADEE58C, 766429FBB014A9CA6AEFD39579C3F33625335A3DFD88AB324E4534978695B887 ] C:\Windows\system32\winsrv.dll
23:53:51.0221 0x17ec  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
23:53:51.0266 0x17ec  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
23:53:51.0279 0x17ec  [ Global ] - ok
23:53:51.0279 0x17ec  ================ Scan MBR ==================================
23:53:51.0289 0x17ec  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:53:51.0583 0x17ec  \Device\Harddisk0\DR0 - ok
23:53:51.0584 0x17ec  ================ Scan VBR ==================================
23:53:51.0586 0x17ec  [ 63F2471B24850C70558715FBEB7C46C5 ] \Device\Harddisk0\DR0\Partition1
23:53:51.0588 0x17ec  \Device\Harddisk0\DR0\Partition1 - ok
23:53:51.0591 0x17ec  [ 80C281C5393ACA8FFDDE7FCEFED50E84 ] \Device\Harddisk0\DR0\Partition2
23:53:51.0593 0x17ec  \Device\Harddisk0\DR0\Partition2 - ok
23:53:51.0594 0x17ec  ================ Scan generic autorun ======================
23:53:52.0202 0x17ec  [ A527E6181F1E58BDF9134DE04AAC2B02, 3E4F7ABDFD468E71A4510A2C193C6EDCE2694175B17C055951BC43AB8E283A20 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
23:53:52.0906 0x17ec  RTHDVCPL - ok
23:53:52.0982 0x17ec  [ 8943465BEFA91044227D42E84ECB8280, 76D19CE3EB7E6C6573F250543CDC10B3601604535BFB756805AE246FA55AC265 ] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
23:53:53.0019 0x17ec  NUSB3MON - ok
23:53:53.0033 0x17ec  SPEEDLINK KUDOS - ok
23:53:53.0070 0x17ec  [ F4746885E6F2758510D87EE51C1B7FC6, 845162354E7177BDF02321ACF0F525C848BE8E956E4A9270FCE88B438AD21836 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
23:53:53.0118 0x17ec  SunJavaUpdateSched - ok
23:53:53.0201 0x17ec  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
23:53:53.0353 0x17ec  Sidebar - ok
23:53:53.0387 0x17ec  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
23:53:53.0429 0x17ec  mctadmin - ok
23:53:53.0484 0x17ec  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
23:53:53.0559 0x17ec  Sidebar - ok
23:53:53.0566 0x17ec  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
23:53:53.0622 0x17ec  mctadmin - ok
23:53:53.0733 0x17ec  [ A07E8935CC8DCE6DB787DC99129CA17C, D432E0414E2B59B90A8826984F4649AF810E8385C7CCEDF646B99C027113301A ] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
23:53:53.0825 0x17ec  DAEMON Tools Lite - ok
23:53:54.0010 0x17ec  [ 2A91472C8408B31E9EBEECB31FF5EC6E, F2409C7C97FF13DC91DD4FD8D197519735AC23BDDA8355E3790180C803F81C41 ] C:\Program Files (x86)\Steam\steam.exe
23:53:54.0149 0x17ec  Steam - ok
23:53:54.0198 0x17ec  Skype - ok
23:53:54.0203 0x17ec  Waiting for KSN requests completion. In queue: 111
23:53:55.0261 0x17ec  AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\AntiVir Desktop\WindowsSecurityCenter.exe ( 15.0.32.11 ), 0x41000 ( enabled : updated )
23:53:55.0291 0x17ec  AV detected via SS2: Malwarebytes, C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe ( 3.0.0.143 ), 0x61000 ( enabled : updated )
23:53:55.0302 0x17ec  Win FW state via NFP2: enabled ( trusted )
23:53:55.0768 0x17ec  ============================================================
23:53:55.0768 0x17ec  Scan finished
23:53:55.0768 0x17ec  ============================================================
23:53:55.0777 0x2290  Detected object count: 0
23:53:55.0777 0x2290  Actual detected object count: 0

Käfer_Wurm · 14.11.2017, 20:20

Hey Leute, niemand der helfen kann? Brauche dringend Hilfe, seit heute meldet Avira das ich einen TR/Trash.Gen Trojaner auf meinem Rechner habe.

M-K-D-B · 14.11.2017, 21:11

Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen.

Um die Bereinigung möchlichst effektiv und schnell gestalten zu können, bitte ich um Beachtung der folgenden Hinweise:

Falls wir Hinweise auf illegal erworbene Software finden, werden wir den Support unterbrechen bis jegliche Art von illegaler Software vom Rechner entfernt wurde.
Lies dir meine Anleitungen immer sorgfältig durch, arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste immer alle Logdateien (auch wenn nichts gefunden wurde). Solltest du Probleme haben, stoppe mit deiner Bearbeitung und beschreibe mir dein Problem so gut es geht.
Solltest du mir nicht innerhalb von 3 Tagen antworten, gehe ich davon aus, dass du keine Hilfe mehr benötigst. Dann lösche ich dein Thema aus meinem Abo. Solltest du einmal länger abwesend sein, so gib mir bitte Bescheid!
Während der Bereinigung bitte nichts installieren oder deinstallieren, außer ich bitte dich darum!
Außerdem bitte ich dich, nicht eigenmächtig irgendwelche Sicherheitsprogramme auszuführen und damit deinen Rechner zu überprüfen/bereinigen, da ich so leicht den Überblick verlieren kann.
Zudem hättest du dir das Eröffnen eines Themas in diesem Fall auch gleich sparen können, wenn du dann doch wieder alleine rumhantierst.
Bitte beachten: Download bei filepony.de: So ladet Ihr unsere Tools richtig!
Alle zu verwendenen Programme sind auf dem Desktop ( C:\users\dein Benutzername\Desktop\ ) abzuspeichern und von dort als Administrator zu starten!
Einige Programme, die wir hier verwenden, können unter Umständen von deinem Antiviren- oder Anti-Malwareprogramm fälschlicherweise als Bedrohung eingestuft werden. Die Sicherheitsprogramme können aufgrund eines bestimmten Programmverhaltens nicht zwischen "gut" oder "böse" unterscheiden und schlagen Alarm. Dabei handelt es sich um Fehlalarme, welche du getrost ignorieren kannst. Gegebenenfalls musst du deine Sicherheitssoftware vor der Ausführung eines Programms deaktivieren, damit unsere Bereinigungsvorgänge nicht beeinträchtigt werden.
Sollten die Logdateien einmal die zulässige Länge (~ 120.000 Zeichen) überschreiten, so teile die Logdateien auf mehrere Posts auf.
Zur Not kannst du die Logdateien dann auch zippen (in ein .zip Archiv packen) und als Anhang hochladen.
Bitte arbeite so lange mit mir zusammen, bis ich dir sage, dass wir fertig sind und dein Rechner "sauber" ist. Das vorzeitige Verschwinden von Symptomen heißt nicht automatisch, dass dein Rechner bereits vollständig sauber ist.
In der Regel antworte ich dir innerhalb von 24 Stunden, oft sogar wesentlich schneller.
Jedoch habe auch ich einen normalen Beruf und Familie. Ich bin daher nicht jeden Tag stundenlag hier im Forum unterwegs. Es kann unter Umständen bis zu 2 Tage dauern, bis du eine Antwort von mir erhältst. Sollte diese Zeit überschritten sein, so kannst du mir gerne eine PM als Erinnerung schicken.

Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke aauf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Danke für deine Mitarbeit!

Wenn du selbst auf deinen 1. Post antwortest, wird das Thema als "in Arbeit" angesehen. Darum hat sich keiner gemeldet.

Schritt 1
Downloade Dir bitte AdwCleaner auf deinen Desktop (Bebilderte Anleitung).

Schließe alle offenen Programme und Browser.
Starte die adwcleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Werkzeuge > Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- Tracing Schlüssel
- Prefetch Dateien
- Proxy
- Winsock
- IE Richtlinien
- Chrome Richtlinien
Bestätige die Auswahl mit Ok.
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist. Am Ende des Suchlaufs öffnet sich automatisch eine Logdatei. Schließe diese.
Klicke nun auf Löschen (auch dann wenn AdwCleaner sagt, dass nichts gefunden wurde) und bestätige auftretende Hinweise mit Ok.
Klicke am Ende der Bereinigung auf Jetzt neu starten. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Schritt 2

Starte die FRST.exe erneut. Vergewissere dich, dass vor Addition.txt ein Haken gesetzt ist und drücke auf Untersuchen.
FRST erstellt wieder zwei Logdateien (FRST.txt und Addition.txt).
Poste mir beide Logdateien mit deiner nächsten Antwort.

Bitte poste mit deiner nächsten Antwort

die Logdatei von AdwCleaner,
die zwei neuen Logdateien von FRST.

Käfer_Wurm · 14.11.2017, 21:39

Hey, danke dir.

Hier die Dateien:

1) Logdatei AdwCleaner

Code:

ATTFilter

# AdwCleaner 7.0.4.0 - Logfile created on Tue Nov 14 20:28:17 2017
# Updated on 2017/27/10 by Malwarebytes 
# Running on Windows 7 Home Premium (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

Deleted: chip1click


***** [ Folders ] *****

Deleted: C:\Program Files (x86)\Chip Digital GmbH
Deleted: C:\Windows\\Installer\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}


***** [ Files ] *****

No malicious files deleted.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}
Deleted: [Key] - HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\04A063A0BBEACF54EAEF493C49D9E3F6
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\04A063A0BBEACF54EAEF493C49D9E3F6
Deleted: [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\E49AC3054380EEC4DA29AB71FAE408A9
Deleted: [Key] - HKLM\SOFTWARE\Classes\Installer\Features\E49AC3054380EEC4DA29AB71FAE408A9
Deleted: [Key] - HKLM\SOFTWARE\Classes\Installer\Products\E49AC3054380EEC4DA29AB71FAE408A9
Deleted: [Key] - HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\chip 1-click download service
Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders|C:\Program Files (x86)\Chip Digital GmbH\chip1click\
Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders|C:\Program Files (x86)\Chip Digital GmbH\
Deleted: [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders|C:\Windows\Installer\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}\


***** [ Firefox (and derivatives) ] *****

Plugin deleted: __MSG_newtab_chrome_extension_name__ - 


***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::Winsock settings cleared
::Prefetch files deleted
::Proxy settings cleared
::IE policies deleted
::Chrome policies deleted
::Additional Actions: 0



*************************

C:/AdwCleaner/AdwCleaner[C0].txt - [3638 B] - [2017/11/12 20:35:30]
C:/AdwCleaner/AdwCleaner[C1].txt - [1398 B] - [2017/11/12 23:5:13]
C:/AdwCleaner/AdwCleaner[S0].txt - [3985 B] - [2017/11/12 20:33:27]
C:/AdwCleaner/AdwCleaner[S1].txt - [1137 B] - [2017/11/12 23:4:2]
C:/AdwCleaner/AdwCleaner[S2].txt - [2628 B] - [2017/11/14 20:27:57]


########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt ##########

FRST:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 12-11-2017 03
durchgeführt von alex (Administrator) auf ALEX-PC (14-11-2017 21:33:29)
Gestartet von C:\Users\alex\Desktop
Geladene Profile: alex &  (Verfügbare Profile: alex)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13657304 2013-10-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [SPEEDLINK KUDOS] => "C:\Program Files (x86)\SPEEDLINK\SPEEDLINK PRIME Gaming Mouse\Gaming Mouse.exe" /hide
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3071776 2017-08-28] (Valve Corporation)
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27832264 2017-10-10] (Skype Technologies S.A.)
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\MountPoints2: {19691dfc-0cd9-11e3-b49a-1c6f65d3997a} - E:\LGAutoRun.exe
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\MountPoints2: {349232bf-0461-11e5-b4e3-e069954f83e1} - E:\AutoRun.exe
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\MountPoints2: {620a5c4c-0ab1-11e5-93d6-e069954f83e1} - H:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\MountPoints2: {780ee4a3-fa16-11e2-8d85-1c6f65d3997a} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11142017213053072\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3071776 2017-08-28] (Valve Corporation)
HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11142017213053072\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27832264 2017-10-10] (Skype Technologies S.A.)
HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11142017213053072\...\MountPoints2: {19691dfc-0cd9-11e3-b49a-1c6f65d3997a} - E:\LGAutoRun.exe
HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11142017213053072\...\MountPoints2: {349232bf-0461-11e5-b4e3-e069954f83e1} - E:\AutoRun.exe
HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11142017213053072\...\MountPoints2: {620a5c4c-0ab1-11e5-93d6-e069954f83e1} - H:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11142017213053072\...\MountPoints2: {780ee4a3-fa16-11e2-8d85-1c6f65d3997a} - E:\HTC_Sync_Manager_PC.exe
HKLM\...\Providers\Internet Print Provider: inetpp.dll
HKLM\...\Providers\LanMan Print Services: C:\Windows\SysWOW64\win32spl.dll [497664 2017-08-11] (Microsoft Corporation)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{347AFFFE-87B0-4B7D-BDFF-6C7930EDA7D3}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{4597ADE4-1244-49B0-BACA-836220FE22EC}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{F7935B33-8BC6-4B43-A4EB-BEAC5AB65CEB}: [DhcpNameServer] 192.168.8.1 192.168.8.1

Internet Explorer:
==================
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://nmd.msn.com
HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11142017213053072\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://nmd.msn.com
URLSearchHook: HKU\S-1-5-21-1855058041-1027751042-450180876-1001 -> Standard = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11142017213053072 -> Standard = {855F3B16-6D32-4fe6-8A56-BBB695989046}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {C4DF1EB9-3C61-4AA8-A878-EFA940BF16E9} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MNMTDF&pc=MANM&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {BD42D578-1A13-44F7-A102-56AE8D21DD41} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MNMTDF&pc=MANM&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-1855058041-1027751042-450180876-1001 -> {BD42D578-1A13-44F7-A102-56AE8D21DD41} URL = 
SearchScopes: HKU\S-1-5-21-1855058041-1027751042-450180876-1001 -> {C69CE5AC-1FF2-4C74-9129-68B65C92FF7B} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&intl=de&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
SearchScopes: HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11142017213053072 -> {BD42D578-1A13-44F7-A102-56AE8D21DD41} URL = 
SearchScopes: HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11142017213053072 -> {C69CE5AC-1FF2-4C74-9129-68B65C92FF7B} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&intl=de&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-11-02] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-11-02] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll [2017-07-29] (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-11-10] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-07-29] (Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

FireFox:
========
FF ProfilePath: C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\zdlucn6m.default [2017-11-14]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\zdlucn6m.default -> ICQ Search
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\zdlucn6m.default -> ICQ Search
FF Homepage: Mozilla\Firefox\Profiles\zdlucn6m.default -> hxxps://search.avira.com/#/?show_is=1&source=art
FF NetworkProxy: Mozilla\Firefox\Profiles\zdlucn6m.default -> type", 0
FF Extension: (ADB Helper) - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\zdlucn6m.default\Extensions\adbhelper@mozilla.org [2017-09-26]
FF Extension: (Valence) - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\zdlucn6m.default\Extensions\fxdevtools-adapters@mozilla.org [2017-09-18]
FF Extension: (Suchen und neue Registerkarte von Yahoo) - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\zdlucn6m.default\Extensions\jid1-16aeif9OQIRKxA@jetpack.xpi [2017-11-10]
FF Extension: (Safe Browsing Version 4 (temporary add-on)) - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\zdlucn6m.default\Extensions\sbv4-gradual-rollout@mozilla.com.xpi [2017-11-08]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_187.dll [2017-11-14] ()
FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-11-02] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-11-02] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_187.dll [2017-11-14] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-07-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-07-29] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-06] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-06] (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll [2012-06-28] (Nullsoft, Inc.)

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [1128432 2017-10-13] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [490968 2017-10-13] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [490968 2017-10-13] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1525240 2017-10-13] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [413592 2017-11-02] (Avira Operations GmbH & Co. KG)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Datei ist nicht signiert]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
S3 MSCSPTISRV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [45056 2006-12-14] (Sony Corporation) [Datei ist nicht signiert]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-10-06] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [460736 2017-10-11] (NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1451336 2017-10-23] (Overwolf LTD)
S3 PACSPTISVR; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [57344 2006-12-14] () [Datei ist nicht signiert]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2012-12-15] ()
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite Platinum.SP2\RpcAgentSrv.exe [135728 2017-09-11] (SiSoftware) [Datei ist nicht signiert]
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2013-07-04] (SolidWorks) [Datei ist nicht signiert]
S3 SonicStage Back-End Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe [112184 2007-02-05] (Sony Corporation)
S3 SPTISRV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe [69632 2006-12-14] (Sony Corporation) [Datei ist nicht signiert]
S3 SSScsiSV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe [75320 2007-02-05] (Sony Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 a4djavs; C:\Windows\System32\Drivers\a4djavs.sys [359784 2012-12-18] (Native Instruments GmbH)
S3 a4djusb_svc; C:\Windows\System32\Drivers\a4djusb.sys [99688 2012-12-18] (Native Instruments GmbH)
S3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [96256 2013-07-05] (Advanced Micro Devices) [Datei ist nicht signiert]
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [64504 2017-06-16] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [194272 2017-09-19] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [151128 2017-08-31] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [35328 2017-03-22] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2017-03-22] (Avira Operations GmbH & Co. KG)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77432 2017-11-01] ()
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [193464 2017-11-14] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [110016 2017-11-14] (Malwarebytes)
R3 MBAMProtection; C:\Windows\System32\DRIVERS\mbam.sys [46008 2017-11-14] (Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253880 2017-11-14] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [84256 2017-11-14] (Malwarebytes)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-10-11] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50624 2017-10-11] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-07-26] (NVIDIA Corporation)
S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite Platinum.SP2\WNt600x64\Sandra.sys [23112 2009-08-07] (SiSoftware)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-11-14 21:33 - 2017-11-14 21:34 - 000019952 _____ C:\Users\alex\Desktop\FRST.txt
2017-11-14 21:16 - 2017-11-14 21:16 - 008261584 _____ (Malwarebytes) C:\Users\alex\Desktop\adwcleaner_7.0.4.0(1).exe
2017-11-14 20:06 - 2017-11-14 21:30 - 000110016 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-11-14 20:06 - 2017-11-14 21:30 - 000084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-11-14 20:06 - 2017-11-14 21:30 - 000046008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-11-14 20:06 - 2017-11-14 20:06 - 000193464 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2017-11-14 19:45 - 2017-11-14 19:46 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3418972363_spectate.bat
2017-11-14 19:35 - 2017-11-14 19:35 - 000001128 _____ C:\Users\Public\Desktop\Avira.lnk
2017-11-14 18:47 - 2017-11-14 18:47 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3418859301_spectate.bat
2017-11-14 18:41 - 2017-11-14 18:41 - 000253880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2017-11-14 18:12 - 2017-11-14 18:12 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3418810417_spectate.bat
2017-11-14 15:57 - 2017-11-14 15:57 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3418697380_spectate.bat
2017-11-14 02:48 - 2017-11-14 02:49 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3418464229_spectate.bat
2017-11-14 01:48 - 2017-11-14 01:48 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3418438480_spectate.bat
2017-11-14 01:16 - 2017-11-14 01:16 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3418424391_spectate.bat
2017-11-14 00:51 - 2017-11-14 00:51 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3418389785_spectate.bat
2017-11-14 00:17 - 2017-11-14 00:17 - 000006462 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3418165987_replay.bat
2017-11-13 20:05 - 2017-11-13 20:05 - 000000000 ____D C:\Users\alex\AppData\Roaming\Battle.net
2017-11-13 19:51 - 2017-11-13 19:51 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3417800759_spectate.bat
2017-11-13 19:03 - 2017-11-13 19:03 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3417609103_spectate.bat
2017-11-13 18:19 - 2017-11-13 18:19 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3417541529_spectate.bat
2017-11-13 17:38 - 2017-11-13 17:38 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3417495018_spectate.bat
2017-11-13 16:55 - 2017-11-13 16:55 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3417460693_spectate.bat
2017-11-13 11:51 - 2017-11-13 11:51 - 000000229 _____ C:\Users\alex\Desktop\new 1.txt
2017-11-13 11:48 - 2017-11-13 11:52 - 000000000 ____D C:\Users\alex\Desktop\Java Programme
2017-11-13 11:38 - 2017-11-13 11:38 - 000000027 _____ C:\Users\alex\Desktop\NUmmer.txt
2017-11-13 11:16 - 2017-09-05 02:16 - 016384000 _____ C:\Users\alex\AppData\Roaming\Sandra.mdb
2017-11-13 11:11 - 2017-11-13 11:11 - 000001218 _____ C:\Users\Public\Desktop\SiSoftware Sandra Lite Platinum.SP2.lnk
2017-11-13 11:11 - 2017-11-13 11:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SiSoftware
2017-11-13 11:11 - 2017-11-13 11:11 - 000000000 ____D C:\Program Files\SiSoftware
2017-11-13 11:07 - 2017-11-13 11:07 - 001533960 _____ (CHIP Digital GmbH) C:\Users\alex\Downloads\SiSoft Sandra Lite - CHIP-Installer.exe
2017-11-13 02:21 - 2017-11-13 02:21 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3417154533_spectate.bat
2017-11-13 01:30 - 2017-11-13 01:30 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3417125859_spectate.bat
2017-11-13 00:07 - 2017-11-13 00:07 - 000001398 _____ C:\Users\alex\Desktop\AdwCleaner[C1].txt
2017-11-12 23:51 - 2017-11-12 23:58 - 000213110 _____ C:\TDSSKiller.3.1.0.15_12.11.2017_23.51.39_log.txt
2017-11-12 23:43 - 2017-11-12 23:44 - 000071077 _____ C:\Users\alex\Downloads\Addition.txt
2017-11-12 23:42 - 2017-11-12 23:42 - 004922400 _____ (AO Kaspersky Lab) C:\Users\alex\Desktop\tdsskiller.exe
2017-11-12 23:41 - 2017-11-14 21:33 - 000000000 ____D C:\FRST
2017-11-12 23:41 - 2017-11-12 23:44 - 000046411 _____ C:\Users\alex\Downloads\FRST.txt
2017-11-12 23:41 - 2017-11-12 23:41 - 002392576 _____ (Farbar) C:\Users\alex\Desktop\FRST64.exe
2017-11-12 22:33 - 2017-11-12 22:33 - 000040303 _____ C:\Users\alex\Desktop\riskware.txt
2017-11-12 22:12 - 2017-11-12 22:12 - 000001875 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-11-12 22:12 - 2017-11-12 22:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-11-12 22:12 - 2017-11-12 22:12 - 000000000 ____D C:\ProgramData\MB2Migration
2017-11-12 22:12 - 2017-11-12 22:12 - 000000000 ____D C:\Program Files\Malwarebytes
2017-11-12 22:12 - 2017-11-01 08:54 - 000077432 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-11-12 22:08 - 2017-11-12 22:12 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-11-12 22:08 - 2017-11-12 22:12 - 000000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2017-11-12 22:07 - 2017-11-12 22:08 - 022851472 _____ (Malwarebytes ) C:\Users\alex\Downloads\mbam-setup-2.2.1.1043.exe
2017-11-12 21:29 - 2017-11-14 21:28 - 000000000 ____D C:\AdwCleaner
2017-11-12 21:28 - 2017-11-12 21:28 - 008261584 _____ (Malwarebytes) C:\Users\alex\Downloads\adwcleaner_7.0.4.0.exe
2017-11-11 19:29 - 2017-11-11 19:29 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3414915565_spectate.bat
2017-11-11 19:00 - 2017-11-11 19:00 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3414901227_spectate.bat
2017-11-11 18:42 - 2017-11-11 18:42 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3414809012_spectate.bat
2017-11-11 15:20 - 2017-11-11 15:20 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3414183906_spectate.bat
2017-11-10 14:50 - 2017-11-10 14:50 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3412431347_spectate.bat
2017-11-09 17:17 - 2017-11-09 17:17 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3411177660_spectate.bat
2017-11-09 11:13 - 2017-11-09 11:13 - 000006150 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3006122103_replay(1).bat
2017-11-09 10:08 - 2017-11-09 10:08 - 000006150 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3006122103_replay.bat
2017-11-07 18:06 - 2017-11-07 18:06 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3408148565_spectate.bat
2017-11-07 16:57 - 2017-11-07 16:57 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3408063225_spectate.bat
2017-11-07 04:45 - 2017-11-07 04:46 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3407804503_spectate.bat
2017-11-07 02:26 - 2017-11-07 02:26 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3407776951_spectate.bat
2017-11-07 01:58 - 2017-11-07 01:58 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3407765279_spectate.bat
2017-11-05 14:36 - 2017-11-05 14:36 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3405798172_spectate.bat
2017-11-05 12:47 - 2017-11-05 12:47 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3405682697_spectate.bat
2017-11-05 12:13 - 2017-11-05 12:13 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3405663137_spectate.bat
2017-11-05 00:21 - 2017-11-05 00:21 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3405369190_spectate.bat
2017-11-04 22:10 - 2017-11-04 22:10 - 000006462 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3401400454_replay.bat
2017-11-04 16:06 - 2017-11-04 16:06 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3404775746_spectate.bat
2017-11-02 19:42 - 2017-11-02 19:42 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3402203778_spectate.bat
2017-11-02 11:49 - 2017-11-02 11:49 - 000110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2017-11-02 11:47 - 2017-11-02 11:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2017-11-02 11:46 - 2017-11-02 11:49 - 000000000 ____D C:\Program Files\Java
2017-11-02 11:45 - 2017-11-02 11:45 - 000000000 ____D C:\Users\alex\AppData\LocalLow\Oracle
2017-11-02 11:39 - 2017-11-02 11:45 - 215956536 _____ (Oracle Corporation) C:\Users\alex\Downloads\jdk-8u151-windows-x64.exe
2017-11-02 11:27 - 2017-11-02 11:27 - 001533960 _____ (CHIP Digital GmbH) C:\Users\alex\Downloads\Java SDK 64 Bit - CHIP-Installer.exe
2017-11-02 10:41 - 2017-11-02 10:41 - 002842320 _____ C:\Users\alex\Downloads\npp.7.1.Installer.exe
2017-11-02 10:41 - 2017-11-02 10:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2017-11-02 10:35 - 2017-11-02 10:35 - 002885168 _____ C:\Users\alex\Downloads\npp.7.5.1.Installer.exe
2017-11-02 10:35 - 2017-11-02 10:35 - 000000000 ____D C:\Users\alex\AppData\Local\Notepad++
2017-11-02 10:26 - 2017-11-02 11:54 - 000000000 ____D C:\Users\alex\Neuer Ordner
2017-11-02 10:20 - 2017-11-09 20:10 - 000000197 _____ C:\Users\alex\Desktop\new  2.txt
2017-11-01 13:34 - 2017-11-01 13:34 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400424993_spectate.bat
2017-11-01 12:59 - 2017-11-01 12:59 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400386257_spectate.bat
2017-11-01 12:57 - 2017-11-01 12:57 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400395525_spectate.bat
2017-11-01 12:53 - 2017-11-01 12:53 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400394446_spectate.bat
2017-11-01 12:48 - 2017-11-01 12:48 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400392720_spectate.bat
2017-11-01 12:28 - 2017-11-01 12:28 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400358273_spectate.bat
2017-11-01 11:58 - 2017-11-01 11:58 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400339264_spectate.bat
2017-11-01 09:45 - 2017-11-01 09:45 - 000006462 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3399261194_replay.bat
2017-10-31 18:37 - 2017-10-31 18:37 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3399761355_spectate.bat
2017-10-31 17:36 - 2017-10-31 17:36 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3399669975_spectate.bat
2017-10-31 15:24 - 2017-10-31 15:24 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3399532063_spectate.bat
2017-10-31 12:46 - 2017-10-31 12:46 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3399386897_spectate.bat
2017-10-31 11:26 - 2017-10-31 11:26 - 007451243 _____ C:\Users\alex\Downloads\WS_2_-_Aufbau_der_Materie.pdf
2017-10-30 16:45 - 2017-10-30 16:45 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3398226032_spectate.bat
2017-10-29 18:50 - 2017-10-29 18:50 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3397346370_spectate.bat
2017-10-29 15:23 - 2017-10-29 15:23 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3396873067_spectate.bat
2017-10-28 21:12 - 2017-10-28 21:12 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3396000728_spectate.bat
2017-10-28 20:37 - 2017-10-28 20:37 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3395942767_spectate.bat
2017-10-28 16:51 - 2017-10-28 16:51 - 000006462 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3388576043_replay.bat
2017-10-28 16:48 - 2017-10-28 16:48 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3395681308_spectate.bat
2017-10-27 12:03 - 2017-10-27 12:03 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3393932736_spectate.bat
2017-10-26 10:26 - 2017-10-26 10:26 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3392508324_spectate.bat
2017-10-26 10:05 - 2017-10-26 10:05 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3392505524_spectate.bat
2017-10-25 18:53 - 2017-10-25 18:53 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3392060140_spectate.bat
2017-10-23 20:02 - 2017-10-23 20:02 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3389889511_spectate.bat
2017-10-22 18:03 - 2017-10-22 18:03 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3388487568_spectate.bat
2017-10-22 11:02 - 2017-10-22 11:02 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-10-22 11:02 - 2017-10-06 12:52 - 000136312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-10-22 11:02 - 2017-09-14 00:20 - 000798008 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-10-22 11:02 - 2017-09-14 00:20 - 000490296 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-10-22 11:02 - 2017-09-14 00:19 - 000927544 _____ C:\Windows\system32\vulkan-1.dll
2017-10-22 11:02 - 2017-09-14 00:19 - 000591160 _____ C:\Windows\system32\vulkaninfo.exe
2017-10-22 10:59 - 2017-10-09 13:20 - 000225208 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2017-10-22 10:59 - 2017-10-09 13:20 - 000045496 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 040237176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 036184000 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 035156600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 029228480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 023261256 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 021738976 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 019035344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 019008624 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 018203456 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 016751224 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-10-22 10:59 - 2017-10-06 14:32 - 015024912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 013863000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 013251240 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 011777952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 010880672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 004283120 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 003807864 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 003796960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 003346368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 001988216 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438792.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 001606776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438792.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 001135280 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 001098360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 001030264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000981112 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000932472 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000885496 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000615360 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000527104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000505976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000492048 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000444328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000407248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000171896 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000154392 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000149736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000132256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2017-10-22 10:59 - 2017-10-06 14:32 - 000000669 _____ C:\Windows\system32\nv-vk64.json
2017-10-22 10:49 - 2017-10-11 02:05 - 000050624 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2017-10-20 16:57 - 2017-10-20 16:57 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3385398048_spectate.bat
2017-10-20 15:01 - 2017-10-20 15:01 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3385280283_spectate.bat
2017-10-20 14:55 - 2017-10-20 14:55 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3385267253_spectate.bat
2017-10-20 14:42 - 2017-10-20 14:42 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3385262154_spectate.bat
2017-10-19 18:31 - 2017-10-19 18:31 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3384661878_spectate.bat
2017-10-19 12:22 - 2017-10-19 12:22 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3383991376_spectate.bat
2017-10-18 17:44 - 2017-10-18 17:44 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3383422797_spectate.bat
2017-10-18 17:37 - 2017-10-18 17:37 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3383389042_spectate.bat
2017-10-15 19:19 - 2017-10-15 19:19 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3380511519_spectate.bat
2017-10-15 18:34 - 2017-10-15 18:34 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3380229792_spectate.bat
2017-10-15 18:13 - 2017-10-15 18:13 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3380212150_spectate.bat
2017-10-15 17:19 - 2017-10-15 17:19 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3380096714_spectate.bat
2017-10-15 17:00 - 2017-10-15 17:00 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3380070693_spectate.bat
2017-10-15 15:47 - 2017-10-15 15:47 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3379977612_spectate.bat
2017-10-15 15:44 - 2017-10-15 15:44 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3379956527_spectate.bat
2017-10-15 11:36 - 2017-10-15 11:36 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3379703439_spectate.bat

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-11-14 21:32 - 2016-11-18 13:01 - 000000000 ____D C:\Users\alex\AppData\LocalLow\Mozilla
2017-11-14 21:32 - 2012-08-30 21:19 - 000000000 ____D C:\Users\alex\AppData\Roaming\Skype
2017-11-14 21:31 - 2017-07-29 10:19 - 000000000 ____D C:\ProgramData\NVIDIA
2017-11-14 21:29 - 2015-10-27 21:13 - 000000000 ____D C:\Program Files (x86)\Steam
2017-11-14 21:29 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-11-14 21:28 - 2017-09-19 13:49 - 000003316 _____ C:\Windows\System32\Tasks\Avira_Antivirus_Systray
2017-11-14 21:17 - 2011-05-25 18:11 - 000000000 ____D C:\Users\alex\AppData\Roaming\TS3Client
2017-11-14 19:35 - 2017-09-19 13:49 - 000003122 _____ C:\Windows\System32\Tasks\Avira SystrayStartTrigger
2017-11-14 19:35 - 2014-05-23 13:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-11-14 19:35 - 2013-11-05 10:23 - 000000000 ____D C:\ProgramData\Package Cache
2017-11-14 14:39 - 2013-03-17 11:45 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-11-14 14:39 - 2013-03-17 11:45 - 000004366 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-11-14 14:39 - 2013-03-17 11:45 - 000000000 ____D C:\Windows\system32\Macromed
2017-11-14 14:39 - 2011-09-29 10:01 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-11-14 14:39 - 2011-03-19 20:59 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-11-14 13:44 - 2009-07-14 05:45 - 000025376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-11-14 13:44 - 2009-07-14 05:45 - 000025376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-11-13 20:05 - 2013-05-20 22:18 - 000000000 ____D C:\Program Files (x86)\Diablo II
2017-11-13 11:08 - 2012-04-17 06:26 - 000000000 ____D C:\Users\alex\AppData\Local\Downloaded Installations
2017-11-13 10:58 - 2011-10-31 11:39 - 000000000 ____D C:\Users\alex\AppData\Local\TSVNCache
2017-11-13 02:21 - 2017-08-28 21:07 - 000000000 ____D C:\Users\alex\AppData\Local\CrashDumps
2017-11-13 00:25 - 2016-06-01 19:49 - 000000000 ____D C:\Users\alex\Desktop\E-Technik
2017-11-13 00:21 - 2013-05-27 22:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2017-11-13 00:20 - 2009-07-14 06:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-11-13 00:19 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2017-11-13 00:16 - 2016-03-01 13:48 - 000000000 ____D C:\Windows\Minidump
2017-11-13 00:16 - 2012-03-15 11:31 - 000000000 ____D C:\found.000
2017-11-12 22:31 - 2011-03-19 17:43 - 000059064 _____ C:\Users\alex\AppData\Local\GDIPFONTCACHEV1.DAT
2017-11-12 22:30 - 2009-07-14 05:45 - 000267872 _____ C:\Windows\system32\FNTCACHE.DAT
2017-11-12 22:10 - 2013-07-04 18:22 - 000000000 ____D C:\Program Files\SolidWorks
2017-11-12 22:10 - 2011-02-17 16:25 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2017-11-12 22:09 - 2013-07-04 18:56 - 000000000 ____D C:\ProgramData\SolidWorks
2017-11-12 22:09 - 2013-07-04 18:22 - 000000000 ____D C:\Program Files\Common Files\SolidWorks Shared
2017-11-12 22:08 - 2013-07-04 18:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolidWorks 2011
2017-11-12 21:56 - 2012-04-17 06:29 - 000000000 ____D C:\Users\alex\AppData\Local\Samsung
2017-11-12 21:56 - 2012-04-17 06:27 - 000000000 ____D C:\ProgramData\Samsung
2017-11-12 21:56 - 2011-03-16 09:29 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-11-12 21:51 - 2015-11-09 11:37 - 000000000 ____D C:\Program Files (x86)\SPEEDLINK
2017-11-12 21:44 - 2013-05-20 22:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo II
2017-11-12 21:36 - 2011-03-20 00:34 - 029989411 ____H C:\Users\alex\AppData\Local\IconCache.db.backup
2017-11-12 21:35 - 2011-03-19 20:40 - 000000000 ____D C:\ProgramData\ICQ
2017-11-12 21:32 - 2012-12-15 18:50 - 000000000 ____D C:\Users\alex\AppData\Local\Ubisoft Game Launcher
2017-11-12 21:32 - 2012-12-15 18:29 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2017-11-11 09:14 - 2012-08-30 21:19 - 000000000 ____D C:\ProgramData\Skype
2017-11-08 10:17 - 2010-11-21 07:50 - 003298828 _____ C:\Windows\system32\perfh007.dat
2017-11-08 10:17 - 2010-11-21 07:50 - 000958734 _____ C:\Windows\system32\perfc007.dat
2017-11-08 10:17 - 2009-07-14 06:13 - 000006818 _____ C:\Windows\system32\PerfStringBackup.INI
2017-11-02 11:49 - 2017-07-29 10:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-11-02 11:12 - 2011-03-19 17:41 - 000000000 ____D C:\Users\alex
2017-11-02 10:58 - 2011-06-02 19:56 - 000000000 ____D C:\Program Files (x86)\Notepad++
2017-11-02 10:52 - 2011-06-02 19:56 - 000000000 ____D C:\Users\alex\AppData\Roaming\Notepad++
2017-10-28 13:37 - 2009-07-14 06:08 - 000032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-10-28 13:36 - 2012-05-02 20:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-10-27 10:55 - 2016-11-17 20:14 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-10-26 16:21 - 2016-04-14 16:21 - 000000000 ____D C:\Program Files (x86)\Overwolf
2017-10-22 11:05 - 2017-07-29 10:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-10-22 11:04 - 2017-07-29 10:19 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-10-22 11:04 - 2013-05-15 20:46 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-10-22 11:01 - 2017-07-29 10:13 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-10-22 10:50 - 2017-08-03 21:55 - 000004146 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:50 - 2017-08-03 21:55 - 000003814 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:50 - 2017-07-29 10:22 - 000001420 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-10-22 10:50 - 2017-07-29 10:21 - 000003798 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:49 - 2017-07-29 10:21 - 000003738 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:49 - 2017-07-29 10:21 - 000003738 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:49 - 2017-07-29 10:21 - 000003730 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:49 - 2017-07-29 10:21 - 000003554 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:49 - 2017-07-29 10:21 - 000003494 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2017-11-13 11:16 - 2017-09-05 02:16 - 016384000 _____ () C:\Users\alex\AppData\Roaming\Sandra.mdb
2011-04-03 03:48 - 2011-04-03 03:48 - 000000092 _____ () C:\Users\alex\AppData\Local\fusioncache.dat
2017-06-26 17:52 - 2017-07-29 13:05 - 000007601 _____ () C:\Users\alex\AppData\Local\Resmon.ResmonCfg
2013-11-05 10:49 - 2013-11-05 10:49 - 000000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


ACHTUNG: ==> Auf den BCD konnte nicht zugegriffen werden. 

LastRegBack: 2017-11-04 15:48

==================== Ende von FRST.txt ============================

Addition:

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-11-2017 03
durchgeführt von alex (14-11-2017 21:35:35)
Gestartet von C:\Users\alex\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2011-03-19 16:41:09)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1855058041-1027751042-450180876-500 - Administrator - Disabled)
alex (S-1-5-21-1855058041-1027751042-450180876-1001 - Administrator - Enabled) => C:\Users\alex
ASPNET (S-1-5-21-1855058041-1027751042-450180876-1003 - Limited - Enabled)
Gast (S-1-5-21-1855058041-1027751042-450180876-501 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated)
Adobe Flash Player 27 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 27.0.0.187 - Adobe Systems Incorporated)
Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.187 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{5AE0838D-19B1-5D12-5FE8-E6503B2C8716}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 387.92 - NVIDIA Corporation) Hidden
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
Avira (HKLM-x32\...\{37C2DE81-46FA-4EB3-83A5-F0D8F5B08F6E}) (Version: 1.2.99.31392 - Avira Operations GmbH & Co. KG) Hidden
Avira (HKLM-x32\...\{5a024a65-9f29-41b1-b178-946c9f826e72}) (Version: 1.2.99.31392 - Avira Operations GmbH & Co. KG)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.32.12 - Avira Operations GmbH & Co. KG)
AVRStudio4 (HKLM-x32\...\{21742BF7-C002-40A7-9FF3-49D9A09DC3A8}) (Version: 4.16.628 - Atmel) Hidden
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Crysis(R) (HKLM-x32\...\{000E79B7-E725-4F01-870A-C12942B7F8E4}) (Version: 1.21.0000 - Electronic Arts)
Crysis® 2 (HKLM-x32\...\{6033673D-2530-4587-8AD0-EB059FC263F9}) (Version: 1.0.0.0 - Electronic Arts)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Diablo III (HKLM-x32\...\Diablo III) (Version: 1.0.8.16603 - Blizzard Entertainment)
Far Cry 3 (HKLM-x32\...\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.04 - Ubisoft)
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Galería fotográfica de Windows Live (HKLM-x32\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8301}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Network Connections 18.7.28.0 (HKLM\...\PROSetDX) (Version: 18.7.28.0 - Intel)
Java 8 Update 144 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Java 8 Update 151 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Java SE Development Kit 8 Update 151 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180151}) (Version: 8.0.1510.12 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
League of Legends (HKLM-x32\...\{C56877FD-6BEB-4717-81B3-1254FA1FD7FC}) (Version: 4.2.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
Live 8.0.9 (HKLM-x32\...\Live 8.0.9) (Version:  - )
Malwarebytes Version 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (HKLM-x32\...\{0481A2EA-DA1D-4D10-A7C3-F8237948F6B5}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Messenger Companion (HKLM-x32\...\{50816F92-1652-4A7C-B9BC-48F682742C4B}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Messenger Companion (HKLM-x32\...\{8142D25E-028A-4563-86ED-5755783C8029}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Messenger Companion (HKLM-x32\...\{939C80FA-96C9-44A6-B318-8E7D8BD8481B}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.7 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{FD052FB9-FE90-4438-B355-15EDC89D8FB1}) (Version: 2.0.673.0 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.11.25325 (HKLM-x32\...\{404c9c27-8377-4fd1-b607-7ca635db4e49}) (Version: 14.11.25325.0 - Microsoft Corporation)
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Applications - ENU (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Applications - ENU) (Version:  - Microsoft Corporation)
Mozilla Firefox 56.0.2 (x64 de) (HKLM\...\Mozilla Firefox 56.0.2 (x64 de)) (Version: 56.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 56.0.2.6506 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Native Instruments Audio 4 DJ (HKLM-x32\...\Native Instruments Audio 4 DJ) (Version:  - Native Instruments)
Native Instruments Audio 4 DJ Driver (HKLM-x32\...\Native Instruments Audio 4 DJ Driver) (Version:  - Native Instruments)
Native.Instruments Battery v3.0.1.005 VSTi DXi RTAS (HKLM-x32\...\Native.Instruments Battery v3.0.1.005 VSTi DXi RTAS) (Version:  - )
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.1 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 387.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 387.92 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.10.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.10.0.95 - NVIDIA Corporation)
NVIDIA Grafiktreiber 387.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 387.92 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OpenMG Limited Patch 4.7-07-14-05-01 (HKLM-x32\...\OpenMG HotFix4.7-07-13-22-01) (Version:  - )
OpenMG Secure Module 4.7.00 (HKLM-x32\...\{CCD663AE-610D-4BDF-AAB0-E914B044527D}) (Version: 4.7.00.12140 - Sony Corporation) Hidden
OpenMG Secure Module 4.7.00 (HKLM-x32\...\InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}) (Version: 4.7.00.12140 - Sony Corporation)
Origin 2015 (HKLM-x32\...\{919C759D-DA8F-4B02-A9F1-75CE8B31CBDB}) (Version: 9.20.00 - OriginLab Corporation)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.107.256.0 - Overwolf Ltd.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7071 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.39.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.39.0 - Renesas Electronics Corporation)
Rockstar Games Social Club (HKLM-x32\...\{08B3869E-D282-424C-9AFC-870E04A4BA14}) (Version: 1.00.0000 - Rockstar Games)
SABnzbd 0.7.11 (HKLM-x32\...\SABnzbd) (Version: 0.7.11 - The SABnzbd Team)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.4.0 - SAMSUNG Electronics Co., Ltd.)
SiSoftware Sandra Lite Platinum.SP2 (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2596}_is1) (Version: 24.41.2017.9 - SiSoftware)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.104 - Skype Technologies S.A.)
SolidWorks Explorer 2011 SP04 x64 Edition (HKLM\...\{5F590D74-AA75-410F-A778-3CDFCE12DCD4}) (Version: 19.40.66 - SolidWorks Corporation)
SonicStage 4.3 (HKLM-x32\...\{A0EB195B-5876-48E6-879D-33D4B2102610}) (Version: 4.3 - Sony Corporation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.11.1 - TeamSpeak Systems GmbH)
Technitium MAC Address Changer v5.0 Release 3 (HKLM-x32\...\TMACv5.0R3) (Version: 5.0 Release 3 - Technitium)
TortoiseSVN 1.7.12.24070 (64 bit) (HKLM\...\{B2DCF07D-0F89-4818-8B41-50DABC1A310D}) (Version: 1.7.24070 - TortoiseSVN)
VC_CRT_x64 (HKLM\...\{54F2237F-018C-483B-8884-9FC0D88840C3}) (Version: 1.02.0000 - Intel Corporation) Hidden
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.63  - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11142017213053072\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
WinAVR 20081205 (remove only) (HKLM-x32\...\WinAVR) (Version: 20081205 - )
WinAVR 20081205 (remove only) (HKLM-x32\...\WinAVR-20081205) (Version: 20081205 - )
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinRAR 4.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

ShellIconOverlayIdentifiers: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2016-10-16] ()
ContextMenuHandlers1: [Notepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2016-10-16] ()
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\AntiVir Desktop\shlext64.dll [2017-10-13] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2013-03-29] (hxxp://tortoisesvn.net)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-03-02] ()
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-03-02] ()
ContextMenuHandlers2: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2013-03-29] (hxxp://tortoisesvn.net)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers4: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2013-03-29] (hxxp://tortoisesvn.net)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-03-02] ()
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-03-02] ()
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} =>  -> Keine Datei
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-10-06] (NVIDIA Corporation)
ContextMenuHandlers5: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2013-03-29] (hxxp://tortoisesvn.net)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\AntiVir Desktop\shlext64.dll [2017-10-13] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2013-03-29] (hxxp://tortoisesvn.net)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-03-02] ()
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-03-02] ()

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {08FF69FB-C25A-4174-B188-CFCC2452F972} - System32\Tasks\{3554E2D5-6C68-4EFB-9626-A20ABFBC5066} => C:\Users\alex\Desktop\crysis_patch_1_2.exe
Task: {0BCB5F3A-87F7-42F8-B536-9AF4B4009955} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-10-23] (Overwolf LTD)
Task: {20CB7407-3A44-4F15-B9FE-705307AEB848} - System32\Tasks\{911FEA95-F488-4667-94D0-8F0A1B68AA63} => C:\Windows\system32\pcalua.exe -a "C:\Users\alex\Desktop\Native.Instruments.Massive.v1.1.4.DXi.VSTi.RTAS-DYNAMiCS\Massive 1.1.4 Setup.exe" -d C:\Users\alex\Desktop\Native.Instruments.Massive.v1.1.4.DXi.VSTi.RTAS-DYNAMiCS
Task: {2243E1A0-FFA1-410A-B813-D67A218E940D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-11-14] (Adobe Systems Incorporated)
Task: {2A5A3DBD-C574-4CEC-BAED-489C3013DDA6} - System32\Tasks\Avira SystrayStartTrigger => Avira.SystrayStartTrigger.exe
Task: {3546DCA6-C333-48FB-A848-72F15A10A742} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation)
Task: {4AC4210C-CB75-4717-B816-A89059D57C29} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-10-11] (NVIDIA Corporation)
Task: {6D0E3A0F-5AAA-4915-8ACF-B3282FF05200} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-10-11] (NVIDIA Corporation)
Task: {7CB05093-52ED-45D7-BA59-49D551AABC3E} - System32\Tasks\{25EB3F20-3626-49B7-976E-6C27F48E9594} => C:\Windows\system32\pcalua.exe -a C:\Windows\DIIUnin.exe -c C:\Windows\DIIUnin.dat
Task: {89A5F660-FA41-4F4D-8EE9-83EDED5BF422} - System32\Tasks\{8932E624-6409-4E8B-BBBA-B4CE5F5A2E16} => C:\Windows\system32\pcalua.exe -a C:\Users\alex\Desktop\Metro\Setup.exe -d C:\Users\alex\Desktop\Metro
Task: {9F99D414-2D72-40C0-942A-1C58A82FC90E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation)
Task: {A55477C8-4F6B-4445-B5B1-2D532368859B} - System32\Tasks\{65774621-783D-45A6-9B2F-D66B555D3B51} => C:\Windows\system32\pcalua.exe -a C:\Users\alex\Desktop\solidworks\prereqs\dotNetFx\dotnetfx35.exe -d C:\Users\alex\Desktop\solidworks\prereqs\dotNetFx
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => aitagent.exe
Task: {BD001DF8-21B6-49D1-A374-77F2E6CC0C2A} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation)
Task: {C4E3016B-1FBE-45BC-AA8F-63EA380EA479} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2017-10-13] (Avira Operations GmbH & Co. KG)
Task: {CE15D4F3-4A57-4208-8A3A-373898234D41} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-10-11] (NVIDIA Corporation)
Task: {D2D53A90-8939-4C0F-9014-AED8BE8109C4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation)
Task: {D628B670-C270-4A16-BD15-585429D29F8B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-11] (NVIDIA Corporation)
Task: {E3163C33-301D-4730-A266-5518C5ED3967} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\Windows\SysWOW64\BthUdTask.exe [2009-07-14] (Microsoft Corporation)
Task: {F3D98C78-8078-4409-A3EE-E889662FBA87} - System32\Tasks\{D87B3FD5-65E9-4529-B4F4-A529300BEB7F} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/7.16.0.102/de/abandoninstall?page=tsMain
Task: {FDFE368D-BFA1-492D-8AC8-21DEC68698B6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)


==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)


==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2013-03-29 10:01 - 2013-03-29 10:01 - 000088968 _____ () C:\Program Files\TortoiseSVN\bin\libsasl.dll
2011-03-21 13:28 - 2011-03-02 12:40 - 000164864 _____ () C:\Program Files\WinRAR\rarext.dll
2017-07-29 10:21 - 2017-10-11 02:05 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2012-12-15 18:48 - 2012-12-15 18:48 - 000076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2017-11-12 22:12 - 2017-11-01 08:54 - 002358736 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2017-11-12 22:12 - 2017-11-01 08:55 - 002299344 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2017-07-29 10:21 - 2017-10-11 02:05 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-09-26 21:22 - 2017-09-26 21:22 - 001984000 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll
2013-03-29 08:17 - 2013-03-29 08:17 - 000070536 _____ () C:\Program Files\TortoiseSVN\bin\libsasl32.dll
2017-07-29 10:21 - 2017-10-11 02:05 - 070805952 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1855058041-1027751042-450180876-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
HKU\S-1-5-21-1855058041-1027751042-450180876-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11142017213053072\Control Panel\Desktop\\Wallpaper -> C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{A4B54830-371B-4053-AF49-3B415F13C8B8}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{26882277-030E-4116-8C83-4CE692FFBEC9}] => (Allow) LPort=2869
FirewallRules: [{9E6CD718-0BB2-495D-A4DA-A8632785BEA1}] => (Allow) LPort=1900
FirewallRules: [{D6F812A5-143D-4B84-950F-93AD80987B61}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{8BC9CA7B-31B1-49C0-AE89-21AAEB034040}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [TCP Query User{F1D71A1D-FF1B-48C2-9F5F-82C5B82B6DB2}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [UDP Query User{435B6A2B-D2D1-494D-83B7-D164A3712745}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [TCP Query User{1D9E36DB-5FCD-4BF1-8C30-C33AC3EF841E}C:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe] => (Block) C:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe
FirewallRules: [UDP Query User{514D409E-9084-468A-95FB-CF3D53A92328}C:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe] => (Block) C:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe
FirewallRules: [{0C77F6CE-698F-4549-8FDD-43231C0D1738}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe
FirewallRules: [{AA2F5F60-9B94-4D28-98DC-2BC885B5E7EE}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe
FirewallRules: [{9FD1E75F-707A-44CB-94C3-D20FD3F386C2}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe
FirewallRules: [{DBB10E88-B536-413B-A6AD-6931956DBA20}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe
FirewallRules: [{584E80A1-5409-4C7B-9309-A43ADEC99BAF}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.exe
FirewallRules: [{4348A32E-65BF-4A09-B29D-8E528D92F218}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.exe
FirewallRules: [{D38E72C7-A6C5-4FB5-8530-6118FEA02950}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.patch.exe
FirewallRules: [{27E69760-5EA3-4C7C-9A44-44060E7259E2}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.patch.exe
FirewallRules: [TCP Query User{1CE91E3F-6EDB-4596-8218-0F8B605404FA}C:\program files (x86)\world of warcraft\backgrounddownloader.exe] => (Allow) C:\program files (x86)\world of warcraft\backgrounddownloader.exe
FirewallRules: [UDP Query User{84E81722-A702-4D54-9F04-0CE0E80D2C7B}C:\program files (x86)\world of warcraft\backgrounddownloader.exe] => (Allow) C:\program files (x86)\world of warcraft\backgrounddownloader.exe
FirewallRules: [{E45884CC-1807-430B-9638-1D48FE57D839}] => (Allow) LPort=6881
FirewallRules: [TCP Query User{61AFC719-48D2-4922-B94C-BDB7B207FB64}C:\users\alex\downloads\downloader_diablo2_engb.exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb.exe
FirewallRules: [UDP Query User{BEFFF73E-445C-4421-9B4F-2891396A771C}C:\users\alex\downloads\downloader_diablo2_engb.exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb.exe
FirewallRules: [TCP Query User{F43A638F-6B92-4654-8066-EAEB786A0D9B}C:\users\alex\downloads\downloader_diablo2_engb(1).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(1).exe
FirewallRules: [UDP Query User{F25707B0-406E-4C47-8754-5E37D7862295}C:\users\alex\downloads\downloader_diablo2_engb(1).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(1).exe
FirewallRules: [TCP Query User{33AA036D-4E65-4418-9957-87A5BCDA56F0}C:\users\alex\downloads\downloader_diablo2_engb(2).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(2).exe
FirewallRules: [UDP Query User{67D6C0BE-06DA-4C38-83B2-42385EB580D9}C:\users\alex\downloads\downloader_diablo2_engb(2).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(2).exe
FirewallRules: [TCP Query User{DE56A379-202F-4FAA-BD8C-93DA92618443}C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb.exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb.exe
FirewallRules: [UDP Query User{0F763277-8526-4137-A573-524E7D853041}C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb.exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb.exe
FirewallRules: [TCP Query User{491FC145-E2AB-4B0C-8FD0-B52261ADE6B4}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe
FirewallRules: [UDP Query User{0283EC0A-B608-4493-87A1-54ECE3AE0F6A}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe
FirewallRules: [TCP Query User{5483A1B3-148F-409D-992E-D2C22AB9F6B9}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe
FirewallRules: [UDP Query User{934C2A95-71BB-4B91-90AE-CF1C25757795}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe
FirewallRules: [{24FB8791-28C8-4083-875B-822721574DB9}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{41CA17D0-F48B-40D0-9ACC-D29C7E18BA7E}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{71258FD9-8FCE-40C6-949D-8C3CD7A4AE3F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\d3tone4000\counter-strike\hl.exe
FirewallRules: [{66C8F1FD-5509-4D82-90DD-D36112FBF020}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\d3tone4000\counter-strike\hl.exe
FirewallRules: [{BCC53B5C-2F27-40E3-865C-428F967727FF}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{68F75814-5F06-4E7D-8C22-82D617243C82}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [{FFB9E54F-B5F3-4B72-B9A6-0ABEFB7C0C0A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [{0C56FB61-E88E-4A84-8F9C-0D5EF048457B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{6DD18EFD-02F3-4DE0-83EC-41F4A9021E0A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{229F7CDC-2861-41FC-94E0-BB44344EFB3D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{8B584532-01F0-4B44-A71E-271F1BDDE01C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{BFB070F7-5775-43CF-9478-8BD7132048CC}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{F74D4BD7-6820-40F5-BADA-119A596CFD72}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{569FE14B-C7B0-4998-B2AE-3537D3C12E83}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3.exe
FirewallRules: [{9FE02309-CEE1-4D2E-A9EB-F30CCF87A083}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3.exe
FirewallRules: [{5AAC8915-B6EF-4BA3-AFAF-97856634EE4B}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe
FirewallRules: [{D5C3FAD1-1F9A-4389-BD1B-EDB1F55FA8DE}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe
FirewallRules: [{0D6975BB-047C-448E-AB66-78137D016804}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Updater.exe
FirewallRules: [{C4BF0D94-64FE-4B67-8628-5DC6C1C1D700}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Updater.exe
FirewallRules: [{9A5C2EDF-5267-47DE-BB81-56A497C5B547}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exe
FirewallRules: [{027E864C-B707-4299-9F58-2038504F0F60}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exe
FirewallRules: [TCP Query User{5AE9F7CC-DD99-41C4-B126-6C9C41DA6489}C:\users\alex\downloads\downloader_diablo2_engb(3).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(3).exe
FirewallRules: [UDP Query User{7756335D-65EC-4E92-9A8A-263A665AA47A}C:\users\alex\downloads\downloader_diablo2_engb(3).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(3).exe
FirewallRules: [TCP Query User{5AA6855B-49A0-4D99-98A9-D528B275F4CD}C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(1).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(1).exe
FirewallRules: [UDP Query User{A91D7FFD-8EB0-49BB-AF57-476B55AF3BDF}C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(1).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(1).exe
FirewallRules: [TCP Query User{53092C89-97F7-4A59-8DF8-69957444C60D}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [UDP Query User{9C66A201-2BE7-4ACE-9A65-C35BF5758006}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [TCP Query User{67A2BE1E-884A-4235-9190-AE25F39584E5}C:\users\alex\downloads\downloader_diablo2_engb(4).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(4).exe
FirewallRules: [UDP Query User{EA18DBB2-671A-475C-BC03-845899E1341C}C:\users\alex\downloads\downloader_diablo2_engb(4).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(4).exe
FirewallRules: [TCP Query User{714FAFEE-7BE9-48AE-AB31-DED70C22F151}C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(2).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(2).exe
FirewallRules: [UDP Query User{57A312C2-7FEB-4D02-BD46-DD773027A122}C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(2).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(2).exe
FirewallRules: [{E1FBFD42-FE6E-4E40-807C-033834218452}] => (Allow) C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
FirewallRules: [{EB813727-0CB4-4271-9FC9-2D5E1C3BA442}] => (Allow) C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
FirewallRules: [{374B62E8-3837-4436-84F7-2FB2898F5EF0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe
FirewallRules: [{C344DECC-27E3-4322-AF1C-7BA9C85A5BDD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe
FirewallRules: [{F29F1665-F165-45F9-B629-A90ADCE05BB9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\call of duty black ops\BlackOps.exe
FirewallRules: [{759C6F73-6353-44D1-ACED-6F2BD8C09BC2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\call of duty black ops\BlackOps.exe
FirewallRules: [{F49D07A6-97B2-43CB-854B-4E32901FF7A6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\call of duty black ops\BlackOpsMP.exe
FirewallRules: [{01944277-3721-4CAA-B004-31B47C14898A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\call of duty black ops\BlackOpsMP.exe
FirewallRules: [{348222CA-E5B8-4566-B6B6-0255AB3935D7}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Half-Life\hl.exe
FirewallRules: [{07346A0D-49CA-4967-A9A5-E59D4DC25B39}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Half-Life\hl.exe
FirewallRules: [TCP Query User{D49FB052-9E61-4250-8A21-0C9D4CF5C874}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [UDP Query User{FF9B8684-83D3-4E6E-BC27-2F5BB78A903D}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [{26D467BB-F8AB-46C5-963D-45010D1735BF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{0E18191C-2BE7-4CF3-B2CD-0F2523180205}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{ACEFA733-B358-4D83-9A94-35A9073B5690}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{A8F003BB-5370-43FA-A5C3-960628EBD129}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{7D0C57B9-AFE6-4043-A4F9-66359B9254DA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5CB9A298-12BA-4E19-98E5-5F75DCE3FA60}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{FA015D08-F942-4E15-92BE-B06C26617224}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{31A2847A-1F1C-418E-B8AF-EC27A4B56684}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{4F45BD29-ADD9-4B05-8EF6-ADD1934930E9}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{4BBF91B0-C83D-43BC-9318-5AD438C4F53F}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{8F8AFC3A-8CA3-4198-9211-5F2AE77F58CB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2DC8AE39-C009-4025-B36C-9F5BAB3247CF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5824B336-45E6-499B-8669-D041786ABFD8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{FDC41B4E-E4C6-4178-BFCC-6FF923B35C9F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{3A6E3A92-61CA-49FC-BCB3-9797550619E9}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{8EB58337-D080-497A-B340-EF3BDA5F4E79}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{16B45BDD-F2B1-4C97-9D81-E9879D5177DA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{A5364442-1305-476A-8042-690CD6B02884}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{A72AD836-7C0F-4DA4-AB6D-9AAEDC48CE09}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{7B34E1BD-60E1-4763-84BB-C58FD70EA153}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0C73DAA4-F9C3-42B7-B6DA-CD660506BE28}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8A590B05-17C1-4A95-A2E8-DF2AA3EA9F2C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{BDEF0807-0DDC-4278-95C6-C6941B8A4FD1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{1635446F-7257-4F21-90E0-34BBAECFD4E3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0623D1C4-41A3-4802-92F0-9D04922F4664}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{79C4ECEA-80E6-48D8-84DC-13DAA8823730}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{AC86A3A7-782F-4362-9090-5C610DE79D49}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{235F0F22-8FCB-4EEF-923A-62F28A25B14A}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{6C673BEC-BA58-4BFD-926B-556B589A8E21}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite Platinum.SP2\RpcAgentSrv.exe
FirewallRules: [{9263A7CF-FC4F-4F35-AD06-81E81C346A2F}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite Platinum.SP2\WNt600x64\RpcSandraSrv.exe

==================== Wiederherstellungspunkte =========================

13-11-2017 00:19:43 Entfernt Grand Theft Auto IV
13-11-2017 11:10:24 SiSoftware Sandra Lite
13-11-2017 11:11:57 Microsoft Visual C++ 2017 Redistributable (x86) - 14.11.25325
13-11-2017 11:13:18 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215
13-11-2017 11:14:01 Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325
13-11-2017 11:15:30 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (11/14/2017 09:37:49 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/14/2017 09:36:49 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/14/2017 09:35:49 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/14/2017 09:34:49 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/14/2017 09:33:49 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/14/2017 09:32:49 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/14/2017 09:32:49 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/14/2017 09:32:28 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/14/2017 09:31:28 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/14/2017 09:30:48 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.


Systemfehler:
=============
Error: (11/14/2017 09:28:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Application Virtualization Client" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (11/14/2017 09:28:17 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 70.

Error: (11/14/2017 09:28:17 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 70.

Error: (11/14/2017 09:28:16 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "chip 1-click download service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (11/14/2017 09:28:16 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Adobe Acrobat Update Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (11/14/2017 09:28:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA LocalSystem Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 6000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/14/2017 09:28:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA Display Container LS" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/14/2017 09:28:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA Telemetry Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/14/2017 09:28:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Live ID Sign-in Assistant" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/14/2017 09:28:16 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "PnkBstrA" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 42%
Installierter physikalischer RAM: 8161.4 MB
Verfügbarer physikalischer RAM: 4701.84 MB
Summe virtueller Speicher: 16320.98 MB
Verfügbarer virtueller Speicher: 12953.13 MB

==================== Laufwerke ================================

Drive c: (Windows7) (Fixed) (Total:1765.36 GB) (Free:1480.73 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive g: (Volume) (Fixed) (Total:97.65 GB) (Free:95.67 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: D2434893)
Partition 1: (Active) - (Size=1765.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.7 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================

M-K-D-B · 15.11.2017, 20:40

Servus,

Schritt 1

Kopiere den gesamten Inhalt der folgenden Code-Box:

Code:

ATTFilter

Start::
CloseProcesses:
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\zdlucn6m.default -> ICQ Search
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\zdlucn6m.default -> ICQ Search
FF Homepage: Mozilla\Firefox\Profiles\zdlucn6m.default -> hxxps://search.avira.com/#/?show_is=1&source=art
FF Extension: (Suchen und neue Registerkarte von Yahoo) - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\zdlucn6m.default\Extensions\jid1-16aeif9OQIRKxA@jetpack.xpi [2017-11-10]
2017-11-13 11:07 - 2017-11-13 11:07 - 001533960 _____ (CHIP Digital GmbH) C:\Users\alex\Downloads\SiSoft Sandra Lite - CHIP-Installer.exe
Task: {89A5F660-FA41-4F4D-8EE9-83EDED5BF422} - System32\Tasks\{8932E624-6409-4E8B-BBBA-B4CE5F5A2E16} => C:\Windows\system32\pcalua.exe -a C:\Users\alex\Desktop\Metro\Setup.exe -d C:\Users\alex\Desktop\Metro
CMD: dir "%ProgramFiles%"
CMD: dir "%ProgramFiles(x86)%"
CMD: dir "%ProgramData%"
CMD: dir "%Appdata%"
CMD: dir "%LocalAppdata%"
CMD: dir "%CommonProgramFiles(x86)%"
CMD: dir "%CommonProgramW6432%"
CMD: dir "%UserProfile%"
CMD: dir "C:\"
ExportKey: HKLM\SOFTWARE\Microsoft\Windows Defender\Exclusions
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
End::

Starte nun FRST und klicke direkt den Entfernen Button. Wichtig: Du brauchst den Inhalt der Code-Box nirgends einfügen, da sich FRST den Code aus der Zwischenablage holt!
Das Tool führt die gewünschten Schritte aus und erstellt eine fixlog.txt im selben Verzeichnis, in dem sich die FRST/FRST64.exe befindet.
Gegebenenfalls muss dein Rechner dafür neu gestartet werden.
Poste mir den Inhalt der fixlog.txt mit deiner nächsten Antwort.

Schritt 2

Starte FRST erneut. Kopiere den Inhalt der folgenden Code-Box oben in das Suchfeld:
Code:
ATTFilter
```
SearchAll: {800b5000-a755-47e1-992b-48a1c1357f07};Chip Digital;chip 1-click;chip1-click
         
```
Klicke auf den Button Datei-Suche.
FRST beginnt mit dem Suchlauf. Dieser kann einige Zeit dauern, bitte gedulde dich!
Am Ende wird eine Textdatei Search.txt erstellt.
Poste mir deren Inhalt mit deiner nächsten Antwort.

Schritt 3

Starte die FRST.exe erneut. Vergewissere dich, dass vor Addition.txt ein Haken gesetzt ist und drücke auf Untersuchen.
FRST erstellt wieder zwei Logdateien (FRST.txt und Addition.txt).
Poste mir beide Logdateien mit deiner nächsten Antwort.

Bitte poste mit deiner nächsten Antwort

die Logdatei des FRST-Fix (fixlog.txt),
die Logdatei des FRST-Suchlaufs, (Search.txt)
die beiden neuen Logdateien von FRST (FRST.txt und Addition.txt).

Käfer_Wurm · 15.11.2017, 21:50

Fixlog:

Code:

ATTFilter

Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 15-11-2017
durchgeführt von alex (15-11-2017 20:42:39) Run:1
Gestartet von C:\Users\alex\Desktop
Geladene Profile: alex (Verfügbare Profile: alex)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
CloseProcesses:
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\zdlucn6m.default -> ICQ Search
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\zdlucn6m.default -> ICQ Search
FF Homepage: Mozilla\Firefox\Profiles\zdlucn6m.default -> hxxps://search.avira.com/#/?show_is=1&source=art
FF Extension: (Suchen und neue Registerkarte von Yahoo) - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\zdlucn6m.default\Extensions\jid1-16aeif9OQIRKxA@jetpack.xpi [2017-11-10]
2017-11-13 11:07 - 2017-11-13 11:07 - 001533960 _____ (CHIP Digital GmbH) C:\Users\alex\Downloads\SiSoft Sandra Lite - CHIP-Installer.exe
Task: {89A5F660-FA41-4F4D-8EE9-83EDED5BF422} - System32\Tasks\{8932E624-6409-4E8B-BBBA-B4CE5F5A2E16} => C:\Windows\system32\pcalua.exe -a C:\Users\alex\Desktop\Metro\Setup.exe -d C:\Users\alex\Desktop\Metro
CMD: dir "%ProgramFiles%"
CMD: dir "%ProgramFiles(x86)%"
CMD: dir "%ProgramData%"
CMD: dir "%Appdata%"
CMD: dir "%LocalAppdata%"
CMD: dir "%CommonProgramFiles(x86)%"
CMD: dir "%CommonProgramW6432%"
CMD: dir "%UserProfile%"
CMD: dir "C:\"
ExportKey: HKLM\SOFTWARE\Microsoft\Windows Defender\Exclusions
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:

*****************

Prozesse erfolgreich geschlossen.
Firefox DefaultSearchEngine erfolgreich entfernt
Firefox SelectedSearchEngine erfolgreich entfernt
Firefox "homepage" erfolgreich entfernt
C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\zdlucn6m.default\Extensions\jid1-16aeif9OQIRKxA@jetpack.xpi => erfolgreich verschoben
C:\Users\alex\Downloads\SiSoft Sandra Lite - CHIP-Installer.exe => erfolgreich verschoben
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{89A5F660-FA41-4F4D-8EE9-83EDED5BF422} => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{89A5F660-FA41-4F4D-8EE9-83EDED5BF422} => Schlüssel erfolgreich entfernt
C:\Windows\System32\Tasks\{8932E624-6409-4E8B-BBBA-B4CE5F5A2E16} => erfolgreich verschoben
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{8932E624-6409-4E8B-BBBA-B4CE5F5A2E16} => Schlüssel erfolgreich entfernt

========= dir "%ProgramFiles%" =========

 Datentr„ger in Laufwerk C: ist Windows7
 Volumeseriennummer: B094-3197

 Verzeichnis von C:\Program Files

13.11.2017  11:11    <DIR>          .
13.11.2017  11:11    <DIR>          ..
16.03.2011  09:32    <DIR>          ATI
12.11.2017  22:08    <DIR>          Common Files
15.03.2017  09:19    <DIR>          DVD Maker
19.04.2011  09:01    <DIR>          Google
05.11.2013  09:56    <DIR>          Intel
13.10.2017  08:27    <DIR>          Internet Explorer
02.11.2017  11:49    <DIR>          Java
12.11.2017  22:12    <DIR>          Malwarebytes
21.11.2010  08:00    <DIR>          Microsoft Games
20.05.2011  22:03    <DIR>          Microsoft Office
17.06.2017  21:17    <DIR>          Microsoft Silverlight
04.07.2013  18:52    <DIR>          Microsoft Visual Studio 8
14.07.2009  06:32    <DIR>          MSBuild
24.08.2013  21:47    <DIR>          Native Instruments
22.10.2017  11:01    <DIR>          NVIDIA Corporation
05.07.2015  12:11    <DIR>          OriginLab
05.11.2013  10:49    <DIR>          Realtek
14.07.2009  06:32    <DIR>          Reference Assemblies
13.11.2017  11:11    <DIR>          SiSoftware
12.11.2017  22:10    <DIR>          SolidWorks
27.04.2011  08:06    <DIR>          Steinberg
01.04.2017  12:40    <DIR>          TeamSpeak 3 Client
20.05.2013  13:57    <DIR>          TortoiseSVN
15.07.2013  14:30    <DIR>          Windows Defender
17.02.2011  15:53    <DIR>          Windows Live
26.08.2012  17:46    <DIR>          Windows Mail
17.10.2016  06:02    <DIR>          Windows Media Player
17.02.2011  15:04    <DIR>          Windows NT
26.08.2012  17:46    <DIR>          Windows Photo Viewer
21.11.2010  04:31    <DIR>          Windows Portable Devices
26.08.2012  17:46    <DIR>          Windows Sidebar
21.03.2011  13:28    <DIR>          WinRAR
               0 Datei(en),              0 Bytes
              34 Verzeichnis(se), 1.588.467.699.712 Bytes frei

========= Ende von CMD: =========


========= dir "%ProgramFiles(x86)%" =========

 Datentr„ger in Laufwerk C: ist Windows7
 Volumeseriennummer: B094-3197

 Verzeichnis von C:\Program Files (x86)

14.11.2017  21:28    <DIR>          .
14.11.2017  21:28    <DIR>          ..
20.05.2013  20:09    <DIR>          2K Games
21.03.2011  13:35    <DIR>          Ableton
18.01.2016  16:17    <DIR>          Adobe
07.10.2011  12:20    <DIR>          ASIO4ALL v2
15.08.2015  19:47    <DIR>          Avira
02.11.2017  11:50    <DIR>          Common Files
13.11.2017  20:05    <DIR>          Diablo II
30.05.2013  16:34    <DIR>          Diablo III
27.03.2011  10:03    <DIR>          Electronic Arts
19.04.2011  09:01    <DIR>          Google
05.11.2013  10:00    <DIR>          Intel
13.10.2017  08:27    <DIR>          Internet Explorer
29.07.2017  10:00    <DIR>          Java
06.10.2011  15:58    <DIR>          Lame For Audacity
18.09.2017  14:31    <DIR>          LOLReplay
12.11.2017  22:12    <DIR>           Malwarebytes Anti-Malware 
17.04.2012  06:27    <DIR>          MarkAny
18.05.2013  15:21    <DIR>          Metro Last Light
27.03.2011  10:00    <DIR>          Microsoft
03.03.2016  10:23    <DIR>          Microsoft Application Virtualization Client
15.07.2013  14:11    <DIR>          Microsoft CAPICOM 2.1.0.2
08.11.2011  17:06    <DIR>          Microsoft Games for Windows - LIVE
12.11.2017  22:10    <DIR>          Microsoft Office
17.06.2017  21:17    <DIR>          Microsoft Silverlight
17.02.2011  15:54    <DIR>          Microsoft SQL Server Compact Edition
04.07.2013  18:53    <DIR>          Microsoft Visual Studio 8
04.07.2013  18:53    <DIR>          Microsoft.NET
27.10.2017  10:55    <DIR>          Mozilla Firefox
28.10.2017  13:36    <DIR>          Mozilla Maintenance Service
14.07.2009  06:32    <DIR>          MSBuild
04.07.2013  18:51    <DIR>          MSECache
15.07.2013  14:11    <DIR>          MSXML 4.0
27.04.2011  08:06    <DIR>          Native Instruments
02.11.2017  10:58    <DIR>          Notepad++
22.10.2017  11:04    <DIR>          NVIDIA Corporation
26.10.2017  16:21    <DIR>          Overwolf
25.08.2012  12:14    <DIR>          Pando Networks
05.11.2013  10:22    <DIR>          Realtek
14.07.2009  06:32    <DIR>          Reference Assemblies
16.03.2011  09:34    <DIR>          Renesas Electronics
27.05.2013  22:03    <DIR>          Rockstar Games
15.05.2013  13:11    <DIR>          SABnzbd
17.04.2012  06:28    <DIR>          Samsung
06.09.2017  08:30    <DIR>          Skype
09.02.2013  19:08    <DIR>          SoftwareForMe Inc
04.07.2013  19:20    <DIR>          SolidWorks
19.12.2012  17:39    <DIR>          Sony
12.11.2017  21:51    <DIR>          SPEEDLINK
04.07.2013  20:03    <DIR>          SQUARE ENIX
15.11.2017  17:34    <DIR>          Steam
07.03.2012  12:29    <DIR>          Steinberg
14.04.2016  15:46    <DIR>          TeamSpeak 3 Client
01.11.2011  10:06    <DIR>          Technitium
25.06.2012  19:24    <DIR>          THQ
12.11.2017  21:32    <DIR>          Ubisoft
22.10.2017  11:02    <DIR>          VulkanRT
19.09.2012  19:31    <DIR>          Winamp
19.09.2012  19:31    <DIR>          Winamp Detect
15.07.2013  14:30    <DIR>          Windows Defender
17.02.2011  15:54    <DIR>          Windows Live
26.08.2012  17:46    <DIR>          Windows Mail
17.10.2016  06:02    <DIR>          Windows Media Player
14.07.2009  06:32    <DIR>          Windows NT
26.08.2012  17:46    <DIR>          Windows Photo Viewer
21.11.2010  04:31    <DIR>          Windows Portable Devices
26.08.2012  17:46    <DIR>          Windows Sidebar
               0 Datei(en),              0 Bytes
              68 Verzeichnis(se), 1.588.467.634.176 Bytes frei

========= Ende von CMD: =========


========= dir "%ProgramData%" =========

 Datentr„ger in Laufwerk C: ist Windows7
 Volumeseriennummer: B094-3197

 Verzeichnis von C:\ProgramData

21.03.2011  13:37    <DIR>          Ableton
18.01.2016  16:16    <DIR>          Adobe
29.07.2017  10:12    <DIR>          AMD
17.08.2015  19:34    <DIR>          Avira
16.07.2016  22:39    <DIR>          Battle.net
29.03.2016  17:25    <DIR>          Blizzard Entertainment
15.07.2013  14:32    <DIR>          DAEMON Tools Lite
04.07.2013  18:59    <DIR>          DassaultSystemes
05.11.2013  10:17    <DIR>          Downloaded Installations
15.08.2015  20:20    <DIR>          Dropbox
26.03.2011  15:06    <DIR>          EA Core
27.03.2011  10:03    <DIR>          Electronic Arts
04.07.2013  19:24    <DIR>          FLEXnet
06.06.2013  09:58    <DIR>          Free Download Manager
18.04.2011  17:04    <DIR>          Google
12.11.2017  21:35    <DIR>          ICQ
12.11.2017  22:12    <DIR>          Malwarebytes
12.11.2017  22:12    <DIR>          MB2Migration
29.09.2011  10:01    <DIR>          McAfee
12.11.2017  22:08    <DIR>          Microsoft Help
02.05.2012  20:53    <DIR>          Mozilla
24.08.2013  21:47    <DIR>          Native Instruments
15.11.2017  20:42    <DIR>          NVIDIA
22.10.2017  11:04    <DIR>          NVIDIA Corporation
29.07.2017  10:02    <DIR>          Oracle
05.07.2015  12:17    <DIR>          OriginLab
14.04.2016  16:21    <DIR>          Overwolf
14.11.2017  19:35    <DIR>          Package Cache
15.05.2013  20:47    <DIR>          RELOADED
15.08.2015  19:50    <DIR>          Riot Games
12.11.2017  21:56    <DIR>          Samsung
11.11.2017  09:14    <DIR>          Skype
04.03.2012  15:44    <DIR>          Solidshield
12.11.2017  22:09    <DIR>          SolidWorks
19.12.2012  17:44    <DIR>          SonicStage
19.12.2012  17:44    <DIR>          Sony Corporation
21.05.2011  03:26    <DIR>          VirtualizedApplications
               0 Datei(en),              0 Bytes
              37 Verzeichnis(se), 1.588.467.568.640 Bytes frei

========= Ende von CMD: =========


========= dir "%Appdata%" =========

 Datentr„ger in Laufwerk C: ist Windows7
 Volumeseriennummer: B094-3197

 Verzeichnis von C:\Users\alex\AppData\Roaming

13.11.2017  20:05    <DIR>          .
13.11.2017  20:05    <DIR>          ..
21.03.2011  13:37    <DIR>          Ableton
23.03.2011  15:12    <DIR>          Adobe
19.03.2011  17:43    <DIR>          ATI
12.02.2012  14:17    <DIR>          Audacity
17.08.2015  19:35    <DIR>          Avira
13.11.2017  20:05    <DIR>          Battle.net
27.05.2013  22:10    <DIR>          DAEMON Tools Lite
04.07.2013  18:59    <DIR>          DassaultSystemes
04.07.2013  19:43    <DIR>          EDrawings
21.03.2011  13:43    <DIR>          Google
18.12.2013  17:01    <DIR>          ICQ
19.03.2011  17:43    <DIR>          Identities
19.03.2011  17:43    <DIR>          Intel Corporation
27.10.2015  10:59    <DIR>          LolClient
20.03.2011  12:12    <DIR>          Macromedia
21.11.2010  08:00    <DIR>          Media Center Programs
08.09.2011  17:07    <DIR>          Mozilla
02.11.2017  10:52    <DIR>          Notepad++
30.07.2017  13:07    <DIR>          NVIDIA
18.09.2017  14:36    <DIR>          Riot Games
17.04.2012  06:28    <DIR>          Samsung
05.09.2017  02:16        16.384.000 Sandra.mdb
15.11.2017  17:32    <DIR>          Skype
22.05.2016  23:51    <DIR>          SoftGrid Client
04.07.2013  19:24    <DIR>          SolidWorks
19.12.2012  17:44    <DIR>          Sony Corporation
30.10.2011  20:25    <DIR>          Subversion
29.07.2017  10:01    <DIR>          Sun
30.10.2011  20:26    <DIR>          TortoiseSVN
20.05.2011  22:04    <DIR>          TP
15.11.2017  20:42    <DIR>          TS3Client
17.10.2016  12:17    <DIR>          uTorrent
15.08.2015  21:55    <DIR>          Winamp
21.03.2011  13:28    <DIR>          WinRAR
29.07.2017  10:04    <DIR>          Yahoo
               1 Datei(en),     16.384.000 Bytes
              36 Verzeichnis(se), 1.588.467.511.296 Bytes frei

========= Ende von CMD: =========


========= dir "%LocalAppdata%" =========

 Datentr„ger in Laufwerk C: ist Windows7
 Volumeseriennummer: B094-3197

 Verzeichnis von C:\Users\alex\AppData\Local

12.11.2017  22:29    <DIR>          .
12.11.2017  22:29    <DIR>          ..
20.05.2013  20:39    <DIR>          2K Games
15.05.2013  20:57    <DIR>          4A Games
19.03.2011  18:23    <DIR>          Activision
15.03.2016  11:42    <DIR>          Adobe
10.04.2011  09:46    <DIR>          ApplicationHistory
19.03.2011  17:43    <DIR>          ATI
16.07.2016  22:39    <DIR>          Blizzard Entertainment
27.10.2015  21:16    <DIR>          CEF
13.12.2016  18:12    <DIR>          Chromium
13.11.2017  02:21    <DIR>          CrashDumps
05.07.2015  12:17    <DIR>          CrashRpt
04.07.2013  18:59    <DIR>          DassaultSystemes
14.07.2013  18:34    <DIR>          Diagnostics
13.11.2017  11:08    <DIR>          Downloaded Installations
26.03.2011  15:04    <DIR>          Electronic Arts
07.03.2017  18:59    <DIR>          ElevatedDiagnostics
03.04.2011  03:48                92 fusioncache.dat
10.04.2011  10:06    <DIR>          GameSpy
12.11.2017  22:31            59.064 GDIPFONTCACHEV1.DAT
29.07.2017  10:06    <DIR>          GIGABYTE
18.04.2011  16:38    <DIR>          Google
04.03.2016  21:00    <DIR>          GWX
17.03.2013  11:46    <DIR>          Macromedia
09.08.2016  21:54    <DIR>          Microsoft
04.07.2013  20:51    <DIR>          Microsoft Games
20.05.2011  22:11    <DIR>          Microsoft Help
25.10.2013  15:03    <DIR>          Mozilla
23.03.2011  10:52    <DIR>          Native Instruments
02.11.2017  10:35    <DIR>          Notepad++
30.07.2017  13:04    <DIR>          NVIDIA
14.08.2017  19:03    <DIR>          NVIDIA Corporation
30.10.2011  20:27    <DIR>          OOG
05.07.2015  12:17    <DIR>          OriginLab
14.04.2016  16:27    <DIR>          Overwolf
15.05.2013  20:24    <DIR>          Programs
15.12.2012  18:56    <DIR>          PunkBuster
29.07.2017  13:05             7.601 Resmon.ResmonCfg
27.05.2013  21:15    <DIR>          Rockstar Games
15.05.2013  13:12    <DIR>          sabnzbd
12.11.2017  21:56    <DIR>          Samsung
14.11.2016  13:29    <DIR>          Skype
20.05.2011  22:04    <DIR>          SoftGrid Client
04.07.2013  19:24    <DIR>          SolidWorks
13.12.2016  18:12    <DIR>          Steam
01.04.2017  12:41    <DIR>          TeamSpeak 3
15.11.2017  20:42    <DIR>          Temp
13.11.2017  10:58    <DIR>          TSVNCache
12.11.2017  21:32    <DIR>          Ubisoft Game Launcher
13.05.2011  11:05    <DIR>          VirtualStore
21.02.2017  19:46    <DIR>          Windows Live
17.05.2017  20:01    <DIR>          {0500A808-BD38-4CE1-861E-8DEA0792A4C0}
17.05.2012  20:38    <DIR>          {36E1280E-F0E8-4D1F-B372-5A4F8DD5654F}
21.02.2017  19:46    <DIR>          {43EF3430-D948-49F2-8A5D-21516B2BB21C}
16.06.2017  13:29    <DIR>          {B65BFF62-799B-4CBE-9D3C-2D3C152C5EA3}
21.02.2017  19:46    <DIR>          {F1EBD183-EB7D-49D0-9D84-309F450739E6}
               3 Datei(en),         66.757 Bytes
              54 Verzeichnis(se), 1.588.467.445.760 Bytes frei

========= Ende von CMD: =========


========= dir "%CommonProgramFiles(x86)%" =========

 Datentr„ger in Laufwerk C: ist Windows7
 Volumeseriennummer: B094-3197

 Verzeichnis von C:\Program Files (x86)\Common Files

02.11.2017  11:50    <DIR>          .
02.11.2017  11:50    <DIR>          ..
18.01.2016  16:17    <DIR>          Adobe
14.07.2013  14:24    <DIR>          Blizzard Entertainment
12.11.2017  22:09    <DIR>          DESIGNER
19.04.2011  12:58    <DIR>          Digidesign
27.05.2015  12:21    <DIR>          eDrawings2011
19.12.2012  17:38    <DIR>          InstallShield
16.03.2011  09:44    <DIR>          Intel Corporation
02.11.2017  11:50    <DIR>          Java
04.07.2013  19:20    <DIR>          Macrovision Shared
12.11.2017  22:09    <DIR>          microsoft shared
27.04.2011  07:46    <DIR>          Native Instruments
26.10.2017  16:21    <DIR>          Overwolf
02.11.2011  15:58    <DIR>          PX Storage Engine
14.07.2009  04:20    <DIR>          Services
06.09.2017  08:30    <DIR>          Skype
12.11.2017  22:09    <DIR>          SolidWorks Shared
19.12.2012  17:39    <DIR>          Sony Shared
14.07.2009  04:20    <DIR>          SpeechEngines
16.12.2015  18:13    <DIR>          Steam
26.08.2012  17:46    <DIR>          System
20.05.2013  13:57    <DIR>          TortoiseOverlays
17.02.2011  15:49    <DIR>          Windows Live
               0 Datei(en),              0 Bytes
              24 Verzeichnis(se), 1.588.467.384.320 Bytes frei

========= Ende von CMD: =========


========= dir "%CommonProgramW6432%" =========

 Datentr„ger in Laufwerk C: ist Windows7
 Volumeseriennummer: B094-3197

 Verzeichnis von C:\Program Files\Common Files

12.11.2017  22:08    <DIR>          .
12.11.2017  22:08    <DIR>          ..
16.03.2011  09:32    <DIR>          ATI Technologies
27.04.2011  08:07    <DIR>          Digidesign
18.09.2017  14:13    <DIR>          Microsoft Shared
27.04.2011  07:44    <DIR>          Native Instruments
14.07.2009  04:20    <DIR>          Services
12.11.2017  22:09    <DIR>          SolidWorks Shared
14.07.2009  04:20    <DIR>          SpeechEngines
26.08.2012  17:46    <DIR>          System
20.05.2013  13:57    <DIR>          TortoiseOverlays
               0 Datei(en),              0 Bytes
              11 Verzeichnis(se), 1.588.467.326.976 Bytes frei

========= Ende von CMD: =========


========= dir "%UserProfile%" =========

 Datentr„ger in Laufwerk C: ist Windows7
 Volumeseriennummer: B094-3197

 Verzeichnis von C:\Users\alex

02.11.2017  11:12    <DIR>          .
02.11.2017  11:12    <DIR>          ..
01.04.2017  12:41    <DIR>          .QtWebEngineProcess
01.04.2017  12:41    <DIR>          .TeamSpeak 3
18.09.2017  14:10    <DIR>          Contacts
30.10.2011  20:08    <DIR>          D2-1.12A-enGB
30.10.2011  20:20    <DIR>          D2LOD-1.12A-enGB
15.11.2017  20:42    <DIR>          Desktop
05.10.2017  17:04    <DIR>          Documents
15.11.2017  20:43    <DIR>          Downloads
02.05.2017  22:44    <DIR>          Dropbox
18.09.2017  14:10    <DIR>          Favorites
12.11.2017  21:47    <DIR>          Links
18.09.2017  14:10    <DIR>          Music
02.11.2017  11:54    <DIR>          Neuer Ordner
18.09.2017  14:10    <DIR>          Pictures
18.09.2017  14:10    <DIR>          Saved Games
18.09.2017  14:10    <DIR>          Searches
14.11.2016  13:29    <DIR>          Tracing
15.11.2017  17:30    <DIR>          Videos
               0 Datei(en),              0 Bytes
              20 Verzeichnis(se), 1.588.467.265.536 Bytes frei

========= Ende von CMD: =========


========= dir "C:\" =========

 Datentr„ger in Laufwerk C: ist Windows7
 Volumeseriennummer: B094-3197

 Verzeichnis von C:\

19.05.2014  19:46    <DIR>          07ad2026969ef2d4abb090ebee599a64
20.05.2014  05:41    <DIR>          5ee73513c1ff7a7383a1ec9de9171b
14.11.2017  21:28    <DIR>          AdwCleaner
02.03.2012  17:41    <DIR>          AMD
20.04.2014  18:14               426 AVScanner.ini
19.05.2014  22:29    <DIR>          c58668886b8c0a58f5d887da7895
05.11.2013  10:17    <DIR>          Downloads
20.05.2013  14:03    <DIR>          etal
04.07.2013  18:51    <DIR>          FILES
13.11.2017  00:16    <DIR>          found.000
02.04.2011  15:08    <DIR>          Fraps
15.11.2017  20:43    <DIR>          FRST
16.03.2011  09:27    <DIR>          Intel
27.04.2011  08:12    <DIR>          Music Production
29.07.2017  10:11    <DIR>          NVIDIA
14.07.2009  04:20    <DIR>          PerfLogs
13.11.2017  11:11    <DIR>          Program Files
14.11.2017  21:28    <DIR>          Program Files (x86)
18.09.2017  14:35    <DIR>          Riot Games
04.07.2013  19:00    <DIR>          Solidworks Data
12.11.2017  23:58           213.110 TDSSKiller.3.1.0.15_12.11.2017_23.51.39_log.txt
02.11.2017  11:12    <DIR>          Users
25.06.2015  22:02    <DIR>          WinAVR-20081205
15.11.2017  20:42    <DIR>          Windows
               2 Datei(en),        213.536 Bytes
              22 Verzeichnis(se), 1.588.467.204.096 Bytes frei

========= Ende von CMD: =========

================== ExportKey: ===================

[HKLM\SOFTWARE\Microsoft\Windows Defender\Exclusions]
[HKLM\SOFTWARE\Microsoft\Windows Defender\Exclusions\Extensions]
[HKLM\SOFTWARE\Microsoft\Windows Defender\Exclusions\Paths]
[HKLM\SOFTWARE\Microsoft\Windows Defender\Exclusions\Processes]

=== Ende von ExportKey ===

========= RemoveProxy: =========

HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt
HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt


========= Ende von RemoveProxy: =========


========= ipconfig /flushdns =========

Der Befehl "ipconfig" ist entweder falsch geschrieben oder
konnte nicht gefunden werden.

========= Ende von CMD: =========


========= netsh winsock reset =========

Der Befehl "netsh" ist entweder falsch geschrieben oder
konnte nicht gefunden werden.

========= Ende von CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 34283842 B
Java, Flash, Steam htmlcache => 335107438 B
Windows/system/drivers => 812248473 B
Edge => 0 B
Chrome => 0 B
Firefox => 497825904 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 42389165 B
systemprofile32 => 6498336 B
LocalService => 66228 B
NetworkService => 0 B
test => 0 B
alex => 7789933948 B

RecycleBin => 48018861 B
EmptyTemp: => 8.9 GB temporäre Dateien entfernt.

================================


Das System musste neu gestartet werden.

==== Ende von Fixlog 20:45:41 ====

Search:

Code:

ATTFilter

Farbar Recovery Scan Tool (x64) Version: 15-11-2017
durchgeführt von alex (15-11-2017 20:50:26)
Gestartet von C:\Users\alex\Desktop
Start-Modus: Normal

================== Datei-Suche: "SearchAll: {800b5000-a755-47e1-992b-48a1c1357f07};Chip Digital;chip 1-click;chip1-click" =============

Datei:
========
C:\AdwCleaner\Quarantine\frAQBc8Wsa\chip1click\chip 1-click installer.VIR
[2017-11-14 21:28][2017-10-30 14:07] 000091136 _____ () 09B1D447CBC74A646DD5594503136DB5 [Datei ist nicht signiert]


Ordner:
========

Registry:
========

===================== Suchergebnis für "{800b5000-a755-47e1-992b-48a1c1357f07}" ==========


===================== Suchergebnis für "Chip Digital" ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Chip Digital GmbH|chip1click|chip 1-click installer.exe]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Chip Digital GmbH|chip1click|chip 1-click installer.exe]
"chip 1-click installer,Version="3.6.9.0",FileVersion="3.6.9.0",Culture="neutral",ProcessorArchitecture="MSIL""="Wf}kAJ3_f@6l8^*A2m`Y>_v_b7ReZd@o5OyE(aeR0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Chip Digital GmbH|chip1click|CHIP Active Download.exe]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Chip Digital GmbH|chip1click|CHIP Starter.exe]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Chip Digital GmbH|chip1click|CHIP Updater.exe]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Chip Digital GmbH|chip1click|SplashForm.exe]


===================== Suchergebnis für "chip 1-click" ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Chip Digital GmbH|chip1click|chip 1-click installer.exe]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Chip Digital GmbH|chip1click|chip 1-click installer.exe]
"chip 1-click installer,Version="3.6.9.0",FileVersion="3.6.9.0",Culture="neutral",ProcessorArchitecture="MSIL""="Wf}kAJ3_f@6l8^*A2m`Y>_v_b7ReZd@o5OyE(aeR0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\chip 1-click installer_RASAPI32]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\chip 1-click installer_RASMANCS]


===================== Suchergebnis für "chip1-click" ==========


====== Ende von Suche ======

Käfer_Wurm · 15.11.2017, 21:51

FRST:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 15-11-2017
durchgeführt von alex (Administrator) auf ALEX-PC (15-11-2017 21:24:36)
Gestartet von C:\Users\alex\Desktop
Geladene Profile: alex (Verfügbare Profile: alex)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(hxxp://tortoisesvn.net) C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClient.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClientUx.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClientUxRender.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClientUxRender.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13657304 2013-10-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [SPEEDLINK KUDOS] => "C:\Program Files (x86)\SPEEDLINK\SPEEDLINK PRIME Gaming Mouse\Gaming Mouse.exe" /hide
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3071776 2017-08-28] (Valve Corporation)
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27832264 2017-10-10] (Skype Technologies S.A.)
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\MountPoints2: {19691dfc-0cd9-11e3-b49a-1c6f65d3997a} - E:\LGAutoRun.exe
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\MountPoints2: {349232bf-0461-11e5-b4e3-e069954f83e1} - E:\AutoRun.exe
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\MountPoints2: {620a5c4c-0ab1-11e5-93d6-e069954f83e1} - H:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\MountPoints2: {780ee4a3-fa16-11e2-8d85-1c6f65d3997a} - E:\HTC_Sync_Manager_PC.exe
HKLM\...\Providers\Internet Print Provider: inetpp.dll
HKLM\...\Providers\LanMan Print Services: C:\Windows\SysWOW64\win32spl.dll [497664 2017-08-11] (Microsoft Corporation)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{347AFFFE-87B0-4B7D-BDFF-6C7930EDA7D3}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{4597ADE4-1244-49B0-BACA-836220FE22EC}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{F7935B33-8BC6-4B43-A4EB-BEAC5AB65CEB}: [DhcpNameServer] 192.168.8.1 192.168.8.1

Internet Explorer:
==================
HKU\S-1-5-21-1855058041-1027751042-450180876-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://nmd.msn.com
URLSearchHook: HKU\S-1-5-21-1855058041-1027751042-450180876-1001 -> Standard = {855F3B16-6D32-4fe6-8A56-BBB695989046}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {C4DF1EB9-3C61-4AA8-A878-EFA940BF16E9} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MNMTDF&pc=MANM&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {BD42D578-1A13-44F7-A102-56AE8D21DD41} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MNMTDF&pc=MANM&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-1855058041-1027751042-450180876-1001 -> {BD42D578-1A13-44F7-A102-56AE8D21DD41} URL = 
SearchScopes: HKU\S-1-5-21-1855058041-1027751042-450180876-1001 -> {C69CE5AC-1FF2-4C74-9129-68B65C92FF7B} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&intl=de&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-11-02] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-11-02] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll [2017-07-29] (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-11-10] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-07-29] (Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

FireFox:
========
FF ProfilePath: C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\zdlucn6m.default [2017-11-15]
FF NetworkProxy: Mozilla\Firefox\Profiles\zdlucn6m.default -> type", 0
FF Extension: (ADB Helper) - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\zdlucn6m.default\Extensions\adbhelper@mozilla.org [2017-09-26] [Legacy]
FF Extension: (Valence) - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\zdlucn6m.default\Extensions\fxdevtools-adapters@mozilla.org [2017-09-18] [Legacy]
FF Extension: (Safe Browsing Version 4 (temporary add-on)) - C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Profiles\zdlucn6m.default\Extensions\sbv4-gradual-rollout@mozilla.com.xpi [2017-11-08] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_187.dll [2017-11-14] ()
FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-11-02] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-11-02] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_187.dll [2017-11-14] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-07-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-07-29] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-06] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-06] (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [1128432 2017-10-13] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [490968 2017-10-13] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [490968 2017-10-13] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1525240 2017-10-13] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [413592 2017-11-02] (Avira Operations GmbH & Co. KG)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Datei ist nicht signiert]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
S3 MSCSPTISRV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [45056 2006-12-14] (Sony Corporation) [Datei ist nicht signiert]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-10-06] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [460736 2017-10-11] (NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1451336 2017-10-23] (Overwolf LTD)
S3 PACSPTISVR; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [57344 2006-12-14] () [Datei ist nicht signiert]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2012-12-15] ()
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite Platinum.SP2\RpcAgentSrv.exe [135728 2017-09-11] (SiSoftware) [Datei ist nicht signiert]
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2013-07-04] (SolidWorks) [Datei ist nicht signiert]
S3 SonicStage Back-End Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe [112184 2007-02-05] (Sony Corporation)
S3 SPTISRV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe [69632 2006-12-14] (Sony Corporation) [Datei ist nicht signiert]
S3 SSScsiSV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe [75320 2007-02-05] (Sony Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 a4djavs; C:\Windows\System32\Drivers\a4djavs.sys [359784 2012-12-18] (Native Instruments GmbH)
S3 a4djusb_svc; C:\Windows\System32\Drivers\a4djusb.sys [99688 2012-12-18] (Native Instruments GmbH)
S3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [96256 2013-07-05] (Advanced Micro Devices) [Datei ist nicht signiert]
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [64504 2017-06-16] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [194272 2017-09-19] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [151128 2017-08-31] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [35328 2017-03-22] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2017-03-22] (Avira Operations GmbH & Co. KG)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77432 2017-11-01] ()
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [193464 2017-11-14] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [110016 2017-11-15] (Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253880 2017-11-14] (Malwarebytes)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-10-11] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50624 2017-10-11] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-07-26] (NVIDIA Corporation)
S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite Platinum.SP2\WNt600x64\Sandra.sys [23112 2009-08-07] (SiSoftware)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-11-15 21:24 - 2017-11-15 21:25 - 000017516 _____ C:\Users\alex\Desktop\FRST.txt
2017-11-15 20:50 - 2017-11-15 21:07 - 000002467 _____ C:\Users\alex\Desktop\Search.txt
2017-11-15 20:47 - 2017-11-15 20:47 - 000110016 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-11-15 20:42 - 2017-11-15 20:45 - 000023160 _____ C:\Users\alex\Desktop\Fixlog.txt
2017-11-15 20:42 - 2017-11-15 20:42 - 000000000 ____D C:\Users\alex\Desktop\FRST-OlderVersion
2017-11-14 21:16 - 2017-11-14 21:16 - 008261584 _____ (Malwarebytes) C:\Users\alex\Desktop\adwcleaner_7.0.4.0(1).exe
2017-11-14 20:06 - 2017-11-14 20:06 - 000193464 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2017-11-14 19:45 - 2017-11-14 19:46 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3418972363_spectate.bat
2017-11-14 19:35 - 2017-11-14 19:35 - 000001128 _____ C:\Users\Public\Desktop\Avira.lnk
2017-11-14 18:47 - 2017-11-14 18:47 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3418859301_spectate.bat
2017-11-14 18:41 - 2017-11-14 18:41 - 000253880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2017-11-14 18:12 - 2017-11-14 18:12 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3418810417_spectate.bat
2017-11-14 15:57 - 2017-11-14 15:57 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3418697380_spectate.bat
2017-11-14 02:48 - 2017-11-14 02:49 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3418464229_spectate.bat
2017-11-14 01:48 - 2017-11-14 01:48 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3418438480_spectate.bat
2017-11-14 01:16 - 2017-11-14 01:16 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3418424391_spectate.bat
2017-11-14 00:51 - 2017-11-14 00:51 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3418389785_spectate.bat
2017-11-14 00:17 - 2017-11-14 00:17 - 000006462 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3418165987_replay.bat
2017-11-13 20:05 - 2017-11-13 20:05 - 000000000 ____D C:\Users\alex\AppData\Roaming\Battle.net
2017-11-13 19:51 - 2017-11-13 19:51 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3417800759_spectate.bat
2017-11-13 19:03 - 2017-11-13 19:03 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3417609103_spectate.bat
2017-11-13 18:19 - 2017-11-13 18:19 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3417541529_spectate.bat
2017-11-13 17:38 - 2017-11-13 17:38 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3417495018_spectate.bat
2017-11-13 16:55 - 2017-11-13 16:55 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3417460693_spectate.bat
2017-11-13 11:48 - 2017-11-13 11:52 - 000000000 ____D C:\Users\alex\Desktop\Java Programme
2017-11-13 11:38 - 2017-11-13 11:38 - 000000027 _____ C:\Users\alex\Desktop\NUmmer.txt
2017-11-13 11:16 - 2017-09-05 02:16 - 016384000 _____ C:\Users\alex\AppData\Roaming\Sandra.mdb
2017-11-13 11:11 - 2017-11-13 11:11 - 000001218 _____ C:\Users\Public\Desktop\SiSoftware Sandra Lite Platinum.SP2.lnk
2017-11-13 11:11 - 2017-11-13 11:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SiSoftware
2017-11-13 11:11 - 2017-11-13 11:11 - 000000000 ____D C:\Program Files\SiSoftware
2017-11-13 02:21 - 2017-11-13 02:21 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3417154533_spectate.bat
2017-11-13 01:30 - 2017-11-13 01:30 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3417125859_spectate.bat
2017-11-13 00:07 - 2017-11-13 00:07 - 000001398 _____ C:\Users\alex\Desktop\AdwCleaner[C1].txt
2017-11-12 23:51 - 2017-11-12 23:58 - 000213110 _____ C:\TDSSKiller.3.1.0.15_12.11.2017_23.51.39_log.txt
2017-11-12 23:43 - 2017-11-12 23:44 - 000071077 _____ C:\Users\alex\Downloads\Addition.txt
2017-11-12 23:42 - 2017-11-12 23:42 - 004922400 _____ (AO Kaspersky Lab) C:\Users\alex\Desktop\tdsskiller.exe
2017-11-12 23:41 - 2017-11-15 21:24 - 000000000 ____D C:\FRST
2017-11-12 23:41 - 2017-11-15 20:42 - 002392576 _____ (Farbar) C:\Users\alex\Desktop\FRST64.exe
2017-11-12 23:41 - 2017-11-12 23:44 - 000046411 _____ C:\Users\alex\Downloads\FRST.txt
2017-11-12 22:12 - 2017-11-12 22:12 - 000001875 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-11-12 22:12 - 2017-11-12 22:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-11-12 22:12 - 2017-11-12 22:12 - 000000000 ____D C:\ProgramData\MB2Migration
2017-11-12 22:12 - 2017-11-12 22:12 - 000000000 ____D C:\Program Files\Malwarebytes
2017-11-12 22:12 - 2017-11-01 08:54 - 000077432 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-11-12 22:08 - 2017-11-12 22:12 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-11-12 22:08 - 2017-11-12 22:12 - 000000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2017-11-12 22:07 - 2017-11-12 22:08 - 022851472 _____ (Malwarebytes ) C:\Users\alex\Downloads\mbam-setup-2.2.1.1043.exe
2017-11-12 21:29 - 2017-11-14 21:28 - 000000000 ____D C:\AdwCleaner
2017-11-12 21:28 - 2017-11-12 21:28 - 008261584 _____ (Malwarebytes) C:\Users\alex\Downloads\adwcleaner_7.0.4.0.exe
2017-11-11 19:29 - 2017-11-11 19:29 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3414915565_spectate.bat
2017-11-11 19:00 - 2017-11-11 19:00 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3414901227_spectate.bat
2017-11-11 18:42 - 2017-11-11 18:42 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3414809012_spectate.bat
2017-11-11 15:20 - 2017-11-11 15:20 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3414183906_spectate.bat
2017-11-10 14:50 - 2017-11-10 14:50 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3412431347_spectate.bat
2017-11-09 17:17 - 2017-11-09 17:17 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3411177660_spectate.bat
2017-11-09 11:13 - 2017-11-09 11:13 - 000006150 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3006122103_replay(1).bat
2017-11-09 10:08 - 2017-11-09 10:08 - 000006150 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3006122103_replay.bat
2017-11-07 18:06 - 2017-11-07 18:06 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3408148565_spectate.bat
2017-11-07 16:57 - 2017-11-07 16:57 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3408063225_spectate.bat
2017-11-07 04:45 - 2017-11-07 04:46 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3407804503_spectate.bat
2017-11-07 02:26 - 2017-11-07 02:26 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3407776951_spectate.bat
2017-11-07 01:58 - 2017-11-07 01:58 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3407765279_spectate.bat
2017-11-05 14:36 - 2017-11-05 14:36 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3405798172_spectate.bat
2017-11-05 12:47 - 2017-11-05 12:47 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3405682697_spectate.bat
2017-11-05 12:13 - 2017-11-05 12:13 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3405663137_spectate.bat
2017-11-05 00:21 - 2017-11-05 00:21 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3405369190_spectate.bat
2017-11-04 22:10 - 2017-11-04 22:10 - 000006462 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3401400454_replay.bat
2017-11-04 16:06 - 2017-11-04 16:06 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3404775746_spectate.bat
2017-11-02 19:42 - 2017-11-02 19:42 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3402203778_spectate.bat
2017-11-02 11:49 - 2017-11-02 11:49 - 000110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2017-11-02 11:47 - 2017-11-02 11:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2017-11-02 11:46 - 2017-11-02 11:49 - 000000000 ____D C:\Program Files\Java
2017-11-02 11:45 - 2017-11-02 11:45 - 000000000 ____D C:\Users\alex\AppData\LocalLow\Oracle
2017-11-02 11:39 - 2017-11-02 11:45 - 215956536 _____ (Oracle Corporation) C:\Users\alex\Downloads\jdk-8u151-windows-x64.exe
2017-11-02 11:27 - 2017-11-02 11:27 - 001533960 _____ (CHIP Digital GmbH) C:\Users\alex\Downloads\Java SDK 64 Bit - CHIP-Installer.exe
2017-11-02 10:41 - 2017-11-02 10:41 - 002842320 _____ C:\Users\alex\Downloads\npp.7.1.Installer.exe
2017-11-02 10:41 - 2017-11-02 10:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2017-11-02 10:35 - 2017-11-02 10:35 - 002885168 _____ C:\Users\alex\Downloads\npp.7.5.1.Installer.exe
2017-11-02 10:35 - 2017-11-02 10:35 - 000000000 ____D C:\Users\alex\AppData\Local\Notepad++
2017-11-02 10:26 - 2017-11-02 11:54 - 000000000 ____D C:\Users\alex\Neuer Ordner
2017-11-02 10:20 - 2017-11-09 20:10 - 000000197 _____ C:\Users\alex\Desktop\new  2.txt
2017-11-01 13:34 - 2017-11-01 13:34 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400424993_spectate.bat
2017-11-01 12:59 - 2017-11-01 12:59 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400386257_spectate.bat
2017-11-01 12:57 - 2017-11-01 12:57 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400395525_spectate.bat
2017-11-01 12:53 - 2017-11-01 12:53 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400394446_spectate.bat
2017-11-01 12:48 - 2017-11-01 12:48 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400392720_spectate.bat
2017-11-01 12:28 - 2017-11-01 12:28 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400358273_spectate.bat
2017-11-01 11:58 - 2017-11-01 11:58 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3400339264_spectate.bat
2017-11-01 09:45 - 2017-11-01 09:45 - 000006462 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3399261194_replay.bat
2017-10-31 18:37 - 2017-10-31 18:37 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3399761355_spectate.bat
2017-10-31 17:36 - 2017-10-31 17:36 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3399669975_spectate.bat
2017-10-31 15:24 - 2017-10-31 15:24 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3399532063_spectate.bat
2017-10-31 12:46 - 2017-10-31 12:46 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3399386897_spectate.bat
2017-10-31 11:26 - 2017-10-31 11:26 - 007451243 _____ C:\Users\alex\Downloads\WS_2_-_Aufbau_der_Materie.pdf
2017-10-30 16:45 - 2017-10-30 16:45 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3398226032_spectate.bat
2017-10-29 18:50 - 2017-10-29 18:50 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3397346370_spectate.bat
2017-10-29 15:23 - 2017-10-29 15:23 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3396873067_spectate.bat
2017-10-28 21:12 - 2017-10-28 21:12 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3396000728_spectate.bat
2017-10-28 20:37 - 2017-10-28 20:37 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3395942767_spectate.bat
2017-10-28 16:51 - 2017-10-28 16:51 - 000006462 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3388576043_replay.bat
2017-10-28 16:48 - 2017-10-28 16:48 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3395681308_spectate.bat
2017-10-27 12:03 - 2017-10-27 12:03 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3393932736_spectate.bat
2017-10-26 10:26 - 2017-10-26 10:26 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3392508324_spectate.bat
2017-10-26 10:05 - 2017-10-26 10:05 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3392505524_spectate.bat
2017-10-25 18:53 - 2017-10-25 18:53 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3392060140_spectate.bat
2017-10-23 20:02 - 2017-10-23 20:02 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3389889511_spectate.bat
2017-10-22 18:03 - 2017-10-22 18:03 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3388487568_spectate.bat
2017-10-22 11:02 - 2017-10-22 11:02 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-10-22 11:02 - 2017-10-06 12:52 - 000136312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-10-22 11:02 - 2017-09-14 00:20 - 000798008 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-10-22 11:02 - 2017-09-14 00:20 - 000490296 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-10-22 11:02 - 2017-09-14 00:19 - 000927544 _____ C:\Windows\system32\vulkan-1.dll
2017-10-22 11:02 - 2017-09-14 00:19 - 000591160 _____ C:\Windows\system32\vulkaninfo.exe
2017-10-22 10:59 - 2017-10-09 13:20 - 000225208 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2017-10-22 10:59 - 2017-10-09 13:20 - 000045496 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 040237176 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 036184000 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 035156600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 029228480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 023261256 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 021738976 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 019035344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 019008624 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 018203456 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 016751224 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-10-22 10:59 - 2017-10-06 14:32 - 015024912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 013863000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 013251240 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 011777952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 010880672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 004283120 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 003807864 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 003796960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 003346368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 001988216 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438792.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 001606776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438792.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 001135280 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 001098360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 001030264 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000981112 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000932472 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000885496 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000615360 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000527104 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000505976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000492048 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000444328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000407248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000171896 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000154392 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000149736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000132256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2017-10-22 10:59 - 2017-10-06 14:32 - 000000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2017-10-22 10:59 - 2017-10-06 14:32 - 000000669 _____ C:\Windows\system32\nv-vk64.json
2017-10-22 10:49 - 2017-10-11 02:05 - 000050624 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2017-10-20 16:57 - 2017-10-20 16:57 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3385398048_spectate.bat
2017-10-20 15:01 - 2017-10-20 15:01 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3385280283_spectate.bat
2017-10-20 14:55 - 2017-10-20 14:55 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3385267253_spectate.bat
2017-10-20 14:42 - 2017-10-20 14:42 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3385262154_spectate.bat
2017-10-19 18:31 - 2017-10-19 18:31 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3384661878_spectate.bat
2017-10-19 12:22 - 2017-10-19 12:22 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3383991376_spectate.bat
2017-10-18 17:44 - 2017-10-18 17:44 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3383422797_spectate.bat
2017-10-18 17:37 - 2017-10-18 17:37 - 000006459 _____ C:\Users\alex\Downloads\LOL_OPGG_Observer_3383389042_spectate.bat

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-11-15 21:12 - 2011-05-25 18:11 - 000000000 ____D C:\Users\alex\AppData\Roaming\TS3Client
2017-11-15 21:01 - 2017-04-13 22:06 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-11-15 21:01 - 2016-01-18 16:17 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-15 20:55 - 2009-07-14 05:45 - 000025376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-11-15 20:55 - 2009-07-14 05:45 - 000025376 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-11-15 20:50 - 2012-08-30 21:19 - 000000000 ____D C:\Users\alex\AppData\Roaming\Skype
2017-11-15 20:49 - 2017-07-29 10:19 - 000000000 ____D C:\ProgramData\NVIDIA
2017-11-15 20:48 - 2016-11-18 13:01 - 000000000 ____D C:\Users\alex\AppData\LocalLow\Mozilla
2017-11-15 20:47 - 2015-10-27 21:13 - 000000000 ____D C:\Program Files (x86)\Steam
2017-11-15 20:47 - 2011-10-31 11:39 - 000000000 ____D C:\Users\alex\AppData\Local\TSVNCache
2017-11-15 20:46 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-11-15 20:45 - 2017-09-19 13:49 - 000003316 _____ C:\Windows\System32\Tasks\Avira_Antivirus_Systray
2017-11-14 19:35 - 2017-09-19 13:49 - 000003122 _____ C:\Windows\System32\Tasks\Avira SystrayStartTrigger
2017-11-14 19:35 - 2014-05-23 13:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-11-14 19:35 - 2013-11-05 10:23 - 000000000 ____D C:\ProgramData\Package Cache
2017-11-14 14:39 - 2013-03-17 11:45 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-11-14 14:39 - 2013-03-17 11:45 - 000004366 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-11-14 14:39 - 2013-03-17 11:45 - 000000000 ____D C:\Windows\system32\Macromed
2017-11-14 14:39 - 2011-09-29 10:01 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-11-14 14:39 - 2011-03-19 20:59 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-11-13 20:05 - 2013-05-20 22:18 - 000000000 ____D C:\Program Files (x86)\Diablo II
2017-11-13 11:08 - 2012-04-17 06:26 - 000000000 ____D C:\Users\alex\AppData\Local\Downloaded Installations
2017-11-13 02:21 - 2017-08-28 21:07 - 000000000 ____D C:\Users\alex\AppData\Local\CrashDumps
2017-11-13 00:25 - 2016-06-01 19:49 - 000000000 ____D C:\Users\alex\Desktop\E-Technik
2017-11-13 00:21 - 2013-05-27 22:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2017-11-13 00:20 - 2009-07-14 06:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-11-13 00:19 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2017-11-13 00:16 - 2016-03-01 13:48 - 000000000 ____D C:\Windows\Minidump
2017-11-13 00:16 - 2012-03-15 11:31 - 000000000 ____D C:\found.000
2017-11-12 22:31 - 2011-03-19 17:43 - 000059064 _____ C:\Users\alex\AppData\Local\GDIPFONTCACHEV1.DAT
2017-11-12 22:30 - 2009-07-14 05:45 - 000267872 _____ C:\Windows\system32\FNTCACHE.DAT
2017-11-12 22:10 - 2013-07-04 18:22 - 000000000 ____D C:\Program Files\SolidWorks
2017-11-12 22:10 - 2011-02-17 16:25 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2017-11-12 22:09 - 2013-07-04 18:56 - 000000000 ____D C:\ProgramData\SolidWorks
2017-11-12 22:09 - 2013-07-04 18:22 - 000000000 ____D C:\Program Files\Common Files\SolidWorks Shared
2017-11-12 22:08 - 2013-07-04 18:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolidWorks 2011
2017-11-12 21:56 - 2012-04-17 06:29 - 000000000 ____D C:\Users\alex\AppData\Local\Samsung
2017-11-12 21:56 - 2012-04-17 06:27 - 000000000 ____D C:\ProgramData\Samsung
2017-11-12 21:56 - 2011-03-16 09:29 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-11-12 21:51 - 2015-11-09 11:37 - 000000000 ____D C:\Program Files (x86)\SPEEDLINK
2017-11-12 21:44 - 2013-05-20 22:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo II
2017-11-12 21:36 - 2011-03-20 00:34 - 029989411 ____H C:\Users\alex\AppData\Local\IconCache.db.backup
2017-11-12 21:35 - 2011-03-19 20:40 - 000000000 ____D C:\ProgramData\ICQ
2017-11-12 21:32 - 2012-12-15 18:50 - 000000000 ____D C:\Users\alex\AppData\Local\Ubisoft Game Launcher
2017-11-12 21:32 - 2012-12-15 18:29 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2017-11-11 09:14 - 2012-08-30 21:19 - 000000000 ____D C:\ProgramData\Skype
2017-11-08 10:17 - 2010-11-21 07:50 - 003298828 _____ C:\Windows\system32\perfh007.dat
2017-11-08 10:17 - 2010-11-21 07:50 - 000958734 _____ C:\Windows\system32\perfc007.dat
2017-11-08 10:17 - 2009-07-14 06:13 - 000006818 _____ C:\Windows\system32\PerfStringBackup.INI
2017-11-02 11:49 - 2017-07-29 10:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-11-02 11:12 - 2011-03-19 17:41 - 000000000 ____D C:\Users\alex
2017-11-02 10:58 - 2011-06-02 19:56 - 000000000 ____D C:\Program Files (x86)\Notepad++
2017-11-02 10:52 - 2011-06-02 19:56 - 000000000 ____D C:\Users\alex\AppData\Roaming\Notepad++
2017-10-28 13:37 - 2009-07-14 06:08 - 000032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-10-28 13:36 - 2012-05-02 20:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-10-27 10:55 - 2016-11-17 20:14 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-10-26 16:21 - 2016-04-14 16:21 - 000000000 ____D C:\Program Files (x86)\Overwolf
2017-10-22 11:05 - 2017-07-29 10:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-10-22 11:04 - 2017-07-29 10:19 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-10-22 11:04 - 2013-05-15 20:46 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-10-22 11:01 - 2017-07-29 10:13 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-10-22 10:50 - 2017-08-03 21:55 - 000004146 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:50 - 2017-08-03 21:55 - 000003814 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:50 - 2017-07-29 10:22 - 000001420 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-10-22 10:50 - 2017-07-29 10:21 - 000003798 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:49 - 2017-07-29 10:21 - 000003738 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:49 - 2017-07-29 10:21 - 000003738 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:49 - 2017-07-29 10:21 - 000003730 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:49 - 2017-07-29 10:21 - 000003554 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-10-22 10:49 - 2017-07-29 10:21 - 000003494 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2017-11-13 11:16 - 2017-09-05 02:16 - 016384000 _____ () C:\Users\alex\AppData\Roaming\Sandra.mdb
2011-04-03 03:48 - 2011-04-03 03:48 - 000000092 _____ () C:\Users\alex\AppData\Local\fusioncache.dat
2017-06-26 17:52 - 2017-07-29 13:05 - 000007601 _____ () C:\Users\alex\AppData\Local\Resmon.ResmonCfg
2013-11-05 10:49 - 2013-11-05 10:49 - 000000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


ACHTUNG: ==> Auf den BCD konnte nicht zugegriffen werden. 

LastRegBack: 2017-11-04 15:48

==================== Ende von FRST.txt ============================

Addition:

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 15-11-2017
durchgeführt von alex (15-11-2017 21:25:39)
Gestartet von C:\Users\alex\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2011-03-19 16:41:09)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1855058041-1027751042-450180876-500 - Administrator - Disabled)
alex (S-1-5-21-1855058041-1027751042-450180876-1001 - Administrator - Enabled) => C:\Users\alex
ASPNET (S-1-5-21-1855058041-1027751042-450180876-1003 - Limited - Enabled)
Gast (S-1-5-21-1855058041-1027751042-450180876-501 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 18.009.20044 - Adobe Systems Incorporated)
Adobe Flash Player 27 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 27.0.0.187 - Adobe Systems Incorporated)
Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.187 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{5AE0838D-19B1-5D12-5FE8-E6503B2C8716}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 387.92 - NVIDIA Corporation) Hidden
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
Avira (HKLM-x32\...\{37C2DE81-46FA-4EB3-83A5-F0D8F5B08F6E}) (Version: 1.2.99.31392 - Avira Operations GmbH & Co. KG) Hidden
Avira (HKLM-x32\...\{5a024a65-9f29-41b1-b178-946c9f826e72}) (Version: 1.2.99.31392 - Avira Operations GmbH & Co. KG)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.32.12 - Avira Operations GmbH & Co. KG)
AVRStudio4 (HKLM-x32\...\{21742BF7-C002-40A7-9FF3-49D9A09DC3A8}) (Version: 4.16.628 - Atmel) Hidden
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Crysis(R) (HKLM-x32\...\{000E79B7-E725-4F01-870A-C12942B7F8E4}) (Version: 1.21.0000 - Electronic Arts)
Crysis® 2 (HKLM-x32\...\{6033673D-2530-4587-8AD0-EB059FC263F9}) (Version: 1.0.0.0 - Electronic Arts)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Diablo III (HKLM-x32\...\Diablo III) (Version: 1.0.8.16603 - Blizzard Entertainment)
Far Cry 3 (HKLM-x32\...\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.04 - Ubisoft)
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Galería fotográfica de Windows Live (HKLM-x32\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8301}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Network Connections 18.7.28.0 (HKLM\...\PROSetDX) (Version: 18.7.28.0 - Intel)
Java 8 Update 144 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Java 8 Update 151 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Java SE Development Kit 8 Update 151 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180151}) (Version: 8.0.1510.12 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
League of Legends (HKLM-x32\...\{C56877FD-6BEB-4717-81B3-1254FA1FD7FC}) (Version: 4.2.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
Live 8.0.9 (HKLM-x32\...\Live 8.0.9) (Version:  - )
Malwarebytes Version 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (HKLM-x32\...\{0481A2EA-DA1D-4D10-A7C3-F8237948F6B5}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Messenger Companion (HKLM-x32\...\{50816F92-1652-4A7C-B9BC-48F682742C4B}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Messenger Companion (HKLM-x32\...\{8142D25E-028A-4563-86ED-5755783C8029}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Messenger Companion (HKLM-x32\...\{939C80FA-96C9-44A6-B318-8E7D8BD8481B}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.7 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{FD052FB9-FE90-4438-B355-15EDC89D8FB1}) (Version: 2.0.673.0 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.11.25325 (HKLM-x32\...\{404c9c27-8377-4fd1-b607-7ca635db4e49}) (Version: 14.11.25325.0 - Microsoft Corporation)
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Applications - ENU (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Applications - ENU) (Version:  - Microsoft Corporation)
Mozilla Firefox 56.0.2 (x64 de) (HKLM\...\Mozilla Firefox 56.0.2 (x64 de)) (Version: 56.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 56.0.2.6506 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Native Instruments Audio 4 DJ (HKLM-x32\...\Native Instruments Audio 4 DJ) (Version:  - Native Instruments)
Native Instruments Audio 4 DJ Driver (HKLM-x32\...\Native Instruments Audio 4 DJ Driver) (Version:  - Native Instruments)
Native.Instruments Battery v3.0.1.005 VSTi DXi RTAS (HKLM-x32\...\Native.Instruments Battery v3.0.1.005 VSTi DXi RTAS) (Version:  - )
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.1 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 387.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 387.92 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.10.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.10.0.95 - NVIDIA Corporation)
NVIDIA Grafiktreiber 387.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 387.92 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OpenMG Limited Patch 4.7-07-14-05-01 (HKLM-x32\...\OpenMG HotFix4.7-07-13-22-01) (Version:  - )
OpenMG Secure Module 4.7.00 (HKLM-x32\...\{CCD663AE-610D-4BDF-AAB0-E914B044527D}) (Version: 4.7.00.12140 - Sony Corporation) Hidden
OpenMG Secure Module 4.7.00 (HKLM-x32\...\InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}) (Version: 4.7.00.12140 - Sony Corporation)
Origin 2015 (HKLM-x32\...\{919C759D-DA8F-4B02-A9F1-75CE8B31CBDB}) (Version: 9.20.00 - OriginLab Corporation)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.107.256.0 - Overwolf Ltd.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7071 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.39.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.39.0 - Renesas Electronics Corporation)
Rockstar Games Social Club (HKLM-x32\...\{08B3869E-D282-424C-9AFC-870E04A4BA14}) (Version: 1.00.0000 - Rockstar Games)
SABnzbd 0.7.11 (HKLM-x32\...\SABnzbd) (Version: 0.7.11 - The SABnzbd Team)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.4.0 - SAMSUNG Electronics Co., Ltd.)
SiSoftware Sandra Lite Platinum.SP2 (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2596}_is1) (Version: 24.41.2017.9 - SiSoftware)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.104 - Skype Technologies S.A.)
SolidWorks Explorer 2011 SP04 x64 Edition (HKLM\...\{5F590D74-AA75-410F-A778-3CDFCE12DCD4}) (Version: 19.40.66 - SolidWorks Corporation)
SonicStage 4.3 (HKLM-x32\...\{A0EB195B-5876-48E6-879D-33D4B2102610}) (Version: 4.3 - Sony Corporation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.11.1 - TeamSpeak Systems GmbH)
Technitium MAC Address Changer v5.0 Release 3 (HKLM-x32\...\TMACv5.0R3) (Version: 5.0 Release 3 - Technitium)
TortoiseSVN 1.7.12.24070 (64 bit) (HKLM\...\{B2DCF07D-0F89-4818-8B41-50DABC1A310D}) (Version: 1.7.24070 - TortoiseSVN)
VC_CRT_x64 (HKLM\...\{54F2237F-018C-483B-8884-9FC0D88840C3}) (Version: 1.02.0000 - Intel Corporation) Hidden
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.63  - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKU\S-1-5-21-1855058041-1027751042-450180876-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
WinAVR 20081205 (remove only) (HKLM-x32\...\WinAVR) (Version: 20081205 - )
WinAVR 20081205 (remove only) (HKLM-x32\...\WinAVR-20081205) (Version: 20081205 - )
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinRAR 4.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

ShellIconOverlayIdentifiers: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} =>  -> Keine Datei
ShellIconOverlayIdentifiers-x32: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers-x32: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2011-06-13] (hxxp://tortoisesvn.net)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2016-10-16] ()
ContextMenuHandlers1: [Notepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2016-10-16] ()
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\AntiVir Desktop\shlext64.dll [2017-10-13] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2013-03-29] (hxxp://tortoisesvn.net)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-03-02] ()
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-03-02] ()
ContextMenuHandlers2: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2013-03-29] (hxxp://tortoisesvn.net)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers4: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2013-03-29] (hxxp://tortoisesvn.net)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-03-02] ()
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-03-02] ()
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} =>  -> Keine Datei
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-10-06] (NVIDIA Corporation)
ContextMenuHandlers5: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2013-03-29] (hxxp://tortoisesvn.net)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\AntiVir Desktop\shlext64.dll [2017-10-13] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files\TortoiseSVN\bin\TortoiseStub.dll [2013-03-29] (hxxp://tortoisesvn.net)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-03-02] ()
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2011-03-02] ()

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {08FF69FB-C25A-4174-B188-CFCC2452F972} - System32\Tasks\{3554E2D5-6C68-4EFB-9626-A20ABFBC5066} => C:\Users\alex\Desktop\crysis_patch_1_2.exe
Task: {0BCB5F3A-87F7-42F8-B536-9AF4B4009955} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-10-23] (Overwolf LTD)
Task: {20CB7407-3A44-4F15-B9FE-705307AEB848} - System32\Tasks\{911FEA95-F488-4667-94D0-8F0A1B68AA63} => C:\Windows\system32\pcalua.exe -a "C:\Users\alex\Desktop\Native.Instruments.Massive.v1.1.4.DXi.VSTi.RTAS-DYNAMiCS\Massive 1.1.4 Setup.exe" -d C:\Users\alex\Desktop\Native.Instruments.Massive.v1.1.4.DXi.VSTi.RTAS-DYNAMiCS
Task: {2243E1A0-FFA1-410A-B813-D67A218E940D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-11-14] (Adobe Systems Incorporated)
Task: {2A5A3DBD-C574-4CEC-BAED-489C3013DDA6} - System32\Tasks\Avira SystrayStartTrigger => Avira.SystrayStartTrigger.exe
Task: {3546DCA6-C333-48FB-A848-72F15A10A742} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation)
Task: {4AC4210C-CB75-4717-B816-A89059D57C29} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-10-11] (NVIDIA Corporation)
Task: {56E63774-50AA-4214-B575-5FA86280882E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated)
Task: {6D0E3A0F-5AAA-4915-8ACF-B3282FF05200} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-10-11] (NVIDIA Corporation)
Task: {7CB05093-52ED-45D7-BA59-49D551AABC3E} - System32\Tasks\{25EB3F20-3626-49B7-976E-6C27F48E9594} => C:\Windows\system32\pcalua.exe -a C:\Windows\DIIUnin.exe -c C:\Windows\DIIUnin.dat
Task: {9F99D414-2D72-40C0-942A-1C58A82FC90E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation)
Task: {A55477C8-4F6B-4445-B5B1-2D532368859B} - System32\Tasks\{65774621-783D-45A6-9B2F-D66B555D3B51} => C:\Windows\system32\pcalua.exe -a C:\Users\alex\Desktop\solidworks\prereqs\dotNetFx\dotnetfx35.exe -d C:\Users\alex\Desktop\solidworks\prereqs\dotNetFx
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => aitagent.exe
Task: {BD001DF8-21B6-49D1-A374-77F2E6CC0C2A} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation)
Task: {C4E3016B-1FBE-45BC-AA8F-63EA380EA479} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2017-10-13] (Avira Operations GmbH & Co. KG)
Task: {CE15D4F3-4A57-4208-8A3A-373898234D41} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-10-11] (NVIDIA Corporation)
Task: {D2D53A90-8939-4C0F-9014-AED8BE8109C4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation)
Task: {D628B670-C270-4A16-BD15-585429D29F8B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-11] (NVIDIA Corporation)
Task: {E3163C33-301D-4730-A266-5518C5ED3967} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\Windows\SysWOW64\BthUdTask.exe [2009-07-14] (Microsoft Corporation)
Task: {F3D98C78-8078-4409-A3EE-E889662FBA87} - System32\Tasks\{D87B3FD5-65E9-4529-B4F4-A529300BEB7F} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/7.16.0.102/de/abandoninstall?page=tsMain

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)


==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)


==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2013-03-29 10:01 - 2013-03-29 10:01 - 000088968 _____ () C:\Program Files\TortoiseSVN\bin\libsasl.dll
2011-03-21 13:28 - 2011-03-02 12:40 - 000164864 _____ () C:\Program Files\WinRAR\rarext.dll
2016-10-16 02:19 - 2016-10-16 02:19 - 000230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2017-07-29 10:21 - 2017-10-11 02:05 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2012-12-15 18:48 - 2012-12-15 18:48 - 000076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2017-07-29 10:20 - 2017-10-06 12:44 - 000133752 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-11-12 22:12 - 2017-11-01 08:55 - 002299344 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2016-04-01 11:13 - 2017-04-01 12:40 - 000176408 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll
2016-04-01 11:13 - 2017-04-01 12:40 - 000107288 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2016-04-01 11:13 - 2017-04-01 12:40 - 000125208 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2017-04-01 12:41 - 2017-04-01 12:41 - 000139264 _____ () C:\Users\alex\AppData\Roaming\TS3Client\plugins\gamepad_joystick_win64.dll
2017-04-01 12:41 - 2017-04-01 12:41 - 000337176 _____ () C:\Users\alex\AppData\Roaming\TS3Client\plugins\clientquery_plugin_win64.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 003499648 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClient.exe
2017-11-12 22:49 - 2017-11-12 22:49 - 001763456 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClientUx.exe
2017-11-12 22:49 - 2017-11-12 22:49 - 000892032 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClientUxRender.exe
2017-07-29 10:21 - 2017-10-11 02:05 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-09-26 21:22 - 2017-09-26 21:22 - 001984000 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll
2013-03-29 08:17 - 2013-03-29 08:17 - 000070536 _____ () C:\Program Files\TortoiseSVN\bin\libsasl32.dll
2017-07-29 10:21 - 2017-10-11 02:05 - 070805952 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2017-11-12 22:50 - 2017-11-12 22:50 - 000108672 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\zlib.dll
2017-11-12 22:50 - 2017-11-12 22:50 - 000128640 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\yaml.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 001400960 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-patcher\rcp-be-patcher.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000661120 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-rso-auth\rcp-be-rso-auth.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 001042048 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-login\rcp-be-lol-login.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000522368 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-platform-config\rcp-be-lol-platform-config.dll
2017-11-12 22:48 - 2017-10-25 14:43 - 000568960 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-riot-messaging-service\rcp-be-riot-messaging-service.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000696960 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-summoner\rcp-be-lol-summoner.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000571008 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-ranked-stats\rcp-be-lol-ranked-stats.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000495744 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-maps\rcp-be-lol-maps.dll
2017-11-12 22:48 - 2017-10-25 14:43 - 000647808 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-game-queues\rcp-be-lol-game-queues.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000539264 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-player-preferences\rcp-be-lol-player-preferences.dll
2017-11-12 22:48 - 2017-09-27 10:17 - 000619648 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-game-settings\rcp-be-lol-game-settings.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000582272 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-settings\rcp-be-lol-settings.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000803456 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-gameflow\rcp-be-lol-gameflow.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000479360 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-pre-end-of-game\rcp-be-lol-pre-end-of-game.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000572032 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-sanitizer\rcp-be-sanitizer.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000444544 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-riot-messaging-service\rcp-be-lol-riot-messaging-service.dll
2017-11-12 22:48 - 2017-09-18 14:38 - 000537216 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-acs\rcp-be-lol-acs.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000544896 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-player-notifications\rcp-be-player-notifications.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000496768 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-loyalty\rcp-be-lol-loyalty.dll
2017-11-12 22:48 - 2017-09-18 14:38 - 000899712 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-collections\rcp-be-lol-collections.dll
2017-11-12 22:48 - 2017-10-28 13:39 - 000691840 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-champions\rcp-be-lol-champions.dll
2017-11-12 22:48 - 2017-09-18 14:48 - 000496768 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-kr-shutdown-law\rcp-be-lol-kr-shutdown-law.dll
2017-11-12 22:48 - 2017-10-12 10:26 - 000720512 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-store\rcp-be-lol-store.dll
2017-11-12 22:48 - 2017-10-17 13:50 - 000537728 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-inventory\rcp-be-lol-inventory.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000601216 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-loadouts\rcp-be-lol-loadouts.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000905856 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-lobby-team-builder\rcp-be-lol-lobby-team-builder.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000613504 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-queue-eligibility\rcp-be-lol-queue-eligibility.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000693888 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-matchmaking\rcp-be-lol-matchmaking.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000518272 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-spectator\rcp-be-lol-spectator.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 001626240 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-chat\rcp-be-lol-chat.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 001499264 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-lobby\rcp-be-lol-lobby.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000798848 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-champ-select-legacy\rcp-be-lol-champ-select-legacy.dll
2017-11-12 22:48 - 2017-10-25 14:43 - 000605824 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-champ-select\rcp-be-lol-champ-select.dll
2017-11-12 22:48 - 2017-09-18 14:48 - 000493696 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-heartbeat\rcp-be-lol-heartbeat.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000518272 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-shutdown\rcp-be-lol-shutdown.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000918656 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-loot\rcp-be-lol-loot.dll
2017-11-12 22:48 - 2017-09-18 14:48 - 000472704 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-kickout\rcp-be-lol-kickout.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000486016 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-license-agreement\rcp-be-lol-license-agreement.dll
2017-11-12 22:48 - 2017-09-18 14:48 - 000479360 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-kr-playtime-reminder\rcp-be-lol-kr-playtime-reminder.dll
2017-11-12 22:48 - 2017-09-18 14:38 - 000492160 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-game-client-chat\rcp-be-lol-game-client-chat.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000536192 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-team-boosts\rcp-be-lol-team-boosts.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000724608 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-end-of-game\rcp-be-lol-end-of-game.dll
2017-11-12 22:48 - 2017-09-18 14:38 - 000522368 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-active-boosts\rcp-be-lol-active-boosts.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000435328 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-parties\rcp-be-lol-parties.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000853632 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-leagues\rcp-be-lol-leagues.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000594560 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-pft\rcp-be-lol-pft.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000615040 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-player-behavior\rcp-be-lol-player-behavior.dll
2017-11-12 22:48 - 2017-09-27 10:17 - 000584320 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-suggested-players\rcp-be-lol-suggested-players.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000530560 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-service-status\rcp-be-lol-service-status.dll
2017-11-12 22:48 - 2017-09-18 14:48 - 000558720 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-leaver-buster\rcp-be-lol-leaver-buster.dll
2017-11-12 22:48 - 2017-10-25 14:43 - 000642176 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-match-history\rcp-be-lol-match-history.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000715392 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-recofriender\rcp-be-recofriender.dll
2017-11-12 22:48 - 2017-09-18 14:38 - 000785536 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-clubs\rcp-be-lol-clubs.dll
2017-11-12 22:48 - 2017-09-18 14:38 - 000530560 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-clubs-public\rcp-be-lol-clubs-public.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000574080 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-esport-stream-notifications\rcp-be-lol-esport-stream-notifications.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000705664 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-replays\rcp-be-lol-replays.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000504960 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-player-level-up\rcp-be-lol-player-level-up.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000487040 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-tencent-qt\rcp-be-lol-tencent-qt.dll
2017-11-12 22:48 - 2017-10-12 10:26 - 000545920 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-beta-opt-in\rcp-be-lol-beta-opt-in.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000546432 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-player-messaging\rcp-be-lol-player-messaging.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000586368 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-personalized-offers\rcp-be-lol-personalized-offers.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000469632 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-user-experience\rcp-be-lol-user-experience.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000542848 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-simple-dialog-messages\rcp-be-lol-simple-dialog-messages.dll
2017-11-12 22:48 - 2017-09-18 14:48 - 000610944 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-highlights\rcp-be-lol-highlights.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000669824 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-honor-v2\rcp-be-lol-honor-v2.dll
2017-11-12 22:48 - 2017-09-18 14:49 - 000489088 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-network-testing\rcp-be-network-testing.dll
2017-11-12 22:48 - 2017-09-18 14:38 - 000539264 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-entitlements\rcp-be-entitlements.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000679552 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-missions\rcp-be-lol-missions.dll
2017-11-12 22:48 - 2017-09-18 14:48 - 000584832 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-item-sets\rcp-be-lol-item-sets.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000518272 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-email-verification\rcp-be-lol-email-verification.dll
2017-11-12 22:48 - 2017-09-18 14:48 - 000466560 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-las-toxicity\rcp-be-lol-las-toxicity.dll
2017-11-12 22:48 - 2017-10-12 10:26 - 000512128 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-geoinfo\rcp-be-lol-geoinfo.dll
2017-11-12 22:48 - 2017-09-27 10:17 - 001090176 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-clash\rcp-be-lol-clash.dll
2017-11-12 22:48 - 2017-09-18 14:38 - 000486528 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-banners\rcp-be-lol-banners.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000537216 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-featured-modes\rcp-be-lol-featured-modes.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000733824 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\Plugins\rcp-be-lol-perks\rcp-be-lol-perks.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 055775872 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\libcef.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 001801344 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\libglesv2.dll
2017-11-12 22:49 - 2017-11-12 22:49 - 000022144 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1855058041-1027751042-450180876-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\alex\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{A4B54830-371B-4053-AF49-3B415F13C8B8}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{26882277-030E-4116-8C83-4CE692FFBEC9}] => (Allow) LPort=2869
FirewallRules: [{9E6CD718-0BB2-495D-A4DA-A8632785BEA1}] => (Allow) LPort=1900
FirewallRules: [{D6F812A5-143D-4B84-950F-93AD80987B61}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{8BC9CA7B-31B1-49C0-AE89-21AAEB034040}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [TCP Query User{F1D71A1D-FF1B-48C2-9F5F-82C5B82B6DB2}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [UDP Query User{435B6A2B-D2D1-494D-83B7-D164A3712745}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [TCP Query User{1D9E36DB-5FCD-4BF1-8C30-C33AC3EF841E}C:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe] => (Block) C:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe
FirewallRules: [UDP Query User{514D409E-9084-468A-95FB-CF3D53A92328}C:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe] => (Block) C:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe
FirewallRules: [{0C77F6CE-698F-4549-8FDD-43231C0D1738}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe
FirewallRules: [{AA2F5F60-9B94-4D28-98DC-2BC885B5E7EE}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe
FirewallRules: [{9FD1E75F-707A-44CB-94C3-D20FD3F386C2}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe
FirewallRules: [{DBB10E88-B536-413B-A6AD-6931956DBA20}] => (Allow) C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe
FirewallRules: [{584E80A1-5409-4C7B-9309-A43ADEC99BAF}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.exe
FirewallRules: [{4348A32E-65BF-4A09-B29D-8E528D92F218}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.exe
FirewallRules: [{D38E72C7-A6C5-4FB5-8530-6118FEA02950}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.patch.exe
FirewallRules: [{27E69760-5EA3-4C7C-9A44-44060E7259E2}] => (Allow) C:\Program Files (x86)\World of Warcraft\Launcher.patch.exe
FirewallRules: [TCP Query User{1CE91E3F-6EDB-4596-8218-0F8B605404FA}C:\program files (x86)\world of warcraft\backgrounddownloader.exe] => (Allow) C:\program files (x86)\world of warcraft\backgrounddownloader.exe
FirewallRules: [UDP Query User{84E81722-A702-4D54-9F04-0CE0E80D2C7B}C:\program files (x86)\world of warcraft\backgrounddownloader.exe] => (Allow) C:\program files (x86)\world of warcraft\backgrounddownloader.exe
FirewallRules: [{E45884CC-1807-430B-9638-1D48FE57D839}] => (Allow) LPort=6881
FirewallRules: [TCP Query User{61AFC719-48D2-4922-B94C-BDB7B207FB64}C:\users\alex\downloads\downloader_diablo2_engb.exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb.exe
FirewallRules: [UDP Query User{BEFFF73E-445C-4421-9B4F-2891396A771C}C:\users\alex\downloads\downloader_diablo2_engb.exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb.exe
FirewallRules: [TCP Query User{F43A638F-6B92-4654-8066-EAEB786A0D9B}C:\users\alex\downloads\downloader_diablo2_engb(1).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(1).exe
FirewallRules: [UDP Query User{F25707B0-406E-4C47-8754-5E37D7862295}C:\users\alex\downloads\downloader_diablo2_engb(1).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(1).exe
FirewallRules: [TCP Query User{33AA036D-4E65-4418-9957-87A5BCDA56F0}C:\users\alex\downloads\downloader_diablo2_engb(2).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(2).exe
FirewallRules: [UDP Query User{67D6C0BE-06DA-4C38-83B2-42385EB580D9}C:\users\alex\downloads\downloader_diablo2_engb(2).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(2).exe
FirewallRules: [TCP Query User{DE56A379-202F-4FAA-BD8C-93DA92618443}C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb.exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb.exe
FirewallRules: [UDP Query User{0F763277-8526-4137-A573-524E7D853041}C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb.exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb.exe
FirewallRules: [TCP Query User{491FC145-E2AB-4B0C-8FD0-B52261ADE6B4}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe
FirewallRules: [UDP Query User{0283EC0A-B608-4493-87A1-54ECE3AE0F6A}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe
FirewallRules: [TCP Query User{5483A1B3-148F-409D-992E-D2C22AB9F6B9}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe
FirewallRules: [UDP Query User{934C2A95-71BB-4B91-90AE-CF1C25757795}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe] => (Allow) C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe
FirewallRules: [{24FB8791-28C8-4083-875B-822721574DB9}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{41CA17D0-F48B-40D0-9ACC-D29C7E18BA7E}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{71258FD9-8FCE-40C6-949D-8C3CD7A4AE3F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\d3tone4000\counter-strike\hl.exe
FirewallRules: [{66C8F1FD-5509-4D82-90DD-D36112FBF020}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\d3tone4000\counter-strike\hl.exe
FirewallRules: [{BCC53B5C-2F27-40E3-865C-428F967727FF}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{68F75814-5F06-4E7D-8C22-82D617243C82}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [{FFB9E54F-B5F3-4B72-B9A6-0ABEFB7C0C0A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [{0C56FB61-E88E-4A84-8F9C-0D5EF048457B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{6DD18EFD-02F3-4DE0-83EC-41F4A9021E0A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{229F7CDC-2861-41FC-94E0-BB44344EFB3D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{8B584532-01F0-4B44-A71E-271F1BDDE01C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{BFB070F7-5775-43CF-9478-8BD7132048CC}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{F74D4BD7-6820-40F5-BADA-119A596CFD72}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{569FE14B-C7B0-4998-B2AE-3537D3C12E83}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3.exe
FirewallRules: [{9FE02309-CEE1-4D2E-A9EB-F30CCF87A083}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3.exe
FirewallRules: [{5AAC8915-B6EF-4BA3-AFAF-97856634EE4B}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe
FirewallRules: [{D5C3FAD1-1F9A-4389-BD1B-EDB1F55FA8DE}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe
FirewallRules: [{0D6975BB-047C-448E-AB66-78137D016804}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Updater.exe
FirewallRules: [{C4BF0D94-64FE-4B67-8628-5DC6C1C1D700}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Updater.exe
FirewallRules: [{9A5C2EDF-5267-47DE-BB81-56A497C5B547}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exe
FirewallRules: [{027E864C-B707-4299-9F58-2038504F0F60}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exe
FirewallRules: [TCP Query User{5AE9F7CC-DD99-41C4-B126-6C9C41DA6489}C:\users\alex\downloads\downloader_diablo2_engb(3).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(3).exe
FirewallRules: [UDP Query User{7756335D-65EC-4E92-9A8A-263A665AA47A}C:\users\alex\downloads\downloader_diablo2_engb(3).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(3).exe
FirewallRules: [TCP Query User{5AA6855B-49A0-4D99-98A9-D528B275F4CD}C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(1).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(1).exe
FirewallRules: [UDP Query User{A91D7FFD-8EB0-49BB-AF57-476B55AF3BDF}C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(1).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(1).exe
FirewallRules: [TCP Query User{53092C89-97F7-4A59-8DF8-69957444C60D}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [UDP Query User{9C66A201-2BE7-4ACE-9A65-C35BF5758006}C:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) C:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [TCP Query User{67A2BE1E-884A-4235-9190-AE25F39584E5}C:\users\alex\downloads\downloader_diablo2_engb(4).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(4).exe
FirewallRules: [UDP Query User{EA18DBB2-671A-475C-BC03-845899E1341C}C:\users\alex\downloads\downloader_diablo2_engb(4).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_engb(4).exe
FirewallRules: [TCP Query User{714FAFEE-7BE9-48AE-AB31-DED70C22F151}C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(2).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(2).exe
FirewallRules: [UDP Query User{57A312C2-7FEB-4D02-BD46-DD773027A122}C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(2).exe] => (Allow) C:\users\alex\downloads\downloader_diablo2_lord_of_destruction_engb(2).exe
FirewallRules: [{E1FBFD42-FE6E-4E40-807C-033834218452}] => (Allow) C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
FirewallRules: [{EB813727-0CB4-4271-9FC9-2D5E1C3BA442}] => (Allow) C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
FirewallRules: [{374B62E8-3837-4436-84F7-2FB2898F5EF0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe
FirewallRules: [{C344DECC-27E3-4322-AF1C-7BA9C85A5BDD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe
FirewallRules: [{F29F1665-F165-45F9-B629-A90ADCE05BB9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\call of duty black ops\BlackOps.exe
FirewallRules: [{759C6F73-6353-44D1-ACED-6F2BD8C09BC2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\call of duty black ops\BlackOps.exe
FirewallRules: [{F49D07A6-97B2-43CB-854B-4E32901FF7A6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\call of duty black ops\BlackOpsMP.exe
FirewallRules: [{01944277-3721-4CAA-B004-31B47C14898A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\call of duty black ops\BlackOpsMP.exe
FirewallRules: [{348222CA-E5B8-4566-B6B6-0255AB3935D7}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Half-Life\hl.exe
FirewallRules: [{07346A0D-49CA-4967-A9A5-E59D4DC25B39}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Half-Life\hl.exe
FirewallRules: [TCP Query User{D49FB052-9E61-4250-8A21-0C9D4CF5C874}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [UDP Query User{FF9B8684-83D3-4E6E-BC27-2F5BB78A903D}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe
FirewallRules: [{26D467BB-F8AB-46C5-963D-45010D1735BF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{0E18191C-2BE7-4CF3-B2CD-0F2523180205}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{ACEFA733-B358-4D83-9A94-35A9073B5690}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{A8F003BB-5370-43FA-A5C3-960628EBD129}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{7D0C57B9-AFE6-4043-A4F9-66359B9254DA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5CB9A298-12BA-4E19-98E5-5F75DCE3FA60}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{FA015D08-F942-4E15-92BE-B06C26617224}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{31A2847A-1F1C-418E-B8AF-EC27A4B56684}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{4F45BD29-ADD9-4B05-8EF6-ADD1934930E9}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{4BBF91B0-C83D-43BC-9318-5AD438C4F53F}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{8F8AFC3A-8CA3-4198-9211-5F2AE77F58CB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2DC8AE39-C009-4025-B36C-9F5BAB3247CF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5824B336-45E6-499B-8669-D041786ABFD8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{FDC41B4E-E4C6-4178-BFCC-6FF923B35C9F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{3A6E3A92-61CA-49FC-BCB3-9797550619E9}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{8EB58337-D080-497A-B340-EF3BDA5F4E79}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{16B45BDD-F2B1-4C97-9D81-E9879D5177DA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{A5364442-1305-476A-8042-690CD6B02884}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{A72AD836-7C0F-4DA4-AB6D-9AAEDC48CE09}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{7B34E1BD-60E1-4763-84BB-C58FD70EA153}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0C73DAA4-F9C3-42B7-B6DA-CD660506BE28}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8A590B05-17C1-4A95-A2E8-DF2AA3EA9F2C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{BDEF0807-0DDC-4278-95C6-C6941B8A4FD1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{1635446F-7257-4F21-90E0-34BBAECFD4E3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0623D1C4-41A3-4802-92F0-9D04922F4664}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{79C4ECEA-80E6-48D8-84DC-13DAA8823730}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{AC86A3A7-782F-4362-9090-5C610DE79D49}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{235F0F22-8FCB-4EEF-923A-62F28A25B14A}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{6C673BEC-BA58-4BFD-926B-556B589A8E21}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite Platinum.SP2\RpcAgentSrv.exe
FirewallRules: [{9263A7CF-FC4F-4F35-AD06-81E81C346A2F}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite Platinum.SP2\WNt600x64\RpcSandraSrv.exe

==================== Wiederherstellungspunkte =========================

13-11-2017 00:19:43 Entfernt Grand Theft Auto IV
13-11-2017 11:10:24 SiSoftware Sandra Lite
13-11-2017 11:11:57 Microsoft Visual C++ 2017 Redistributable (x86) - 14.11.25325
13-11-2017 11:13:18 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215
13-11-2017 11:14:01 Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325
13-11-2017 11:15:30 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (11/15/2017 09:25:07 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/15/2017 09:24:07 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/15/2017 09:23:07 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/15/2017 09:22:07 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/15/2017 09:21:07 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/15/2017 09:20:07 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/15/2017 09:19:06 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/15/2017 09:18:06 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/15/2017 09:17:06 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start

Error: (11/15/2017 09:16:06 PM) (Source: ATIeRecord) (EventID: 16386) (User: )
Description: ATI EEU Client has failed to start


Systemfehler:
=============
Error: (11/15/2017 08:42:44 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Application Virtualization Client" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (11/15/2017 08:42:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Avira Service Host" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/15/2017 08:42:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/15/2017 08:42:39 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Client Virtualization Handler" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (11/15/2017 08:42:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Live ID Sign-in Assistant" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/15/2017 08:42:39 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Application Virtualization Service Agent" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (11/15/2017 08:42:39 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "PnkBstrA" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (11/15/2017 08:42:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA Telemetry Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/15/2017 08:42:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA Display Container LS" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/15/2017 08:42:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA LocalSystem Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 6000 Millisekunden durchgeführt: Neustart des Diensts.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 52%
Installierter physikalischer RAM: 8161.4 MB
Verfügbarer physikalischer RAM: 3852 MB
Summe virtueller Speicher: 16320.98 MB
Verfügbarer virtueller Speicher: 11462.46 MB

==================== Laufwerke ================================

Drive c: (Windows7) (Fixed) (Total:1765.36 GB) (Free:1487.99 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive g: (Volume) (Fixed) (Total:97.65 GB) (Free:95.67 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: D2434893)
Partition 1: (Active) - (Size=1765.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.7 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================

M-K-D-B · 16.11.2017, 14:40

Servus,

wir entfernen noch ein bisschen was und kontrollieren nochmal alles.

Hinweis: Der Suchlauf mit ESET kann länger dauern.

Schritt 1

Kopiere den Inhalt der folgenden Code-Box:

Code:

ATTFilter

Start::
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Chip Digital GmbH|chip1click|chip 1-click installer.exe
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Chip Digital GmbH|chip1click|CHIP Active Download.exe
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Chip Digital GmbH|chip1click|CHIP Starter.exe
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Chip Digital GmbH|chip1click|CHIP Updater.exe
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Assemblies\C:|Program Files (x86)|Chip Digital GmbH|chip1click|SplashForm.exe
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\chip 1-click installer_RASAPI32
DeleteKey: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Tracing\chip 1-click installer_RASMANCS
Reboot:
End::

Starte nun FRST und klicke direkt den Entfernen Button. Wichtig: Du brauchst den Inhalt der Code-Box nirgends einfügen, da sich FRST den Code aus der Zwischenablage holt!
Das Tool führt die gewünschten Schritte aus und erstellt eine fixlog.txt im selben Verzeichnis, in dem sich die FRST/FRST64.exe befindet.
Gegebenenfalls muss dein Rechner dafür neu gestartet werden.
Poste mir den Inhalt der fixlog.txt mit deiner nächsten Antwort.

Schritt 2
Downloade dir die passende Version von HitmanPro auf deinen Desktop: HitmanPro - 32 Bit | HitmanPro - 64 Bit.

Starte die HitmanPro.exe
Klicke auf
Entferne den Haken bei
Klicke auf
und
Akzeptiere die Lizenzbedingungen und klicke auf
Klicke auf

und auf
Wenn der Scan beendet wurde, nichts löschen lassen etc. sondern wähle unten links auf der Button-Leiste
und speichere die Logdatei auf Deinem Desktop.
Schließe HitmanPro und poste mir das Log.

Schritt 3
Downloade Dir bitte ESET Online Scanner (Bebilderte Anleitung)

Starte die Installationsdatei.
Akzeptiere die Nutzungsbedingungen.
Wähle Erkennung evtl. unerwünschter Anwendungen aktivieren aus und klicke auf Scannen.
Zuerst werden die notwendigen Signaturen heruntergeladen, anschließend startet ESET automatisch den Suchlauf.
Am Ende des Suchlaufs werden gegebenenfalls die gefundenen Elemente aufgelistet.
Wähle In Textdatei speichern... aus und speichere die Datei als eset.txt auf deinem Desktop ab.
Füge den Inhalt der eset.txt mit deiner nächsten Antwort hinzu.
Sollte ESET nichts finden, so kann auch keine Logdatei erstellt werden. Teile uns das dann unbedingt mit.
Schließe den ESET Online Scanner rechts oben [ X ] und klicke anschließend auf Schließen.

Schritt 4

Starte die FRST.exe erneut. Vergewissere dich, dass vor Addition.txt ein Haken gesetzt ist und drücke auf Untersuchen.
FRST erstellt wieder zwei Logdateien (FRST.txt und Addition.txt).
Poste mir beide Logdateien mit deiner nächsten Antwort.

Gibt es jetzt noch Probleme mit dem PC oder mit deinen Internet Browsern? Wenn ja, welche?

Bitte poste mit deiner nächsten Antwort

die Logdatei des FRST-Fix,
die Logdatei von HitmanPro,
die Logdatei von ESET,
die beiden neuen Logdateien von FRST,
die Beantwortung der gestellten Fragen.

M-K-D-B · 20.11.2017, 20:31

Fehlende Rückmeldung
Dieses Thema wurde aus den Abos gelöscht. Somit bekomme ich keine Benachrichtigung über neue Antworten.
PM inklusive Link zum Thema an mich falls du denoch weiter machen willst.

Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist.

Jeder andere bitte hier klicken und einen eigenen Thread erstellen!

Sehr eigenartige Meldungen

Log-Analyse und Auswertung: Sehr eigenartige Meldungen