AviraIPM | 26.06.2016 15:30 | Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 26-06-2016 01
durchgeführt von Nico (Administrator) auf NICO-PC (26-06-2016 16:22:50)
Gestartet von C:\Users\Nico\Downloads
Geladene Profile: Nico (Verfügbare Profile: Nico)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 8 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(Sandboxie Holdings, LLC) G:\Program Files\Sandboxie\SbieSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BCA\pabeSvc64.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Apple Inc.) G:\Program Files\iTunes\iTunesHelper.exe
(DT Soft Ltd) G:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(TeamViewer GmbH) G:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Sandboxie Holdings, LLC) G:\Program Files\Sandboxie\SbieCtrl.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\ipmgui.exe
() C:\Program Files\WALTR\x86\AnimationService.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
() G:\Program Files (x86)\puush\puush.exe
(TeamSpeak Systems GmbH) G:\Programme\Teamspeak\ts3client_win64.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_22_0_0_192.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_22_0_0_192.exe
() F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\samp.exe
(Valve Corporation) G:\Programme\Steam\Steam.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Valve Corporation) G:\Programme\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
() G:\Programme\AHK\AutoHotkeyA32.exe
(Valve Corporation) G:\Programme\Steam\bin\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Don HO don.h@free.fr) C:\Program Files (x86)\Notepad++\notepad++.exe
() F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\gta_sa.exe
() C:\Users\Nico\Desktop\Ordner\Spiele\GTA\SAMP\Sani.exe
(Valve Corporation) G:\Programme\Steam\bin\steamwebhelper.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [iTunesHelper] => G:\Program Files\iTunes\iTunesHelper.exe [170256 2015-12-17] (Apple Inc.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [814608 2016-05-12] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\Run: [DAEMON Tools Lite] => G:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [1305408 2011-01-20] (DT Soft Ltd)
HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\Run: [SandboxieControl] => G:\Program Files\Sandboxie\SbieCtrl.exe [797328 2016-02-26] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\MountPoints2: {0c3103d5-d64e-11e5-a080-d05099550755} - H:\setup.exe
HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\MountPoints2: {3615cf4f-ead8-11e4-b335-806e6f6e6963} - D:\SETUP.EXE
HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\MountPoints2: {4c1d68e5-3428-11e5-bf51-d05099550755} - H:\setup.exe
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 78.42.43.41 82.212.62.41
Tcpip\..\Interfaces\{0B9A43B5-F2AD-4751-A7AD-1B7E8E1D37D1}: [DhcpNameServer] 82.212.62.62 78.42.43.62
Tcpip\..\Interfaces\{5248E955-8A2B-4323-82C9-8861A890D5CF}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{CE6FB0E5-C7C8-4374-8A6F-5C39CDA1E29C}: [DhcpNameServer] 78.42.43.41 82.212.62.41
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1388351622-919218107-1302039281-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-05-27] (Microsoft Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-05-25] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-05-17] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-25] (Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-05-27] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-05-25] (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-05-17] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-25] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-05-17] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2015-12-10] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2015-12-10] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2015-12-10] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2015-12-10] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\aDV28Sk4.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_192.dll [2016-06-24] ()
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-25] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-25] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-06-24] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-25] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-11-18] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-09-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-09-13] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll [2015-04-24] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll [2015-04-24] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-11-18] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2015-11-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2015-11-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2015-11-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2015-11-10] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2015-11-10] (Apple Inc.)
FF Extension: Google Search by Image - C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\aDV28Sk4.default\extensions\google@hitachi.com.xpi [2016-04-28]
FF Extension: Avira Browser Safety - C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\aDV28Sk4.default\Extensions\abs@avira.com [2016-06-22]
FF Extension: MEGA - C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\aDV28Sk4.default\Extensions\firefox@mega.co.nz.xpi [2016-06-23]
FF Extension: Adblock Plus - C:\Users\Nico\AppData\Roaming\Mozilla\Firefox\Profiles\aDV28Sk4.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28]
Chrome:
=======
CHR Profile: C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Docs) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-24]
CHR Extension: (Google Drive) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-24]
CHR Extension: (YouTube) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-24]
CHR Extension: (Google-Suche) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-24]
CHR Extension: (Google Mail) - C:\Users\Nico\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-24]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AnimationService; C:\Program Files\WALTR\x86\AnimationService.exe [55744 2015-10-08] ()
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [970656 2016-05-12] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [467016 2016-05-12] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [467016 2016-05-12] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1435704 2016-05-12] (Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
S4 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [251160 2015-12-08] (Avira Operations GmbH & Co. KG)
S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1141248 2015-07-16] ()
S4 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [437880 2015-07-13] (BlueStack Systems, Inc.)
S4 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [417400 2015-07-13] (BlueStack Systems, Inc.)
S4 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [822904 2015-07-13] (BlueStack Systems, Inc.)
S3 Disc Soft Lite Bus Service; G:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
S4 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-12] (NVIDIA Corporation)
S4 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19184 2014-12-10] (Intel Corporation)
S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Datei ist nicht signiert]
S4 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
S4 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-03-20] (Intel Corporation)
R2 IntelBCAsvc; C:\Program Files\Intel\BCA\pabeSvc64.exe [3020440 2015-11-25] (Intel(R) Corporation)
S4 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-04-03] ()
S4 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-09-25] (Intel Corporation)
S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3916368 2016-01-09] (INCA Internet Co., Ltd.)
S4 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-12] (NVIDIA Corporation)
S4 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-12] (NVIDIA Corporation)
S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-12] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75064 2015-08-29] ()
S4 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [246488 2013-06-18] (Realtek Semiconductor)
R2 SbieSvc; G:\Program Files\Sandboxie\SbieSvc.exe [187024 2016-02-26] (Sandboxie Holdings, LLC)
R2 TeamViewer; G:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer GmbH)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [868592 2016-03-31] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [15736 2016-03-31] (McAfee, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S4 Bonjour Service; "C:\Program Files\Bonjour\mDNSResponder.exe" [X]
S2 InstallerService; "C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe" [X]
S3 TrueKeyServiceHelper; "C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [154816 2016-03-08] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [141920 2016-05-12] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2015-04-16] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [79696 2016-05-12] (Avira Operations GmbH & Co. KG)
S2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [145528 2015-07-13] (BlueStack Systems)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-07-27] (Disc Soft Ltd)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2016-02-18] (DT Soft Ltd)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [488216 2014-02-03] (Intel Corporation)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [30960 2014-12-10] (Intel Corporation)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [22216 2014-02-03] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [22728 2014-02-03] ()
S3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-04-03] ()
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [44744 2014-02-03] ()
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [118272 2014-03-20] (Intel Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
R3 SbieDrv; G:\Program Files\Sandboxie\SbieDrv.sys [204944 2016-02-26] (Sandboxie Holdings, LLC)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3604480 2013-07-30] (Sonix Co. Ltd.)
S3 ssdevfactory; C:\Windows\System32\DRIVERS\ssdevfactory.sys [25088 2015-04-14] (SteelSeries ApS)
R3 VBAudioVACMME; C:\Windows\System32\DRIVERS\vbaudio_cable64_win7.sys [41192 2013-07-11] (Windows (R) Win 7 DDK provider)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-06-26 16:22 - 2016-06-26 16:22 - 02388992 _____ (Farbar) C:\Users\Nico\Downloads\FRST64.exe
2016-06-26 16:22 - 2016-06-26 16:22 - 00022714 _____ C:\Users\Nico\Downloads\FRST.txt
2016-06-26 16:22 - 2016-06-26 16:22 - 00000000 ____D C:\FRST
2016-06-26 09:37 - 2016-06-26 09:40 - 00000000 ____D C:\AdwCleaner
2016-06-26 09:37 - 2016-06-26 09:37 - 03703360 _____ C:\Users\Nico\Downloads\AdwCleaner_5.200.exe
2016-06-25 16:33 - 2016-06-25 16:33 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Source
2016-06-25 14:33 - 2016-06-25 14:36 - 00007606 _____ C:\Users\Nico\AppData\Local\Resmon.ResmonCfg
2016-06-20 11:47 - 2016-06-20 11:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WALTR
2016-06-20 11:47 - 2016-06-20 11:47 - 00000000 ____D C:\Program Files\WALTR
2016-06-20 11:46 - 2016-06-20 11:47 - 34417272 _____ (Softorino, Inc. ) C:\Users\Nico\Downloads\waltrwindows_1.1.33(1).exe
2016-06-18 08:42 - 2016-06-21 22:49 - 00012364 _____ C:\Users\Nico\Desktop\Hay Day.xlsx
2016-06-16 23:00 - 2016-06-16 23:00 - 00008102 _____ C:\Users\Nico\Desktop\Urlaub.xlsx
2016-06-15 18:21 - 2016-06-06 18:58 - 00041704 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-06-15 18:21 - 2016-06-06 18:50 - 01204224 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-06-15 18:21 - 2016-06-03 15:05 - 01413120 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-06-15 18:21 - 2016-05-27 15:06 - 00569856 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-06-15 18:21 - 2016-05-27 15:06 - 00544256 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-06-15 18:21 - 2016-05-27 15:06 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-06-15 18:21 - 2016-05-27 15:06 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-06-15 18:21 - 2016-05-22 15:06 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-06-15 18:21 - 2016-05-18 18:10 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-06-15 18:21 - 2016-05-18 18:09 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-06-15 18:21 - 2016-05-14 00:15 - 00382184 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-06-15 18:21 - 2016-05-14 00:09 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-06-15 18:21 - 2016-05-14 00:09 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-06-15 18:21 - 2016-05-14 00:09 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-06-15 18:21 - 2016-05-14 00:09 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-06-15 18:21 - 2016-05-13 23:54 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-06-15 18:21 - 2016-05-13 23:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-06-15 18:21 - 2016-05-13 23:49 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-06-15 18:21 - 2016-05-13 23:49 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-06-15 18:21 - 2016-05-13 23:27 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-06-15 18:21 - 2016-05-12 19:20 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-06-15 18:21 - 2016-05-12 19:20 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-06-15 18:21 - 2016-05-12 19:15 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-06-15 18:21 - 2016-05-12 19:15 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-06-15 18:21 - 2016-05-12 19:15 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
2016-06-15 18:21 - 2016-05-12 19:15 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-06-15 18:21 - 2016-05-12 19:15 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-06-15 18:21 - 2016-05-12 19:15 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 00794624 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 00793088 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2016-06-15 18:21 - 2016-05-12 19:14 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-06-15 18:21 - 2016-05-12 19:14 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00591872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-06-15 18:21 - 2016-05-12 17:18 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-06-15 18:21 - 2016-05-12 17:06 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe
2016-06-15 18:21 - 2016-05-12 17:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-06-15 18:21 - 2016-05-12 17:03 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-06-15 18:21 - 2016-05-12 16:58 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-06-15 18:21 - 2016-05-12 16:58 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-06-15 18:21 - 2016-05-12 16:58 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-06-15 18:21 - 2016-05-12 16:58 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-06-15 18:21 - 2016-05-12 16:58 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-06-15 18:21 - 2016-05-12 16:58 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-06-15 18:21 - 2016-05-12 16:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll
2016-06-15 18:21 - 2016-05-12 16:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-06-15 18:21 - 2016-05-12 16:57 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.exe
2016-06-15 18:21 - 2016-05-12 16:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-06-15 18:21 - 2016-05-12 16:51 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-06-15 18:21 - 2016-05-12 15:05 - 00459640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-06-15 18:21 - 2016-05-12 15:05 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-06-15 18:21 - 2016-05-12 15:04 - 00249352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-06-15 18:21 - 2016-05-11 19:02 - 00483840 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2016-06-15 18:21 - 2016-05-11 19:02 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-06-15 18:21 - 2016-05-11 19:02 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-06-15 18:21 - 2016-05-11 19:02 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2016-06-15 18:21 - 2016-05-11 17:19 - 00363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2016-06-15 18:21 - 2016-05-11 17:19 - 00351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2016-06-15 18:21 - 2016-05-11 17:19 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-06-15 18:21 - 2016-05-11 17:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2016-06-15 18:21 - 2016-05-11 17:11 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2016-06-15 18:21 - 2016-05-11 17:01 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe
2016-06-15 18:21 - 2016-05-11 16:58 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2016-06-15 18:21 - 2016-04-14 18:46 - 00114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-06-15 18:21 - 2016-04-14 18:42 - 03243520 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-06-15 18:21 - 2016-04-14 18:42 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-06-15 18:21 - 2016-04-14 18:42 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-06-15 18:21 - 2016-04-14 18:42 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-06-15 18:21 - 2016-04-14 18:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2016-06-15 18:21 - 2016-04-14 17:33 - 02365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-06-15 18:21 - 2016-04-14 17:33 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-06-15 18:21 - 2016-04-14 17:33 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2016-06-15 18:21 - 2016-04-14 17:33 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2016-06-15 18:21 - 2016-04-14 17:19 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-06-15 18:21 - 2016-04-14 17:11 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2016-06-15 18:21 - 2016-04-09 08:58 - 14186496 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-06-15 18:21 - 2016-04-09 08:57 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-06-15 18:21 - 2016-04-09 08:54 - 12881408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-06-15 18:21 - 2016-04-09 08:54 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-06-15 18:21 - 2016-04-09 07:53 - 03231232 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-06-15 18:21 - 2016-04-09 07:44 - 02973184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-06-15 18:21 - 2016-03-09 21:00 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-06-15 18:21 - 2016-03-09 20:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2016-06-06 22:53 - 2016-06-20 14:32 - 00008354 _____ C:\Users\Nico\Desktop\Terminkalender.xlsx
2016-05-28 19:10 - 2016-06-01 22:58 - 00009103 _____ C:\Users\Nico\Desktop\PSC-Handel.xlsx
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-06-26 16:13 - 2015-04-24 21:29 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Skype
2016-06-26 15:56 - 2015-04-26 20:28 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-06-26 15:30 - 2015-04-24 20:25 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-26 09:53 - 2009-07-14 06:45 - 00026544 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-06-26 09:53 - 2009-07-14 06:45 - 00026544 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-06-26 09:50 - 2011-04-12 09:43 - 00700130 _____ C:\Windows\system32\perfh007.dat
2016-06-26 09:50 - 2011-04-12 09:43 - 00149768 _____ C:\Windows\system32\perfc007.dat
2016-06-26 09:50 - 2009-07-14 07:13 - 01622706 _____ C:\Windows\system32\PerfStringBackup.INI
2016-06-26 09:50 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-06-26 09:45 - 2015-04-24 20:25 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-26 09:44 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-25 23:25 - 2015-05-09 07:30 - 00000000 ____D C:\Users\Nico\AppData\Roaming\OBS
2016-06-25 14:54 - 2015-05-17 20:29 - 00000000 ___HD C:\Users\Nico\AppData\Local\Battle.net
2016-06-25 14:54 - 2015-04-24 22:15 - 00000000 ____D C:\Users\Nico\AppData\Roaming\vlc
2016-06-25 14:42 - 2015-09-28 15:16 - 00000000 ____D C:\Windows\pss
2016-06-24 10:37 - 2015-12-27 02:40 - 00000000 ____D C:\Users\Nico\AppData\Local\CrashDumps
2016-06-24 10:36 - 2015-04-26 20:28 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-06-24 10:36 - 2015-04-26 20:28 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-06-24 10:36 - 2015-04-26 20:28 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-06-24 10:36 - 2015-04-26 20:28 - 00000000 ___HD C:\Users\Nico\AppData\Local\Adobe
2016-06-22 17:24 - 2015-05-14 18:48 - 00001742 _____ C:\Windows\Sandboxie.ini
2016-06-20 12:07 - 2015-10-25 15:02 - 00111936 _____ C:\Windows\system32\GDIPFONTCACHEV1.DAT
2016-06-20 12:05 - 2015-11-10 23:04 - 00000000 ____D C:\Program Files (x86)\Movavi Video Converter 16
2016-06-20 12:00 - 2015-11-10 22:44 - 00000000 ____D C:\Users\Nico\.fontconfig
2016-06-20 11:44 - 2016-05-15 12:50 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Franz
2016-06-18 00:04 - 2016-03-15 08:20 - 00001601 _____ C:\Users\Nico\Desktop\tommy.txt
2016-06-16 15:12 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2016-06-16 09:26 - 2015-04-25 02:18 - 00000000 ____D C:\Windows\system32\appraiser
2016-06-16 09:26 - 2009-07-14 06:45 - 00434792 _____ C:\Windows\system32\FNTCACHE.DAT
2016-06-15 23:09 - 2015-05-26 21:40 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-06-15 23:08 - 2015-04-24 22:12 - 00000000 ____D C:\Windows\system32\MRT
2016-06-15 23:06 - 2015-04-24 22:12 - 142482544 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-06-09 12:47 - 2015-06-27 16:45 - 00000000 ____D C:\Users\Nico\AppData\Roaming\Curse Client
2016-06-09 09:53 - 2015-12-17 07:50 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-06-09 09:53 - 2015-04-24 21:29 - 00000000 ____D C:\ProgramData\Skype
2016-06-09 09:51 - 2015-10-07 22:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-06-08 21:44 - 2016-02-25 19:37 - 00014108 _____ C:\Users\Nico\Desktop\Microsoft Excel-Arbeitsblatt (neu).xlsx
2016-06-07 12:09 - 2015-05-02 09:01 - 00000000 ____D C:\Users\Nico\AppData\Roaming\.minecraft
2016-06-04 15:47 - 2015-10-29 19:57 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-05-30 21:43 - 2016-04-05 20:06 - 00011793 _____ C:\Users\Nico\Desktop\Miss Random.xlsx
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-10-02 11:19 - 2015-10-02 14:11 - 0002071 _____ () C:\Users\Nico\AppData\Roaming\SpeedRunnersLog.txt
2016-06-25 14:33 - 2016-06-25 14:36 - 0007606 _____ () C:\Users\Nico\AppData\Local\Resmon.ResmonCfg
2015-11-10 22:43 - 2015-11-10 22:43 - 0000016 _____ () C:\ProgramData\mntemp
Einige Dateien in TEMP:
====================
C:\Users\Nico\AppData\Local\Temp\avgnt.exe
C:\Users\Nico\AppData\Local\Temp\libeay32.dll
C:\Users\Nico\AppData\Local\Temp\msvcr120.dll
C:\Users\Nico\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-06-17 09:52
==================== Ende von FRST.txt ============================ Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 26-06-2016 01
durchgeführt von Nico (2016-06-26 16:23:08)
Gestartet von C:\Users\Nico\Downloads
Windows 7 Ultimate Service Pack 1 (X64) (2015-04-24 18:18:19)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1388351622-919218107-1302039281-500 - Administrator - Disabled)
Gast (S-1-5-21-1388351622-919218107-1302039281-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1388351622-919218107-1302039281-1002 - Limited - Enabled)
Nico (S-1-5-21-1388351622-919218107-1302039281-1000 - Administrator - Enabled) => C:\Users\Nico
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.38 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0938-000001000000}) (Version: 9.38.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated)
Aeria Ignite (HKLM-x32\...\Aeria Ignite 1.13.3296) (Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (HKLM-x32\...\Aeria Ignite) (Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (x32 Version: 1.13.3296 - Aeria Games & Entertainment) Hidden
Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version: - Hidden Path Entertainment, Ensemble Studios)
Akamai NetSession Interface (HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\Akamai) (Version: - Akamai Technologies, Inc)
Apple Application Support (32-Bit) (HKLM-x32\...\{7FA9ECCF-A2DE-4DA1-BFF3-81260DBDA68F}) (Version: 4.1.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{691F30EB-9009-475A-B8A9-E1BF39598FD5}) (Version: 4.1.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version: - Studio Wildcard)
ASRock App Charger v1.0.6 (HKLM\...\ASRock App Charger_is1) (Version: 1.0.6 - ASRock Inc.)
AutoHotkey 1.1.21.03 (HKLM\...\AutoHotkey) (Version: 1.1.21.03 - Lexikos)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.17.273 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{eac7da46-2097-4dd4-80a6-8b67cbb2b23f}) (Version: 1.1.53.13962 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.53.13962 - Avira Operations GmbH & Co. KG) Hidden
Batman™: Arkham Origins (HKLM-x32\...\Steam App 209000) (Version: - WB Games Montreal)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BioShock (HKLM-x32\...\Steam App 7670) (Version: - 2K Boston)
BioShock 2 (HKLM-x32\...\Steam App 8850) (Version: - 2K Marin)
Blade & Soul (HKLM-x32\...\InstallShield_{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.237 - NC Interactive, LLC)
Blade & Soul (x32 Version: 1.0.63.237 - NC Interactive, LLC) Hidden
BlueStacks App Player (HKLM-x32\...\{CCFDC6A9-4455-4117-BB1F-5FC580349DDB}) (Version: 1.1.8.162 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Call of Duty: Advanced Warfare - Multiplayer (HKLM\...\Steam App 209660) (Version: - Sledgehammer Games)
Call of Duty: Black Ops (HKLM\...\Steam App 42700) (Version: - Treyarch)
Call of Duty: Black Ops III Beta (HKLM-x32\...\Steam App 388520) (Version: - Treyarch)
Call of Duty: Modern Warfare 3 - Multiplayer (HKLM\...\Steam App 42690) (Version: - Infinity Ward)
CameraHelperMsi (x32 Version: 13.40.836.0 - Logitech) Hidden
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version: - Colossal Order Ltd.)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
Curse (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Curse)
Cyperia (HKLM-x32\...\{CA9F6B5A-2C32-4CB3-8635-390AB45A8C49}) (Version: 2.0 - Cyperia)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.40.2.0131 - DT Soft Ltd)
Die Sims 4 Digital Deluxe Edition ReRelease Incl. Update 10 MULTi2 1.5.139.1020 (HKLM-x32\...\Die Sims 4 Digital Deluxe Edition ReRelease Incl. Update 10 MULTi2 1.5.139.1020) (Version: - )
Die Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.5.139.1020 - Electronic Arts Inc.)
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Franz (HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\Franz) (Version: 0.9.10 - Franz)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
GIGABYTE OC_GURU II (HKLM-x32\...\InstallShield_{EA298EC1-2B8F-4DA9-8C5B-BC1FCBBAD72F}) (Version: 1.69.0000 - GIGABYTE Technology Co.,Ltd.)
GIGABYTE OC_GURU II (x32 Version: 1.69.0000 - GIGABYTE Technology Co.,Ltd.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 26.0.1410.40 - Google Inc.)
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Grand Theft Auto: San Andreas (HKLM-x32\...\Steam App 12120) (Version: - Rockstar Games)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
HUE HD Camera (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.60000.104 - Sonix)
Intel Security True Key (HKLM\...\TrueKey) (Version: 3.9.141.1 - Intel Security)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation)
Intel(R) Network Connections 19.0.27.0 (HKLM\...\PROSetDX) (Version: 19.0.27.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.6.0.1002 - Intel Corporation)
Intel(R) Smart Connect Technology (HKLM\...\{7228EFBA-512B-4EB3-B8A7-E2C331475DF4}) (Version: 5.0.10.2808 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{B991A1BC-DE0F-41B3-9037-B2F948F706EC}) (Version: 3.1.1228 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.13 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{FBEB98F8-64E4-4FA3-A15E-4A9F42FF962E}) (Version: 12.3.2.35 - Apple Inc.)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java SE Development Kit 8 Update 73 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0180730}) (Version: 8.0.730.2 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
Logitech Webcam-Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.40 - Logitech Inc.)
LWS VideoEffects (Version: 13.30.1379.0 - Logitech) Hidden
Medal of Honor(TM) Multiplayer (HKLM-x32\...\Steam App 47830) (Version: - Electronic Arts)
Medal of Honor(TM) Single Player (HKLM-x32\...\Steam App 47790) (Version: - Electronic Arts)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Expression Encoder 4 (HKLM-x32\...\Encoder_4.0.1651.0) (Version: 4.0.1651.0 - Microsoft Corporation)
Microsoft Expression Encoder 4 Screen Capture Codec (HKLM-x32\...\{F21D2032-60FE-4729-9C87-46F1615FB965}) (Version: 4.0.1651.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{09298F26-A95C-31E2-9D95-2C60F586F075}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Movavi Video Converter 16 (HKLM-x32\...\Movavi Video Converter 16) (Version: 16.0.2 - Movavi)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Studio Platinum 13.0 (64-bit) (HKLM\...\{F4721C9E-74D6-11E4-9122-F04DA23A5C58}) (Version: 13.0.943 - Sony)
Mozilla Firefox 47.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 de)) (Version: 47.0 - Mozilla)
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version: - NCSOFT)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.9 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 355.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.98 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.9.1.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.9.1.22 - NVIDIA Corporation)
NVIDIA Grafiktreiber 355.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.98 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{E10DB5DA-E576-40EA-A7FC-1CB2A7B283A6}) (Version: 9.09.1112 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Outlast (HKLM\...\Steam App 238320) (Version: - Red Barrels)
Portal 2 (HKLM-x32\...\Steam App 620) (Version: - Valve)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.989 - Even Balance, Inc.)
puush (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert)
QuickTime 7 (HKLM-x32\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7004 - Realtek Semiconductor Corp.)
Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.8 - Rockstar Games)
RollerCoaster Tycoon 3: Platinum! (HKLM\...\Steam App 2700) (Version: - Frontier)
SA-MP Colorpicker 1.1.0 (HKLM-x32\...\SA-MP Colorpicker) (Version: 1.1.0 - GTAvision.com)
Sandboxie 5.10 (64-bit) (HKLM\...\Sandboxie) (Version: 5.10 - Sandboxie Holdings, LLC)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SHIELD Streaming (Version: 4.1.0260 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.9.1.22 - NVIDIA Corporation) Hidden
Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.)
South Park™: The Stick of Truth™ (HKLM-x32\...\Steam App 213670) (Version: - Obsidian Entertainment)
SpeedRunners (HKLM-x32\...\Steam App 207140) (Version: - DoubleDutch Games)
Spore (HKLM-x32\...\Steam App 17390) (Version: - Maxis™)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.3.6.1 (HKLM\...\SteelSeries Engine 3) (Version: 3.3.6.1 - SteelSeries ApS)
Stronghold 2 Deluxe (HKLM-x32\...\{16D2C649-CBA8-44EE-B730-12584667D487}) (Version: 1.40.000 - Firefly Studios)
Super Meat Boy (HKLM-x32\...\Steam App 40800) (Version: - Team Meat)
Surgeon Simulator (HKLM\...\Steam App 233720) (Version: - Bossa Studios)
Tank Universal (HKLM-x32\...\Steam App 19200) (Version: - Dialogue Design)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.56083 - TeamViewer)
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 28 - Gameforge Productions GmbH)
Terraria (HKLM-x32\...\Steam App 105600) (Version: - Re-Logic)
The Binding of Isaac: Rebirth (HKLM-x32\...\Steam App 250900) (Version: - Nicalis, Inc.)
TL-WN851ND Driver (HKLM-x32\...\{4BAE4C76-44C3-418F-B715-6BBF5A65323E}) (Version: 1.00.0000 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 2.01.0012 - TP-LINK)
TrackMania² Stadium (HKLM-x32\...\Steam App 232910) (Version: - Nadeo)
Two Worlds II Castle Defense (HKLM-x32\...\Steam App 7530) (Version: - Reality Pump Studios)
Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{5D2260D6-DB16-41DC-915B-A39BF4F66362}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3115033) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{F258B6E3-BF41-4FEE-BE45-D7518C3B7FC1}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3115033) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{F258B6E3-BF41-4FEE-BE45-D7518C3B7FC1}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3115033) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{F258B6E3-BF41-4FEE-BE45-D7518C3B7FC1}) (Version: - Microsoft)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software)
Vegas Pro 13.0 (64-bit) (HKLM\...\{1F8D8040-0BC8-11E5-85C5-F04DA23A5C58}) (Version: 13.0.453 - Sony)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WALTR version 1.1.33 (HKLM\...\{20AFC2A1-9E47-4A77-96E8-89AAED7B6AEB}_is1) (Version: 1.1.33 - Softorino, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Wolfenstein The Old Blood German Uncut Edition 1.0 (HKLM-x32\...\Wolfenstein The Old Blood German Uncut Edition 1.0) (Version: - )
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Worms Revolution (HKLM-x32\...\Steam App 200170) (Version: - Team17 Digital Ltd.)
XAMPP (HKLM-x32\...\xampp) (Version: 7.0.4-0 - Bitnami)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {2E87B74D-F65F-4412-AC03-E42BC061085B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {489FB674-5113-4B98-9E97-2B81D4EE0F0E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-24] (Google Inc.)
Task: {4E2F4B7B-4935-4AFA-8FF0-D102A80F278E} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation)
Task: {8A458805-3DA2-4BBF-B367-948A7E3B6B5A} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1388351622-919218107-1302039281-1000
Task: {8BAD7105-21A7-4B8C-8F85-BEDDF495CBF0} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation)
Task: {91A95712-EB05-4248-8F01-292412E88D20} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {AAF1A12C-5C49-42F8-A121-77CE22A5A93D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {C157557D-96CE-4424-85ED-3765AA5D6FED} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-24] (Adobe Systems Incorporated)
Task: {CBE9F7B5-6089-4AD1-A3DF-147503BCDBE0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {D96278F6-D5DF-45EE-86C2-C2E7D4025147} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-24] (Google Inc.)
Task: {FAC8A8C7-8A29-4D20-B791-6C7655A54E8C} - System32\Tasks\Core Temp Autostart Nico => G:\Program Files\Core Temp\Core Temp.exe
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\Users\Nico\AppData\Local\Microsoft\Windows\GameExplorer\{68FD21EF-5CCA-4415-B58F-0BB2B0E863C2}\SupportTasks\0\Weitere Spiele von Microsoft.lnk -> hxxp://www.rockstargames.com/sanandreas/ (Keine Datei)
Shortcut: C:\Users\Nico\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cyperia\Cyperia Homepage.lnk -> hxxp://cyperia.org/ (Keine Datei)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2015-09-23 16:47 - 2015-09-23 16:47 - 00085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-10-13 06:45 - 2015-10-13 06:45 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-08-29 21:11 - 2015-08-29 21:11 - 00075064 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2016-06-20 11:47 - 2015-10-08 16:53 - 00055744 _____ () C:\Program Files\WALTR\x86\AnimationService.exe
2012-01-10 14:41 - 2015-05-28 20:37 - 00568904 _____ () G:\Program Files (x86)\puush\puush.exe
2014-02-28 11:14 - 2016-06-24 10:35 - 00174872 _____ () G:\Programme\Teamspeak\quazip.dll
2014-08-04 15:43 - 2016-06-24 10:35 - 00103192 _____ () G:\Programme\Teamspeak\soundbackends\directsound_win64.dll
2014-08-04 15:43 - 2016-06-24 10:35 - 00107800 _____ () G:\Programme\Teamspeak\soundbackends\windowsaudiosession_win64.dll
2014-08-04 15:46 - 2016-06-24 10:35 - 00312088 _____ () G:\Programme\Teamspeak\plugins\clientquery_plugin.dll
2014-08-04 15:46 - 2016-06-24 10:35 - 00485656 _____ () G:\Programme\Teamspeak\plugins\teamspeak_control_plugin.dll
2015-04-27 04:50 - 2015-04-27 04:50 - 00412672 _____ () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\samp.exe
2015-04-25 08:53 - 2015-04-12 02:34 - 00795136 _____ () G:\Programme\AHK\AutoHotkeyA32.exe
2014-03-12 21:27 - 2005-06-07 17:59 - 14383616 _____ () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\gta_sa.exe
2016-06-25 16:33 - 2016-06-25 16:34 - 00805376 _____ () C:\Users\Nico\Desktop\Ordner\Spiele\GTA\SAMP\Sani.exe
2011-11-11 15:08 - 2011-11-11 15:08 - 02145304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll
2011-11-11 15:08 - 2011-11-11 15:08 - 07956504 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll
2011-11-11 15:08 - 2011-11-11 15:08 - 00342552 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll
2011-11-11 15:08 - 2011-11-11 15:08 - 00029208 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2011-11-11 15:08 - 2011-11-11 15:08 - 00128536 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2016-06-24 10:36 - 2016-06-24 10:36 - 19455168 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll
2015-04-24 21:46 - 2016-04-29 22:10 - 00785920 _____ () G:\Programme\Steam\SDL2.dll
2015-04-24 21:46 - 2015-07-03 18:12 - 04962816 _____ () G:\Programme\Steam\v8.dll
2015-04-24 21:46 - 2015-07-03 18:12 - 01556992 _____ () G:\Programme\Steam\icui18n.dll
2015-04-24 21:46 - 2015-07-03 18:12 - 01187840 _____ () G:\Programme\Steam\icuuc.dll
2015-04-24 21:46 - 2016-06-15 02:47 - 02387024 _____ () G:\Programme\Steam\video.dll
2015-04-24 21:46 - 2016-02-09 01:14 - 02549760 _____ () G:\Programme\Steam\libavcodec-56.dll
2015-04-24 21:46 - 2016-02-09 01:14 - 00442880 _____ () G:\Programme\Steam\libavutil-54.dll
2015-04-24 21:46 - 2016-02-09 01:14 - 00491008 _____ () G:\Programme\Steam\libavformat-56.dll
2015-04-24 21:46 - 2016-02-09 01:14 - 00332800 _____ () G:\Programme\Steam\libavresample-2.dll
2015-04-24 21:46 - 2016-02-09 01:14 - 00485888 _____ () G:\Programme\Steam\libswscale-3.dll
2015-04-24 21:46 - 2016-06-15 02:47 - 00829008 _____ () G:\Programme\Steam\bin\chromehtml.DLL
2016-03-09 18:00 - 2016-02-18 00:25 - 00281088 _____ () G:\Programme\Steam\openvr_api.dll
2015-04-24 21:46 - 2016-06-14 21:14 - 49826080 _____ () G:\Programme\Steam\bin\libcef.dll
2015-06-03 21:14 - 2015-06-03 20:18 - 00499712 _____ () F:\Sammelordner\Keybinder\Test Keybinder API\Test2\API.dll
2015-04-24 21:46 - 2015-09-25 01:56 - 00119208 _____ () G:\Programme\Steam\winh264.dll
2014-07-19 09:53 - 2014-07-19 09:53 - 00065536 _____ () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\vorbisfile.dll
2014-03-12 21:27 - 2003-11-15 18:54 - 00036864 _____ () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\ogg.dll
2014-07-19 09:50 - 2003-11-16 11:48 - 01060864 _____ () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\vorbis.dll
2016-02-27 18:33 - 2015-09-11 12:59 - 02907136 _____ () F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\d3d9.dll
2015-10-13 06:46 - 2015-10-13 06:46 - 01040144 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2015-09-23 16:47 - 2015-09-23 16:47 - 00073512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2016-06-25 16:34 - 2016-06-25 16:34 - 00499712 _____ () C:\Users\Nico\Desktop\Ordner\Spiele\GTA\SAMP\overlay.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Windows\Temp:$DATA [16]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\aeriagames.com -> hxxps://aeriagames.com
IE trusted site: HKU\S-1-5-21-1388351622-919218107-1302039281-1000\...\aeriagames.com -> hxxp://aeriagames.com
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1388351622-919218107-1302039281-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Nico\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 78.42.43.41 - 82.212.62.41
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: Apple Mobile Device Service => 2
MSCONFIG\Services: Avira.ServiceHost => 2
MSCONFIG\Services: AxInstSV => 3
MSCONFIG\Services: BEService => 3
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: BstHdAndroidSvc => 3
MSCONFIG\Services: BstHdLogRotatorSvc => 2
MSCONFIG\Services: BstHdUpdaterSvc => 2
MSCONFIG\Services: Disc Soft Lite Bus Service => 3
MSCONFIG\Services: GfExperienceService => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: IAStorDataMgrSvc => 2
MSCONFIG\Services: IDriverT => 3
MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3
MSCONFIG\Services: Intel(R) ME Service => 2
MSCONFIG\Services: Intel(R) PROSet Monitoring Service => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: ISCTAgent => 2
MSCONFIG\Services: iumsvc => 3
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: LMS => 2
MSCONFIG\Services: NvNetworkService => 2
MSCONFIG\Services: NvStreamNetworkSvc => 3
MSCONFIG\Services: NvStreamSvc => 2
MSCONFIG\Services: nvsvc => 2
MSCONFIG\Services: Origin Client Service => 3
MSCONFIG\Services: ose => 3
MSCONFIG\Services: ose64 => 3
MSCONFIG\Services: osppsvc => 3
MSCONFIG\Services: RtkAudioService => 2
MSCONFIG\Services: SbieSvc => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: Stereo Service => 2
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\Services: wlidsvc => 2
MSCONFIG\Services: WMPNetworkSvc => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^GIGABYTE OC_GURU.lnk => C:\Windows\pss\GIGABYTE OC_GURU.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SteelSeries Engine 3.lnk => C:\Windows\pss\SteelSeries Engine 3.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TP-LINK Wireless Configuration Utility.lnk => C:\Windows\pss\TP-LINK Wireless Configuration Utility.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Nico^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk => C:\Windows\pss\Curse.lnk.Startup
MSCONFIG\startupreg: Aeria Ignite => "C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe" silent
MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Nico\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: avgnt => "C:\Program Files (x86)\Avira\Antivirus\avgnt.exe" /min
MSCONFIG\startupreg: Avira SystrayStartTrigger => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: DAEMON Tools Lite Automount => "G:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
MSCONFIG\startupreg: IAStorIcon => "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
MSCONFIG\startupreg: ISCT Tray => C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
MSCONFIG\startupreg: iTunesHelper => "G:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: Prime95 => C:\Users\Nico\Desktop\p95v285.win64\prime95.exe
MSCONFIG\startupreg: QuickTime Task => "G:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: SandboxieControl => "G:\Program Files\Sandboxie\SbieCtrl.exe"
MSCONFIG\startupreg: ShadowPlay => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: snp2uvc => C:\Program Files (x86)\Common Files\SNP2UVC\vsnp2uvc.exe
MSCONFIG\startupreg: Steam => "G:\Programme\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: tsnp2uvc => C:\Program Files (x86)\Common Files\SNP2UVC\tsnp2uvc.exe
MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{3EDDB680-4D51-4658-AB9A-9DDEBB302CEA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{4EAF8AEA-44D2-4C6E-A3A7-EC4EC99E498A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{6ADE5866-59CE-4530-8C92-E4DABF140B44}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{8B3ADBB4-3CCD-4472-BC7D-D90929F86D1D}] => (Allow) G:\Programme\Steam\Steam.exe
FirewallRules: [{C336919E-18C6-49AA-9F8F-B3C2BEE6AD05}] => (Allow) G:\Programme\Steam\Steam.exe
FirewallRules: [{8C338A42-01F4-48E8-9BD3-0B770BFB9B0C}] => (Allow) G:\Programme\Steam\bin\steamwebhelper.exe
FirewallRules: [{91B46F8D-85F7-4970-9D9C-A1ACDBD5695A}] => (Allow) G:\Programme\Steam\bin\steamwebhelper.exe
FirewallRules: [{FE896C60-6EE4-4E17-9069-2A6EB3CF4C48}] => (Allow) G:\Programme\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{253AB5B9-B03C-4201-92F9-14F6F855CC7F}] => (Allow) G:\Programme\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{72E9A7EF-0C89-4973-A5FD-F12E125800D4}G:\programme\gta 5\gta5.exe] => (Allow) G:\programme\gta 5\gta5.exe
FirewallRules: [UDP Query User{E0C7B836-35F9-4C14-BE8D-5C3182AA21D3}G:\programme\gta 5\gta5.exe] => (Allow) G:\programme\gta 5\gta5.exe
FirewallRules: [TCP Query User{5C5464D2-CA6D-428A-A5C5-EFEFCDB0F22A}G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{9B73A348-C4DC-48D0-AAD0-A83BBE5205F8}G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{FC38207F-D80C-43AB-BD6F-74C56C53872B}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{14D8132C-6FFB-4C31-9F6C-8C532624041B}] => (Allow) LPort=2869
FirewallRules: [{34DAF000-1DEA-4D3F-9E6B-92A66DF50D2A}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{5DE6F8AD-0577-4DA4-AB99-B0A948F7192F}G:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) G:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [UDP Query User{173B074F-DCDF-4061-9FEE-BD48CAC1D57D}G:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) G:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [{C282B9D5-D2A9-4D9D-9065-47B8CF6FDD8F}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{1C2217D1-C667-4CE8-A920-F5AEAA4BFE19}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{CD34EB94-5909-4B6B-B636-8EA7D35E6162}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{76018861-8928-4E61-A3DC-2D5224A54A80}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{10CE181E-3D27-40C5-AA2D-6D15B5C0FAC3}] => (Allow) G:\Programme\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{2EAAF798-755B-4744-99D6-0EB459077C33}] => (Allow) G:\Programme\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{539665A7-BB12-4BE3-8659-435D58CE3D68}] => (Allow) G:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{C5BBE019-CBA5-4E58-9EA3-B236CE87802C}] => (Allow) G:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [TCP Query User{838FDEEA-13D5-416D-9B7D-7901D8318839}G:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) G:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{775369B9-AC8C-4DC9-AD02-43B5E33C591C}G:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Allow) G:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{0EA13EBC-4AD2-4FED-B733-AD4ED8E6E214}G:\programme\steam\steamapps\common\dayz\dayz.exe] => (Allow) G:\programme\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{ACB58FB8-8829-4FF1-8F75-EFF2EF5FE568}G:\programme\steam\steamapps\common\dayz\dayz.exe] => (Allow) G:\programme\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [TCP Query User{B50D74F9-DF5B-4BA0-B756-513A4936825C}C:\users\nico\desktop\ritter.part01\age2hd\aok hd.exe] => (Allow) C:\users\nico\desktop\ritter.part01\age2hd\aok hd.exe
FirewallRules: [UDP Query User{2E8E2584-5F40-4E72-8D42-CBD6D4BC4D0E}C:\users\nico\desktop\ritter.part01\age2hd\aok hd.exe] => (Allow) C:\users\nico\desktop\ritter.part01\age2hd\aok hd.exe
FirewallRules: [TCP Query User{341628FB-E0B8-46CF-B783-8093B7B4A72C}G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{DDEC344F-79D9-4102-B04A-D95E66DF8689}G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) G:\programme\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{40C777E4-AC2B-4146-9F8A-BDBB14BCBF93}] => (Allow) G:\Programme\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{65315F19-F5D2-487B-86A2-DDC36B0CC63D}] => (Allow) G:\Programme\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{AC9F71BE-013A-4D06-AA2E-88EFB6004867}] => (Allow) G:\Programme\Steam\steamapps\common\Bioshock\Builds\Release\Bioshock.exe
FirewallRules: [{088B78BD-4A56-465D-8A92-C4B133B0D009}] => (Allow) G:\Programme\Steam\steamapps\common\Bioshock\Builds\Release\Bioshock.exe
FirewallRules: [{02EACC16-6777-4D7A-B7DF-B6ABF62D3D78}] => (Allow) G:\Programme\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe
FirewallRules: [{ECD532B4-67CB-4670-98C2-AA1F59366C16}] => (Allow) G:\Programme\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe
FirewallRules: [{CCF2ED7D-CA82-4B32-B122-0347252F69F3}] => (Allow) G:\Programme\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe
FirewallRules: [{CDFFB36A-7A4B-4267-A868-9664827B35FB}] => (Allow) G:\Programme\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe
FirewallRules: [{7276C062-E66B-4987-A607-075A6B155FEC}] => (Allow) G:\Programme\Steam\steamapps\common\Spore\SporeBin\SporeApp.exe
FirewallRules: [{44EC96F0-0F84-4F22-8760-20BB3F162EB4}] => (Allow) G:\Programme\Steam\steamapps\common\Spore\SporeBin\SporeApp.exe
FirewallRules: [{5E0076D6-A204-47DC-AF72-7C49131D3763}] => (Allow) G:\Programme\Steam\steamapps\common\Super Meat Boy\SuperMeatBoy.exe
FirewallRules: [{1F7E80FD-2456-49FD-BD28-87785C50B761}] => (Allow) G:\Programme\Steam\steamapps\common\Super Meat Boy\SuperMeatBoy.exe
FirewallRules: [{E207447E-B58F-40D1-8989-B2A767B8127D}] => (Allow) G:\Programme\Steam\steamapps\common\Tank Universal SteamWorks Edition\TU.exe
FirewallRules: [{4AC20C70-D1FA-4E19-8C7B-C1E6BDCBE6E0}] => (Allow) G:\Programme\Steam\steamapps\common\Tank Universal SteamWorks Edition\TU.exe
FirewallRules: [{6AB849D6-0F71-40C2-9F4F-055C09893228}] => (Allow) G:\Programme\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{BF17B311-59F5-446A-B8D8-BFB0A7989B28}] => (Allow) G:\Programme\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{1E50125D-9F57-46D5-A19B-9A6B680EEB50}] => (Allow) G:\Programme\Steam\steamapps\common\Two Worlds II Castle Defense\TW2CD.exe
FirewallRules: [{B8E2874D-E952-44FD-B685-14022346D6C7}] => (Allow) G:\Programme\Steam\steamapps\common\Two Worlds II Castle Defense\TW2CD.exe
FirewallRules: [{36497A1F-BBAF-498C-AD0C-6F991A858D17}] => (Allow) G:\Programme\Steam\steamapps\common\ManiaPlanet_TMStadium\ManiaPlanetLauncher.exe
FirewallRules: [{4278F034-C680-432A-AEF4-333F95ABB777}] => (Allow) G:\Programme\Steam\steamapps\common\ManiaPlanet_TMStadium\ManiaPlanetLauncher.exe
FirewallRules: [{0F2FA581-8A69-4218-BAE5-8F5FF20B3195}] => (Allow) G:\Programme\Steam\steamapps\common\South Park - The Stick of Truth\South Park - The Stick of Truth.exe
FirewallRules: [{C5AD8336-D744-4D9C-9303-DFBC6BA8E4CF}] => (Allow) G:\Programme\Steam\steamapps\common\South Park - The Stick of Truth\South Park - The Stick of Truth.exe
FirewallRules: [{D389DD57-C860-4DEA-8FAB-74C53A4F87CA}] => (Allow) G:\Programme\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{6A2E9EE1-DD6D-4BD7-9996-1589F3336386}] => (Allow) G:\Programme\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{9E607F6A-EA59-4EDC-B578-43781CD189B6}] => (Allow) G:\Programme\Steam\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe
FirewallRules: [{230E936F-C32F-4722-9B94-C65158DF513F}] => (Allow) G:\Programme\Steam\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe
FirewallRules: [{ECA81B0D-7072-4B2E-93D8-78F2BF32CB8D}] => (Allow) G:\Programme\Steam\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe
FirewallRules: [{7946455B-A7B3-42A6-AE39-41D63A6A9D33}] => (Allow) G:\Programme\Steam\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe
FirewallRules: [TCP Query User{20745C20-CD67-48D5-94C5-88B492FCFD47}C:\users\nico\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\nico\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{83462889-87D3-432A-A992-8D5B60525A4C}C:\users\nico\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\nico\appdata\local\akamai\netsession_win.exe
FirewallRules: [{F2EE41D6-9188-4656-A5EF-05AEBC709A2A}] => (Allow) G:\Programme\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{9224E388-1165-411C-BB24-6A8365D92346}] => (Allow) G:\Programme\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [TCP Query User{A9FEE789-AC63-4B82-B90E-621BC8DC2341}G:\programme\steam\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe] => (Allow) G:\programme\steam\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe
FirewallRules: [UDP Query User{0FDF9B0F-DF21-403B-BAFB-5623619037C9}G:\programme\steam\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe] => (Allow) G:\programme\steam\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe
FirewallRules: [{91A1FFF0-11BB-47FC-905E-090E667B759D}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Black Ops III Beta\BlackOps3.exe
FirewallRules: [{4F514D1A-2A33-4E26-87E3-CD96B2FDAD6E}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Black Ops III Beta\BlackOps3.exe
FirewallRules: [{AD2D2F25-FEE7-41D0-B66A-4C4FEBD0E73B}] => (Allow) G:\Programme\Steam\steamapps\common\Medal of Honor\Binaries\moh.exe
FirewallRules: [{D63073A2-51B1-4ABD-9CFC-501E26C167DD}] => (Allow) G:\Programme\Steam\steamapps\common\Medal of Honor\Binaries\moh.exe
FirewallRules: [{3DD44EA0-72A4-48B0-9B51-A434848A980D}] => (Allow) G:\Programme\Steam\steamapps\common\Medal of Honor\MP\mohmpgame.exe
FirewallRules: [{C27C5FD8-7AE2-4C59-B22A-13EA4944C24D}] => (Allow) G:\Programme\Steam\steamapps\common\Medal of Honor\MP\mohmpgame.exe
FirewallRules: [{83BAF684-D1EE-49B7-8090-709620F12781}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{96E6ABA4-74A4-4538-909E-77B47040116D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{CBDAA2EA-B42B-45CF-A3F5-FB7AFE56CC71}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{9EB37349-198B-4501-8109-D5622499B4E2}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{24A82132-0F73-4F4D-8271-637A651A3E5C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{A46E2743-18CD-4326-82A5-C6E65C640DF9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{9B96E021-6562-4AC9-9098-8FA977E8D84A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{28DCE3AF-451C-4404-896E-D77F6766AD15}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{ECFD9908-20A4-4765-BB30-A14AC394288E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{AB9D4DFB-DD2D-42C5-A53D-72CC11AB9AC5}] => (Allow) G:\Programme\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{32E9762B-A370-4BF0-8671-5A32F242C4F9}] => (Allow) G:\Programme\Steam\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{CBE52B5B-BE3B-4EDB-9C8F-6E97E68ABFA8}] => (Allow) G:\Programme\Steam\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{450B0BD4-8BE7-496C-B0DA-021103F057BC}] => (Allow) G:\Programme\Steam\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{D34509B0-7F69-46C4-9158-46BBCB2CFC1D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2A1466AA-B707-49D5-B6CA-F98153231AF8}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{9F2D2B3D-DCB4-4CB2-A4C4-1EED03FAAC14}] => (Allow) G:\Program Files (x86)\Die Sims 4 Digital Deluxe Edition\Game\Bin\TS4.exe
FirewallRules: [{95509523-3CFC-4AD0-A61A-7A420A917C99}] => (Allow) G:\Program Files (x86)\Die Sims 4 Digital Deluxe Edition\Game\Bin\TS4.exe
FirewallRules: [{D4C208FB-E873-4F53-A9EC-AFFA20C9B3E5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C3C92800-567F-49B4-BB2E-C94382EB0576}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{1E0AA99D-A6DE-46CC-84A9-BBDD5F447DBA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{962C5C7F-8580-4EEC-B5F7-55F5C1E1E490}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{C6622CB9-1CED-4990-AF3E-EEE713EBC27D}] => (Allow) G:\Programme\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{EDD36567-3517-42C3-8EB1-C7DC35FC4B98}] => (Allow) G:\Programme\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{2132FA33-F89C-49EF-94E4-366EB8D73276}] => (Allow) G:\Programme\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{A75AF38B-6631-4A2F-BB2C-34ACE37140C9}] => (Allow) G:\Programme\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{2681309A-9BB9-478C-B2BF-00DA6E754EA8}] => (Allow) G:\Programme\Steam\steamapps\common\WormsRevolution\WormsRevolution.exe
FirewallRules: [{337A881C-14C5-4938-9190-B4303CCD2783}] => (Allow) G:\Programme\Steam\steamapps\common\WormsRevolution\WormsRevolution.exe
FirewallRules: [{C93AA90B-D61F-4F5F-9C2C-E497DAF1FAAF}] => (Allow) G:\Programme\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{828441BB-E138-4ADF-B639-443B76EBCB9A}] => (Allow) G:\Programme\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [TCP Query User{23561AFA-5716-4CBC-8CEE-62EF564290A9}C:\users\nico\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\nico\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{6BB1F7D5-C727-48A1-B278-63F80D41BFA1}C:\users\nico\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\nico\appdata\local\akamai\netsession_win.exe
FirewallRules: [{A4CF7DC6-091A-4F69-8F17-BB38A2B295A1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{95411A29-27B3-4A43-83AF-9E83BBC35555}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{EBF33698-4C5F-4469-8474-80A631FCE2FA}] => (Allow) G:\Programme\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{B9BAAEDB-3731-4FC1-B64D-A82E81748320}] => (Allow) G:\Programme\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{7C08ACF0-206B-4D1A-BA5A-008B16526188}] => (Allow) G:\Program Files\iTunes\iTunes.exe
FirewallRules: [{7029928D-C6D3-47BB-8FB5-40A2DE7D08D7}] => (Allow) G:\Program Files (x86)\Firefly Studios\Stronghold 2\Stronghold2.exe
FirewallRules: [{FB78B9F5-9733-4C72-8934-21E555FC933B}] => (Allow) G:\Program Files (x86)\Firefly Studios\Stronghold 2\Stronghold2.exe
FirewallRules: [TCP Query User{A4188246-814D-4239-B28B-2AFD1E7899C5}G:\samp server\xampp\mysql\bin\mysqld.exe] => (Allow) G:\samp server\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{3C1A9987-A487-44F4-AEAA-356E27F0A6C9}G:\samp server\xampp\mysql\bin\mysqld.exe] => (Allow) G:\samp server\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{CFDC54F6-0ACA-4A9C-A82E-77666B275D91}G:\samp server\xampp\apache\bin\httpd.exe] => (Allow) G:\samp server\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{8C15F310-8726-432C-B838-D2B34DAA28FF}G:\samp server\xampp\apache\bin\httpd.exe] => (Allow) G:\samp server\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{840F7990-5B63-42E8-9A51-E9E25C1B7A27}G:\samp server\loh\server\samp-server.exe] => (Allow) G:\samp server\loh\server\samp-server.exe
FirewallRules: [UDP Query User{61B943BD-553F-4240-9961-47E970CA8C1B}G:\samp server\loh\server\samp-server.exe] => (Allow) G:\samp server\loh\server\samp-server.exe
FirewallRules: [TCP Query User{B20AB493-A506-4D5D-A565-A4FCE12066BC}G:\samp server\eigenes script\samp-server.exe] => (Allow) G:\samp server\eigenes script\samp-server.exe
FirewallRules: [UDP Query User{1EC4D278-930D-43BD-9687-7EC0936C607A}G:\samp server\eigenes script\samp-server.exe] => (Allow) G:\samp server\eigenes script\samp-server.exe
FirewallRules: [{EE73BEB5-ABFB-4CAD-89C5-50EE14696BB5}] => (Allow) G:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{533697EC-59C3-491C-B9DA-EC96313BF7ED}] => (Allow) G:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{C2ABA57F-023F-43BF-A96C-9ADEFE8B258A}] => (Allow) G:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{2FEFC2DD-B156-434F-8139-6CF3481753C1}] => (Allow) G:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{D00AF6DC-A9FB-4550-AC84-783BDC4811D2}] => (Allow) G:\Programme\Steam\steamapps\common\Rollercoaster Tycoon 3 Gold\RCT3plus.exe
FirewallRules: [{62246B4D-A948-4F71-B0C7-DAC95221A88B}] => (Allow) G:\Programme\Steam\steamapps\common\Rollercoaster Tycoon 3 Gold\RCT3plus.exe
FirewallRules: [{7EAD8D49-5BD3-4B6B-8E36-68D18152749E}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{1598B165-270B-4EE1-A1F1-3A679E411C18}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{568B239F-C60D-4401-B486-9B6F1CCB2133}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe
FirewallRules: [{41DC2EBA-EA3A-4C75-AB7B-6265C16BA643}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Advanced Warfare\s1_mp64_ship.exe
FirewallRules: [{79DC7177-7766-4D66-B291-5C8D65E8D5A2}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5mp.exe
FirewallRules: [{F5B19322-62C5-47A5-AEDB-009685E563A6}] => (Allow) G:\Programme\Steam\steamapps\common\Call of Duty Modern Warfare 3\iw5mp.exe
FirewallRules: [{99DF45D5-36B9-4F33-AAA5-B08F397E843C}] => (Allow) G:\Programme\Steam\steamapps\common\Surgeon Simulator 2013\ss2013.exe
FirewallRules: [{C6B946D4-5A30-49EA-B5D0-E43A2273043E}] => (Allow) G:\Programme\Steam\steamapps\common\Surgeon Simulator 2013\ss2013.exe
FirewallRules: [TCP Query User{363ACE7E-A6C8-4410-AF73-1B25887B4E58}I:\quake iii arena\quake3.exe] => (Block) I:\quake iii arena\quake3.exe
FirewallRules: [UDP Query User{F97D878C-1E0B-45A3-AD3C-DAC11FC4B3E2}I:\quake iii arena\quake3.exe] => (Block) I:\quake iii arena\quake3.exe
FirewallRules: [TCP Query User{11CF85D0-EF4D-444A-ADDD-B661C97DA80C}H:\quake3\quake3.exe] => (Allow) H:\quake3\quake3.exe
FirewallRules: [UDP Query User{51449C22-5DD5-4D7F-B0DB-6C4D7EE55BC0}H:\quake3\quake3.exe] => (Allow) H:\quake3\quake3.exe
FirewallRules: [{8ECFF9A6-9697-4F11-A819-E9518CFFDA02}] => (Allow) G:\Programme\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{728E754C-B43E-4B63-84A9-C005651E11BC}] => (Allow) G:\Programme\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{B39D0760-9C7D-4D76-87BB-19B45A48FF69}] => (Allow) G:\Programme\Steam\steamapps\common\Outlast\OutlastLauncher.exe
FirewallRules: [{FE6ACB7F-7FBF-45A1-8C35-264875041FAF}] => (Allow) G:\Programme\Steam\steamapps\common\Outlast\OutlastLauncher.exe
==================== Wiederherstellungspunkte =========================
18-06-2016 19:48:10 Windows Update
19-06-2016 22:47:32 Windows Update
20-06-2016 22:12:35 Windows Update
21-06-2016 22:49:34 Windows Update
22-06-2016 21:03:43 Windows Update
23-06-2016 21:51:25 Windows Update
25-06-2016 00:16:50 Windows Update
25-06-2016 14:45:10 Windows Update
26-06-2016 00:30:12 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: BlueStacks Hypervisor
Description: BlueStacks Hypervisor
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: BstHdDrv
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (06/26/2016 09:45:09 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/26/2016 09:41:39 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/26/2016 09:36:31 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/26/2016 09:15:59 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154
Error: (06/26/2016 09:06:07 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/26/2016 09:03:14 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/25/2016 02:49:52 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/25/2016 02:26:20 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/25/2016 08:56:54 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm gta_sa.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: e54
Startzeit: 01d1ceaea9c26cf3
Endzeit: 47
Anwendungspfad: F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\gta_sa.exe
Berichts-ID:
Error: (06/25/2016 08:55:57 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm gta_sa.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 12f8
Startzeit: 01d1ceae7ac1b973
Endzeit: 57
Anwendungspfad: F:\SSD\Sicherungsdateien\Alles\Grand Theft Auto San Andreas 0.3z\gta_sa.exe
Berichts-ID:
Systemfehler:
=============
Error: (06/26/2016 09:46:02 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
Error: (06/26/2016 09:45:00 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Service Installer TrueKey" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2 = Das System kann die angegebene Datei nicht finden.
Error: (06/26/2016 09:45:00 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "BlueStacks Hypervisor" wurde aufgrund folgenden Fehlers nicht gestartet:
%%3 = Das System kann den angegebenen Pfad nicht finden.
Error: (06/26/2016 09:42:33 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
Error: (06/26/2016 09:41:31 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Service Installer TrueKey" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2 = Das System kann die angegebene Datei nicht finden.
Error: (06/26/2016 09:41:31 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "BlueStacks Hypervisor" wurde aufgrund folgenden Fehlers nicht gestartet:
%%3 = Das System kann den angegebenen Pfad nicht finden.
Error: (06/26/2016 09:41:01 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
%%1056 = Es wird bereits eine Instanz des Dienstes ausgeführt.
Error: (06/26/2016 09:40:32 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Intel Security True Key Scheduler" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1400464715 Millisekunden durchgeführt: Neustart des Diensts.
Error: (06/26/2016 09:40:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "AnimationService" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (06/26/2016 09:40:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Volumeschattenkopie" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Xeon(R) CPU E3-1231 v3 @ 3.40GHz
Prozentuale Nutzung des RAM: 66%
Installierter physikalischer RAM: 8126.95 MB
Verfügbarer physikalischer RAM: 2687.92 MB
Summe virtueller Speicher: 16252.09 MB
Verfügbarer virtueller Speicher: 10042.7 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:223.47 GB) (Free:43.8 GB) NTFS
Drive e: () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive f: () (Fixed) (Total:596.07 GB) (Free:33.89 GB) NTFS
Drive g: (Volume) (Fixed) (Total:2794.39 GB) (Free:634.76 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 2794.5 GB) (Disk ID: 0B12BDBB)
Partition: GPT.
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: D3AD8B81)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223.5 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 4DC435DF)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=596.1 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================ |