| Moritz.Lu | 08.10.2015 09:52 |
txt.
FRST Logfile: Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:07-10-2015
durchgeführt von Moritz (Administrator) auf MORITZ-PC (08-10-2015 10:46:42)
Gestartet von C:\Users\Moritz\Downloads
Geladene Profile: Moritz (Verfügbare Profile: Moritz & DefaultAppPool)
Platform: Windows 10 Pro (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Palit Microsystems Ltd.) C:\Program Files (x86)\Thunder Master\THPanel.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.3.0.0\Lightshot.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\ActionUriServer.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [293872 2014-08-25] (Intel Corporation)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [782520 2015-09-23] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-04-10] (Oracle Corporation)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66936 2015-08-13] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] ()
HKU\S-1-5-21-3747931887-2166111852-4146296610-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation)
HKU\S-1-5-21-3747931887-2166111852-4146296610-1000\...\Run: [Sidebar] => C:\Program Files (x86)\Windows Sidebar\sidebar.exe /autoRun
HKU\S-1-5-21-3747931887-2166111852-4146296610-1000\...\Run: [THPanel] => C:\Program Files (x86)\Thunder Master\THPanel.exe [2197288 2015-01-20] (Palit Microsystems Ltd.)
HKU\S-1-5-21-3747931887-2166111852-4146296610-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [57981568 2015-09-28] (Skype Technologies S.A.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{06694ba4-6e3f-442a-9c86-9fb175465635}: [DhcpNameServer] 192.168.178.1
Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-3747931887-2166111852-4146296610-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
SearchScopes: HKU\S-1-5-21-3747931887-2166111852-4146296610-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre8\bin\ssv.dll [2015-06-23] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre8\bin\jp2ssv.dll [2015-06-23] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre8\bin\ssv.dll [2015-06-23] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: AviraBrowserSafety.BrowserSafety -> {c3c77255-42c0-499f-b664-6e981a0b1647} -> C:\Windows\SysWOW64\mscoree.dll [2015-07-10] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre8\bin\jp2ssv.dll [2015-06-23] (Oracle Corporation)
Handler-x32: abs - {E00957BD-D0E1-4eb9-A025-7743FDC8B27B} - C:\Windows\SysWOW64\mscoree.dll [2015-07-10] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Moritz\AppData\Roaming\Mozilla\Firefox\Profiles\xmylv300.default
FF Homepage: google.de
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_188.dll [2015-05-21] ()
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll [2015-06-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll [2015-06-23] (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-05-21] ()
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-04-29] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-04-29] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre8\bin\dtplugin\npDeployJava1.dll [2015-06-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre8\bin\plugin2\npjp2.dll [2015-06-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-09-14] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-09-14] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-17] (Google Inc.)
FF Plugin HKU\S-1-5-21-3747931887-2166111852-4146296610-1000: SkypePlugin -> C:\Users\Moritz\AppData\Local\SkypePlugin\7.6.0.295\npGatewayNpapi.dll [2015-09-14] (Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-3747931887-2166111852-4146296610-1000: SkypePlugin64 -> C:\Users\Moritz\AppData\Local\SkypePlugin\7.6.0.295\npGatewayNpapi-x64.dll [2015-09-14] (Skype Technologies S.A.)
FF Extension: Avira Browser Safety - C:\Users\Moritz\AppData\Roaming\Mozilla\Firefox\Profiles\xmylv300.default\Extensions\abs@avira.com [2015-09-17]
FF Extension: Block site - C:\Users\Moritz\AppData\Roaming\Mozilla\Firefox\Profiles\xmylv300.default\Extensions\{dd3d7613-0246-469d-bc65-2a3cc1668adc} [2015-10-08]
FF Extension: NoScript - C:\Users\Moritz\AppData\Roaming\Mozilla\Firefox\Profiles\xmylv300.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-10-08]
FF Extension: Adblock Plus - C:\Users\Moritz\AppData\Roaming\Mozilla\Firefox\Profiles\xmylv300.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-05-11]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-01]
Chrome:
=======
CHR Profile: C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-23]
CHR Extension: (From Dust) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\anelkojiepicmcldgnmkplocifmegpfj [2015-06-24]
CHR Extension: (Google Docs) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-23]
CHR Extension: (Google Drive) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-06-23]
CHR Extension: (YouTube) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-23]
CHR Extension: (usecubes) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpbhakojlbckohllnekbaoilljblfpbi [2015-06-24]
CHR Extension: (Adblock Plus) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-06-23]
CHR Extension: (Virtual piano) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\cohgcponedmbhgbbdinajeoapmoaifdj [2015-06-24]
CHR Extension: (Google-Suche) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-23]
CHR Extension: (Adblock Plus) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\eobpobmcmgbpbmonacjpklknjndnbopa [2015-06-23]
CHR Extension: (Google Tabellen) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-23]
CHR Extension: (Avira Browserschutz) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2015-06-23]
CHR Extension: (Google Text & Tabellen Offline) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-04]
CHR Extension: (Pokemon) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\hipdbajkncoepfpddgeimdankkdldejf [2015-06-23]
CHR Extension: (agar.io server browser) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\hongpdkjnjhijmdnogoicadboadgllhi [2015-06-23]
CHR Extension: (SWOOOP) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\jblimahfbhdcengjfbdpdngcfcghladf [2015-06-24]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-06-23]
CHR Extension: (AgarioMods Evergreen Script) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhjgdbihpkphlammdaeicdemggagfbdo [2015-07-13]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-06-23]
CHR Extension: (Google Mail) - C:\Users\Moritz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-23]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [932912 2015-09-23] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [461672 2015-09-23] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [461672 2015-09-23] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1148688 2015-09-23] (Avira Operations GmbH & Co. KG)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-01-28] ()
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [228104 2015-08-13] (Avira Operations GmbH & Co. KG)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-04-29] (Intel Corporation)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-07-31] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2078216 2015-09-30] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-05-11] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-07-16] ()
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-07-31] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-07-31] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [137800 2015-09-23] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [148632 2015-07-31] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2015-04-16] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [74440 2015-09-23] (Avira Operations GmbH & Co. KG)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-07-31] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
S3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [39240 2015-01-23] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
S3 taphss6; C:\Windows\System32\drivers\taphss6.sys [42184 2015-05-08] (Anchorfree Inc.)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; kein ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-10-08 10:46 - 2015-10-08 10:46 - 00021615 _____ C:\Users\Moritz\Downloads\FRST.txt
2015-10-08 10:46 - 2015-10-08 10:46 - 00000000 ____D C:\FRST
2015-10-08 10:45 - 2015-10-08 10:46 - 02193920 _____ (Farbar) C:\Users\Moritz\Downloads\FRST64.exe
2015-10-08 08:41 - 2015-10-08 08:41 - 00016148 _____ C:\WINDOWS\system32\MORITZ-PC_Moritz_HistoryPrediction.bin
2015-10-07 22:32 - 2015-10-07 22:32 - 00000847 _____ C:\Users\Public\Desktop\STAR WARS Battlefront Beta.lnk
2015-10-07 22:32 - 2015-10-07 22:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STAR WARS Battlefront Beta
2015-10-05 20:01 - 2015-10-05 20:02 - 69981784 ____R C:\Users\Moritz\Desktop\Null 0.6 v2.zip
2015-10-02 22:06 - 2015-10-02 22:06 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2015-10-02 22:06 - 2015-09-13 23:57 - 00574256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2015-10-02 22:05 - 2015-09-19 00:08 - 00040280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 42840184 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 37819000 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 22559352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 18569848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 16646112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 14945040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 13666840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 12191856 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 02354808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 02105976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435598.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 01558832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435598.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 01178248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 01064056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 01001440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 00986416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 00945272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 00787384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 00785152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 00632664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 00631128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 00601240 _____ C:\WINDOWS\system32\nvmcumd.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 00408184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 00376440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 00364152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 00339760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 00316120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 00177088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 00155792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 00150648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-10-02 22:05 - 2015-09-14 02:24 - 00128696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-10-02 10:26 - 2015-10-02 10:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2015-10-01 08:55 - 2015-10-01 08:55 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-09-25 10:41 - 2015-09-25 10:41 - 00000221 _____ C:\Users\Moritz\Desktop\Grand Theft Auto San Andreas.url
2015-09-24 10:50 - 2015-09-24 12:05 - 00000000 ____D C:\Users\Moritz\AppData\Local\Eclipse
2015-09-23 18:31 - 2015-09-23 18:32 - 15770656 _____ C:\Users\Moritz\Desktop\FicklidCoack.rar
2015-09-22 20:46 - 2015-09-22 20:52 - 24151004 _____ C:\Users\Moritz\Desktop\Horizon 5.9.zip
2015-09-22 11:11 - 2015-10-04 13:57 - 00000000 ____D C:\Users\Moritz\Desktop\Musik
2015-09-21 12:26 - 2015-09-21 12:26 - 00000000 ____D C:\Users\Moritz\AppData\Local\SkypePlugin
2015-09-21 12:25 - 2015-09-21 12:26 - 06930432 _____ C:\Users\Moritz\Downloads\SkypeWebPlugin.msi
2015-09-21 10:40 - 2015-10-08 10:46 - 00000000 ____D C:\Users\Moritz\AppData\Roaming\Skype
2015-09-21 10:40 - 2015-09-21 10:40 - 00002642 _____ C:\Users\Public\Desktop\Skype.lnk
2015-09-21 10:40 - 2015-09-21 10:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-09-21 10:39 - 2015-09-21 10:40 - 01506832 _____ (Skype Technologies S.A.) C:\Users\Moritz\Downloads\SkypeSetup(2).exe
2015-09-20 14:25 - 2015-09-20 14:31 - 00002324 _____ C:\Users\Moritz\Desktop\Client Shop.txt
2015-09-20 13:43 - 2015-09-20 13:43 - 00110269 _____ C:\Users\Moritz\Downloads\DemoPlugin.jar
2015-09-20 12:25 - 2015-09-20 12:29 - 16275406 _____ C:\Users\Moritz\Desktop\Serenityb51.zip
2015-09-19 14:13 - 2015-09-19 14:13 - 00000000 ____D C:\Users\Moritz\Documents\Lightshot
2015-09-19 14:12 - 2015-10-08 10:02 - 00000410 _____ C:\WINDOWS\Tasks\update-S-1-5-21-3747931887-2166111852-4146296610-1000.job
2015-09-19 14:12 - 2015-10-07 19:26 - 00000410 _____ C:\WINDOWS\Tasks\update-sys.job
2015-09-19 14:12 - 2015-10-02 10:26 - 00003402 _____ C:\WINDOWS\System32\Tasks\update-S-1-5-21-3747931887-2166111852-4146296610-1000
2015-09-19 14:12 - 2015-10-02 10:26 - 00000424 _____ C:\Users\Moritz\AppData\Local\UserProducts.xml
2015-09-19 14:12 - 2015-09-19 14:12 - 02511360 _____ (Skillbrains ) C:\Users\Moritz\Downloads\setup-lightshot.exe
2015-09-19 14:12 - 2015-09-19 14:12 - 00003336 _____ C:\WINDOWS\System32\Tasks\update-sys
2015-09-19 14:12 - 2015-09-19 14:12 - 00000003 _____ C:\Users\Moritz\AppData\Local\updater.log
2015-09-19 14:12 - 2015-09-19 14:12 - 00000000 ____D C:\Program Files (x86)\Skillbrains
2015-09-18 20:58 - 2007-04-04 00:01 - 01042619 _____ C:\Users\Moritz\Desktop\rej.jar
2015-09-18 14:06 - 2015-09-18 14:07 - 00809472 _____ C:\Users\Moritz\Desktop\jd-gui.exe
2015-09-18 12:31 - 2015-09-18 12:31 - 00770587 _____ C:\Users\Moritz\Desktop\Moderne Kunst.rar
2015-09-18 12:29 - 2015-09-18 12:29 - 00000000 ____D C:\Users\Moritz\Desktop\Moderne Kunst
2015-09-18 07:35 - 2015-09-18 07:35 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2015-09-18 07:35 - 2015-09-18 07:35 - 00000000 _SHDL C:\Users\DefaultAppPool\Vorlagen
2015-09-18 07:35 - 2015-09-18 07:35 - 00000000 _SHDL C:\Users\DefaultAppPool\Startmenü
2015-09-18 07:35 - 2015-09-18 07:35 - 00000000 _SHDL C:\Users\DefaultAppPool\Netzwerkumgebung
2015-09-18 07:35 - 2015-09-18 07:35 - 00000000 _SHDL C:\Users\DefaultAppPool\Lokale Einstellungen
2015-09-18 07:35 - 2015-09-18 07:35 - 00000000 _SHDL C:\Users\DefaultAppPool\Eigene Dateien
2015-09-18 07:35 - 2015-09-18 07:35 - 00000000 _SHDL C:\Users\DefaultAppPool\Druckumgebung
2015-09-18 07:35 - 2015-09-18 07:35 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Musik
2015-09-18 07:35 - 2015-09-18 07:35 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Eigene Bilder
2015-09-18 07:35 - 2015-09-18 07:35 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-09-18 07:35 - 2015-09-18 07:35 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Verlauf
2015-09-18 07:35 - 2015-09-18 07:35 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Anwendungsdaten
2015-09-18 07:35 - 2015-09-18 07:35 - 00000000 _SHDL C:\Users\DefaultAppPool\Anwendungsdaten
2015-09-18 07:35 - 2015-09-18 07:35 - 00000000 ____D C:\Users\DefaultAppPool
2015-09-18 07:35 - 2015-08-13 10:36 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-18 07:35 - 2015-07-10 13:04 - 00000000 __RSD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-09-18 07:35 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-09-18 07:35 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-09-18 07:35 - 2015-07-10 13:04 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-09-16 17:06 - 2015-09-16 17:06 - 01247112 _____ (Mojang) C:\Users\Moritz\Desktop\Minecraft.exe
2015-09-15 15:37 - 2015-09-15 15:40 - 12843810 _____ C:\Users\Moritz\Desktop\BananenTropfen.mp4
2015-09-14 13:01 - 2015-09-14 13:02 - 00002143 _____ C:\Users\Moritz\Desktop\Clientshop (1).lnk
2015-09-14 10:56 - 2015-09-14 10:56 - 00002139 _____ C:\Users\Moritz\Desktop\Skype.lnk
2015-09-13 19:39 - 2015-10-05 19:35 - 00000000 ____D C:\Users\Moritz\AppData\Roaming\TS3Client
2015-09-13 19:39 - 2015-09-13 19:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-09-13 19:39 - 2015-09-13 19:39 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2015-09-13 17:23 - 2015-01-25 19:24 - 00140572 _____ C:\Users\Moritz\Desktop\AntiVirus.jar
2015-09-12 20:49 - 2015-09-12 20:49 - 00000000 ____D C:\Users\Moritz\AppData\Roaming\dingogames
2015-09-12 20:48 - 2015-09-12 20:48 - 00000222 _____ C:\Users\Moritz\Desktop\Tasty Blue.url
2015-09-12 19:59 - 2015-09-17 11:14 - 00000000 ____D C:\Users\Moritz\AppData\Local\GeometryDash
2015-09-12 19:57 - 2015-09-12 19:57 - 00000222 _____ C:\Users\Moritz\Desktop\Geometry Dash.url
2015-09-11 13:47 - 2015-08-11 06:52 - 00069416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-09-09 21:54 - 2015-09-09 21:54 - 09936480 _____ C:\Users\Moritz\Downloads\HSS-4.15.1-install-plain-721-plain(6).exe
2015-09-08 17:16 - 2015-09-20 14:16 - 00000000 ____D C:\Users\Moritz\Desktop\Alles was mit Hack CLients zu tun hat
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-10-08 10:44 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-10-08 10:03 - 2015-05-10 18:05 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-10-08 09:56 - 2015-06-23 18:05 - 00001138 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-08 09:47 - 2015-05-10 18:11 - 00000000 ____D C:\ProgramData\Origin
2015-10-08 09:43 - 2015-07-10 14:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-10-08 08:46 - 2015-07-31 10:47 - 02080548 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-10-08 08:46 - 2015-07-10 18:34 - 00884638 _____ C:\WINDOWS\system32\perfh007.dat
2015-10-08 08:46 - 2015-07-10 18:34 - 00196270 _____ C:\WINDOWS\system32\perfc007.dat
2015-10-08 08:45 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-10-08 08:43 - 2015-05-11 16:00 - 00006464 _____ C:\WINDOWS\SysWOW64\Gms.log
2015-10-08 08:41 - 2015-06-23 18:05 - 00001134 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-08 08:41 - 2015-05-10 18:55 - 00000000 ____D C:\Program Files (x86)\Steam
2015-10-08 08:40 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-08 08:40 - 2015-06-06 17:58 - 00000000 ____D C:\ProgramData\NVIDIA
2015-10-07 17:02 - 2015-05-14 16:57 - 00000000 ____D C:\Users\Moritz\AppData\Roaming\.minecraft
2015-10-07 15:56 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-10-07 15:56 - 2015-07-08 18:47 - 00000000 ____D C:\Users\Moritz\AppData\Local\CrashDumps
2015-10-06 18:20 - 2015-05-10 18:07 - 00000000 ____D C:\ProgramData\Skype
2015-10-06 11:56 - 2015-05-10 19:12 - 00000080 _____ C:\Users\Moritz\AppData\Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦
2015-10-05 12:02 - 2015-06-27 15:09 - 04757856 _____ () C:\Users\Moritz\Desktop\TechnicLauncher.exe
2015-10-05 12:02 - 2015-06-27 15:09 - 00000000 ____D C:\Users\Moritz\AppData\Roaming\.technic
2015-10-03 21:03 - 2015-07-31 10:47 - 00000000 ____D C:\Users\Moritz
2015-10-02 22:06 - 2015-07-31 10:43 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-10-02 22:06 - 2015-07-31 10:43 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-10-02 22:06 - 2015-07-10 14:20 - 00027906 _____ C:\WINDOWS\setupact.log
2015-10-02 22:06 - 2015-05-10 17:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-10-01 23:28 - 2015-07-31 10:43 - 00018504 _____ C:\WINDOWS\PFRO.log
2015-10-01 23:28 - 2015-05-10 18:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-10-01 11:26 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-30 17:33 - 2015-05-10 18:11 - 00000000 ____D C:\Program Files (x86)\Origin
2015-09-25 18:17 - 2015-07-12 16:07 - 00000000 ____D C:\Users\Moritz\Documents\GTA San Andreas User Files
2015-09-25 16:44 - 2015-07-10 12:59 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2015-09-25 16:44 - 2015-07-10 12:59 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2015-09-25 16:44 - 2015-07-10 12:59 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2015-09-25 16:44 - 2015-07-10 12:59 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2015-09-25 16:44 - 2015-07-10 12:59 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2015-09-25 16:44 - 2015-07-10 12:59 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2015-09-25 16:44 - 2015-07-10 12:59 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2015-09-25 16:44 - 2015-07-10 12:59 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2015-09-25 16:44 - 2015-07-10 12:59 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2015-09-25 16:44 - 2015-07-10 12:59 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2015-09-25 16:44 - 2015-07-10 12:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2015-09-25 16:44 - 2015-07-10 12:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2015-09-25 16:44 - 2015-07-10 12:59 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2015-09-25 16:44 - 2015-07-10 12:59 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2015-09-25 16:44 - 2015-07-10 12:59 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2015-09-25 16:44 - 2015-07-10 12:59 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2015-09-25 16:44 - 2015-07-10 12:59 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2015-09-25 16:44 - 2015-07-10 12:59 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2015-09-25 10:41 - 2015-05-10 18:20 - 00000000 ____D C:\Users\Moritz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-09-24 11:04 - 2015-07-11 19:27 - 00000000 ____D C:\Users\Moritz\workspace
2015-09-23 14:30 - 2015-05-11 16:06 - 00137800 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2015-09-23 14:30 - 2015-05-11 16:06 - 00074440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2015-09-23 14:30 - 2015-05-11 16:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-09-22 18:24 - 2015-07-16 11:22 - 00000705 _____ C:\Users\Public\Desktop\Battlefield Hardline.lnk
2015-09-22 00:55 - 2015-07-31 11:16 - 11198080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-09-21 10:40 - 2015-05-10 18:07 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-09-21 10:37 - 2015-07-27 19:24 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2015-09-19 09:39 - 2015-07-31 10:53 - 00002361 _____ C:\Users\Moritz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-09-19 09:39 - 2015-07-31 10:53 - 00000000 ___RD C:\Users\Moritz\OneDrive
2015-09-19 00:08 - 2015-04-16 19:03 - 00204648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2015-09-19 00:08 - 2015-04-16 07:19 - 01567576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2015-09-17 12:51 - 2015-06-23 18:05 - 00004196 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-17 12:51 - 2015-06-23 18:05 - 00003964 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-09-17 12:47 - 2015-05-14 16:56 - 00000000 ____D C:\Users\Moritz\AppData\Roaming\Craften Terminal
2015-09-17 12:43 - 2015-09-05 12:15 - 00000000 ____D C:\Users\Moritz\Desktop\Save
2015-09-16 17:06 - 2015-06-05 16:15 - 00000000 ____D C:\Users\Moritz\Desktop\game
2015-09-16 09:09 - 2015-07-31 10:51 - 00000000 ____D C:\Users\Moritz\AppData\Local\Packages
2015-09-14 02:24 - 2015-07-31 11:16 - 17934400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-09-14 02:24 - 2015-07-31 11:16 - 15631128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-09-14 02:24 - 2015-07-31 11:16 - 15336024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-09-14 02:24 - 2015-07-31 11:16 - 12611632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-09-14 02:24 - 2015-07-31 11:16 - 03484216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-09-14 02:24 - 2015-07-31 11:16 - 03077544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-09-14 02:24 - 2015-07-31 11:16 - 01075320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-09-14 02:24 - 2015-07-31 11:16 - 00387720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-09-14 02:24 - 2015-07-23 04:02 - 00034098 _____ C:\WINDOWS\system32\nvinfo.pb
2015-09-14 02:24 - 2015-06-06 17:58 - 00112760 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-09-14 02:24 - 2015-06-06 17:58 - 00105080 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-09-14 00:04 - 2015-06-06 17:58 - 06885168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-09-14 00:04 - 2015-06-06 17:58 - 03496056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-09-14 00:04 - 2015-06-06 17:58 - 02558584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-09-14 00:04 - 2015-06-06 17:58 - 00937776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-09-14 00:04 - 2015-06-06 17:58 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-09-14 00:04 - 2015-06-06 17:58 - 00062768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-09-11 14:17 - 2015-06-06 17:58 - 05231082 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-09-11 13:47 - 2015-05-10 17:37 - 00001454 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2015-09-09 10:05 - 2015-09-02 15:58 - 00001211 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2015-09-09 10:05 - 2015-05-10 17:21 - 00000000 ____D C:\ProgramData\Package Cache
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-05-21 18:31 - 2015-06-20 12:50 - 0007791 _____ () C:\Users\Moritz\AppData\Local\Temp5.html
2015-09-19 14:12 - 2015-09-19 14:12 - 0000003 _____ () C:\Users\Moritz\AppData\Local\updater.log
2015-09-19 14:12 - 2015-10-02 10:26 - 0000424 _____ () C:\Users\Moritz\AppData\Local\UserProducts.xml
2015-07-31 10:47 - 2015-07-31 10:47 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Einige Dateien in TEMP:
====================
C:\Users\Moritz\AppData\Local\Temp\avgnt.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-08-12 12:10
==================== Ende von FRST.txt ============================
--- --- ---
FRST Additions Logfile: Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:07-10-2015
durchgeführt von Moritz (2015-10-08 10:47:00)
Gestartet von C:\Users\Moritz\Downloads
Windows 10 Pro (X64) (2015-07-31 08:51:55)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3747931887-2166111852-4146296610-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3747931887-2166111852-4146296610-503 - Limited - Disabled)
Gast (S-1-5-21-3747931887-2166111852-4146296610-501 - Limited - Disabled)
Moritz (S-1-5-21-3747931887-2166111852-4146296610-1000 - Administrator - Enabled) => C:\Users\Moritz
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
ANNO 2070 (HKLM-x32\...\{B48E264C-C8CD-4617-B0BE-46E977BAD694}) (Version: 1.0.0.0 - Ubisoft)
Anno Online (HKLM-x32\...\Steam App 336510) (Version: - Blue Byte)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version: - Studio Wildcard)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.23.0 - Asmedia Technology)
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.026 - ASUSTek Computer Inc.)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.13.202 - Avira Operations GmbH & Co. KG)
Avira Browser Safety (HKLM-x32\...\{9E10EA90-5E97-43B7-A246-FC7B4F5E9493}) (Version: 1.4.5.509 - Avira Operations GmbH & Co KG)
Avira Launcher (HKLM-x32\...\{315dd168-0794-4cf1-8355-f195cde642fc}) (Version: 1.1.45.11819 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.45.11819 - Avira Operations GmbH & Co. KG) Hidden
Banished (HKLM-x32\...\Steam App 242920) (Version: - Shining Rock Software LLC)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.5.2.34169 - Electronic Arts)
Battlefield™ Hardline (HKLM-x32\...\{CB4AC3DA-8CC1-4516-86DA-4078B57DB229}) (Version: 1.2.0.6 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB)
Call of Duty: Black Ops II - Multiplayer (HKLM-x32\...\Steam App 202990) (Version: - Treyarch)
Call of Duty: Black Ops II - Zombies (HKLM-x32\...\Steam App 212910) (Version: - )
Call of Duty: Black Ops II (HKLM-x32\...\Steam App 202970) (Version: - Treyarch)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Clicker Heroes (HKLM-x32\...\Steam App 363970) (Version: - )
Craften Terminal 4.2 (HKLM-x32\...\{4e7c3936-7c06-4ef0-928b-c5d92f372578}_is1) (Version: 4.2 - Craften.de)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
FileZilla Client 3.13.0 (HKLM-x32\...\FileZilla Client) (Version: 3.13.0 - Tim Kosse)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Geeks3D FurMark 1.15.2.2 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: - Geeks3D)
Geometry Dash (HKLM-x32\...\Steam App 322170) (Version: - RobTop Games)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.101 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
GPUTweakStreaming (HKLM-x32\...\InstallShield_{D2A41AA7-4313-43D5-AA39-7E3FBBE0556D}) (Version: 1.0.3.5 - ASUS)
GPUTweakStreaming (x32 Version: 1.0.3.5 - ASUS) Hidden
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version: - Rockstar North)
Grand Theft Auto: San Andreas (HKLM-x32\...\Steam App 12120) (Version: - Rockstar Games)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.2.1000 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.1.41 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.17 - Intel(R) Corporation) Hidden
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
Lego Star Wars 3: The Clone Wars (HKLM-x32\...\Steam App 32510) (Version: - Traveller's Tales)
Lightshot-5.3.0.0 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.3.0.0 - Skillbrains)
Medieval Engineers (HKLM-x32\...\Steam App 333950) (Version: - Keen Software House)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - DEU) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Express - DEU (HKLM-x32\...\Microsoft Visual C++ 2010 Express - DEU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 41.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 41.0.1 (x86 de)) (Version: 41.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.1.5750 - Mozilla)
MTA:SA v1.4.1 (HKLM-x32\...\MTA:SA 1.4) (Version: v1.4.1 - Multi Theft Auto)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 355.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.98 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Grafiktreiber 355.98 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.98 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA Miracast Virtueller Ton 347.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 347.25 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
Poly Bridge (HKLM-x32\...\Steam App 367450) (Version: - Dry Cactus)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
PVZ Garden Warfare (HKLM-x32\...\{A5AC7D7B-C1D5-4AF9-8829-993DA335BE1B}) (Version: 1.0.3.0 - Electronic Arts)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.91.1119.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.5 - Rockstar Games)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.86.0859 - Electronic Arts)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype Web Plugin (HKLM-x32\...\{8A9079EA-59DE-491F-937A-D421399B7762}) (Version: 7.6.0.295 - Skype Technologies S.A.)
Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)
Star Wars - Battlefront II (HKLM-x32\...\Steam App 6060) (Version: - Pandemic Studios)
STAR WARS™ Battlefront™ Beta (HKLM-x32\...\{8A863B64-C9BE-4203-9ED7-92981CF690D3}) (Version: 1.0.3.51560 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tasty Blue (HKLM-x32\...\Steam App 345200) (Version: - Dingo Games)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.17 - TeamSpeak Systems GmbH)
Thunder Master v2.9 (HKLM-x32\...\{EE04522C-0814-4B63-AE57-0B63E5A355BB}_is1) (Version: 2.9.0.0 - Palit Microsystems Ltd.)
TrackMania Nations Forever (HKLM-x32\...\Steam App 11020) (Version: - Nadeo)
TrackMania² Stadium (HKLM-x32\...\Steam App 232910) (Version: - Nadeo)
Trove (HKLM-x32\...\Steam App 304050) (Version: - Trion Worlds)
UberStrike (HKLM-x32\...\Steam App 291210) (Version: - Cmune Ltd)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Uplay (HKLM-x32\...\Uplay) (Version: 7.4 - Ubisoft)
WhoCrashed 3.01 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3747931887-2166111852-4146296610-1000_Classes\CLSID\{04419CEE-76E5-4487-B32E-68C0FD0C07E4}\InprocServer32 -> C:\Users\Moritz\AppData\Local\SkypePlugin\7.6.0.295\GatewayActiveX-x64.dll (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-3747931887-2166111852-4146296610-1000_Classes\CLSID\{82C13295-2E78-45DD-9973-21F20A7D6F5C}\localserver32 -> C:\Users\Moritz\AppData\Local\SkypePlugin\7.6.0.295\GatewayVersion-x64.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-3747931887-2166111852-4146296610-1000_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\Moritz\AppData\Local\SkypePlugin\7.6.0.295\EdgeCalling.exe (Skype Technologies S.A.)
==================== Wiederherstellungspunkte =========================
27-09-2015 19:00:04 Windows-Sicherung
04-10-2015 19:00:06 Windows-Sicherung
07-10-2015 22:32:48 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0354F04E-CE99-48C8-A63A-266804478152} - System32\Tasks\update-S-1-5-21-3747931887-2166111852-4146296610-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
Task: {049EEB89-8D52-4666-B1A3-226464E56968} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {0C0BC60E-264F-4177-8855-A0E261511573} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {0DA05355-1D20-4EA9-A706-92F7932C2517} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {0DAD0433-F49E-4DF3-9753-14884665E59D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {160109BF-5BEC-4BF8-AEBD-AB748E0723E4} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {171F4806-BEA4-4E78-A097-A125E7750A15} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
Task: {18941B29-E5C7-4EAA-83B4-C0D0D631FFE5} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {20453053-8107-42E4-BF6F-01524CB829E5} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {23DDDB03-E5B7-466D-BBB3-611151D59EFB} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {37D9AA28-2F45-4988-AE74-DE72E4C6B3ED} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {39E8E877-1016-41B9-BFAD-DE9F0340F175} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {3BF146E3-256B-4396-8967-A6D6580D5089} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {49F71A39-7754-4CA7-A878-AF2836389AB1} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {560767C5-D275-4A0C-A6D6-8DA931FA9DCE} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {5783B649-3F4C-4D15-B0BB-00DBBF4CFB33} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {5D5F950D-8A6C-4E65-90F2-2A0F6AF0A31F} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {5DF72601-6DEE-479B-BB39-FDE7514FD8C5} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {5EC54BDF-A97E-4E6B-8A6A-E1F849B81553} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {662EE508-FB78-42C7-8BB3-3E79E1EE6774} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {6F5320A6-96C0-47EE-9E13-2ECAFB9D3E8A} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {713BE08E-0B89-4D89-9E61-77402F7E3CA9} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {78828609-A0EA-4489-A1E4-50B5D1D549EE} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {7ADEDAD2-3FD6-45CC-990D-D2F2CA9925C8} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2014-03-25] (ASUSTek Computer Inc.)
Task: {7E0061E9-FE59-4690-A569-7CC2EF99E2AB} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {80525B94-4AAC-4E7D-B221-C9A3A010F9F0} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {80926DA5-55DB-4FD9-B79D-E807D0CD68E8} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {817F83FC-54B6-480D-8559-5311F4704901} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {8511B1B3-EC03-4463-A433-54FABED4D5E2} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {85800945-C8A1-4539-9316-F6C69FD0D61C} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {8A762E0B-6694-4D3B-A8B6-AA57E6BD24F7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-21] (Adobe Systems Incorporated)
Task: {978B024A-68AE-49DF-B20B-10812947E825} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {9A85DDEE-2423-4B5E-BF4B-C194809D057E} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {9FB0B245-E8D4-4734-8E12-C0E23273D524} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {A0FF1C4C-B44D-432C-AFCB-8A38CAAB8ADC} - \Microsoft\Windows\File Classification Infrastructure\Property Definition Sync -> Keine Datei <==== ACHTUNG
Task: {B0A5115B-FBDA-4824-A7C3-DAE51355B589} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {BE7289AA-DC2F-4246-8555-5694EA8B4AB3} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {BE8CDA8B-6572-4582-98D1-EB9F5561A6F9} - System32\Tasks\ThunderMaster => C:\Program Files (x86)\Thunder Master\THPanel.exe [2015-01-20] (Palit Microsystems Ltd.)
Task: {C5B74147-8387-42EE-AA0C-CDD00555902B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {C8F01186-52A2-410F-8B28-2C62B18CEA78} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {D132A7C3-062F-4FB3-ACC4-440D81DA94C2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {DE0086AA-110C-442C-837B-D7C2361B5958} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-23] (Google Inc.)
Task: {F04A69D9-9180-4F7E-BB5C-59D3E9E6170D} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {F19ADBC8-1E74-4015-963F-A739B68507FB} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {F3BB85C3-4E1E-4B75-A569-968CF49431CB} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {F4F0688F-3723-4496-8804-807340501400} - System32\Tasks\Avira Browser Safety Updater Task => C:\Program Files (x86)\Avira\Browser Safety\AviraBrowserSafetyUpdater.exe [2015-03-11] (Avira Operations GmbH & Co. KG)
Task: {FB4F96DD-14C4-4805-9CD3-0AD2F69CF75F} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {FE856809-8F42-4BE4-A1CF-C3120F9F75BC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-23] (Google Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-3747931887-2166111852-4146296610-1000.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-07-31 11:41 - 2015-07-31 11:41 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-06-06 17:58 - 2015-09-14 00:04 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-07-31 10:47 - 2014-01-28 05:16 - 00936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
2015-07-31 11:41 - 2015-07-31 11:41 - 00403968 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-05-11 17:15 - 2015-07-16 11:22 - 00076152 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-08-07 09:41 - 2015-07-30 08:05 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-07 09:41 - 2015-07-30 08:05 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-08-12 15:37 - 2015-08-03 03:09 - 02028544 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RulesService.dll
2015-07-10 13:00 - 2015-07-10 18:43 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-07-31 11:41 - 2015-07-31 11:41 - 00619008 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SignalsManager.dll
2015-08-12 15:37 - 2015-08-03 03:09 - 00928768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RulesBackgroundTasks.dll
2015-08-12 15:37 - 2015-08-03 03:08 - 01806848 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-07-10 12:59 - 2015-07-10 12:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-08-12 15:37 - 2015-08-03 03:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-08-12 15:37 - 2015-08-03 03:14 - 00882688 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2015-08-12 15:37 - 2015-08-03 03:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 13:00 - 2015-07-10 18:43 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-07-31 10:47 - 2015-10-08 08:40 - 00035472 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll
2015-07-31 10:47 - 2014-01-28 05:16 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll
2015-05-10 17:43 - 2015-08-27 02:37 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-05-10 18:56 - 2015-07-03 18:12 - 00778240 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-05-10 18:56 - 2015-07-03 18:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-05-10 18:56 - 2015-08-19 22:39 - 02413248 _____ () C:\Program Files (x86)\Steam\video.dll
2015-05-10 18:56 - 2014-12-01 23:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-05-10 18:56 - 2014-12-01 23:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-05-10 18:56 - 2014-12-01 23:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-05-10 18:56 - 2014-12-01 23:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-05-10 18:56 - 2014-12-01 23:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-05-10 18:56 - 2015-07-03 18:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-05-10 18:56 - 2015-07-03 18:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-05-10 18:56 - 2015-08-19 22:39 - 00704192 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-05-10 18:56 - 2015-07-03 18:12 - 39553928 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2014-04-29 16:23 - 2014-04-29 16:23 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-05-10 18:12 - 2015-09-30 17:33 - 01016832 _____ () C:\Program Files (x86)\Origin\platforms\qwindows.dll
2015-05-10 18:12 - 2015-09-30 17:33 - 00028160 _____ () C:\Program Files (x86)\Origin\imageformats\qgif.dll
2015-05-10 18:12 - 2015-09-30 17:33 - 00029696 _____ () C:\Program Files (x86)\Origin\imageformats\qico.dll
2015-05-10 18:12 - 2015-09-30 17:33 - 00256000 _____ () C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2015-05-10 18:12 - 2015-09-30 17:33 - 00266240 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll
2015-05-10 18:12 - 2015-09-30 17:33 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qtga.dll
2015-05-10 18:12 - 2015-09-30 17:33 - 00346112 _____ () C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2015-05-10 18:12 - 2015-09-30 17:33 - 00023552 _____ () C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2015-05-10 18:12 - 2015-09-30 17:33 - 00243200 _____ () C:\Program Files (x86)\Origin\mediaservice\wmfengine.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3747931887-2166111852-4146296610-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Moritz\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{FCC77323-BB4A-426E-85E9-AC669304FB98}] => (Allow) D:\SteamLibary\steamapps\common\Poly Bridge\polybridge.exe
FirewallRules: [{7B29503B-0D15-4544-906D-B8C296504D1B}] => (Allow) D:\SteamLibary\steamapps\common\Poly Bridge\polybridge.exe
FirewallRules: [{930ECFB7-566F-4E36-8337-B1F38599BE46}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B2EEA9B0-7693-45DE-ADEC-2E8A4E946B59}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1355EEB7-887C-42B2-B10D-0647F5CE9547}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{FCEA0596-945C-43F8-8B6B-0B6A4A661DCA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{0EE3B4EA-59BA-4501-B3A8-38DB3823DBD8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{C40EC5F4-9B2A-419F-8DA5-02831FD8C7AF}] => (Allow) D:\SteamLibary\steamapps\common\Lego Star Wars III - The Clone Wars\LEGOCloneWars.exe
FirewallRules: [{BEEC5706-D3C2-4823-A05A-2FD54A53E5C5}] => (Allow) D:\SteamLibary\steamapps\common\Lego Star Wars III - The Clone Wars\LEGOCloneWars.exe
FirewallRules: [{4268EB7E-4BF2-4F5C-B6D5-71A22C8B6ED6}] => (Allow) D:\Origin Games\BFH\bfh.exe
FirewallRules: [{2AC56894-73CB-4B98-A57B-81B57AA3457A}] => (Allow) D:\Origin Games\BFH\bfh.exe
FirewallRules: [{7276E61B-58D1-46C0-A7CB-E2A4BD69DD32}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{1F180D24-AAAF-437B-ACE4-90BEDEF94D58}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{A34C3AB3-2149-46AC-B319-457662ADA7CE}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{A2423710-059F-4DE3-96B1-3FF23CB9B2B5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{257F6D60-7492-45BC-9DBB-2397370BABC5}] => (Allow) D:\SteamLibary\steamapps\common\Star Wars Battlefront II\GameData\BattlefrontII.exe
FirewallRules: [{34A1626D-01D2-4DC3-BC5D-3BADBBA177D6}] => (Allow) D:\SteamLibary\steamapps\common\Star Wars Battlefront II\GameData\BattlefrontII.exe
FirewallRules: [{4F99B189-6EE8-4BC4-9A69-8EA2745BC5E0}] => (Allow) D:\SteamLibary\steamapps\common\UberStrike\UberStrike.exe
FirewallRules: [{C59E7BD8-B7DE-406F-B4A4-8ABA61693125}] => (Allow) D:\SteamLibary\steamapps\common\UberStrike\UberStrike.exe
FirewallRules: [{2EF165FF-5A1D-4B30-951D-3B8BE58DA537}] => (Allow) D:\SteamLibary\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{7969D279-B4C3-407C-B476-B1CA6DAC810A}] => (Allow) D:\SteamLibary\steamapps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{8D4CA61C-C746-4AC6-B049-2082286797D0}] => (Allow) D:\SteamLibary\steamapps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{DA154A7E-1766-4CD6-A1C5-6483CE74A994}] => (Allow) D:\SteamLibary\steamapps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{714B68BE-A5E2-48DA-A7BD-E77A953D2DF1}] => (Allow) D:\SteamLibary\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [{E2C086B4-6513-4E5B-B2A0-C0044A233469}] => (Allow) D:\SteamLibary\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [{2BCBD145-ACA2-4995-B248-E558B4A32229}] => (Allow) D:\SteamLibary\steamapps\common\Farming Simulator 15\x64\FarmingSimulator2015Game.exe
FirewallRules: [{B4C32C6A-3B51-4189-AE9B-CBFC0708E4C7}] => (Allow) D:\SteamLibary\steamapps\common\Farming Simulator 15\x64\FarmingSimulator2015Game.exe
FirewallRules: [UDP Query User{D4088531-15E5-4B3D-91A0-82EE5D735BE7}C:\program files\java\jre8\bin\javaw.exe] => (Allow) C:\program files\java\jre8\bin\javaw.exe
FirewallRules: [TCP Query User{588F46C9-A955-4AF4-ACC2-2B4D9B19E022}C:\program files\java\jre8\bin\javaw.exe] => (Allow) C:\program files\java\jre8\bin\javaw.exe
FirewallRules: [{A9530B56-3EF4-4663-8593-5BC8893D8F4B}] => (Allow) D:\SteamLibary\steamapps\common\Farming Simulator 15\x86\FarmingSimulator2015Game.exe
FirewallRules: [{3E6705BC-4EB4-4584-BAA8-7DAF07C114A7}] => (Allow) D:\SteamLibary\steamapps\common\Farming Simulator 15\x86\FarmingSimulator2015Game.exe
FirewallRules: [{2516D890-7B01-42E8-B8D8-A4B0C161CE3B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{56319E9B-FE15-422A-B135-893163994C39}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{53F0AA69-D7A9-41F1-BD75-8A01F22612F1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{4DC27433-FD49-4150-957F-4A113CBB8041}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{35809B4D-0E72-4F1D-B218-9CCED415B73F}] => (Allow) D:\SteamLibary\steamapps\common\Farming Simulator 15\x64\FarmingSimulator2015Game.exe
FirewallRules: [{3AF995C4-6981-4CCE-9EA6-9510D1E199F4}] => (Allow) D:\SteamLibary\steamapps\common\Farming Simulator 15\x64\FarmingSimulator2015Game.exe
FirewallRules: [{7FB7AB76-4DB3-478C-9E8F-7A7EC12E5779}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{491B7A4D-2BAB-4037-AF9D-E7BE27807A78}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
FirewallRules: [{A50017A5-FF8A-4188-A056-37EC6B72E1D6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ManiaPlanet_TMStadium\ManiaPlanet.exe
FirewallRules: [{C95DDE59-697C-4EEF-8FDD-4912FAE7B566}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ManiaPlanet_TMStadium\ManiaPlanet.exe
FirewallRules: [{5843D876-8D88-4E8F-87F8-963DFE9F1C04}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ManiaPlanet_TMStadium\ManiaPlanetLauncher.exe
FirewallRules: [{7B865D8F-3998-4752-A247-63968012AFE5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ManiaPlanet_TMStadium\ManiaPlanetLauncher.exe
FirewallRules: [{FC0D5E50-8738-4EE1-810F-EE013CF524A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForeverLauncher.exe
FirewallRules: [{31F85621-FB19-49C0-98F0-2348EEE44CFD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForeverLauncher.exe
FirewallRules: [{8C291B14-C302-438E-83AD-475D6CF91216}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForever.exe
FirewallRules: [{8D02FA71-C3AF-4860-B1AC-773FC5C0CDD0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForever.exe
FirewallRules: [UDP Query User{E547336C-0A9B-406D-B199-914BB99AE3C3}C:\users\moritz\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\moritz\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{AD896889-D978-4124-ACCB-8C6CD3EC1354}C:\users\moritz\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\moritz\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{963D2ABB-E729-48D5-9ECD-0023C1A2502B}] => (Allow) D:\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{8DF9EF48-8FFF-42EA-90DB-18E66AF5D86D}] => (Allow) D:\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{D74A6C74-4A93-4766-9B5E-CB419EF9F540}] => (Allow) D:\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{9E70E512-188A-490C-9044-EFE87173431B}] => (Allow) D:\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{A6F6831D-DCDB-4B4B-8D75-969EDD324D96}] => (Allow) D:\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{488BF208-2866-4B67-85C8-215AFDE6B595}] => (Allow) D:\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{AE55E978-CE71-4A8C-BBAD-FB49A413A08E}] => (Allow) D:\SteamLibary\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{E738CB08-B48A-4C22-8381-562FE7EEC747}] => (Allow) D:\SteamLibary\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [UDP Query User{8A323048-0091-493F-A837-3390402D4A99}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [TCP Query User{F9D8CAD6-6168-45F9-B154-E1BFB82CD1A8}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{3A814E26-D5B2-46FB-9FD1-0F53A2F1628E}] => (Allow) D:\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{8F29591F-3E9A-42B6-BA9F-AC1008EEECAD}] => (Allow) D:\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{92B52468-64FD-4CB4-B033-23240B8E989F}] => (Allow) D:\Origin Games\Plants vs Zombies Garden Warfare\PVZ.Main_Win64_Retail.exe
FirewallRules: [{C1161BA8-249C-4608-AAC8-E13B12D9AE2C}] => (Allow) D:\Origin Games\Plants vs Zombies Garden Warfare\PVZ.Main_Win64_Retail.exe
FirewallRules: [UDP Query User{DFA268E9-A730-4420-BDA9-E525EE61CB1E}D:\steamlibary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steamlibary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{13E0E0B0-55CA-4A44-9156-AC522D588041}D:\steamlibary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steamlibary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{F3DD2EE9-8C46-4603-A33E-81674C23725E}] => (Allow) D:\SteamLibary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{AAC9F455-7139-487F-AAA5-77EACF47235A}] => (Allow) D:\SteamLibary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{CB53F294-DBE5-4CA8-9D35-D705C9FAC71B}] => (Allow) D:\SteamLibary\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
FirewallRules: [{0C9CFBE7-4C8B-4E13-AB86-5319318FB040}] => (Allow) D:\SteamLibary\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
FirewallRules: [{074287FE-93D0-481A-B595-1447DDB16BD4}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{764BB04F-6242-4AC6-8FD2-3DE8A9E70783}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{940FE64E-9765-4232-A07D-239C388556B7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{61812A0A-7936-403E-AA55-9451FAB11150}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{9E2F88C3-B3C9-4FE0-B987-9333D22133AF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A363306D-0C3A-4C85-80B1-BC35E672AB28}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4D03F5BE-16E4-4CC4-A94F-0E83D0BD2D1D}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{DBAA926B-0E4D-4657-9A85-19F3DF663411}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{D42E033D-09DA-4D0C-89BD-7DEE55A1EE48}] => (Allow) D:\SteamLibary\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{C3ED27BB-3C10-42F2-8165-7CCF40825A67}] => (Allow) D:\SteamLibary\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{B4F3D302-CCE4-43A5-8095-9CAA704063A8}] => (Allow) D:\SteamLibary\steamapps\common\Anno Online\nw.exe
FirewallRules: [{0A5543BA-9B6D-4CD5-B26B-8D5EE51D4907}] => (Allow) D:\SteamLibary\steamapps\common\Anno Online\nw.exe
FirewallRules: [{D1F0D947-080C-41B6-965A-7D5799A3A890}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{4506F3EE-D867-4422-98C5-40F191D963D3}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{29D7BA9E-7E90-439E-A7B8-3BA3210339D3}] => (Allow) D:\SteamLibary\steamapps\common\Banished\Application-steam-x64.exe
FirewallRules: [{AF5EA3F1-452B-41B7-B170-BCC6F165BF85}] => (Allow) D:\SteamLibary\steamapps\common\Banished\Application-steam-x64.exe
FirewallRules: [{427B346C-DC13-4BD8-8FFB-A1215F556359}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{40BC0910-0EAA-4C9F-A2B0-5BA968F36FB2}] => (Allow) LPort=2869
FirewallRules: [{D58FFA6C-D381-401F-B2FB-C4243B989C60}] => (Allow) LPort=1900
FirewallRules: [{3449807C-964D-4E04-8680-E3A310C38FDD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MedievalEngineers\Bin64\MedievalEngineers.exe
FirewallRules: [{68A2CC9A-FB44-45B1-8EA6-54E0A7DD7B08}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MedievalEngineers\Bin64\MedievalEngineers.exe
FirewallRules: [{FDDA8F0E-2AEC-4142-BBC4-55E4EBDD057C}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 2070\Anno5.exe
FirewallRules: [{97EBAF83-EC02-4B8F-A567-30427705ECBA}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 2070\Anno5.exe
FirewallRules: [{D86A0402-0A3A-463A-A503-A10BD3364B2D}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 2070\AutoPatcher.exe
FirewallRules: [{9E0D37A0-950C-40E7-A3EE-8204A13B0CCB}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 2070\AutoPatcher.exe
FirewallRules: [{F1803E8A-6274-41F3-8647-36E6441852C5}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 2070\InitEngine.exe
FirewallRules: [{0677E50D-DC0B-4706-9434-C0A174BC1476}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 2070\InitEngine.exe
FirewallRules: [{F038775B-4073-4482-9290-D7A694EF1102}] => (Allow) D:\SteamLibary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{94E60F30-13A0-4EF2-A28B-0F5C45BE9014}] => (Allow) D:\SteamLibary\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{BEDBDA96-117D-40B0-BFAA-D11FEBBD1B82}] => (Allow) D:\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{7B04504B-CBBD-4616-A7CE-A7030981669B}] => (Allow) D:\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{42FD52DD-71B8-4472-94C3-BB6F9E3EBDE9}] => (Allow) D:\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{82763AF1-17B3-42FD-9BA8-9D08AF306C13}] => (Allow) D:\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{2F4CAE85-BFFA-4241-A881-17C1FD9556A6}] => (Allow) D:\SteamLibary\steamapps\common\Geometry Dash\GeometryDash.exe
FirewallRules: [{83A34EAA-90FB-4486-A528-D18F8B2FD982}] => (Allow) D:\SteamLibary\steamapps\common\Geometry Dash\GeometryDash.exe
FirewallRules: [{65BCCB36-95EF-4DFA-BA45-55C8B4402F4F}] => (Allow) D:\SteamLibary\steamapps\common\Tasty Blue\tastyblue.exe
FirewallRules: [{8E6C60E8-6B3F-4CF4-A907-9CCC165548F7}] => (Allow) D:\SteamLibary\steamapps\common\Tasty Blue\tastyblue.exe
FirewallRules: [{82A72BB3-70BE-4C82-B31B-F26B3D12FEF9}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{C6280BEB-37AB-4017-89E8-6CA531625DD5}C:\users\moritz\appdata\local\skypeplugin\7.6.0.295\pluginhost.exe] => (Allow) C:\users\moritz\appdata\local\skypeplugin\7.6.0.295\pluginhost.exe
FirewallRules: [UDP Query User{7E0EE5D8-C51E-4CAF-8774-352C6C82C379}C:\users\moritz\appdata\local\skypeplugin\7.6.0.295\pluginhost.exe] => (Allow) C:\users\moritz\appdata\local\skypeplugin\7.6.0.295\pluginhost.exe
FirewallRules: [{FD83429C-90FC-4007-9B10-A9859BA46457}] => (Allow) D:\Origin Games\BFH\BFHWebHelper.exe
FirewallRules: [{4BA86331-FC12-4A7A-A466-399823BDCCA7}] => (Allow) D:\Origin Games\BFH\BFHWebHelper.exe
FirewallRules: [{CB2D01C6-4834-4912-920B-B601C256513B}] => (Allow) D:\SteamLibary\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{756BF495-DC3A-424C-9C2F-F39B9C03ADC6}] => (Allow) D:\SteamLibary\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{7A7DFECF-1459-4F0F-BF82-9966E2834542}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{D14978E2-FD65-4801-B8CB-C4ADCB513717}] => (Allow) D:\Origin Games\STAR WARS Battlefront Beta\starwarsbattlefront.exe
FirewallRules: [{7D1CEE78-C1FF-4D05-B57E-A0C4EAA51306}] => (Allow) D:\Origin Games\STAR WARS Battlefront Beta\starwarsbattlefront.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (10/08/2015 08:43:01 AM) (Source: Avira Launcher Service Host) (EventID: 0) (User: )
Description: Fehler beim Verarbeiten von Sitzungsänderung. System.Runtime.InteropServices.COMException (0x80080005): Die COM-Klassenfactory für die Komponente mit CLSID {BFE18E9C-6D87-4450-B37C-E02F0B373803} konnte aufgrund des folgenden Fehlers nicht abgerufen werden: 80080005 Starten des Servers fehlgeschlagen (Ausnahme von HRESULT: 0x80080005 (CO_E_SERVER_EXEC_FAILURE)).
bei Avira.OE.WinCore.WindowsUpdateInformation.GetWindowsUpdateData()
bei Avira.OE.WinCore.DeviceUpdateDataFactory.UpdateDynamicData(DevUpdateDataCommand devUpdateData, String userSid)
bei Avira.OE.WinCore.DeviceUpdateDataFactory.CreateDeviceUpdateData(String userSid)
bei Avira.OE.Communicator.Communicator.CreateAndSendDeviceUpdateDataMessage(String userSid)
bei Avira.OE.Communicator.Communicator.SessionChanged(Session newActiveSession, Session previousActiveSession)
bei Avira.OE.Communicator.Communicator.OnActiveSessionChanged(Object sender, ActiveSessionChangedEventArgs activeSessionChangedEventArgs)
bei Avira.OE.WinCore.EventHandlerExtensions.SafeInvoke[T](EventHan...
Error: (10/07/2015 10:32:49 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (10/07/2015 03:59:04 PM) (Source: Avira Launcher Service Host) (EventID: 0) (User: )
Description: Fehler beim Verarbeiten von Sitzungsänderung. System.Runtime.InteropServices.COMException (0x80080005): Die COM-Klassenfactory für die Komponente mit CLSID {BFE18E9C-6D87-4450-B37C-E02F0B373803} konnte aufgrund des folgenden Fehlers nicht abgerufen werden: 80080005 Starten des Servers fehlgeschlagen (Ausnahme von HRESULT: 0x80080005 (CO_E_SERVER_EXEC_FAILURE)).
bei Avira.OE.WinCore.WindowsUpdateInformation.GetWindowsUpdateData()
bei Avira.OE.WinCore.DeviceUpdateDataFactory.UpdateDynamicData(DevUpdateDataCommand devUpdateData, String userSid)
bei Avira.OE.WinCore.DeviceUpdateDataFactory.CreateDeviceUpdateData(String userSid)
bei Avira.OE.Communicator.Communicator.CreateAndSendDeviceUpdateDataMessage(String userSid)
bei Avira.OE.Communicator.Communicator.SessionChanged(Session newActiveSession, Session previousActiveSession)
bei Avira.OE.Communicator.Communicator.OnActiveSessionChanged(Object sender, ActiveSessionChangedEventArgs activeSessionChangedEventArgs)
bei Avira.OE.WinCore.EventHandlerExtensions.SafeInvoke[T](EventHan...
Error: (10/07/2015 03:56:36 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MORITZ-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (10/07/2015 03:56:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: javaw.exe, Version: 8.0.45.14, Zeitstempel: 0x55280c84
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc000041d
Fehleroffset: 0x0000000300000002
ID des fehlerhaften Prozesses: 0x968
Startzeit der fehlerhaften Anwendung: 0xjavaw.exe0
Pfad der fehlerhaften Anwendung: javaw.exe1
Pfad des fehlerhaften Moduls: javaw.exe2
Berichtskennung: javaw.exe3
Vollständiger Name des fehlerhaften Pakets: javaw.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: javaw.exe5
Error: (10/07/2015 03:56:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: javaw.exe, Version: 8.0.45.14, Zeitstempel: 0x55280c84
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000300000002
ID des fehlerhaften Prozesses: 0x968
Startzeit der fehlerhaften Anwendung: 0xjavaw.exe0
Pfad der fehlerhaften Anwendung: javaw.exe1
Pfad des fehlerhaften Moduls: javaw.exe2
Berichtskennung: javaw.exe3
Vollständiger Name des fehlerhaften Pakets: javaw.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: javaw.exe5
Error: (10/07/2015 10:00:03 AM) (Source: Avira Launcher Service Host) (EventID: 0) (User: )
Description: Fehler beim Verarbeiten von Sitzungsänderung. System.Runtime.InteropServices.COMException (0x80080005): Die COM-Klassenfactory für die Komponente mit CLSID {BFE18E9C-6D87-4450-B37C-E02F0B373803} konnte aufgrund des folgenden Fehlers nicht abgerufen werden: 80080005 Starten des Servers fehlgeschlagen (Ausnahme von HRESULT: 0x80080005 (CO_E_SERVER_EXEC_FAILURE)).
bei Avira.OE.WinCore.WindowsUpdateInformation.GetWindowsUpdateData()
bei Avira.OE.WinCore.DeviceUpdateDataFactory.UpdateDynamicData(DevUpdateDataCommand devUpdateData, String userSid)
bei Avira.OE.WinCore.DeviceUpdateDataFactory.CreateDeviceUpdateData(String userSid)
bei Avira.OE.Communicator.Communicator.CreateAndSendDeviceUpdateDataMessage(String userSid)
bei Avira.OE.Communicator.Communicator.SessionChanged(Session newActiveSession, Session previousActiveSession)
bei Avira.OE.Communicator.Communicator.OnActiveSessionChanged(Object sender, ActiveSessionChangedEventArgs activeSessionChangedEventArgs)
bei Avira.OE.WinCore.EventHandlerExtensions.SafeInvoke[T](EventHan...
Error: (10/07/2015 09:58:03 AM) (Source: Avira Launcher Service Host) (EventID: 0) (User: )
Description: Fehler beim Verarbeiten von Sitzungsänderung. System.Runtime.InteropServices.COMException (0x80080005): Die COM-Klassenfactory für die Komponente mit CLSID {BFE18E9C-6D87-4450-B37C-E02F0B373803} konnte aufgrund des folgenden Fehlers nicht abgerufen werden: 80080005 Starten des Servers fehlgeschlagen (Ausnahme von HRESULT: 0x80080005 (CO_E_SERVER_EXEC_FAILURE)).
bei Avira.OE.WinCore.WindowsUpdateInformation.GetWindowsUpdateData()
bei Avira.OE.WinCore.DeviceUpdateDataFactory.UpdateDynamicData(DevUpdateDataCommand devUpdateData, String userSid)
bei Avira.OE.WinCore.DeviceUpdateDataFactory.CreateDeviceUpdateData(String userSid)
bei Avira.OE.Communicator.Communicator.CreateAndSendDeviceUpdateDataMessage(String userSid)
bei Avira.OE.Communicator.Communicator.SessionChanged(Session newActiveSession, Session previousActiveSession)
bei Avira.OE.Communicator.Communicator.OnActiveSessionChanged(Object sender, ActiveSessionChangedEventArgs activeSessionChangedEventArgs)
bei Avira.OE.WinCore.EventHandlerExtensions.SafeInvoke[T](EventHan...
Error: (10/06/2015 10:37:41 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: MORITZ-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (10/06/2015 10:37:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: javaw.exe, Version: 8.0.45.14, Zeitstempel: 0x55280c84
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000300000002
ID des fehlerhaften Prozesses: 0x2a5c
Startzeit der fehlerhaften Anwendung: 0xjavaw.exe0
Pfad der fehlerhaften Anwendung: javaw.exe1
Pfad des fehlerhaften Moduls: javaw.exe2
Berichtskennung: javaw.exe3
Vollständiger Name des fehlerhaften Pakets: javaw.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: javaw.exe5
Systemfehler:
=============
Error: (10/08/2015 08:43:01 AM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {BFE18E9C-6D87-4450-B37C-E02F0B373803}
Error: (10/08/2015 08:40:53 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Net.Tcp-Listeneradapter" ist vom Dienst "Net.Tcp-Portfreigabedienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058
Error: (10/08/2015 08:40:52 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 07.10.2015 um 22:36:57 unerwartet heruntergefahren.
Error: (10/08/2015 08:40:46 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT-AUTORITÄT)
Description: 32212256841179440
Error: (10/07/2015 10:32:54 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{135FD325-45B7-4C30-89F8-4386961669F0}{135FD325-45B7-4C30-89F8-4386961669F0}NT-AUTORITÄTNetzwerkdienstS-1-5-20LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (10/07/2015 04:00:06 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (10/07/2015 03:59:04 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {BFE18E9C-6D87-4450-B37C-E02F0B373803}
Error: (10/07/2015 03:56:58 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Net.Tcp-Listeneradapter" ist vom Dienst "Net.Tcp-Portfreigabedienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058
Error: (10/07/2015 03:56:36 PM) (Source: DCOM) (EventID: 10010) (User: MORITZ-PC)
Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca
Error: (10/07/2015 03:56:33 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_Session9" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
CodeIntegrity:
===================================
Date: 2015-08-03 11:07:48.542
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-08-03 11:07:47.227
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-08-03 11:07:45.822
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2015-08-03 11:07:45.229
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Prozentuale Nutzung des RAM: 21%
Installierter physikalischer RAM: 16323.99 MB
Verfügbarer physikalischer RAM: 12786.19 MB
Summe virtueller Speicher: 32707.99 MB
Verfügbarer virtueller Speicher: 28149.09 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:232.22 GB) (Free:69.13 GB) NTFS
Drive d: (Volume) (Fixed) (Total:931.39 GB) (Free:437.75 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt ============================
--- --- --- |
FRST 32-Bit | FRST 64-Bit
Malwarebytes Anti-Malware 
AdwCleaner auf deinen Desktop.
