| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Windows 8 (Programme -apps- von Start menü öffnen sich nicht mehr!)Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
03.07.2015, 20:20
| #1 |
 |  Windows 8 (Programme -apps- von Start menü öffnen sich nicht mehr!) Hallo Liebes Forum, ich habe gemerkt dass die Apps von den start Menü komischerweise nicht mehr sich öffnen lassen wie z.B. Mail,Google,Pc-einstellungen usw.. Wenn ich auf eine app draufclicke passiert garnix,wenn ich auf desktop gehe,werden die apps unten auf der taskleiste als geöffnet angezeigt,sobald ich draufclicke komme ich wieder ins Startmenü. Die programme die ich installiert hab auf meinen Desktop z.B. öffnen sich ganz normal.. Ich habe die Anleitung schon probiert  Behandeln von App-Problemen - Windows-Hilfe)jezt geht nur die App store applikation auf aber sonst nichts anderes... DIESE FEHLER WURDEN ALLERDINGS NICHT BEHOBEN: 1. Einige Sicherheitseinstellungen fehlen oder wurden geändet - Nicht behoben 2. Windows-Speicher-Cache beschädigt werden - Nicht behoben 3. Windows Konfiguration möglicherweise beschädigt - Ermittelt Ich hoffe ihr könnt mir weitehelfen! MfG Theonoz |
|
03.07.2015, 20:33
| #2 |
| /// the machine /// TB-Ausbilder    | Windows 8 (Programme -apps- von Start menü öffnen sich nicht mehr!) Hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
08.07.2015, 15:51
| #3 |
| | Windows 8 (Programme -apps- von Start menü öffnen sich nicht mehr!) FRST.txt:
__________________FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-07-2015 Ran by D-NoZ (administrator) on THEO on 08-07-2015 16:46:14 Running from C:\Users\D-NoZ\Downloads Loaded Profiles: D-NoZ (Available Profiles: D-NoZ) Platform: Windows 8.1 Pro (X64) OS Language: Englisch (Vereinigte Staaten) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler64.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-06-24] (NVIDIA Corporation) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation) HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-04-07] (Apple Inc.) HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) HKU\S-1-5-21-621016436-2926405359-2198534721-1001\...\Run: [Gehirnjogging 4 OLR] => C:\Program Files (x86)\BVRP Software\Gehirnjogging 4\BVRPOlr.exe [79104 2008-02-11] (Avanquest Software) HKU\S-1-5-21-621016436-2926405359-2198534721-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.) HKU\S-1-5-21-621016436-2926405359-2198534721-1001\...\MountPoints2: {1823e901-e83d-11e3-be8a-4437e6081d43} - "D:\HTC_Sync_Manager_PC.exe" HKU\S-1-5-21-621016436-2926405359-2198534721-1001\...\MountPoints2: {58777edc-35fd-11e4-beba-5cac4c9954a7} - "D:\AutoRun.exe" HKU\S-1-5-21-621016436-2926405359-2198534721-1001\...\MountPoints2: {9843b833-74a4-11e4-bed2-5cac4c9954a7} - "D:\HTC_Sync_Manager_PC.exe" HKU\S-1-5-21-621016436-2926405359-2198534721-1001\...\MountPoints2: {e9f245de-1bc3-11e4-beb3-4437e6081d43} - "D:\HTC_Sync_Manager_PC.exe" HKU\S-1-5-21-621016436-2926405359-2198534721-1001\...\MountPoints2: {f6f21b15-762e-11e3-be6d-4437e6081d43} - "D:\HTC_Sync_Manager_PC.exe" ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => No File ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1 HKU\S-1-5-21-621016436-2926405359-2198534721-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1 HKU\S-1-5-21-621016436-2926405359-2198534721-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/ SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-17] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-17] (Oracle Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0 Tcpip\..\Interfaces\{4DFFAC32-EEBF-4F36-B849-DD5E1E943F53}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{6C0084AD-A414-426D-AA9A-62135FB920DA}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{8F20B4D4-17E6-47C6-AEB0-BE852A54EC71}: [DhcpNameServer] 192.168.1.1 0.0.0.0 FireFox: ======== FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-30] (VideoLAN) FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] () FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-17] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-17] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-01-10] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-06-17] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-06-17] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.) FF Plugin HKU\S-1-5-21-621016436-2926405359-2198534721-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\D-NoZ\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-01-26] (Unity Technologies ApS) FF Plugin HKU\S-1-5-21-621016436-2926405359-2198534721-1001: electronicarts.com/GameFacePlugin -> C:\Users\D-NoZ\AppData\Roaming\Electronic Arts\Game Face\npGameFacePlugin.dll [2012-12-20] (Electronic Arts) Chrome: ======= CHR Profile: C:\Users\D-NoZ\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (ProxFlow) - C:\Users\D-NoZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2015-03-13] CHR Extension: (Google Slides) - C:\Users\D-NoZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-13] CHR Extension: (Angry Birds) - C:\Users\D-NoZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2015-03-13] CHR Extension: (Google Docs) - C:\Users\D-NoZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-05] CHR Extension: (Google Drive) - C:\Users\D-NoZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-13] CHR Extension: (Please enter your password) - C:\Users\D-NoZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2015-03-13] CHR Extension: (YouTube) - C:\Users\D-NoZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-13] CHR Extension: (Google Search) - C:\Users\D-NoZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-13] CHR Extension: (Google Sheets) - C:\Users\D-NoZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-13] CHR Extension: (AdBlock) - C:\Users\D-NoZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-03-13] CHR Extension: (Facebook) - C:\Users\D-NoZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmmhebkeocjpdjpmcmjcihakclgmcblb [2015-03-13] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\D-NoZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-13] CHR Extension: (Google Maps) - C:\Users\D-NoZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2015-03-13] CHR Extension: (Деревянный хром) - C:\Users\D-NoZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmngljdjkkpkpkgkbdgepfbcjomclban [2015-03-14] CHR Extension: (Google Wallet) - C:\Users\D-NoZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-05] CHR Extension: (Psykopaint) - C:\Users\D-NoZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil [2015-03-13] CHR Extension: (Gmail) - C:\Users\D-NoZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-13] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-20] (Apple Inc.) S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-06-24] (NVIDIA Corporation) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1868432 2015-06-24] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23007376 2015-06-24] (NVIDIA Corporation) R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2013-09-13] (arvato digital services llc) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation) S2 ZAPrivacyService; "C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe" [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 athr; C:\Windows\system32\DRIVERS\athwnx.sys [3680256 2013-06-18] (Qualcomm Atheros Communications, Inc.) S3 GWHid; C:\Windows\system32\DRIVERS\GWHid.sys [23768 2013-05-27] (Microsoft Corporation) S3 HTCAND64; C:\Windows\System32\Drivers\ANDROIDUSB.sys [33736 2009-11-02] (HTC, Corporation) [File not signed] R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [129752 2015-07-06] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2014-11-21] (Malwarebytes Corporation) S3 MotioninJoyXFilter; C:\Windows\System32\drivers\MijXfilt.sys [121416 2012-05-12] (MotioninJoy) [File not signed] R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-06-24] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-04-03] (NVIDIA Corporation) S3 VL807; C:\Windows\system32\DRIVERS\VL807.sys [35160 2013-05-27] () R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation) S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-07-08 16:46 - 2015-07-08 16:46 - 00017406 _____ C:\Users\D-NoZ\Downloads\FRST.txt 2015-07-08 16:45 - 2015-07-08 16:46 - 00000000 ____D C:\FRST 2015-07-08 16:45 - 2015-07-08 16:45 - 02112512 _____ (Farbar) C:\Users\D-NoZ\Downloads\FRST64.exe 2015-07-03 21:14 - 2015-07-03 21:14 - 00423962 _____ C:\Users\D-NoZ\Downloads\AppsDiagnostic (2).diagcab 2015-07-03 21:14 - 2015-07-03 21:14 - 00423962 _____ C:\Users\D-NoZ\Downloads\AppsDiagnostic (1).diagcab 2015-06-28 13:19 - 2015-06-28 13:19 - 00423962 _____ C:\Users\D-NoZ\Downloads\AppsDiagnostic.diagcab 2015-06-28 01:22 - 2015-06-28 01:22 - 00000000 ____D C:\Users\D-NoZ\AppData\Roaming\NVIDIA 2015-06-26 20:13 - 2015-06-26 20:31 - 00000000 ____D C:\Users\D-NoZ\Desktop\GALAXY 2015-06-24 16:00 - 2015-07-06 19:35 - 00000000 ____D C:\ProgramData\NVIDIA 2015-06-24 16:00 - 2015-06-17 11:10 - 00112784 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2015-06-24 16:00 - 2015-06-17 11:10 - 00105288 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2015-06-24 16:00 - 2015-06-17 08:48 - 06873232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2015-06-24 16:00 - 2015-06-17 08:48 - 03492168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2015-06-24 16:00 - 2015-06-17 08:48 - 02558792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2015-06-24 16:00 - 2015-06-17 08:48 - 00937616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe 2015-06-24 16:00 - 2015-06-17 08:48 - 00385168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll 2015-06-24 16:00 - 2015-06-17 08:48 - 00062792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2015-06-24 16:00 - 2015-06-17 08:03 - 00571024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe 2015-06-24 16:00 - 2015-06-02 16:11 - 04421614 _____ C:\WINDOWS\system32\nvcoproc.bin 2015-06-24 15:58 - 2015-06-17 11:10 - 42729104 _____ C:\WINDOWS\system32\nvcompiler.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 37748880 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 30481552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 22947144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 17724600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 16145200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 15866992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 15224784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 14497520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 13263056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 12855416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 11831856 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 11011216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys 2015-06-24 15:58 - 2015-06-17 11:10 - 03395648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 02997544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 02932368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 02599752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 01898128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435330.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 01567576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 01557832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435330.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 01099992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 01060168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 01050768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 00982672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 00975176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 00938752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 00879000 _____ C:\WINDOWS\system32\nvmcumd.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 00204648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys 2015-06-24 15:58 - 2015-06-17 11:10 - 00176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 00155280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 00150832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 00128696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 00040280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll 2015-06-24 15:58 - 2015-06-17 11:10 - 00030966 _____ C:\WINDOWS\system32\nvinfo.pb 2015-06-24 15:39 - 2015-04-03 15:21 - 00048784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll 2015-06-24 15:39 - 2015-04-03 15:21 - 00038032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys 2015-06-18 00:30 - 2015-06-18 00:30 - 80265026 _____ C:\Users\D-NoZ\Desktop\Christos Fourkis Set Mix [June 2015]_youtube_original(1).flv 2015-06-18 00:29 - 2015-06-18 00:29 - 80265026 _____ C:\Users\D-NoZ\Desktop\Christos Fourkis Set Mix [June 2015]_youtube_original.flv 2015-06-10 12:24 - 2015-05-22 15:08 - 00700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2015-06-10 12:24 - 2015-05-21 15:08 - 01119232 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2015-06-10 12:24 - 2015-05-21 15:08 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2015-06-10 12:24 - 2015-05-21 15:08 - 00756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2015-06-10 12:24 - 2015-05-21 15:08 - 00422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2015-06-10 12:24 - 2015-05-21 15:08 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2015-06-10 12:24 - 2015-05-21 15:08 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2015-06-10 12:24 - 2015-04-17 00:07 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll 2015-06-10 12:24 - 2015-04-09 00:07 - 00410336 _____ C:\WINDOWS\system32\ApnDatabase.xml 2015-06-10 12:24 - 2015-03-20 05:49 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll 2015-06-10 12:24 - 2015-03-20 05:08 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll 2015-06-10 12:24 - 2015-03-20 04:37 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll 2015-06-10 12:24 - 2015-03-20 04:07 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2015-06-10 12:23 - 2015-05-25 15:23 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll 2015-06-10 12:23 - 2015-05-25 15:07 - 01430528 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2015-06-10 12:23 - 2015-04-09 00:41 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rgb9rast.dll 2015-06-10 12:23 - 2015-04-02 00:42 - 03097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll 2015-06-10 12:23 - 2015-04-02 00:30 - 02483712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll 2015-06-10 12:23 - 2015-03-02 03:43 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll 2015-06-10 12:23 - 2015-03-02 03:21 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll 2015-06-10 12:22 - 2015-05-27 16:35 - 24917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-06-10 12:22 - 2015-05-27 16:08 - 19607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-06-10 12:22 - 2015-04-25 04:34 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll 2015-06-10 12:22 - 2015-04-25 04:33 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll 2015-06-10 12:22 - 2015-04-16 08:17 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS 2015-06-10 12:22 - 2015-04-14 00:37 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll 2015-06-10 12:22 - 2015-04-14 00:34 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll 2015-06-10 12:22 - 2015-04-10 02:40 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2015-06-10 12:22 - 2015-04-10 02:17 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2015-06-10 12:22 - 2015-04-01 06:21 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2015-06-10 12:22 - 2015-04-01 06:18 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2015-06-10 12:22 - 2015-04-01 06:17 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll 2015-06-10 12:22 - 2015-04-01 06:08 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll 2015-06-10 12:22 - 2015-04-01 05:46 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2015-06-10 12:22 - 2015-04-01 05:17 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2015-06-10 12:22 - 2015-04-01 05:17 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2015-06-10 12:22 - 2015-04-01 04:53 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll 2015-06-10 12:22 - 2015-04-01 04:53 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2015-06-10 12:22 - 2015-04-01 04:45 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2015-06-10 12:22 - 2015-04-01 04:45 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll 2015-06-10 12:22 - 2015-04-01 04:14 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2015-06-10 12:22 - 2015-04-01 04:12 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2015-06-10 12:21 - 2015-05-23 05:15 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2015-06-10 12:21 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec 2015-06-10 12:21 - 2015-05-23 05:10 - 02278912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-06-10 12:21 - 2015-05-23 05:05 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2015-06-10 12:21 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2015-06-10 12:21 - 2015-05-23 04:48 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll 2015-06-10 12:21 - 2015-05-23 04:47 - 04305920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2015-06-10 12:21 - 2015-05-23 04:47 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll 2015-06-10 12:21 - 2015-05-23 04:47 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll 2015-06-10 12:21 - 2015-05-23 04:43 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll 2015-06-10 12:21 - 2015-05-23 04:38 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2015-06-10 12:21 - 2015-05-23 04:38 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2015-06-10 12:21 - 2015-05-23 04:37 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2015-06-10 12:21 - 2015-05-23 04:28 - 12829696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-06-10 12:21 - 2015-05-23 04:28 - 01042944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll 2015-06-10 12:21 - 2015-05-23 04:20 - 01950720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2015-06-10 12:21 - 2015-05-23 04:16 - 01309696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2015-06-10 12:21 - 2015-05-23 04:14 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2015-06-10 12:21 - 2015-05-22 21:00 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-06-10 12:21 - 2015-05-22 21:00 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2015-06-10 12:21 - 2015-05-22 21:00 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec 2015-06-10 12:21 - 2015-05-22 20:52 - 06026240 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2015-06-10 12:21 - 2015-05-22 20:48 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll 2015-06-10 12:21 - 2015-05-22 20:47 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2015-06-10 12:21 - 2015-05-22 20:47 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2015-06-10 12:21 - 2015-05-22 20:24 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll 2015-06-10 12:21 - 2015-05-22 20:23 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll 2015-06-10 12:21 - 2015-05-22 20:21 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll 2015-06-10 12:21 - 2015-05-22 20:15 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll 2015-06-10 12:21 - 2015-05-22 20:09 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll 2015-06-10 12:21 - 2015-05-22 20:08 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2015-06-10 12:21 - 2015-05-22 20:06 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2015-06-10 12:21 - 2015-05-22 20:05 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2015-06-10 12:21 - 2015-05-22 19:57 - 14404096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-06-10 12:21 - 2015-05-22 19:50 - 02426880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2015-06-10 12:21 - 2015-05-22 19:49 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll 2015-06-10 12:21 - 2015-05-22 19:38 - 01545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2015-06-10 12:21 - 2015-05-22 19:26 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2015-06-10 12:21 - 2015-05-21 18:47 - 04177920 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2015-06-08 19:07 - 2015-06-08 19:07 - 02870984 _____ (ESET) C:\Users\D-NoZ\Downloads\esetsmartinstaller_deu.exe 2015-06-08 18:18 - 2015-06-08 18:18 - 00028053 _____ C:\Users\D-NoZ\Downloads\dimosia_eidikes_diethneis_ote.xlsx ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-07-08 16:44 - 2015-05-02 23:35 - 00013093 _____ C:\WINDOWS\setupact.log 2015-07-08 16:44 - 2014-01-05 17:53 - 02013969 _____ C:\WINDOWS\WindowsUpdate.log 2015-07-08 16:41 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru 2015-07-08 03:36 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness 2015-07-06 21:12 - 2015-03-13 23:02 - 00000916 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-07-06 19:37 - 2014-01-05 18:08 - 00000000 ___DO C:\Users\D-NoZ\SkyDrive 2015-07-06 19:36 - 2015-03-13 23:02 - 00000912 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-07-06 19:36 - 2015-03-07 19:13 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-07-06 19:36 - 2014-01-05 17:56 - 00000000 ____D C:\Users\D-NoZ 2015-07-06 19:35 - 2015-05-07 12:56 - 00011560 _____ C:\WINDOWS\PFRO.log 2015-07-06 19:35 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-07-05 12:08 - 2014-01-05 18:13 - 00300704 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2015-06-28 01:44 - 2014-01-05 16:06 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-621016436-2926405359-2198534721-1001 2015-06-28 01:36 - 2014-01-05 17:52 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2015-06-27 22:57 - 2014-08-01 20:57 - 00000294 _____ C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job 2015-06-26 01:41 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-06-24 16:01 - 2014-01-05 19:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2015-06-24 16:00 - 2014-01-05 17:52 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2015-06-24 16:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Help 2015-06-24 15:59 - 2014-01-05 17:52 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2015-06-24 15:39 - 2015-06-01 23:59 - 00000000 ____D C:\ProgramData\boost_interprocess 2015-06-24 13:36 - 2014-07-12 14:05 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll 2015-06-24 13:36 - 2014-07-12 14:05 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll 2015-06-24 13:36 - 2014-01-05 19:24 - 01571696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll 2015-06-24 13:36 - 2014-01-05 19:24 - 01320120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll 2015-06-20 05:02 - 2015-01-31 14:53 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2015-06-20 05:02 - 2015-01-31 14:53 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2015-06-18 23:05 - 2014-09-09 20:37 - 00000000 ____D C:\Users\D-NoZ\AppData\Roaming\vlc 2015-06-18 23:02 - 2014-01-26 13:21 - 00000000 ____D C:\Users\D-NoZ\Documents\Euro Truck Simulator 2 2015-06-17 23:52 - 2014-01-17 21:31 - 00550762 _____ C:\WINDOWS\system32\perfh008.dat 2015-06-17 23:52 - 2014-01-17 21:31 - 00089322 _____ C:\WINDOWS\system32\perfc008.dat 2015-06-17 23:52 - 2014-01-05 16:14 - 00911330 _____ C:\WINDOWS\system32\perfh007.dat 2015-06-17 23:52 - 2014-01-05 16:14 - 00196344 _____ C:\WINDOWS\system32\perfc007.dat 2015-06-17 23:52 - 2013-11-14 09:29 - 02596146 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-06-15 23:43 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache 2015-06-15 00:53 - 2014-06-08 01:20 - 00000000 ____D C:\Users\D-NoZ\Documents\Flight Simulator X-Dateien 2015-06-12 23:24 - 2014-12-26 16:55 - 00000000 __SHD C:\Users\D-NoZ\AppData\Local\EmieBrowserModeList 2015-06-12 23:24 - 2014-05-02 13:44 - 00000000 __SHD C:\Users\D-NoZ\AppData\Local\EmieUserList 2015-06-12 23:24 - 2014-05-02 13:44 - 00000000 __SHD C:\Users\D-NoZ\AppData\Local\EmieSiteList 2015-06-11 11:56 - 2013-08-22 16:44 - 00423592 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-06-10 23:17 - 2014-12-11 18:41 - 00000000 ____D C:\WINDOWS\system32\appraiser 2015-06-10 23:17 - 2014-07-10 13:19 - 00000000 ___SD C:\WINDOWS\system32\CompatTel 2015-06-10 23:17 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData 2015-06-10 23:17 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions 2015-06-10 12:50 - 2014-01-05 18:13 - 00000000 ____D C:\WINDOWS\system32\MRT 2015-06-10 12:46 - 2014-01-05 18:13 - 140135120 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2015-06-08 19:09 - 2015-03-17 23:23 - 00000000 ____D C:\Users\D-NoZ\Desktop\PCsecurity 2015-06-08 18:39 - 2013-08-22 15:25 - 00524288 ___SH C:\WINDOWS\system32\config\BBI 2015-06-08 18:38 - 2015-03-18 01:10 - 00000000 ____D C:\ProgramData\Emsisoft ==================== Files in the root of some directories ======= 2014-06-23 14:34 - 2014-06-23 14:38 - 0514517 _____ () C:\Program Files (x86)\UninstalEurope.exe 2014-04-12 13:26 - 2014-04-12 13:26 - 0000044 _____ () C:\Users\D-NoZ\AppData\Roaming\WB.CFG 2014-06-15 20:12 - 2015-03-21 21:50 - 0007602 _____ () C:\Users\D-NoZ\AppData\Local\Resmon.ResmonCfg 2014-01-05 19:12 - 2014-01-05 19:12 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Some files in TEMP: ==================== C:\Users\D-NoZ\AppData\Local\Temp\nvSCPAPI.dll C:\Users\D-NoZ\AppData\Local\Temp\nvSCPAPI64.dll C:\Users\D-NoZ\AppData\Local\Temp\nvSCPAPISvr.exe C:\Users\D-NoZ\AppData\Local\Temp\nvStInst.exe C:\Users\D-NoZ\AppData\Local\Temp\Quarantine.exe C:\Users\D-NoZ\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-07-06 19:47 ==================== End of log ============================ Addition.txt:[CODE]Additional FRST Logfile: Code:
ATTFilter scan result of Farbar Recovery Scan Tool (x64) Version:05-07-2015
Ran by D-NoZ at 2015-07-08 16:47:03
Running from C:\Users\D-NoZ\Downloads
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-621016436-2926405359-2198534721-500 - Administrator - Disabled)
D-NoZ (S-1-5-21-621016436-2926405359-2198534721-1001 - Administrator - Enabled) => C:\Users\D-NoZ
Guest (S-1-5-21-621016436-2926405359-2198534721-501 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Audition CS6 (HKLM-x32\...\{30FD541D-3C9D-41C4-B240-A994EE4E0231}) (Version: 5.0 - Adobe Systems Incorporated)
Aerosoft's - Airbus X Extended - FSX (HKLM-x32\...\Airbus X Extended - FSX) (Version: 1.16 - Aerosoft)
Aerosoft's - Skiathos X - FSX (HKLM-x32\...\Skiathos X - FSX) (Version: 1.00 - )
Any Video Converter 5.7.8 (HKLM-x32\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com)
Apple Application Support (32-Bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BitTorrent (HKU\S-1-5-21-621016436-2926405359-2198534721-1001\...\BitTorrent) (Version: 7.9.2.37755 - BitTorrent Inc.)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CGS17_Setup_x64 (Version: 17.0 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension (HKLM\...\_{4AB916EE-ABA8-4079-9889-745798B6D809}) (Version: 17.0.0.491 - Corel Corporation)
Corel Graphics - Windows Shell Extension (Version: 17.0.491 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (Version: 17.0.491 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Capture (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Common (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Connect (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Custom Data (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - DE (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Draw (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Filters (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - FontNav (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM Content (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - IPM T (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Photozoom Plugin (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Redist (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Setup Files (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VBA (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - VideoBrowser (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 - Writing Tools (x64) (Version: 17.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X7 (64-Bit) (HKLM\...\_{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.0.0.491 - Corel Corporation)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Dropbox (HKU\S-1-5-21-621016436-2926405359-2198534721-1001\...\Dropbox) (Version: 3.0.5 - Dropbox, Inc.)
EA SPORTS Game Face Browser Plugin 1.8.0.0 (HKU\S-1-5-21-621016436-2926405359-2198534721-1001\...\EA SPORTS Game Face Browser Plugin) (Version: 1.8.0.0 - Electronic Arts)
EditVoicepack X (HKLM-x32\...\{493687F8-8D57-47C4-87B6-D46D7C5203BF}) (Version: 4.0.7 - Bevelstone Production)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version: - SCS Software)
Explorer Suite IV (HKLM\...\Explorer Suite_is1) (Version: - )
FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version: - Image-Line)
Flight Simulator X (HKLM-x32\...\RTMshadow_{7D606567-5047-451A-B49E-29FCB6012B4E}) (Version: - )
Flight Simulator X Service Pack 1 (HKLM-x32\...\SP1shadow_{7D606567-5047-451A-B49E-29FCB6012B4E}) (Version: - )
FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version: - )
Fotogalerie (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Free YouTube to MP3 Converter version 3.12.50.1111 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.50.1111 - DVDVideoSoft Ltd.)
Game Booster 3 (HKLM-x32\...\Game Booster_is1) (Version: 3.4 - IObit)
GAP LGTS 2014 FSX EDITION (HKU\S-1-5-21-621016436-2926405359-2198534721-1001\...\GAP LGTS 2014 FSX EDITION) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.130 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
Ground Environment X Europe (HKLM-x32\...\Ground Environment X Europe) (Version: - )
iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)
IL Shared Libraries (HKLM-x32\...\IL Shared Libraries) (Version: - Image-Line)
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Malwarebytes Anti-Malware Version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Metric Collection SDK (x32 Version: 1.1.0005.00 - Lenovo Group Limited) Hidden
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Flight Simulator X: Acceleration (HKLM-x32\...\FlightSim_{7D606567-5047-451A-B49E-29FCB6012B4E}) (Version: 10.0.61637.0 - Microsoft Game Studios)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0407-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Movie Maker (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
MSXML 4.0 SP2 Parser und SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
NBA 2K14 (HKLM-x32\...\Steam App 255480) (Version: - Visual Concepts)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.30 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.5.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.57 - NVIDIA Corporation)
NVIDIA Grafiktreiber 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.30 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7246 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.5.57 - NVIDIA Corporation) Hidden
SPEEDLINK WASP2 USB Joystick (HKLM\...\{31323B99-2091-4105-8574-B848520AC474}_is1) (Version: - SPEEDLINK WASP2 USB Joystick)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Thief (HKLM-x32\...\Steam App 239160) (Version: - Eidos-Montréal)
Ultimate Terrain X - Europe (HKU\S-1-5-21-621016436-2926405359-2198534721-1001\...\Ultimate Terrain X - Europe) (Version: - )
Unity Web Player (HKU\S-1-5-21-621016436-2926405359-2198534721-1001\...\UnityWebPlayer) (Version: 4.6.2f1 - Unity Technologies ApS)
Virtual DJ Pro Full - Atomix Productions (HKLM-x32\...\Virtual DJ Pro Full - Atomix Productions) (Version: - )
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3522.0110 - Microsoft Corporation)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
XBMC (HKU\S-1-5-21-621016436-2926405359-2198534721-1001\...\XBMC) (Version: - Team XBMC)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Restore Points =========================
15-06-2015 23:39:05 Scheduled Checkpoint
26-06-2015 01:39:10 Windows Update
03-07-2015 05:32:20 Scheduled Checkpoint
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {167807EC-CE3E-4E7A-8B97-5BF835A6BC76} - System32\Tasks\RtHDVBg_LENOVO_MICPKEY => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-05-13] (Realtek Semiconductor)
Task: {22B64D58-58B4-4093-BD37-992D0D750C17} - System32\Tasks\aus => c:\windows\system32\setdown.exe
Task: {393E8579-9E42-4EB8-A082-3D0114B52D62} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-13] (Google Inc.)
Task: {61BCF55F-449C-4DE2-80E3-CEB244B7F448} - System32\Tasks\{ABC2FA37-32BE-431E-A2E0-3F7C7154E309} => pcalua.exe -a "C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\Modules\AISmooth\AISmooth.exe" -d "C:\Program Files (x86)\Microsoft Games\Microsoft Flight Simulator X\Modules\AISmooth"
Task: {6454E245-D130-46A1-8A38-329D47F344CE} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {7165BFD3-AC35-42CB-B96D-54DB069DEEB6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-13] (Google Inc.)
Task: {99BF85E2-BB11-4BEC-8EE7-AC41065F91E5} - System32\Tasks\DLL-Files FixerASKUSER => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: {9B978098-DD92-432F-9018-F93B8C95DFD6} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe [2014-09-29] ()
Task: {C31D1060-D2C8-44FF-A6FF-80E0D030745F} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-02-13] (Lenovo)
Task: {D472D5C1-3BC9-43E9-B0DB-B989FCDCF336} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-06-10] (Microsoft Corporation)
Task: {F856E90E-1C37-4064-A272-17FC40A19545} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-05-09] (Realtek Semiconductor)
Task: {FBF2E1A5-F050-42B6-ADC6-403D7AAC870F} - System32\Tasks\TVT\LenovoWERMonitor => C:\Program Files (x86)\Common Files\lenovo\SUP\sup_wermonitor.exe [2014-03-14] (Microsoft)
Task: C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2015-06-24 16:00 - 2015-06-17 08:48 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-06-23 00:13 - 2015-06-20 09:20 - 01670472 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\libglesv2.dll
2015-06-23 00:13 - 2015-06-20 09:20 - 00093000 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\libegl.dll
2015-03-30 20:38 - 2015-06-24 13:37 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\D-NoZ\SkyDrive:ms-properties
==================== Safe Mode (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-621016436-2926405359-2198534721-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\D-NoZ\AppData\Roaming\Microsoft\Windows Photo Viewer\Hintergrundbild der Windows-Fotoanzeige.jpg
DNS Servers: 192.168.1.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run: => "Nvtmru"
HKLM\...\StartupApproved\Run: => "OODefragTray"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "ContentTransferWMDetector.exe"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKU\S-1-5-21-621016436-2926405359-2198534721-1001\...\StartupApproved\Run: => "Gehirnjogging 4 OLR"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [{01194B28-9E27-493B-9972-A83B90AF2E49}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{DDF8CEA8-6A4E-4D87-A881-3EE6D82647CB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{2DF35946-A238-46C9-AC90-F28CAB79E97F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{941FA175-E3D0-45CD-B8CA-BE939F8F2214}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{3E0BC13C-5282-42DC-8382-375DAA9923B9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{229B58A6-2077-4380-816C-9E49F5E64E8F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{3CB86EF3-1CC4-4F43-A616-F9B0BB17CBD3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{F73FC6B2-893A-4480-B07A-DA6104290542}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{3F258715-2F1E-4162-BDEF-796015D5E76B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{9D48CB2A-77F7-417D-B483-F9C33597BAD0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0FC16625-D772-47CF-AF24-2F14F6935866}] => (Allow) X:\Games\Steam\Steam.exe
FirewallRules: [{B369E3FA-459E-4850-9CAB-6BA182426C06}] => (Allow) X:\Games\Steam\Steam.exe
FirewallRules: [{527B51A6-5252-49F3-B3AD-DF0341DDB007}] => (Allow) X:\Games\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{1C804CCC-0BBE-42EB-AD0B-06444C845092}] => (Allow) X:\Games\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{3C14B0A7-60B8-4531-98DC-5915E03FAECC}] => (Allow) C:\Users\D-NoZ\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{33346471-0427-4E37-918C-ED8C9148A7E0}] => (Allow) C:\Users\D-NoZ\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{247F573B-F53A-4696-B685-802AA3B23721}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{051C4528-8369-4063-B8E7-5994492D9048}] => (Allow) LPort=2869
FirewallRules: [{30697D29-3ABD-42CC-84CA-AF3A662A2D42}] => (Allow) LPort=1900
FirewallRules: [{BF99AF49-EACB-4735-9037-71B2EA8B32DA}] => (Allow) X:\Games\Steam\SteamApps\common\NBA2K14\nba2k14.exe
FirewallRules: [{54902BD9-C15E-4A78-A4D7-F90455D90A1E}] => (Allow) X:\Games\Steam\SteamApps\common\NBA2K14\nba2k14.exe
FirewallRules: [{DB42DE4B-7699-42B1-9930-C863884BC047}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2816\Agent.exe
FirewallRules: [{582611AB-D4FF-4E14-8BEB-48002C975730}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2816\Agent.exe
FirewallRules: [{3FB94690-AE1C-4E57-95B4-02296476E530}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{94E16C00-AC1C-472A-8861-DAA7778165A6}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{CBBE78DF-C244-4BE8-9532-7C59A3A5DF67}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{B6C043DE-D7BA-41EB-A0C2-B558AAC99ADE}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{1BDF8F20-BB6D-4634-B525-65982C743215}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{ED0371EB-ABA7-4252-B513-4F11F0DEAFB2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{12C5E1D2-5A29-45C9-864F-F2AED50F75DC}] => (Allow) uncserver.exe
FirewallRules: [{EC5821A3-102A-4120-8FD5-B6BF7504041E}] => (Allow) uncserver.exe
FirewallRules: [{1271C33D-A0D0-43EF-B82B-696A60A09004}] => (Allow) uncserver.exe
FirewallRules: [{2BB0E343-5362-46AD-9753-2436A4679986}] => (Allow) uncserver.exe
FirewallRules: [TCP Query User{FFD58D78-6A5A-47FF-8F85-EA79A02F8718}C:\program files (x86)\lenovo\system update\uncserver.exe] => (Allow) C:\program files (x86)\lenovo\system update\uncserver.exe
FirewallRules: [UDP Query User{C4E38F82-5CA3-4E09-9231-308D2D2E30B3}C:\program files (x86)\lenovo\system update\uncserver.exe] => (Allow) C:\program files (x86)\lenovo\system update\uncserver.exe
FirewallRules: [{BDC7A146-BBF8-4E15-A535-64F60852451B}] => (Allow) uncserver.exe
FirewallRules: [{AFEB79C3-8BDB-4C7A-8F5F-81BCD20D6F0B}] => (Allow) uncserver.exe
FirewallRules: [{B9EAC875-70B5-44BF-9AAB-0A6AFE10C36B}] => (Allow) X:\Games\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{B3621AF2-3124-4224-A54F-E6D5BD429C96}] => (Allow) X:\Games\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [TCP Query User{6310B1BD-9EC7-4643-BEAA-995A5AF2D826}C:\program files (x86)\microsoft games\microsoft flight simulator x\aerosoft\airbus x extended\airbusxconnectextended.exe] => (Allow) C:\program files (x86)\microsoft games\microsoft flight simulator x\aerosoft\airbus x extended\airbusxconnectextended.exe
FirewallRules: [UDP Query User{9ACB4CC5-7E0C-416E-B510-3B6A5D1A2081}C:\program files (x86)\microsoft games\microsoft flight simulator x\aerosoft\airbus x extended\airbusxconnectextended.exe] => (Allow) C:\program files (x86)\microsoft games\microsoft flight simulator x\aerosoft\airbus x extended\airbusxconnectextended.exe
FirewallRules: [TCP Query User{FCA3E542-31B5-442B-81FC-CE3FE318DAB2}C:\program files (x86)\xbmc\xbmc.exe] => (Allow) C:\program files (x86)\xbmc\xbmc.exe
FirewallRules: [UDP Query User{7D80E043-628A-4401-AB21-AB6865F9710B}C:\program files (x86)\xbmc\xbmc.exe] => (Allow) C:\program files (x86)\xbmc\xbmc.exe
FirewallRules: [{8DE7FE36-6A2D-42B9-915F-A485D618EF5C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{A2B804B0-23C6-4C94-A1DD-73CE797D27C4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{3600288B-A24B-4C79-97DC-67627FE7781E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
FirewallRules: [{93B830BF-075A-4FB1-9ED1-633C4DE39832}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
FirewallRules: [{82BDCDE2-C0B6-4BC2-A945-905CE3516B1B}] => (Allow) X:\Games\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{BED061D5-1256-4759-B89C-0C31169AFF7C}] => (Allow) X:\Games\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{D5261540-18FA-4F5A-BB81-1334C18B26AF}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{C3125520-DAA7-4158-8E38-69E768091237}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe
FirewallRules: [{D944CAC0-D518-439C-B06C-6DF1778F4BFE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe
FirewallRules: [TCP Query User{8F80DAB2-6746-4F60-920B-07703FFEA145}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{1D267C62-B4BE-4CC2-871F-B456168961B5}C:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\diablo iii\diablo iii.exe
FirewallRules: [{56E60CEC-4E5A-4472-BD85-7A0A5BFE3C00}] => (Allow) X:\Games\Steam\bin\steamwebhelper.exe
FirewallRules: [{39BE1C50-BFCD-4F29-AC30-9ED7E542E3F6}] => (Allow) X:\Games\Steam\bin\steamwebhelper.exe
FirewallRules: [{DED73023-7D75-4D26-A66F-EFAAC9A4E2E6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{0FAC2452-F0EE-42B2-893A-AAD66BE3F56C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{9DD707F4-9E4C-4FD3-B2D4-DD76F8D7BDA8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{25EA8602-0940-4945-AD74-B8B48250D7BB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{C0CDED16-58F0-4C29-AB24-A0957285D3BB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{53BAEED1-37C0-475F-A3B4-FB9C736F9EB7}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [TCP Query User{F723FE13-F7E0-4DED-9530-01A0ED683D94}C:\users\d-noz\downloads\o_o_defrag_pro_17.0.422_portable\o_o_defrag_pro_17.0.422_64bit_portable\o&o defrag\local\stubexe\0xac8cdb9d19551212\oodag.exe] => (Block) C:\users\d-noz\downloads\o_o_defrag_pro_17.0.422_portable\o_o_defrag_pro_17.0.422_64bit_portable\o&o defrag\local\stubexe\0xac8cdb9d19551212\oodag.exe
FirewallRules: [UDP Query User{014EC2B8-CA69-49ED-AD1B-8DBC9FAD124F}C:\users\d-noz\downloads\o_o_defrag_pro_17.0.422_portable\o_o_defrag_pro_17.0.422_64bit_portable\o&o defrag\local\stubexe\0xac8cdb9d19551212\oodag.exe] => (Block) C:\users\d-noz\downloads\o_o_defrag_pro_17.0.422_portable\o_o_defrag_pro_17.0.422_64bit_portable\o&o defrag\local\stubexe\0xac8cdb9d19551212\oodag.exe
FirewallRules: [{B4CC778B-3B33-4BE7-B7C7-CAB48C6163B4}] => (Allow) X:\Games\Steam\SteamApps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe
FirewallRules: [{5631944D-A95D-4C19-B80C-A6C114824D92}] => (Allow) X:\Games\Steam\SteamApps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe
FirewallRules: [{021527E6-5DE3-4CAB-A1EE-BAE93A880822}] => (Allow) C:\Users\D-NoZ\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{8182403E-8295-42C7-94EA-D0EE573DDD99}] => (Allow) C:\Users\D-NoZ\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{712B0947-17F6-4949-88CC-0E2FB692F648}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F1A53F37-A51E-415E-9AD9-C63C382B4AD4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{1D87694A-7321-4B86-870A-5E957977B233}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A85AF274-DCDE-4DF7-8E46-5A7A9016F23F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{578A1086-D27B-42A2-96E1-8AB635B78365}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelDrw.exe
FirewallRules: [{CE87BC6E-3551-4BF4-8E39-052F89F3CEFC}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelPP.exe
FirewallRules: [{A9B24F8A-EA54-4177-9B3F-5E5DC9E8E6DD}] => (Allow) X:\Games\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{1936BC3D-4522-4F2D-B2FC-1E6630596560}] => (Allow) X:\Games\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{D3E4C79B-DF0C-4845-BB8A-A23901603A82}] => (Allow) X:\Games\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{BDA550A9-BC64-4495-842D-75A05D51BC6B}] => (Allow) X:\Games\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{FC0F9155-C921-4891-AE8E-0D67AD735938}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{56EE0D43-38A0-425C-A671-4E9DDA67816B}] => (Allow) X:\Games\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{9D1B8416-EEF4-4BDB-86B7-FA45D7E22060}] => (Allow) X:\Games\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{5A927551-B62E-44EE-AB8A-EFC223642C15}] => (Allow) X:\Games\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{0DF56970-2570-4381-AB0B-C994EE1AA0C0}] => (Allow) X:\Games\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{D746A6CA-B3EA-436D-88A3-B55906AF69E9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Faulty Device Manager Devices =============
Name: 11a|b|g|n Wireless LAN Adapter
Description: 11a|b|g|n-Drahtlos-LAN-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications Inc.
Service: athr
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Microsoft PS/2-Maus
Description: Microsoft PS/2-Maus
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (07/08/2015 04:45:46 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Die Klassenregistrierungsdatei kann nicht geladen werden.
DETAIL - The configuration registry database is corrupt.
Error: (07/08/2015 04:45:46 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: NT AUTHORITY)
Description: Die Registrierung konnte nicht geladen werden. Dieses Problem wird oft durch zuwenig Arbeitsspeicher oder nicht ausreichende Sicherheitsberechtigungen verursacht.
Details - The configuration registry database is corrupt.
for C:\Users\D-NoZ\AppData\Local\Microsoft\Windows\\UsrClass.dat
Error: (07/08/2015 04:45:46 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Die Klassenregistrierungsdatei kann nicht geladen werden.
DETAIL - The configuration registry database is corrupt.
Error: (07/08/2015 04:45:46 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: NT AUTHORITY)
Description: Die Registrierung konnte nicht geladen werden. Dieses Problem wird oft durch zuwenig Arbeitsspeicher oder nicht ausreichende Sicherheitsberechtigungen verursacht.
Details - The configuration registry database is corrupt.
for C:\Users\D-NoZ\AppData\Local\Microsoft\Windows\\UsrClass.dat
Error: (07/08/2015 03:25:26 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Die Klassenregistrierungsdatei kann nicht geladen werden.
DETAIL - The configuration registry database is corrupt.
Error: (07/08/2015 03:25:26 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: NT AUTHORITY)
Description: Die Registrierung konnte nicht geladen werden. Dieses Problem wird oft durch zuwenig Arbeitsspeicher oder nicht ausreichende Sicherheitsberechtigungen verursacht.
Details - The configuration registry database is corrupt.
for C:\Users\D-NoZ\AppData\Local\Microsoft\Windows\\UsrClass.dat
Error: (07/06/2015 07:50:21 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Die Klassenregistrierungsdatei kann nicht geladen werden.
DETAIL - The configuration registry database is corrupt.
Error: (07/06/2015 07:50:21 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: NT AUTHORITY)
Description: Die Registrierung konnte nicht geladen werden. Dieses Problem wird oft durch zuwenig Arbeitsspeicher oder nicht ausreichende Sicherheitsberechtigungen verursacht.
Details - The configuration registry database is corrupt.
for C:\Users\D-NoZ\AppData\Local\Microsoft\Windows\\UsrClass.dat
Error: (07/06/2015 07:36:39 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: THEO)
Description: Bei der Aktivierung der App „Microsoft.BingFoodAndDrink_8wekyb3d8bbwe!AppexFoodAndDrink“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (07/06/2015 07:36:14 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: Die Klassenregistrierungsdatei kann nicht geladen werden.
DETAIL - The configuration registry database is corrupt.
System errors:
=============
Error: (07/08/2015 03:34:59 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: microsoft.windowscommunicationsapps
Error: (07/08/2015 03:34:59 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: Microsoft.BingFoodAndDrink
Error: (07/08/2015 03:34:53 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: GAMELOFTSA.Asphalt8Airborne
Error: (07/08/2015 03:34:53 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: Microsoft.BingNews
Error: (07/08/2015 03:34:47 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: Microsoft.BingTravel
Error: (07/08/2015 03:34:47 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: PONS.Wrterbuch
Error: (07/08/2015 03:34:41 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: Microsoft.BingWeather
Error: (07/08/2015 03:34:41 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: Microsoft.SkypeApp
Error: (07/08/2015 03:34:35 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: Microsoft.BingFinance
Error: (07/08/2015 03:34:35 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070002 fehlgeschlagen: Microsoft.BingHealthAndFitness
Microsoft Office:
=========================
Error: (07/08/2015 04:45:46 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: The configuration registry database is corrupt.
Error: (07/08/2015 04:45:46 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: NT AUTHORITY)
Description: The configuration registry database is corrupt.
C:\Users\D-NoZ\AppData\Local\Microsoft\Windows\\UsrClass.dat
Error: (07/08/2015 04:45:46 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: The configuration registry database is corrupt.
Error: (07/08/2015 04:45:46 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: NT AUTHORITY)
Description: The configuration registry database is corrupt.
C:\Users\D-NoZ\AppData\Local\Microsoft\Windows\\UsrClass.dat
Error: (07/08/2015 03:25:26 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: The configuration registry database is corrupt.
Error: (07/08/2015 03:25:26 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: NT AUTHORITY)
Description: The configuration registry database is corrupt.
C:\Users\D-NoZ\AppData\Local\Microsoft\Windows\\UsrClass.dat
Error: (07/06/2015 07:50:21 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: The configuration registry database is corrupt.
Error: (07/06/2015 07:50:21 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: NT AUTHORITY)
Description: The configuration registry database is corrupt.
C:\Users\D-NoZ\AppData\Local\Microsoft\Windows\\UsrClass.dat
Error: (07/06/2015 07:36:39 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: THEO)
Description: Microsoft.BingFoodAndDrink_8wekyb3d8bbwe!AppexFoodAndDrink-2144927148
Error: (07/06/2015 07:36:14 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
Description: The configuration registry database is corrupt.
CodeIntegrity Errors:
===================================
Date: 2015-06-28 00:53:11.590
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-06-28 00:53:11.246
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-06-28 00:53:10.790
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-06-28 00:53:10.449
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-06-28 00:53:09.951
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-06-28 00:53:09.617
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-06-28 00:53:09.160
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-06-28 00:53:08.816
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-06-28 00:53:08.357
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-06-28 00:53:08.009
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3 CPU 550 @ 3.20GHz
Percentage of memory in use: 22%
Total physical RAM: 8118.52 MB
Available physical RAM: 6322.18 MB
Total Virtual: 12707.52 MB
Available Virtual: 10302.2 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:471.77 GB) (Free:287.72 GB) NTFS
Drive x: (DATA) (Fixed) (Total:434.57 GB) (Free:390.21 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 97B138B4)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=471.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=434.6 GB) - (Type=OF Extended)
Partition 4: (Not Active) - (Size=25.1 GB) - (Type=12)
==================== End of log ============================
|
|
09.07.2015, 08:08
| #4 |
| /// the machine /// TB-Ausbilder | Windows 8 (Programme -apps- von Start menü öffnen sich nicht mehr!) Bitte Windows Repair laufen lassen: Windows reparieren - so geht's - Anleitungen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
10.07.2015, 10:59
| #5 |
| | Windows 8 (Programme -apps- von Start menü öffnen sich nicht mehr!) Ich habs gemacht es funkioniert wieder nicht,das einzige was sich geändert hat ist mein pc dauert sehr lange bis es hochfährt! |
|
11.07.2015, 11:11
| #6 |
| /// the machine /// TB-Ausbilder | Windows 8 (Programme -apps- von Start menü öffnen sich nicht mehr!) Dann bleibt nur noch ein Refresh von Win8.
__________________ --> Windows 8 (Programme -apps- von Start menü öffnen sich nicht mehr!) |
|
11.07.2015, 17:58
| #7 |
| | Windows 8 (Programme -apps- von Start menü öffnen sich nicht mehr!) Ok,hab schon formatiert un neu installiert |
|
12.07.2015, 16:01
| #8 |
| /// the machine /// TB-Ausbilder | Windows 8 (Programme -apps- von Start menü öffnen sich nicht mehr!) Probleme weg?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
12.07.2015, 16:59
| #9 |
| | Windows 8 (Programme -apps- von Start menü öffnen sich nicht mehr!) Jepp danke! |
|
13.07.2015, 08:12
| #10 |
| /// the machine /// TB-Ausbilder | Windows 8 (Programme -apps- von Start menü öffnen sich nicht mehr!) Gern Geschehen 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Windows 8 (Programme -apps- von Start menü öffnen sich nicht mehr!) |
| angezeigt, anleitung, beschädigt, desktop, fehlen, fehler, forum, gemerkt, gen, google, hoffe, installiert, konfiguration, leitung, mail, möglicherweise, nicht mehr, nichts, programme, sicherheitseinstellungen, sobald, start, taskleiste, windows, öffnen |
Linear-Darstellung
