|
Log-Analyse und Auswertung: windows 8 datenträger 0 100% auslastungWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
30.01.2016, 04:21 | #1 |
| windows 8 datenträger 0 100% auslastung Hallo! Seit längerem ist mein PC laut und Datenträger 0 immer bei 100% Auslastung. Ich hab schon CCleaner benutzt, Virenscan, Treiber neuinstalliert aber hilft nichts wirklich. Hab Windows 8, intel core i5 4460 CPU @ 3.20GHz, 16GB RAM, Nvidia GeForce GTX 770 Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:27-01-2016 durchgeführt von Lena (Administrator) auf HIME (30-01-2016 04:08:42) Gestartet von C:\Users\Lena\Downloads Geladene Profile: Lena & (Verfügbare Profile: Lena) Platform: Windows 8.1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Condusiv Technologies) C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel(R) Corporation) C:\Program Files\Intel Corporation\Intel(R) Technology Access\LegacyCsLoaderService.exe (Intel(R) Corporation) C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfemms.exe (McAfee, Inc.) C:\Windows\System32\mfevtps.exe (McAfee, Inc.) C:\Windows\System32\mfevtps.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe (McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe (WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\CSP\1.8.203.0\McCSPServiceHost.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Pokki) C:\Users\Lena\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe (Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe (Akamai Technologies, Inc.) C:\Users\Lena\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.) C:\Users\Lena\AppData\Local\Akamai\netsession_win.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Last.fm) C:\Program Files (x86)\Last.fm\Last.fm Scrobbler.exe (Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.3.0.0\Lightshot.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe (Pokki) C:\Users\Lena\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Pokki) C:\Users\Lena\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Pokki) C:\Users\Lena\AppData\Local\SweetLabs App Platform\Engine\ServiceStartMenuIndexer.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (NCSOFT Corporation) C:\Program Files (x86)\NCWest\NCLauncher\NCLauncherR.exe (NCsoft) C:\Program Files (x86)\NCSOFT\BnS\bin\Client.exe (INCA Internet Co., Ltd.) C:\Program Files (x86)\NCSOFT\BnS\bin\GameGuard\GameMon.des (Khrona LLC) C:\Program Files (x86)\NCSOFT\BnS\bin\AwesomiumProcess.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamresearch.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [SimplePass] => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [3957816 2014-02-07] (Hewlett-Packard) HKLM\...\Run: [OPBHOBroker] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [415288 2014-02-07] (Hewlett-Packard) HKLM\...\Run: [OPBHOBrokerDesktop] => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [415288 2014-02-07] (Hewlett-Packard) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-23] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => "C:\windows\system32\rundll32.exe" C:\windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2694040 2014-07-22] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] () HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [592704 2015-07-08] (Razer Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation) Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKU\S-1-5-21-4126140776-1067704328-797667922-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3586848 2016-01-19] (Nota Inc.) HKU\S-1-5-21-4126140776-1067704328-797667922-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3013712 2015-12-14] (Valve Corporation) HKU\S-1-5-21-4126140776-1067704328-797667922-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [5973272 2013-12-17] (Piriform Ltd) HKU\S-1-5-21-4126140776-1067704328-797667922-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Lena\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.) HKU\S-1-5-21-4126140776-1067704328-797667922-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) HKU\S-1-5-21-4126140776-1067704328-797667922-1001\...\Run: [LINE] => C:\Program Files (x86)\LINE\line.exe [17456664 2015-12-07] (LINE Corporation) HKU\S-1-5-21-4126140776-1067704328-797667922-1001\...\Run: [GoogleChromeAutoLaunch_EA1924184F638B01C7173E929B5B7502] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [748872 2016-01-27] (Google Inc.) HKU\S-1-5-21-4126140776-1067704328-797667922-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50385536 2015-12-17] (Skype Technologies S.A.) HKU\S-1-5-21-4126140776-1067704328-797667922-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3586848 2016-01-19] (Nota Inc.) HKU\S-1-5-21-4126140776-1067704328-797667922-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3013712 2015-12-14] (Valve Corporation) HKU\S-1-5-21-4126140776-1067704328-797667922-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [5973272 2013-12-17] (Piriform Ltd) HKU\S-1-5-21-4126140776-1067704328-797667922-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Akamai NetSession Interface] => C:\Users\Lena\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.) HKU\S-1-5-21-4126140776-1067704328-797667922-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) HKU\S-1-5-21-4126140776-1067704328-797667922-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [LINE] => C:\Program Files (x86)\LINE\line.exe [17456664 2015-12-07] (LINE Corporation) HKU\S-1-5-21-4126140776-1067704328-797667922-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [GoogleChromeAutoLaunch_EA1924184F638B01C7173E929B5B7502] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [748872 2016-01-27] (Google Inc.) HKU\S-1-5-21-4126140776-1067704328-797667922-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50385536 2015-12-17] (Skype Technologies S.A.) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll [2014-07-16] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll [2014-07-16] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll [2014-07-16] () Startup: C:\Users\Lena\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Last.fm Scrobbler.exe.lnk [2015-09-07] ShortcutTarget: Last.fm Scrobbler.exe.lnk -> C:\Program Files (x86)\Last.fm\Last.fm Scrobbler.exe (Last.fm) BootExecute: autocheck autochk * sdnclean64.exe ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{A111CBBD-F01E-4D95-8C47-511846F06715}: [DhcpNameServer] 192.168.178.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPDSK14/4 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPDSK14/4 HKU\S-1-5-21-4126140776-1067704328-797667922-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-4126140776-1067704328-797667922-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPDSK14/4 HKU\S-1-5-21-4126140776-1067704328-797667922-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-4126140776-1067704328-797667922-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPDSK14/4 SearchScopes: HKLM -> {40E6D58E-FF7E-4D43-84E6-B91916825FF1} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} SearchScopes: HKLM-x32 -> {40E6D58E-FF7E-4D43-84E6-B91916825FF1} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} SearchScopes: HKU\S-1-5-21-4126140776-1067704328-797667922-1001 -> DefaultScope {9F45BB04-CF89-11E4-827D-9CB654EDCD07} URL = hxxp://search.homepage-web.com/?src=omnibox&partner=hp&q={searchTerms} SearchScopes: HKU\S-1-5-21-4126140776-1067704328-797667922-1001 -> {40E6D58E-FF7E-4D43-84E6-B91916825FF1} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} SearchScopes: HKU\S-1-5-21-4126140776-1067704328-797667922-1001 -> {9F45BB04-CF89-11E4-827D-9CB654EDCD07} URL = hxxp://search.homepage-web.com/?src=omnibox&partner=hp&q={searchTerms} SearchScopes: HKU\S-1-5-21-4126140776-1067704328-797667922-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {9F45BB04-CF89-11E4-827D-9CB654EDCD07} URL = hxxp://search.homepage-web.com/?src=omnibox&partner=hp&q={searchTerms} SearchScopes: HKU\S-1-5-21-4126140776-1067704328-797667922-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {40E6D58E-FF7E-4D43-84E6-B91916825FF1} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} SearchScopes: HKU\S-1-5-21-4126140776-1067704328-797667922-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {9F45BB04-CF89-11E4-827D-9CB654EDCD07} URL = hxxp://search.homepage-web.com/?src=omnibox&partner=hp&q={searchTerms} BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation) BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll => Keine Datei BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-10-10] (Oracle Corporation) BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-01-16] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-10-10] (Oracle Corporation) BHO-x32: Kein Name -> {E6E66045-E911-4C01-961D-32387BF12768} -> C:\Users\Lena\AppData\LocalLow\Browser-Security\safe_url.dll [2015-07-22] () BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-10-19] (Hewlett-Packard Company) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation) Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2015-12-03] (McAfee, Inc.) Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2015-12-03] (McAfee, Inc.) FireFox: ======== FF ProfilePath: C:\Users\Lena\AppData\Roaming\Mozilla\Firefox\Profiles\7krp3cqv.default-1447304178004 FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_20_0_0_286.dll [2016-01-20] () FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-12-03] () FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-30] (VideoLAN) FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2014-07-22] (Adobe Systems) FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-20] () FF Plugin-x32: @daum.net/npDaumGameStarter -> C:\Users\Default\AppData\Roaming\DaumGame\npDaumGameStarter.dll [2014-12-06] (Daum) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-08-12] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-08-12] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-10-10] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-10-10] (Oracle Corporation) FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2015-12-03] () FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-01-23] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-01-23] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.) FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] () FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2014-07-22] (Adobe Systems) FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) FF Extension: Skype - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-01-06] FF HKLM-x32\...\Firefox\Extensions: [{20d1f7b3-7721-4da0-b6f3-78bb4d7248f4}] - C:\Program Files (x86)\Browser Guard\browserguard.xpi => nicht gefunden FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2016-01-21] [ist nicht signiert] Chrome: ======= CHR Profile: C:\Users\Lena\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Präsentationen) - C:\Users\Lena\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-29] CHR Extension: (Google Docs) - C:\Users\Lena\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-12] CHR Extension: (Google Drive) - C:\Users\Lena\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-12] CHR Extension: (YouTube) - C:\Users\Lena\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-12] CHR Extension: (Adblock Plus) - C:\Users\Lena\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-01-06] CHR Extension: (Google-Suche) - C:\Users\Lena\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-12] CHR Extension: (Google Tabellen) - C:\Users\Lena\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-29] CHR Extension: (Chrome Remote Desktop) - C:\Users\Lena\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2015-12-27] CHR Extension: (Google Docs Offline) - C:\Users\Lena\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-12] CHR Extension: („Pin it“-Button) - C:\Users\Lena\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2015-11-29] CHR Extension: (New XKit) - C:\Users\Lena\AppData\Local\Google\Chrome\User Data\Default\Extensions\inobiceghmpkaklcknpniboilbjmlald [2015-11-27] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Lena\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-29] CHR Extension: (Google Mail) - C:\Users\Lena\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-12] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation) S3 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe [69448 2015-10-14] (Google Inc.) R2 ExpressCache; C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe [828656 2013-11-18] (Condusiv Technologies) R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-01-28] (WildTangent) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-23] (NVIDIA Corporation) R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [451960 2015-11-02] (McAfee, Inc.) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [25800 2015-09-28] (Hewlett-Packard Company) R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert] S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation) R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-08-12] (Intel Corporation) S3 Intel(R) TA SAM; C:\Program Files (x86)\Intel Corporation\Intel(R) Technology Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-08-12] (Intel Corporation) R2 Intel(R) TechnologyAccessLegacyCSLoader; C:\Program Files\Intel Corporation\Intel(R) Technology Access\LegacyCsLoaderService.exe [157344 2015-12-03] (Intel(R) Corporation) R2 Intel(R) TechnologyAccessService; C:\Program Files\Intel Corporation\Intel(R) Technology Access\IntelTechnologyAccessService.exe [486048 2015-12-03] (Intel(R) Corporation) S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-09-25] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-08-12] (Intel Corporation) S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes) R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [863448 2015-12-03] (McAfee, Inc.) S3 McAWFwk; c:\Program Files\Common Files\mcafee\ActWiz\McAWFwk.exe [334608 2013-07-29] (McAfee, Inc.) R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.8.203.0\McCSPServiceHost.exe [1694152 2015-12-02] (McAfee, Inc.) R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [451960 2015-11-02] (McAfee, Inc.) R2 McNaiAnn; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [451960 2015-11-02] (McAfee, Inc.) S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [679120 2015-10-20] (McAfee, Inc.) S4 McOobeSv2; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [451960 2015-11-02] (McAfee, Inc.) R2 mcpltsvc; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [451960 2015-11-02] (McAfee, Inc.) R2 McProxy; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [451960 2015-11-02] (McAfee, Inc.) R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [233680 2015-09-21] (McAfee, Inc.) R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [378848 2015-10-21] (McAfee, Inc.) R2 mfevtp; C:\windows\system32\mfevtps.exe [256840 2015-09-21] (McAfee, Inc.) R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [451960 2015-11-02] (McAfee, Inc.) S3 npggsvc; C:\windows\SysWOW64\GameMon.des [3685968 2015-07-22] (INCA Internet Co., Ltd.) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-23] (NVIDIA Corporation) R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-23] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-23] (NVIDIA Corporation) R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [88064 2014-02-07] (Softex Inc.) [Datei ist nicht signiert] R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-06-23] () R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation) R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [655040 2015-07-07] (Wacom Technology, Corp.) S2 0105961452858258mcinstcleanup; C:\windows\TEMP\010596~1.EXE -cleanup -nolog [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3888640 2014-02-14] (Qualcomm Atheros Communications, Inc.) R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [80760 2015-09-23] (McAfee, Inc.) R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [25840 2013-11-18] (Condusiv Technologies) R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [117488 2013-11-18] (Condusiv Technologies) S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [207208 2015-05-19] (McAfee, Inc.) S3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) R3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-01-30] (Malwarebytes) S3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation) R3 MEIx64; C:\Windows\System32\drivers\TeeDriverx64.sys [99288 2013-08-12] (Intel Corporation) R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [415976 2015-09-23] (McAfee, Inc.) R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [351120 2015-09-23] (McAfee, Inc.) S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [82072 2015-09-23] (McAfee, Inc.) R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [497888 2015-09-23] (McAfee, Inc.) R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [841944 2015-09-23] (McAfee, Inc.) R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [537192 2015-10-06] (McAfee, Inc.) S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [109480 2015-10-06] (McAfee, Inc.) R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [244544 2015-09-23] (McAfee, Inc.) R1 ndisrd; C:\Windows\system32\DRIVERS\ndisrfl.sys [41688 2015-04-30] (Intel Corporation) R3 NetTap630; C:\Windows\system32\DRIVERS\nettap630.sys [67800 2015-04-30] (Intel Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-23] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation) R3 RzDxgk; C:\windows\system32\drivers\RzDxgk.sys [129472 2014-04-18] (Razer, Inc.) R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [39592 2014-12-30] (Razer Inc) R1 RzFilter; C:\windows\system32\drivers\RzFilter.sys [74432 2014-04-18] (Razer, Inc.) R3 rzmpos; C:\Windows\System32\drivers\rzmpos.sys [35496 2014-12-30] (Razer Inc) R2 rzpmgrk; C:\windows\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.) R2 rzpnk; C:\windows\system32\drivers\rzpnk.sys [129472 2015-06-27] (Razer, Inc.) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation) S3 EagleX64; \??\C:\windows\system32\drivers\EagleX64.sys [X] S3 STHDA; \SystemRoot\system32\DRIVERS\stwrt64.sys [X] S3 X6va028; \??\C:\windows\SysWOW64\Drivers\X6va028 [X] S3 xhunter1; \??\C:\windows\xhunter1.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-01-30 04:08 - 2016-01-30 04:08 - 02370560 _____ (Farbar) C:\Users\Lena\Downloads\FRST64.exe 2016-01-30 04:01 - 2016-01-30 04:01 - 00001121 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2016-01-30 03:58 - 2016-01-30 03:58 - 00004020 _____ C:\windows\System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse 2016-01-30 03:58 - 2016-01-30 03:58 - 00000000 ____D C:\Users\Lena\AppData\Roaming\NVIDIA 2016-01-30 02:15 - 2016-01-30 02:15 - 22908888 _____ (Malwarebytes ) C:\Users\Lena\Downloads\mbam-setup-2.2.0.1024.exe 2016-01-30 01:54 - 2016-01-30 01:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2016-01-29 14:39 - 2016-01-29 14:39 - 00000000 ___SH C:\DkHyperbootSync 2016-01-29 14:16 - 2016-01-29 14:17 - 00000000 ____D C:\Users\Lena\AppData\Local\NVIDIA 2016-01-29 14:16 - 2016-01-29 14:16 - 00001400 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2016-01-29 14:16 - 2016-01-29 14:16 - 00000000 ____D C:\Users\Lena\AppData\Local\NVIDIA Corporation 2016-01-29 14:16 - 2016-01-23 03:54 - 01542600 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvspcap.dll 2016-01-29 14:16 - 2016-01-23 03:54 - 01316184 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvspbridge.dll 2016-01-29 14:16 - 2016-01-23 03:53 - 01859936 _____ (NVIDIA Corporation) C:\windows\system32\nvspcap64.dll 2016-01-29 14:16 - 2016-01-23 03:53 - 01756608 _____ (NVIDIA Corporation) C:\windows\system32\nvspbridge64.dll 2016-01-29 14:16 - 2016-01-23 03:53 - 00112216 _____ C:\windows\system32\NvRtmpStreamer64.dll 2016-01-29 14:15 - 2016-01-29 14:15 - 00000000 ____D C:\ProgramData\NVIDIA 2016-01-29 14:15 - 2016-01-23 02:12 - 00110016 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvStreaming.exe 2016-01-29 14:15 - 2016-01-23 02:04 - 06368312 _____ (NVIDIA Corporation) C:\windows\system32\nvcpl.dll 2016-01-29 14:15 - 2016-01-23 02:04 - 02992064 _____ (NVIDIA Corporation) C:\windows\system32\nvsvc64.dll 2016-01-29 14:15 - 2016-01-23 02:04 - 02563128 _____ (NVIDIA Corporation) C:\windows\system32\nvsvcr.dll 2016-01-29 14:15 - 2016-01-23 02:04 - 01263040 _____ (NVIDIA Corporation) C:\windows\system32\nvvsvc.exe 2016-01-29 14:15 - 2016-01-23 02:04 - 00532024 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshext.dll 2016-01-29 14:15 - 2016-01-23 02:04 - 00393784 _____ (NVIDIA Corporation) C:\windows\system32\nvmctray.dll 2016-01-29 14:15 - 2016-01-23 02:04 - 00083512 _____ (NVIDIA Corporation) C:\windows\system32\nv3dappshextr.dll 2016-01-29 14:15 - 2016-01-23 02:04 - 00071224 _____ (NVIDIA Corporation) C:\windows\system32\nvshext.dll 2016-01-29 14:15 - 2016-01-22 22:07 - 06125650 _____ C:\windows\system32\nvcoproc.bin 2016-01-29 14:14 - 2016-01-29 14:17 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2016-01-29 14:14 - 2016-01-29 14:16 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2016-01-29 14:14 - 2016-01-23 04:42 - 00213952 _____ (Khronos Group) C:\windows\system32\OpenCL.dll 2016-01-29 14:14 - 2016-01-23 04:42 - 00203320 _____ (Khronos Group) C:\windows\SysWOW64\OpenCL.dll 2016-01-29 14:13 - 2016-01-29 14:16 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2016-01-29 14:13 - 2016-01-23 04:42 - 42983992 _____ C:\windows\system32\nvcompiler.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 37614528 _____ C:\windows\SysWOW64\nvcompiler.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 31079992 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv64.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 24911296 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglv32.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 21193544 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 20733832 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 18758400 _____ (NVIDIA Corporation) C:\windows\system32\nvwgf2umx.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 17626352 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvopencl.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 17218792 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuda.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 16995064 _____ (NVIDIA Corporation) C:\windows\system32\nvd3dumx.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 16327896 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvwgf2um.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 14016576 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvd3dum.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 12379072 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys 2016-01-29 14:13 - 2016-01-23 04:42 - 03683560 _____ (NVIDIA Corporation) C:\windows\system32\nvapi64.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 03258664 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvapi.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 03145272 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 02721216 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvcuvid.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 01924152 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco6436175.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 01573432 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco6436175.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 01572496 _____ (NVIDIA Corporation) C:\windows\system32\nvhdagenco6420103.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 00948672 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC64.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 00880576 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR64.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 00747064 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvFBC.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 00689600 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFR.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 00501896 _____ (NVIDIA Corporation) C:\windows\system32\nvEncodeAPI64.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 00468960 _____ (NVIDIA Corporation) C:\windows\system32\nvumdshimx.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 00425016 _____ (NVIDIA Corporation) C:\windows\system32\NvIFROpenGL.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 00423080 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvEncodeAPI.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 00388560 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvumdshim.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 00377792 _____ (NVIDIA Corporation) C:\windows\SysWOW64\NvIFROpenGL.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 00205456 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvhda64v.sys 2016-01-29 14:13 - 2016-01-23 04:42 - 00175368 _____ (NVIDIA Corporation) C:\windows\system32\nvinitx.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 00153392 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvinit.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 00151368 _____ (NVIDIA Corporation) C:\windows\system32\nvoglshim64.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 00128512 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvoglshim32.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 00039240 _____ (NVIDIA Corporation) C:\windows\system32\nvhdap64.dll 2016-01-29 14:13 - 2016-01-23 04:42 - 00034905 _____ C:\windows\system32\nvinfo.pb 2016-01-29 14:13 - 2015-12-18 07:11 - 00047760 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvvad64v.sys 2016-01-29 14:13 - 2015-12-18 07:10 - 00099472 _____ (NVIDIA Corporation) C:\windows\system32\nvaudcap64v.dll 2016-01-29 14:13 - 2015-12-18 07:10 - 00090768 _____ (NVIDIA Corporation) C:\windows\SysWOW64\nvaudcap32v.dll 2016-01-29 14:12 - 2016-01-29 14:12 - 00000000 ____D C:\NVIDIA2 2016-01-29 13:39 - 2016-01-29 13:39 - 00000000 ____D C:\Users\Lena\Desktop\Guru3D.com 2016-01-29 13:38 - 2016-01-29 13:38 - 00228175 _____ C:\Users\Lena\Downloads\NV-Inspector-[Guru3D.com].rar 2016-01-29 13:12 - 2016-01-29 13:12 - 00000000 ____D C:\NVIDIA 2016-01-29 13:03 - 2016-01-30 04:08 - 00003846 _____ C:\windows\System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse 2016-01-29 03:07 - 2016-01-29 03:11 - 385746880 _____ (NVIDIA Corporation) C:\Users\Lena\Downloads\361.75-desktop-win8-win7-winvista-64bit-international-whql.exe 2016-01-25 04:06 - 2016-01-25 04:06 - 00025154 _____ C:\Users\Lena\Desktop\^F133EFF8D2120EC02E9CE3A1F2C1DC31DE1A19F3883D05F537^pimgpsh_fullsize_distr.jpg 2016-01-20 18:06 - 2016-01-26 00:05 - 00003150 _____ C:\windows\System32\Tasks\HPCeeScheduleForLena 2016-01-20 18:06 - 2016-01-26 00:05 - 00000338 _____ C:\windows\Tasks\HPCeeScheduleForLena.job 2016-01-13 02:54 - 2015-12-11 05:38 - 25837568 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll 2016-01-13 02:54 - 2015-12-11 05:00 - 00571904 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll 2016-01-13 02:54 - 2015-12-11 04:55 - 06051328 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll 2016-01-13 02:54 - 2015-12-11 04:50 - 20367360 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll 2016-01-13 02:54 - 2015-12-11 04:45 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll 2016-01-13 02:54 - 2015-12-11 04:21 - 00496640 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll 2016-01-13 02:54 - 2015-12-11 04:18 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll 2016-01-13 02:54 - 2015-12-11 04:09 - 01032704 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll 2016-01-13 02:54 - 2015-12-11 04:09 - 00663552 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll 2016-01-13 02:54 - 2015-12-11 04:03 - 14456832 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll 2016-01-13 02:54 - 2015-12-11 03:59 - 00798208 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll 2016-01-13 02:54 - 2015-12-11 03:43 - 04610560 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll 2016-01-13 02:54 - 2015-12-11 03:43 - 00880128 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll 2016-01-13 02:54 - 2015-12-11 03:38 - 02487808 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll 2016-01-13 02:54 - 2015-12-11 03:37 - 00687104 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll 2016-01-13 02:54 - 2015-12-11 03:35 - 12856320 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll 2016-01-13 02:54 - 2015-12-11 03:26 - 01546752 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll 2016-01-13 02:54 - 2015-12-11 03:14 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll 2016-01-13 02:54 - 2015-12-11 03:12 - 02011136 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll 2016-01-13 02:54 - 2015-12-11 03:08 - 01311744 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll 2016-01-13 02:54 - 2015-12-11 03:07 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll 2016-01-13 02:53 - 2015-12-02 16:04 - 00670208 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll 2016-01-13 02:53 - 2015-12-02 16:01 - 00561664 _____ (Microsoft Corporation) C:\windows\SysWOW64\qedit.dll 2016-01-13 02:52 - 2015-12-30 20:32 - 07453016 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe 2016-01-13 02:52 - 2015-12-30 20:32 - 01735000 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll 2016-01-13 02:52 - 2015-12-30 20:32 - 01499912 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll 2016-01-13 02:52 - 2015-12-10 01:40 - 00033456 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe 2016-01-13 02:52 - 2015-12-08 20:08 - 00685432 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll 2016-01-13 02:52 - 2015-12-08 20:07 - 00507176 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll 2016-01-13 02:52 - 2015-12-07 11:56 - 01380600 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll 2016-01-13 02:52 - 2015-12-05 06:58 - 02745184 _____ (Microsoft Corporation) C:\windows\system32\WMVDECOD.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 02528784 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVDECOD.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 02450240 _____ (Microsoft Corporation) C:\windows\system32\WMVENCOD.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 02447136 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVENCOD.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 02334104 _____ (Microsoft Corporation) C:\windows\system32\mfcore.dll 2016-01-13 02:52 - 2015-12-05 06:58 - 02324744 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfcore.dll 2016-01-13 02:52 - 2015-12-05 06:58 - 01877504 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2adec.dll 2016-01-13 02:52 - 2015-12-05 06:58 - 01798480 _____ (Microsoft Corporation) C:\windows\system32\WMALFXGFXDSP.dll 2016-01-13 02:52 - 2015-12-05 06:58 - 01484888 _____ (Microsoft Corporation) C:\windows\SysWOW64\msmpeg2adec.dll 2016-01-13 02:52 - 2015-12-05 06:58 - 01288128 _____ (Microsoft Corporation) C:\windows\system32\mfnetsrc.dll 2016-01-13 02:52 - 2015-12-05 06:58 - 01210200 _____ (Microsoft Corporation) C:\windows\system32\WMADMOD.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 01150232 _____ (Microsoft Corporation) C:\windows\system32\WMADMOE.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 01115640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfnetsrc.dll 2016-01-13 02:52 - 2015-12-05 06:58 - 01037680 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMADMOD.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 00914672 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMADMOE.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 00850680 _____ (Microsoft Corporation) C:\windows\system32\mfnetcore.dll 2016-01-13 02:52 - 2015-12-05 06:58 - 00735496 _____ (Microsoft Corporation) C:\windows\system32\evr.dll 2016-01-13 02:52 - 2015-12-05 06:58 - 00700360 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfnetcore.dll 2016-01-13 02:52 - 2015-12-05 06:58 - 00629600 _____ (Microsoft Corporation) C:\windows\system32\MP4SDECD.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 00584656 _____ (Microsoft Corporation) C:\windows\SysWOW64\evr.dll 2016-01-13 02:52 - 2015-12-05 06:58 - 00557856 _____ (Microsoft Corporation) C:\windows\system32\WMVSDECD.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 00498472 _____ (Microsoft Corporation) C:\windows\system32\mfsvr.dll 2016-01-13 02:52 - 2015-12-05 06:58 - 00492736 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVSDECD.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 00463776 _____ (Microsoft Corporation) C:\windows\SysWOW64\MP4SDECD.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 00399776 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfsvr.dll 2016-01-13 02:52 - 2015-12-05 06:58 - 00299080 _____ (Microsoft Corporation) C:\windows\system32\VIDRESZR.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 00275312 _____ (Microsoft Corporation) C:\windows\SysWOW64\MPG4DECD.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 00274280 _____ (Microsoft Corporation) C:\windows\SysWOW64\MP43DECD.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 00250520 _____ (Microsoft Corporation) C:\windows\system32\MPG4DECD.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 00248432 _____ (Microsoft Corporation) C:\windows\system32\MP43DECD.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 00246856 _____ (Microsoft Corporation) C:\windows\system32\RESAMPLEDMO.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 00244296 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll 2016-01-13 02:52 - 2015-12-05 06:58 - 00229272 _____ (Microsoft Corporation) C:\windows\SysWOW64\RESAMPLEDMO.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 00203016 _____ (Microsoft Corporation) C:\windows\system32\COLORCNV.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 00184912 _____ (Microsoft Corporation) C:\windows\SysWOW64\COLORCNV.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 00183856 _____ (Microsoft Corporation) C:\windows\SysWOW64\VIDRESZR.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 00116720 _____ (Microsoft Corporation) C:\windows\system32\MP3DMOD.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 00110544 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfps.dll 2016-01-13 02:52 - 2015-12-05 06:58 - 00099136 _____ (Microsoft Corporation) C:\windows\SysWOW64\MP3DMOD.DLL 2016-01-13 02:52 - 2015-12-05 06:58 - 00090904 _____ (Microsoft Corporation) C:\windows\system32\devenum.dll 2016-01-13 02:52 - 2015-12-05 06:58 - 00090392 _____ (Microsoft Corporation) C:\windows\system32\mfvdsp.dll 2016-01-13 02:52 - 2015-12-05 06:58 - 00081032 _____ (Microsoft Corporation) C:\windows\SysWOW64\devenum.dll 2016-01-13 02:52 - 2015-12-05 06:58 - 00076936 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfvdsp.dll 2016-01-13 02:52 - 2015-12-04 16:00 - 01097216 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll 2016-01-13 02:52 - 2015-12-03 20:42 - 00561952 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys 2016-01-13 02:52 - 2015-12-03 20:42 - 00397224 _____ (Microsoft Corporation) C:\windows\system32\bcryptprimitives.dll 2016-01-13 02:52 - 2015-12-03 20:42 - 00137968 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll 2016-01-13 02:52 - 2015-12-03 20:42 - 00106960 _____ (Microsoft Corporation) C:\windows\system32\ncryptsslp.dll 2016-01-13 02:52 - 2015-12-03 20:41 - 00177488 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys 2016-01-13 02:52 - 2015-12-03 19:52 - 00340872 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcryptprimitives.dll 2016-01-13 02:52 - 2015-12-03 19:52 - 00120376 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll 2016-01-13 02:52 - 2015-12-03 19:52 - 00091416 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncryptsslp.dll 2016-01-13 02:52 - 2015-12-03 19:28 - 00401920 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys 2016-01-13 02:52 - 2015-12-03 19:28 - 00202240 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys 2016-01-13 02:52 - 2015-12-03 19:07 - 00340992 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll 2016-01-13 02:52 - 2015-12-03 19:07 - 00289792 _____ (Microsoft Corporation) C:\windows\system32\ksproxy.ax 2016-01-13 02:52 - 2015-12-03 19:05 - 00644608 _____ (Microsoft Corporation) C:\windows\system32\WMVXENCD.DLL 2016-01-13 02:52 - 2015-12-03 19:02 - 01664000 _____ (Microsoft Corporation) C:\windows\system32\WMSPDMOE.DLL 2016-01-13 02:52 - 2015-12-03 19:00 - 00451072 _____ (Microsoft Corporation) C:\windows\system32\WMVSENCD.DLL 2016-01-13 02:52 - 2015-12-03 18:58 - 00378880 _____ (Microsoft Corporation) C:\windows\system32\SysFxUI.dll 2016-01-13 02:52 - 2015-12-03 18:51 - 00445440 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll 2016-01-13 02:52 - 2015-12-03 18:36 - 01697792 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll 2016-01-13 02:52 - 2015-12-03 18:30 - 00468480 _____ (Microsoft Corporation) C:\windows\system32\MFWMAAEC.DLL 2016-01-13 02:52 - 2015-12-03 18:28 - 00519680 _____ (Microsoft Corporation) C:\windows\SysWOW64\qdvd.dll 2016-01-13 02:52 - 2015-12-03 18:28 - 00245760 _____ (Microsoft Corporation) C:\windows\SysWOW64\ksproxy.ax 2016-01-13 02:52 - 2015-12-03 18:27 - 00736256 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVXENCD.DLL 2016-01-13 02:52 - 2015-12-03 18:24 - 01411584 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMSPDMOE.DLL 2016-01-13 02:52 - 2015-12-03 18:23 - 00402432 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVSENCD.DLL 2016-01-13 02:52 - 2015-12-03 18:16 - 00324096 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll 2016-01-13 02:52 - 2015-12-03 18:13 - 01441280 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll 2016-01-13 02:52 - 2015-12-03 18:07 - 00432128 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll 2016-01-13 02:52 - 2015-12-03 18:06 - 01501184 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll 2016-01-13 02:52 - 2015-12-03 18:01 - 00743936 _____ (Microsoft Corporation) C:\windows\SysWOW64\MFWMAAEC.DLL 2016-01-13 02:52 - 2015-12-03 17:45 - 00357888 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll 2016-01-13 02:52 - 2015-12-03 17:40 - 01010688 _____ (Microsoft Corporation) C:\windows\system32\WMSPDMOD.DLL 2016-01-13 02:52 - 2015-12-03 17:29 - 00887296 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMSPDMOD.DLL 2016-01-13 02:52 - 2015-11-17 22:07 - 01380864 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll 2016-01-13 02:52 - 2015-11-17 22:07 - 01164800 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll 2016-01-13 02:52 - 2015-11-17 22:07 - 00792064 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll 2016-01-13 02:52 - 2015-11-17 22:07 - 00705024 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll 2016-01-13 02:52 - 2015-11-17 22:07 - 00505344 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll 2016-01-13 02:52 - 2015-11-17 22:07 - 00210432 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll 2016-01-13 02:52 - 2015-11-17 22:07 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll 2016-01-11 11:33 - 2016-01-11 11:33 - 00002253 _____ C:\Users\Public\Desktop\Blade & Soul.lnk 2016-01-11 11:33 - 2016-01-11 11:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCSOFT 2016-01-11 11:33 - 2016-01-11 11:33 - 00000000 ____D C:\Program Files (x86)\NCSOFT 2016-01-11 11:23 - 2016-01-11 11:25 - 224976152 _____ (NC Interactive, LLC ) C:\Users\Lena\Downloads\BnS_Lite_Installer.exe ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-01-30 04:08 - 2015-04-11 05:32 - 00033686 _____ C:\Users\Lena\Downloads\FRST.txt 2016-01-30 04:08 - 2015-04-11 05:32 - 00000000 ____D C:\FRST 2016-01-30 04:08 - 2015-01-21 06:05 - 00000000 ____D C:\Users\Lena\AppData\Local\FirestormOS_x64 2016-01-30 04:07 - 2014-07-28 15:12 - 00003596 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4126140776-1067704328-797667922-1001 2016-01-30 04:06 - 2014-07-28 15:14 - 00000000 ____D C:\Users\Lena\AppData\Roaming\Skype 2016-01-30 04:02 - 2014-08-02 04:22 - 00192216 _____ (Malwarebytes) C:\windows\system32\Drivers\MBAMSwissArmy.sys 2016-01-30 04:01 - 2014-08-02 03:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2016-01-30 04:01 - 2014-08-02 03:51 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2016-01-30 03:58 - 2014-07-28 05:06 - 00000000 ____D C:\Users\Lena\AppData\Local\SweetLabs App Platform 2016-01-30 03:45 - 2015-09-29 19:34 - 00001128 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-01-30 03:32 - 2015-01-01 18:55 - 00000396 _____ C:\windows\Tasks\update-sys.job 2016-01-30 03:14 - 2014-07-29 01:44 - 00000884 _____ C:\windows\Tasks\Adobe Flash Player Updater.job 2016-01-30 02:54 - 2015-01-01 18:55 - 00000396 _____ C:\windows\Tasks\update-S-1-5-21-4126140776-1067704328-797667922-1001.job 2016-01-30 02:03 - 2015-09-01 07:23 - 00000000 ____D C:\Users\Lena\AppData\Local\CrashDumps 2016-01-30 02:00 - 2014-07-28 16:39 - 00000000 ____D C:\Users\Lena\AppData\Local\Adobe 2016-01-30 01:49 - 2015-09-29 19:34 - 00001124 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-01-29 14:18 - 2013-08-22 14:36 - 00000000 ____D C:\windows\Inf 2016-01-29 14:16 - 2015-03-16 01:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2016-01-29 14:15 - 2013-08-22 16:36 - 00000000 ____D C:\windows\Help 2016-01-29 14:06 - 2013-08-22 15:45 - 00000006 ____H C:\windows\Tasks\SA.DAT 2016-01-29 14:05 - 2013-08-22 14:25 - 00262144 ___SH C:\windows\system32\config\BBI 2016-01-29 14:02 - 2014-08-25 22:32 - 00000000 ____D C:\Program Files (x86)\Steam 2016-01-29 14:02 - 2014-07-30 05:05 - 00000000 ____D C:\Users\Lena\AppData\Roaming\BitTorrent 2016-01-29 14:01 - 2015-11-29 07:32 - 00000000 ____D C:\windows\Minidump 2016-01-29 02:47 - 2015-09-29 19:35 - 00002231 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-01-29 02:24 - 2014-07-29 02:48 - 00001456 _____ C:\Users\Lena\AppData\Local\Adobe Für Web speichern 13.0 Prefs 2016-01-27 23:14 - 2015-08-01 18:38 - 00000000 ____D C:\windows\System32\Tasks\McAfee 2016-01-26 00:09 - 2013-08-22 14:25 - 00262144 ___SH C:\windows\system32\config\ELAM 2016-01-21 05:10 - 2014-06-24 07:11 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection 2016-01-20 18:14 - 2014-07-29 01:44 - 00003772 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater 2016-01-20 18:05 - 2014-07-28 05:06 - 00000000 ____D C:\Users\Lena 2016-01-19 16:36 - 2013-08-22 16:36 - 00000000 ____D C:\windows\rescache 2016-01-19 16:08 - 2015-07-08 09:51 - 00003396 _____ C:\windows\System32\Tasks\GyazoUpdateTaskMachineDaily 2016-01-19 16:08 - 2014-07-28 23:50 - 00003270 _____ C:\windows\System32\Tasks\GyazoUpdateTaskMachine 2016-01-19 16:08 - 2014-07-28 23:50 - 00000000 ____D C:\Program Files (x86)\Gyazo 2016-01-15 12:45 - 2014-06-24 07:26 - 00000000 ____D C:\ProgramData\McAfee 2016-01-14 07:28 - 2014-09-27 08:18 - 00000000 ___RD C:\Program Files (x86)\Skype 2016-01-14 05:16 - 2014-06-24 15:44 - 00757756 _____ C:\windows\system32\perfh007.dat 2016-01-14 05:16 - 2014-06-24 15:44 - 00173028 _____ C:\windows\system32\perfc007.dat 2016-01-14 05:16 - 2014-03-18 16:32 - 01784032 _____ C:\windows\system32\PerfStringBackup.INI 2016-01-14 05:06 - 2013-08-22 15:44 - 00421944 _____ C:\windows\system32\FNTCACHE.DAT 2016-01-13 20:52 - 2015-04-17 10:18 - 00000000 ___SD C:\windows\system32\CompatTel 2016-01-13 20:52 - 2015-04-17 10:18 - 00000000 ____D C:\windows\system32\appraiser 2016-01-13 20:15 - 2013-08-22 16:20 - 00000000 ____D C:\windows\CbsTemp 2016-01-13 20:13 - 2014-07-29 18:11 - 00000000 ____D C:\windows\system32\MRT 2016-01-13 20:07 - 2014-07-29 18:11 - 143671360 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe 2016-01-11 16:38 - 2015-02-01 13:21 - 00000000 ____D C:\Users\Lena\Documents\BnS 2016-01-11 14:40 - 2014-10-17 13:26 - 00000000 ____D C:\Program Files (x86)\ZBrush 4R6 2016-01-11 12:45 - 2015-03-27 20:39 - 00000000 ____D C:\Users\Lena\AppData\Local\headus 2016-01-11 11:33 - 2014-06-24 07:06 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2016-01-11 01:41 - 2014-07-28 15:14 - 00000000 ____D C:\ProgramData\Skype 2016-01-09 21:42 - 2015-07-14 01:28 - 00000000 ____D C:\Users\Lena\AppData\Local\Last.fm 2016-01-08 00:05 - 2014-07-28 15:11 - 00000000 ____D C:\Users\Lena\AppData\Local\Hewlett-Packard 2016-01-05 21:04 - 2014-09-16 14:36 - 00826872 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe 2016-01-05 21:04 - 2014-09-16 14:36 - 00176632 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-01-02 13:05 - 2015-12-28 20:29 - 00000000 ____D C:\Users\Lena\AppData\Local\Deployment 2015-12-31 09:26 - 2014-06-24 07:06 - 00000000 ____D C:\windows\System32\Tasks\Hewlett-Packard 2015-12-31 09:26 - 2014-06-24 07:05 - 00000000 ____D C:\ProgramData\Hewlett-Packard ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-07-15 20:56 - 2015-08-06 18:47 - 0000010 _____ () C:\Users\Lena\AppData\Roaming\bdopatchtime.txt 2014-07-29 02:48 - 2016-01-29 02:24 - 0001456 _____ () C:\Users\Lena\AppData\Local\Adobe Für Web speichern 13.0 Prefs 2015-03-19 14:11 - 2015-04-05 16:33 - 0001456 _____ () C:\Users\Lena\AppData\Local\Adobe Save for Web 13.0 Prefs 2014-08-07 19:18 - 2015-03-23 12:56 - 0005120 _____ () C:\Users\Lena\AppData\Local\Databases.db 2015-01-01 18:55 - 2015-01-01 18:55 - 0000003 _____ () C:\Users\Lena\AppData\Local\updater.log 2015-01-01 18:55 - 2015-10-02 01:34 - 0000424 _____ () C:\Users\Lena\AppData\Local\UserProducts.xml Einige Dateien in TEMP: ==================== C:\Users\Lena\AppData\Local\Temp\nvStInst.exe ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\windows\system32\winlogon.exe => Datei ist digital signiert C:\windows\system32\wininit.exe => Datei ist digital signiert C:\windows\explorer.exe => Datei ist digital signiert C:\windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\windows\system32\svchost.exe => Datei ist digital signiert C:\windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\windows\system32\services.exe => Datei ist digital signiert C:\windows\system32\User32.dll => Datei ist digital signiert C:\windows\SysWOW64\User32.dll => Datei ist digital signiert C:\windows\system32\userinit.exe => Datei ist digital signiert C:\windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\windows\system32\rpcss.dll => Datei ist digital signiert C:\windows\system32\dnsapi.dll => Datei ist digital signiert C:\windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2016-01-29 15:03 ==================== Ende von FRST.txt ============================ |
31.01.2016, 20:52 | #2 |
/// Winkelfunktion /// TB-Süch-Tiger™ | windows 8 datenträger 0 100% auslastung Hallo und
__________________Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden? Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520 Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten! Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht! Zudem bitte auch ein Log mit Farbars Tool machen: Scan mit Farbar's Recovery Scan Tool (FRST) Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
Lesestoff: Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
Themen zu windows 8 datenträger 0 100% auslastung |
.dll, 100%, administrator, adobe, akamai, auslastung, bonjour, browser-security, cpu, defender, dnsapi.dll, explorer, flash player, google, helper, installation, mozilla, prozesse, registry, rundll, scan, services.exe, software, svchost.exe, temp, windows, winlogon.exe |