| |
| |||||||
Netzwerk und Hardware: Chrome flackert, CMD Pop UpWindows 7 Hilfe zu Motherboards, CPUs, Lüfter, Raid-Controller, Digitalkameras, Treiber usw. Bitte alle relevanten Angaben zur Hardware machen. Welche Hardware habe ich? Themen zum Trojaner Entfernen oder Viren Beseitigung bitte in den Bereinigungsforen des Trojaner-Boards posten. |
 |
31.03.2016, 13:57
| #1 |
 |  Chrome flackert, CMD Pop Up Hallo zusammen!  Ich habe jetzt seit kurzem ein nerviges Problem. Google Chrome flackert in zufälligen Abständen ständig rum. Eine provisorische Lösung war es Chrome zu beenden und neu starten. Jedoch kommt dieses Problem immer wieder. Addons für Chrome sind Addblock Plus und Steam invetory Helper. Diese Addons hatte ich schon länger auf dem Pc bevor diese Problem entstand. Andere Browser funktionieren ohne Probleme. Chrome bereits neu installiert. Ich dachte mir mal SlimDriver zu holen um mal ein Treiber Update zu machen. Leider installiert ich auch Slimware Utilities, was ich sofort wieder deinstalliert habe und mit Adwcleaner entfernte. Nachdem ich 11 Treiber neu installiert habe (Realtek, Intel Chipset) und den Pc neu startete kommt nun zufällig die CMD hervor. Sie erscheint für weniger als 1 Sekunde und verschwindet wieder. Ich kann nicht schnell genug reagieren um ein Screenshot zu machen. Wenn ich z.B. in einem Spiel bin, haut es mich aus dem Spiel wenn die CMD hervor kommt. PS: Chrome flackert immernoch. Freundliche Grüsse TheNoobly |
|
31.03.2016, 17:16
| #2 |
| /// Malwareteam   |  Chrome flackert, CMD Pop Up Mein Name ist Rafael und ich werde dir bei der Bereinigung helfen. Damit ich dir optimal helfen kann, halte dich bitte an folgende Regeln:
 Schritt: 1 Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
31.03.2016, 18:50
| #3 |
| | Chrome flackert, CMD Pop Up Hallo Rafael
__________________Danke dass du mir hilfst.  FRST Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
durchgeführt von Osman (Administrator) auf OSMAN-PC (31-03-2016 19:47:34)
Gestartet von C:\Users\Osman\Desktop
Geladene Profile: Osman (Verfügbare Profile: Osman)
Platform: Windows 10 Pro (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicatorCom.exe
(Razer Inc) C:\Program Files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenHelper.exe
() C:\Program Files (x86)\Razer\Abyssus\razerhid.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
() C:\Program Files (x86)\Razer\Abyssus\razertra.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Abyssus\razerofa.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Razer, Inc.) C:\Users\Osman\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\rzcefrenderprocess.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
() C:\Program Files\DriverSetupUtility\FUB\LiveUpdateChecker.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Users\Osman\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Razer\Abyssus\vdDaemon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397752 2016-03-24] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728 2015-08-09] (IvoSoft)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16418560 2000-01-01] (Realtek Semiconductor)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [594240 2016-01-13] (Razer Inc.)
HKLM-x32\...\Run: [KrakenLauncher] => C:\Program Files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenHelper.exe [1599808 2015-08-14] (Razer Inc)
HKLM-x32\...\Run: [Abyssus] => C:\Program Files (x86)\Razer\Abyssus\razerhid.exe [295936 2013-01-21] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-12-22] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2016-03-22] (LogMeIn Inc.)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3077712 2016-03-28] (Valve Corporation)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\Run: [HP Photosmart 5520 series (NET)] => C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Keine Datei
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
Startup: C:\Users\Osman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Photosmart 5520 series (Netzwerk).lnk [2016-03-31]
ShortcutTarget: Tintenwarnungen überwachen - HP Photosmart 5520 series (Netzwerk).lnk -> C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5d5e4d95-d401-46ee-ba8d-3e62fda563f5}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{d4856a0e-77d9-4b49-806a-69752f023856}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.yahoo.com/?fr=yset_ie_syc_oracle&type=orcl_hpset
SearchScopes: HKU\S-1-5-21-2498436991-496876813-1431611548-1000 -> {31164661-CF05-4EDA-9E6D-7D839F670C21} URL = hxxps://ch.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-08-09] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll [2016-01-23] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-01-23] (Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
FireFox:
========
FF ProfilePath: C:\Users\Osman\AppData\Roaming\Mozilla\Firefox\Profiles\v50bv2sd.default
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.71.2 -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\dtplugin\npDeployJava1.dll [2016-01-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.71.2 -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\plugin2\npjp2.dll [2016-01-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-27] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2498436991-496876813-1431611548-1000: @squareclock.com/SQ3DPlayer_Production_HBMV1 -> C:\Users\Osman\AppData\Local\SquareClock.Production_HBMV1\NPSQ3D.dll [2015-11-19] (SquareClock SAS)
Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.ch/
CHR StartupUrls: Default -> "hxxp://google.ch/"
CHR DefaultSearchURL: Default -> hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=orcl_default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://de.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-03-27]
CHR Extension: (Google Docs) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-27]
CHR Extension: (Google Drive) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-27]
CHR Extension: (YouTube) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-27]
CHR Extension: (Adblock Plus) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-27]
CHR Extension: (Steam inventory helper) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2016-03-27]
CHR Extension: (Google Tabellen) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-03-27]
CHR Extension: (Google Docs Offline) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-28]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-03-27]
CHR Extension: (Google Mail) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-27]
CHR HKLM-x32\...\Chrome\Extension: [eedgghdcpmmmilkmfpnklknlenbiolec] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1362464 2016-03-22] ()
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [243984 2016-03-24] (EasyAntiCheat Ltd)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342240 2015-06-03] (Futuremark)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164856 2016-03-24] (NVIDIA Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [26680 2016-02-18] (Hewlett-Packard Company)
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2016-03-22] (LogMeIn, Inc.)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [3512928 2015-07-22] (INCA Internet Co., Ltd.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-03-24] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-03-24] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-03-24] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-02] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2016-03-20] ()
R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [189248 2016-03-20] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-11-05] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 Abyssus; C:\Windows\system32\drivers\Abyssus.sys [23040 2013-01-09] ( )
S3 GVTDrv64; C:\WINDOWS\GVTDrv64.sys [30528 2015-10-31] ()
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-03-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-03-21] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [935168 2000-01-01] (Realtek )
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-09-23] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [130880 2015-12-15] (Razer, Inc.)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33960 2000-01-01] (Synaptics Incorporated)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 usbrndis6; C:\Windows\System32\drivers\usb80236.sys [22016 2015-07-10] (Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; kein ImagePath
S3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [X]
S3 vmci; \SystemRoot\System32\drivers\vmci.sys [X]
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-03-31 19:47 - 2016-03-31 19:47 - 00020045 _____ C:\Users\Osman\Desktop\FRST.txt
2016-03-31 19:46 - 2016-03-31 19:47 - 00000000 ____D C:\FRST
2016-03-31 19:46 - 2016-03-31 19:46 - 02374144 _____ (Farbar) C:\Users\Osman\Desktop\FRST64.exe
2016-03-31 19:43 - 2016-03-31 19:43 - 00016148 _____ C:\WINDOWS\system32\OSMAN-PC_Osman_HistoryPrediction.bin
2016-03-30 23:54 - 2016-03-30 23:54 - 03102720 _____ C:\Users\Osman\Downloads\adwcleaner_5.108.exe
2016-03-30 15:50 - 2016-03-30 15:50 - 00000000 ____D C:\ProgramData\updater2
2016-03-30 15:50 - 2016-03-30 15:50 - 00000000 ____D C:\oem
2016-03-30 15:34 - 2016-03-30 15:34 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-03-30 15:34 - 2016-03-30 15:34 - 00000000 ____D C:\Program Files\Realtek
2016-03-30 15:34 - 2000-01-01 02:00 - 72203792 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2016-03-30 15:34 - 2000-01-01 02:00 - 07172920 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 04779776 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2016-03-30 15:34 - 2000-01-01 02:00 - 03769493 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2016-03-30 15:34 - 2000-01-01 02:00 - 03283248 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 03195648 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 03080784 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 02894976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2016-03-30 15:34 - 2000-01-01 02:00 - 02036992 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 01356504 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00689888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00447728 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00343712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00192992 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00151792 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00134208 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00084616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00023704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2016-03-30 15:33 - 2016-03-30 15:33 - 00000000 ____D C:\WINDOWS\oem
2016-03-30 15:33 - 2000-01-01 02:00 - 07096192 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 01965816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 01780624 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 01591064 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 01508936 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00743968 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00727440 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00708320 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00504312 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00445408 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00441272 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00327464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00272720 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00253904 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00253872 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00252880 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00118600 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00105312 _____ C:\WINDOWS\system32\audioLibVc.dll
2016-03-30 15:32 - 2016-03-30 15:32 - 00003756 _____ C:\WINDOWS\System32\Tasks\ACC
2016-03-30 15:32 - 2016-03-30 15:32 - 00000000 ____D C:\ProgramData\DriverSetupUtility
2016-03-30 15:32 - 2016-03-30 15:32 - 00000000 ____D C:\Program Files\DriverSetupUtility
2016-03-30 15:27 - 2016-03-31 15:27 - 00000366 _____ C:\WINDOWS\Tasks\SlimCleaner Plus (Scheduled Scan - Osman).job
2016-03-30 15:27 - 2016-03-30 15:27 - 00003126 _____ C:\WINDOWS\System32\Tasks\SlimCleaner Plus (Scheduled Scan - Osman)
2016-03-30 15:27 - 2016-03-22 03:57 - 00110528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2016-03-30 15:26 - 2016-03-21 22:01 - 00109632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-03-30 15:26 - 2016-03-21 22:01 - 00100416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-03-30 15:25 - 2016-03-30 15:25 - 00000000 ____D C:\NVIDIA
2016-03-30 15:22 - 2000-01-01 02:00 - 00082544 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2016-03-30 15:20 - 2016-03-30 15:20 - 00981728 _____ (SlimWare Utilities, Inc.) C:\Users\Osman\Downloads\SlimDrivers231-setup.exe
2016-03-30 15:20 - 2016-03-30 15:20 - 00981728 _____ (SlimWare Utilities, Inc.) C:\Users\Osman\Downloads\SlimDrivers231-setup (1).exe
2016-03-29 00:12 - 2016-03-29 00:12 - 00000222 _____ C:\Users\Osman\Desktop\Heroes & Generals.url
2016-03-28 15:09 - 2016-03-30 15:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan
2016-03-28 15:08 - 2016-03-22 06:08 - 42923576 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 37567424 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 31594432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 25350080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 21364536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 20906168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 17755928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 17369448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 17349776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 10550552 _____ C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 08659472 _____ C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 02614208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 02260024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 01922496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436472.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 01571776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436472.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00960056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00889400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00786872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00751552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00695864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00678520 _____ C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00632336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00572096 _____ C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00546328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00448824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00425016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00385080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00379448 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00379296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00348216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00317656 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00176064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00153392 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00151368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00129208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00000139 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-03-28 15:08 - 2016-03-22 06:08 - 00000139 _____ C:\WINDOWS\system32\nv-vk64.json
2016-03-27 22:49 - 2016-03-31 13:55 - 00002264 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-27 22:49 - 2016-03-31 13:55 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-03-27 22:21 - 2016-03-31 17:54 - 00001126 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-27 22:21 - 2016-03-31 16:59 - 00001122 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-27 22:21 - 2016-03-27 22:49 - 00003952 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-03-27 22:21 - 2016-03-27 22:21 - 00987728 _____ (Google Inc.) C:\Users\Osman\Downloads\ChromeSetup.exe
2016-03-27 14:50 - 2016-03-27 14:51 - 00000000 ____D C:\Users\Osman\AppData\Roaming\Mozilla
2016-03-27 14:50 - 2016-03-27 14:50 - 00242376 _____ C:\Users\Osman\Downloads\Firefox Setup Stub 45.0.1.exe
2016-03-27 14:50 - 2016-03-27 14:50 - 00000000 ____D C:\Users\Osman\AppData\Local\Mozilla
2016-03-25 02:02 - 2016-03-25 02:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-03-25 02:02 - 2016-03-25 02:02 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2016-03-24 21:00 - 2016-03-24 21:00 - 00000000 ____D C:\Users\Osman\AppData\Local\Victory
2016-03-24 21:00 - 2016-03-24 21:00 - 00000000 ____D C:\Users\Osman\AppData\Local\UnrealEngine
2016-03-24 20:01 - 2016-03-24 20:01 - 00000222 _____ C:\Users\Osman\Desktop\The Culling.url
2016-03-24 14:06 - 2016-03-24 14:06 - 00659797 _____ C:\Users\Osman\Downloads\VisualBoyAdvance-1.8.0-beta3 (1).zip
2016-03-22 13:01 - 2016-03-22 13:01 - 00659797 _____ C:\Users\Osman\Downloads\VisualBoyAdvance-1.8.0-beta3.zip
2016-03-20 00:55 - 2016-03-20 00:55 - 00001243 _____ C:\Users\Public\Desktop\Battlefield 3.lnk
2016-03-16 23:30 - 2016-03-16 23:30 - 00128792 _____ C:\WINDOWS\SysWOW64\vulkan-1-1-0-5-1.dll
2016-03-16 23:29 - 2016-03-16 23:29 - 00127768 _____ C:\WINDOWS\system32\vulkan-1-1-0-5-1.dll
2016-03-16 23:29 - 2016-03-16 23:29 - 00041752 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-1-0-5-1.exe
2016-03-16 23:28 - 2016-03-16 23:28 - 00045848 _____ C:\WINDOWS\system32\vulkaninfo-1-1-0-5-1.exe
2016-03-16 19:30 - 2016-03-16 19:32 - 128817298 _____ C:\Users\Osman\Downloads\Catch The Beat Beatmap Pack #5.rar
2016-03-16 19:30 - 2016-03-16 19:31 - 128988882 _____ C:\Users\Osman\Downloads\Beatmap Pack #463.rar
2016-03-16 19:20 - 2016-03-26 23:46 - 00000000 ____D C:\Users\Osman\AppData\Local\osu!
2016-03-16 19:20 - 2016-03-16 19:20 - 00001057 _____ C:\Users\Osman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2016-03-16 19:20 - 2016-03-16 19:20 - 00001049 _____ C:\Users\Osman\Desktop\osu!.lnk
2016-03-16 19:19 - 2016-03-16 19:19 - 04482104 _____ (ppy) C:\Users\Osman\Downloads\osu!install.exe
2016-03-16 19:19 - 2016-03-16 19:19 - 00000000 ____D C:\Users\Osman\Downloads\Localisation
2016-03-12 13:59 - 2016-03-30 15:27 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-03-12 13:59 - 2016-03-16 23:30 - 00128792 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-03-12 13:59 - 2016-03-16 23:29 - 00127768 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-03-12 13:59 - 2016-03-16 23:29 - 00041752 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-03-12 13:59 - 2016-03-16 23:28 - 00045848 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-03-12 13:59 - 2016-03-12 13:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.0
2016-03-12 13:58 - 2016-03-08 12:27 - 01922496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436451.dll
2016-03-12 13:58 - 2016-03-08 12:27 - 01571776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436451.dll
2016-03-11 16:51 - 2016-03-11 16:51 - 00000000 ___HD C:\$WINDOWS.~BT
2016-03-09 16:23 - 2016-02-23 16:53 - 01314496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-03-09 16:23 - 2016-02-23 16:52 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-03-09 16:23 - 2016-02-23 16:51 - 00633184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-03-09 16:23 - 2016-02-23 16:51 - 00146784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2016-03-09 16:23 - 2016-02-23 16:50 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-03-09 16:23 - 2016-02-23 16:48 - 08022368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-03-09 16:23 - 2016-02-23 16:48 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-03-09 16:23 - 2016-02-23 16:48 - 01123952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-03-09 16:23 - 2016-02-23 16:41 - 01150816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-03-09 16:23 - 2016-02-23 16:41 - 00299600 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMASF.DLL
2016-03-09 16:23 - 2016-02-23 16:41 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2016-03-09 16:23 - 2016-02-23 16:40 - 00110584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2016-03-09 16:23 - 2016-02-23 16:38 - 00272752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2016-03-09 16:23 - 2016-02-23 16:36 - 00080128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2016-03-09 16:23 - 2016-02-23 16:11 - 00781984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-03-09 16:23 - 2016-02-23 16:11 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-03-09 16:23 - 2016-02-23 16:11 - 00103776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-03-09 16:23 - 2016-02-23 16:08 - 03622272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-03-09 16:23 - 2016-02-23 16:07 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-03-09 16:23 - 2016-02-23 15:39 - 00607416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-03-09 16:23 - 2016-02-23 15:30 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-03-09 16:23 - 2016-02-23 15:25 - 01085632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-03-09 16:23 - 2016-02-23 15:23 - 00952968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-03-09 16:23 - 2016-02-23 15:21 - 00529456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-03-09 16:23 - 2016-02-23 15:21 - 00141152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2016-03-09 16:23 - 2016-02-23 15:11 - 00249976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMASF.DLL
2016-03-09 16:23 - 2016-02-23 15:11 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2016-03-09 16:23 - 2016-02-23 15:11 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2016-03-09 16:23 - 2016-02-23 15:09 - 00229352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2016-03-09 16:23 - 2016-02-23 15:06 - 00069232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2016-03-09 16:23 - 2016-02-23 14:58 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-03-09 16:23 - 2016-02-23 14:50 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-03-09 16:23 - 2016-02-23 14:50 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-03-09 16:23 - 2016-02-23 14:42 - 00658536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-03-09 16:23 - 2016-02-23 14:42 - 00467296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-03-09 16:23 - 2016-02-23 14:42 - 00078176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-03-09 16:23 - 2016-02-23 14:39 - 02879024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-03-09 16:23 - 2016-02-23 14:38 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-03-09 16:23 - 2016-02-23 14:35 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-03-09 16:23 - 2016-02-23 14:20 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-03-09 16:23 - 2016-02-23 14:17 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-03-09 16:23 - 2016-02-23 14:16 - 02237952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-03-09 16:23 - 2016-02-23 14:15 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-03-09 16:23 - 2016-02-23 14:15 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-03-09 16:23 - 2016-02-23 13:59 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-03-09 16:23 - 2016-02-23 13:59 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-03-09 16:23 - 2016-02-23 13:57 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-03-09 16:23 - 2016-02-23 13:55 - 24592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-03-09 16:23 - 2016-02-23 13:45 - 12504576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-03-09 16:23 - 2016-02-23 13:45 - 06788608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-03-09 16:23 - 2016-02-23 13:42 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-03-09 16:23 - 2016-02-23 13:42 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-03-09 16:23 - 2016-02-23 13:38 - 02663424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-03-09 16:23 - 2016-02-23 13:37 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetCfgNotifyObjectHost.exe
2016-03-09 16:23 - 2016-02-23 13:36 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-03-09 16:23 - 2016-02-23 13:25 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-03-09 16:23 - 2016-02-23 13:18 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-03-09 16:23 - 2016-02-23 13:17 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2016-03-09 16:23 - 2016-02-23 13:17 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll
2016-03-09 16:23 - 2016-02-23 13:14 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-03-09 16:23 - 2016-02-23 13:08 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-03-09 16:23 - 2016-02-23 13:04 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-03-09 16:23 - 2016-02-23 13:03 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2016-03-09 16:23 - 2016-02-23 13:03 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-03-09 16:23 - 2016-02-23 13:02 - 03587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-03-09 16:23 - 2016-02-23 12:55 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-03-09 16:23 - 2016-02-23 12:55 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-03-09 16:23 - 2016-02-23 12:51 - 00915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-03-09 16:23 - 2016-02-23 12:51 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-03-09 16:23 - 2016-02-23 12:48 - 21859840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-03-09 16:23 - 2016-02-23 12:48 - 05157376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-03-09 16:23 - 2016-02-23 12:46 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2016-03-09 16:23 - 2016-02-23 12:45 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-03-09 16:23 - 2016-02-23 12:45 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-03-09 16:23 - 2016-02-23 12:45 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-03-09 16:23 - 2016-02-23 12:45 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-03-09 16:23 - 2016-02-23 12:44 - 01821696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-03-09 16:23 - 2016-02-23 12:38 - 07524864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-03-09 16:23 - 2016-02-23 12:29 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll
2016-03-09 16:23 - 2016-02-23 12:17 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2016-03-09 16:23 - 2016-02-23 12:17 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-03-09 16:23 - 2016-02-23 12:11 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-03-09 16:23 - 2016-02-23 12:03 - 01495040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-03-09 16:23 - 2016-02-23 12:00 - 11263488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-03-09 16:23 - 2016-02-23 12:00 - 05457408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-03-09 16:23 - 2016-02-23 11:58 - 18800640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-03-07 19:26 - 2016-03-07 19:26 - 00000222 _____ C:\Users\Osman\Desktop\Worms Armageddon.url
2016-03-06 19:23 - 2016-03-06 19:25 - 00000000 ____D C:\Program Files (x86)\AdwCleaner
2016-03-06 19:22 - 2016-03-30 23:55 - 00000000 ____D C:\AdwCleaner
2016-03-06 19:22 - 2016-03-06 19:22 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-03-04 20:57 - 2016-03-04 20:57 - 00000222 _____ C:\Users\Osman\Desktop\The Binding of Isaac.url
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-03-31 19:44 - 2016-01-26 21:21 - 00000000 ____D C:\Users\Osman\AppData\Local\LogMeIn Hamachi
2016-03-31 17:23 - 2015-10-31 02:54 - 00000000 ___DC C:\WINDOWS\Panther
2016-03-31 17:18 - 2015-11-08 20:58 - 00000000 ____D C:\Users\Osman\AppData\Roaming\TS3Client
2016-03-31 17:05 - 2015-10-31 03:01 - 01790124 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-03-31 17:05 - 2015-09-10 07:10 - 00771100 _____ C:\WINDOWS\system32\perfh007.dat
2016-03-31 17:05 - 2015-09-10 07:10 - 00153964 _____ C:\WINDOWS\system32\perfc007.dat
2016-03-31 17:05 - 2015-07-31 00:40 - 00000000 ____D C:\WINDOWS\INF
2016-03-31 17:01 - 2015-11-08 21:01 - 00000000 ____D C:\Program Files (x86)\Steam
2016-03-31 17:00 - 2015-10-31 02:56 - 00000000 ____D C:\Users\Osman
2016-03-31 16:59 - 2015-11-08 20:56 - 00000000 ____D C:\Users\Osman\AppData\Local\ClassicShell
2016-03-31 16:59 - 2015-10-31 02:55 - 00000000 ____D C:\ProgramData\NVIDIA
2016-03-31 16:59 - 2015-07-30 23:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-03-31 16:59 - 2015-07-10 11:05 - 00131072 ___SH C:\WINDOWS\system32\config\BBI
2016-03-30 22:24 - 2016-01-09 13:59 - 00000000 ____D C:\Users\Osman\AppData\LocalLow\Heroes and Generals
2016-03-30 22:00 - 2015-11-09 17:23 - 00004156 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{2B17EC41-99A7-4254-9F30-A129F78769CF}
2016-03-30 21:12 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-03-30 21:07 - 2015-07-31 00:42 - 00000000 ___HD C:\Program Files\WindowsApps
2016-03-30 20:03 - 2015-11-12 20:24 - 00298232 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2016-03-30 15:34 - 2015-10-31 03:20 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-03-30 15:33 - 2015-10-31 02:24 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-03-30 15:30 - 2015-10-31 02:25 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-03-30 15:27 - 2015-10-31 03:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-03-30 15:27 - 2015-10-31 02:55 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-03-30 15:26 - 2015-10-31 02:55 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-03-28 15:08 - 2015-10-31 02:55 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-03-27 22:49 - 2015-10-31 04:16 - 00004184 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-03-27 22:49 - 2015-10-31 04:16 - 00000000 ____D C:\Users\Osman\AppData\Local\Google
2016-03-27 22:49 - 2015-10-31 04:16 - 00000000 ____D C:\Program Files (x86)\Google
2016-03-26 13:45 - 2015-09-10 07:44 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-03-26 13:45 - 2015-07-30 23:49 - 00241976 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-03-26 02:01 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-03-26 02:01 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-03-26 02:01 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-03-26 02:01 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-03-25 23:16 - 2015-11-09 16:51 - 00000000 ____D C:\Users\Osman\Desktop\Fixed
2016-03-25 20:52 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\rescache
2016-03-25 20:30 - 2015-11-08 21:11 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-03-25 20:29 - 2015-11-08 21:11 - 143659408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-03-25 20:29 - 2015-07-31 00:25 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-03-25 03:23 - 2015-10-31 03:17 - 12659136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2016-03-24 20:59 - 2015-11-14 18:46 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-24 20:48 - 2015-12-12 19:41 - 00000000 ____D C:\ProgramData\Origin
2016-03-24 20:03 - 2015-11-12 20:24 - 00243984 _____ (EasyAntiCheat Ltd) C:\WINDOWS\SysWOW64\EasyAntiCheat.exe
2016-03-24 14:06 - 2016-01-20 15:54 - 00000000 ____D C:\Users\Osman\Desktop\Emulator
2016-03-24 07:32 - 2015-11-14 18:46 - 00112216 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-03-24 07:32 - 2015-10-31 03:19 - 01767248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-03-24 07:32 - 2015-10-31 03:19 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2016-03-24 07:32 - 2015-10-31 03:19 - 01373864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-03-24 07:32 - 2015-10-31 03:19 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-03-22 06:08 - 2015-11-10 20:17 - 17328008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2016-03-22 06:08 - 2015-10-31 03:17 - 20074728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2016-03-22 06:08 - 2015-10-31 03:17 - 14226672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2016-03-22 06:08 - 2015-10-31 03:17 - 03685280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-03-22 06:08 - 2015-10-31 03:17 - 03263480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-03-22 06:08 - 2014-08-19 23:14 - 00038050 _____ C:\WINDOWS\system32\nvinfo.pb
2016-03-22 04:37 - 2016-01-06 15:15 - 00530880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-03-22 04:37 - 2016-01-06 15:15 - 00083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 06369728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 02994744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 02561472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 01265720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-03-22 04:37 - 2015-10-31 02:55 - 00393784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-03-21 22:01 - 2015-10-31 03:17 - 00056384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2016-03-20 00:55 - 2015-12-12 21:15 - 00189248 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2016-03-20 00:55 - 2015-12-12 21:15 - 00189248 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2016-03-20 00:55 - 2015-12-12 21:15 - 00075136 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2016-03-19 23:46 - 2015-12-12 19:49 - 00000000 ____D C:\Program Files (x86)\Origin Games
2016-03-18 13:44 - 2015-10-31 02:55 - 06253721 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-03-17 13:33 - 2015-11-09 16:51 - 00000000 ____D C:\Users\Osman\Desktop\Bewerbungsunterlagen
2016-03-14 16:04 - 2015-11-10 19:34 - 00000000 ____D C:\Users\Osman\AppData\Roaming\BitTorrent
2016-03-09 14:25 - 2015-11-17 16:37 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-03-08 18:28 - 2015-12-17 22:09 - 00000000 ____D C:\Users\Osman\Desktop\Kasti
2016-03-08 09:10 - 2015-07-31 00:43 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-03-08 09:10 - 2015-07-31 00:43 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-03-07 22:27 - 2015-10-31 02:14 - 00000000 ____D C:\Users\Osman\AppData\Local\VirtualStore
2016-03-06 23:13 - 2015-09-10 07:22 - 00000000 ____D C:\Program Files\Windows Journal
2016-03-06 23:13 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\security
2016-03-06 19:27 - 2015-10-31 04:15 - 00000000 ____D C:\ProgramData\AVAST Software
2016-03-06 14:04 - 2015-11-16 18:50 - 00000000 ____D C:\Users\Osman\AppData\Local\CrashDumps
2016-03-03 00:07 - 2016-01-10 20:59 - 00000000 ____D C:\Users\Osman\AppData\Local\Pokemon Showdown
2016-03-01 14:32 - 2015-11-08 21:03 - 00000000 ____D C:\Users\Osman\AppData\Local\Steam
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-11-19 15:44 - 2015-11-19 19:16 - 0353118 _____ () C:\Users\Osman\AppData\Local\SquareClock.Production_HBMV1Icon.ico
2015-11-12 23:15 - 2015-11-12 23:15 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-10-31 03:21 - 2015-10-31 03:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Einige Dateien in TEMP:
====================
C:\Users\Osman\AppData\Local\Temp\0KrakenDevProps.dll
C:\Users\Osman\AppData\Local\Temp\jansi-32-3038571992631331342.dll
C:\Users\Osman\AppData\Local\Temp\jansi-32-6966904423070836817.dll
C:\Users\Osman\AppData\Local\Temp\jansi-32-7430486011742709340.dll
C:\Users\Osman\AppData\Local\Temp\jansi-64-1481387193273386626.dll
C:\Users\Osman\AppData\Local\Temp\jansi-64-2126923826089639969.dll
C:\Users\Osman\AppData\Local\Temp\jansi-64-338925601032672504.dll
C:\Users\Osman\AppData\Local\Temp\jansi-64-4193995006428167263.dll
C:\Users\Osman\AppData\Local\Temp\jansi-64-4319051884597666757.dll
C:\Users\Osman\AppData\Local\Temp\jansi-64-71074657221587176.dll
C:\Users\Osman\AppData\Local\Temp\jansi-64-7939615834216326953.dll
C:\Users\Osman\AppData\Local\Temp\libeay32.dll
C:\Users\Osman\AppData\Local\Temp\msvcr120.dll
C:\Users\Osman\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Osman\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Osman\AppData\Local\Temp\nvStInst.exe
C:\Users\Osman\AppData\Local\Temp\scpE6FE.tmp.exe
C:\Users\Osman\AppData\Local\Temp\Setup.exe
C:\Users\Osman\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Osman\AppData\Local\Temp\sfextra.dll
C:\Users\Osman\AppData\Local\Temp\sqlite3.dll
C:\Users\Osman\AppData\Local\Temp\tasklisten.exe
C:\Users\Osman\AppData\Local\Temp\ytb.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-03-31 17:22
==================== Ende von FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
durchgeführt von Osman (2016-03-31 19:47:52)
Gestartet von C:\Users\Osman\Desktop
Windows 10 Pro (X64) (2015-10-31 01:06:00)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2498436991-496876813-1431611548-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2498436991-496876813-1431611548-503 - Limited - Disabled)
Gast (S-1-5-21-2498436991-496876813-1431611548-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2498436991-496876813-1431611548-1002 - Limited - Enabled)
Osman (S-1-5-21-2498436991-496876813-1431611548-1000 - Administrator - Enabled) => C:\Users\Osman
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
3DMark (HKLM-x32\...\{12d6e0d7-21d5-4755-9da2-70352c6f7558}) (Version: 1.5.915.0 - Futuremark)
3DMark (Version: 1.5.915.0 - Futuremark) Hidden
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
BitTorrent (HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\BitTorrent) (Version: 7.9.5.41866 - BitTorrent Inc.)
Classic Shell (HKLM\...\{E289B7DD-6732-4333-A47A-75A145D23EE3}) (Version: 4.2.4 - IvoSoft)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Dead Space (HKLM-x32\...\{025A585C-0C66-413D-80D2-4C05CB699771}) (Version: 1.0.0.222 - Electronic Arts)
Dead Space™ 3 (HKLM-x32\...\{D4329609-4102-4F8C-B83F-7FE024EEA314}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3011 - Acer Incorporated)
Futuremark SystemInfo (HKLM-x32\...\{AFBB2F94-A43D-46AD-8F77-66ACB3C71EDF}) (Version: 4.39.552.0 - Futuremark)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Heroes & Generals (HKLM\...\Steam App 227940) (Version: - Reto-Moto)
HomeByMe (HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\SquareClock_Production_HBMV1) (Version: - 3DVIA SAS)
HP Photosmart 5520 series - Grundlegende Software für das Gerät (HKLM\...\{4F396B08-301D-4E53-A372-95A7E93ABD04}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Support Solutions Framework (HKLM-x32\...\{B1AD4FFB-DD17-43EC-8C30-B9E71EAD9132}) (Version: 12.2.8.17 - Hewlett-Packard Company)
InputMapper (HKLM-x32\...\{1A44056A-C7D8-4561-BC43-A0AA7D7AAA64}) (Version: 1.5.31.0 - DSDCS)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Java 8 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218071F0}) (Version: 8.0.710.15 - Oracle Corporation)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.420 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.420 - LogMeIn, Inc.) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Word 2010 (HKLM\...\Office14.WORD) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
NVIDIA 3D Vision Controller-Treiber 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 364.72 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.2.46 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.2.46 - NVIDIA Corporation)
NVIDIA Grafiktreiber 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 364.72 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.11.1.6605 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{d5bab322-3b11-4379-a6a1-2beb86643aa3}) (Version: latest - ppy Pty Ltd)
paint.net (HKLM\...\{DF3A46D9-67B3-44B2-9D01-25C8BA772C8A}) (Version: 4.0.6 - dotPDN LLC)
Pokemon Showdown (HKLM-x32\...\Pokemon Showdown) (Version: - "Pokemon Showdown")
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Razer Abyssus (HKLM-x32\...\{CBD6B23A-B54F-476A-9527-C262F469CACF}) (Version: 2.02 - Razer USA Ltd.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.28549 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.6.1001.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7727 - Realtek Semiconductor Corp.)
Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.2.46 - NVIDIA Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version: - Edmund McMillen and Florian Himsl)
The Culling (HKLM\...\Steam App 437220) (Version: - Xaviant)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.5.1 (HKLM\...\VulkanRT1.0.5.1) (Version: 1.0.5.1 - LunarG, Inc.)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Worms Armageddon (HKLM-x32\...\Steam App 217200) (Version: - Team17 Digital Ltd)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2498436991-496876813-1431611548-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Osman\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe (Microsoft Corporation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0307B023-7FC8-415F-AF73-4A419D6499FB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-03-07] (Hewlett-Packard)
Task: {07820D8F-71E4-40C8-9051-9CF558899E6B} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {08F82527-165D-440F-BEB9-47CA891F0940} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {0F2F8A01-D5CC-466C-A57B-D079C5357570} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-27] (Google Inc.)
Task: {15F486F4-3DF7-4CE6-8485-D9102F7FB6EF} - System32\Tasks\ACC => C:\Program Files\DriverSetupUtility\FUB\FUB_Send.bat [2015-06-22] ()
Task: {1CD72DDF-8022-4042-9013-C2A7BEEC289A} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {20084A7E-DF4C-4034-A971-F2BBE40AF33C} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {21257B26-32B7-421C-9D2F-FFC8C5E0C24A} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {458CB899-72AF-4983-A9F7-0CE7282757BC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {4820EF9A-F5EC-4908-AEC5-80239B2DCC01} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {48651DA7-436C-4A29-933B-28CDF8E45127} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {48F3BD53-C7FE-44B4-B581-2E6576E7AB16} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {6432796B-26D6-49E4-AC1D-7251287E2545} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {67535269-9CCC-492A-A2AA-8DD8F4B645E2} - System32\Tasks\SlimCleaner Plus (Scheduled Scan - Osman) => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
Task: {7009927D-0981-434B-8FFE-AB4AF05F1411} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {790D23D2-95D8-4D02-8EF5-075C090631ED} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {7DBF8C9B-4F40-4202-BFB1-DE7C9B939E72} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {81C7E8F4-A620-4411-8BA4-C278A6D0F53F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-03-11] (Hewlett-Packard)
Task: {8734E420-1D14-4154-9BD0-4E8B60A0234D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {950E226B-34F9-49B5-AECE-54D90E44296B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {961CBF50-4722-4DD1-9790-3A73E4220A37} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {99030FF5-62D2-47F4-AB61-1D03BE590877} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {9A002FB6-2BB5-4657-B4D4-4C09B9884AE2} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {AD002DF4-8E63-436B-A468-DA0D99E52F19} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {BC5F0F9B-1185-4A13-BD00-337BE315F50E} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {CC9F7F61-3F09-4540-89BA-080299385CE2} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {EAB09CDD-E555-4F36-BC52-05FDDD874C7D} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {F12C7D93-66A6-4D93-ABB0-89110F671512} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {F9B647CC-330E-4609-B693-791DF53880B6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-27] (Google Inc.)
Task: {FB171A85-9F6F-4A39-AEC4-4D931511FF0F} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\SlimCleaner Plus (Scheduled Scan - Osman).job => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-09-10 07:12 - 2015-09-10 07:12 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-10-31 02:55 - 2016-03-22 04:37 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-02-24 22:02 - 2016-03-24 07:35 - 00368184 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2015-11-14 18:46 - 2016-03-24 07:35 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-02-24 22:02 - 2016-03-24 07:35 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-02-24 22:02 - 2016-03-24 07:35 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2015-12-12 21:15 - 2016-03-20 00:55 - 00075136 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-12-12 21:15 - 2016-03-20 00:55 - 00189248 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.exe
2015-11-05 02:11 - 2015-11-05 02:12 - 00188072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2016-02-24 22:02 - 2016-03-24 07:35 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-02-24 22:02 - 2016-03-24 07:35 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-02-24 22:02 - 2016-03-24 07:35 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-01-06 15:06 - 2016-03-24 07:35 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2015-11-08 21:11 - 2015-09-17 08:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-11-08 21:11 - 2015-09-17 08:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-11-08 21:10 - 2015-09-17 07:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-12-09 19:07 - 2015-11-25 06:20 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-09 19:07 - 2015-11-25 06:17 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-09 19:07 - 2015-11-25 06:17 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-11-08 21:11 - 2015-09-17 07:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-11-12 21:06 - 2013-01-21 15:17 - 00295936 _____ () C:\Program Files (x86)\Razer\Abyssus\razerhid.exe
2015-12-21 09:55 - 2015-12-21 09:55 - 00292352 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2015-11-12 21:06 - 2013-01-21 15:20 - 00295936 _____ () C:\Program Files (x86)\Razer\Abyssus\razertra.exe
2015-07-10 01:08 - 2015-07-10 01:08 - 00098656 _____ () C:\Program Files\DriverSetupUtility\FUB\LiveUpdateChecker.exe
2015-07-10 01:08 - 2015-07-10 01:08 - 00232288 _____ () C:\Program Files\DriverSetupUtility\FUB\ManagedNativeUtilities.dll
2016-03-29 20:40 - 2016-03-29 20:40 - 00016896 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-03-29 20:40 - 2016-03-29 20:40 - 17535488 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-03-04 18:17 - 2016-03-04 18:18 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2015-09-10 07:12 - 2015-09-10 07:12 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2016-03-30 15:27 - 2016-03-24 07:35 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-03-30 15:27 - 2016-03-24 07:35 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2015-11-12 21:06 - 2011-03-01 15:34 - 01759232 _____ () C:\Program Files (x86)\Razer\Abyssus\vdDaemon.exe
2015-10-31 03:18 - 2016-03-24 07:35 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-11-08 21:09 - 2016-03-31 17:00 - 00619840 _____ () C:\Users\Osman\AppData\Local\Temp\0KrakenDevProps.dll
2015-11-08 21:03 - 2016-03-11 02:56 - 00783360 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-11-08 21:03 - 2015-07-03 18:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-11-08 21:03 - 2016-03-28 23:34 - 02549840 _____ () C:\Program Files (x86)\Steam\video.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-11-08 21:03 - 2015-07-03 18:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-11-08 21:03 - 2015-07-03 18:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-11-08 21:03 - 2016-03-28 23:34 - 00829008 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-09 15:15 - 2016-02-18 00:25 - 00281088 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-02-26 10:29 - 2016-02-26 10:29 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2016-01-05 18:34 - 2015-10-06 21:26 - 50656768 _____ () C:\Users\Osman\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2015-11-08 21:03 - 2016-02-09 03:33 - 48400672 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2016-01-05 18:34 - 2015-10-06 21:26 - 01874944 _____ () C:\Users\Osman\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll
2016-01-05 18:34 - 2015-10-06 21:26 - 00075264 _____ () C:\Users\Osman\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll
2015-10-31 02:25 - 2013-09-16 13:17 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-03-31 13:55 - 2016-03-27 09:58 - 01675928 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.110\libglesv2.dll
2016-03-31 13:55 - 2016-03-27 09:58 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.110\libegl.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Osman:Heroes & Generals [38]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2015-11-17 19:09 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Osman\Desktop\Fixed\TSS\TeamShadowShout\Wallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\StartupApproved\Run: => "OneDrive"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{3E2F69BC-328F-4EC4-99DB-E2C8AF135F45}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{B9103AEB-A569-4E8D-A623-6B217CD3BC52}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{C497A68C-676A-4060-AB82-B3906F2FED42}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B833F7FF-602D-454A-91B9-5893CB753D1A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{9BE53BB6-7E41-44A5-A29B-E80C718C9CDE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{ED623B69-9F69-46B7-A5EF-07B51A5120B3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1D6D9420-1B79-49B8-A8F5-1966F6ACD074}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{679AA548-620D-448C-8056-6102261C749E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{64B77EDD-60D1-4E40-82D6-156D28686FD4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{0DBC88EC-D64C-42FB-BCE0-EB6232034A50}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{EEA469CD-9795-496F-AA93-FB9C341AD624}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{98B5DDCF-71A1-4798-82C9-D7168E55AB72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{A486D504-CF79-4EC0-8DEA-F2194FB06F67}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{F5E8BCF2-452C-462C-BEE6-1FA8C0834A33}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{B4F2150C-E4F2-4A9C-8C5F-3C474BD56630}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{CC59B5E3-ECA1-4ED9-A369-E2F89FF61F5E}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{12A69A4C-299F-42D9-A810-73FC07AB93A0}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{E15FF490-D0B2-4394-AF83-F7EB6CEE3F0A}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{C9948869-D0AB-4669-A5FC-B09E2062984D}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{6764E70F-718D-4633-A6CE-71821519DECE}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\DeviceSetup.exe
FirewallRules: [{6DEC7811-A4BB-4B8F-9B29-242742F63256}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{7F10254F-0108-42D1-92C4-ABC489A46209}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [TCP Query User{805157EF-9F5C-4C43-837B-9FD8D1066647}C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe] => (Allow) C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe
FirewallRules: [UDP Query User{A17ECDE3-2688-48C8-82AC-C0E64881E5CE}C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe] => (Allow) C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe
FirewallRules: [{B46E8C0F-92B2-4DF2-AF11-5B89C2A01873}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{C6E4C398-35CE-41C7-81B4-F21B35CFE11B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{9B20A65D-AEC5-4D7E-BD22-B7417ED96C4A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{2934FB41-65C3-413A-BFBB-F1E98D6A278E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{32276A42-14CE-4D26-B651-6F1A91736686}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{FDE1EF00-1EF7-46FA-AC2F-727B3FB2E0C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{730725C1-9001-455E-914B-565B6283B60E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{6FE1034F-54CC-4645-BD54-37E7D7354B95}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{335CBAF1-B952-46F8-A7B0-4A1FE31229B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{DFE055ED-D38F-45C5-8C10-CDE671EB1A29}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{ACDD5590-8AED-4B90-A88C-0AA5D3A7AB21}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{2464BD2F-D4D8-4B93-B2DA-A4019CB23E71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{A163488E-D3CC-4919-942B-D694FC5D08A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{D11620F9-6130-4FFE-B704-007B8F2C54E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{FA4A9BFF-0102-496C-B20F-B7C68AED0295}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{1D91B6AD-913A-4082-9817-932A2DB9E1B6}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{7722D30C-1F26-4DB3-94AC-0B0E9C9FB307}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{4CB129D8-43F8-4D38-8D77-FBD954EA9762}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{0F740AE8-B8BF-48BB-8E22-D16AF7484630}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{4C1BB1D2-A7FC-48F9-98CA-BA46761BCA89}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{F1A49C1B-6ACF-45CC-8FD3-29C890B5E66D}] => (Allow) C:\Users\Osman\AppData\Local\Temp\Setup.exe
FirewallRules: [{16C2A55B-A0B9-4383-9417-1B405BF949F1}] => (Allow) C:\Users\Osman\AppData\Local\Temp\Setup.exe
FirewallRules: [{A9C3A14A-D28C-4831-A143-1732EDA97F06}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\My Name is Mayo\windows\My Name is Mayo.exe
FirewallRules: [{91B65285-C905-4AEE-BECC-E54C77B80581}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\My Name is Mayo\windows\My Name is Mayo.exe
FirewallRules: [{B118D548-ACBB-4B2C-8A3F-A2464A7CE242}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{6C8B620D-2D9A-4FFB-8359-1E209B32F393}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{64928B65-98EC-4BC5-A4C5-896B7104F857}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe
FirewallRules: [{C42D1250-0A89-4ED7-93C3-B8B617B165AA}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe
FirewallRules: [TCP Query User{0B2DCC73-CBB8-4B75-B3CC-4CEAB6AB556B}C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{59C5A8B8-49C4-419B-9D62-00884203C481}C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{F8739322-2DC5-4FF4-BA5C-24B79F753C77}] => (Block) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{5004D2EE-102D-4061-81BB-491615715FA0}] => (Block) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{CE61B4F3-9D2C-483D-9CBC-355F84710462}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [UDP Query User{534FF8CA-A26B-441E-9B02-20BA570D3E2D}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{F4926233-A035-40B9-939F-D2CE57F32BC0}] => (Block) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{561CD292-83D6-4D02-ADFE-F1422A946D2E}] => (Block) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{E1A84DDC-2444-4CF9-9D93-BBDFFB1BEFC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{826EA902-E613-4C9D-87D8-EDB92449FBA5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{D6A5731E-4ABF-4EF4-8219-4E26C2E1A28B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{8DDFCCEF-BC46-4CD7-A5BE-FF266A0B46F3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{67367524-88A8-4814-A8C0-1A0FA7FDC85D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Worms Armageddon\WA.exe
FirewallRules: [{02E50950-19CF-47F3-8B2B-837228FA7F8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Worms Armageddon\WA.exe
FirewallRules: [{C10B9F39-38FD-4CF1-8E5B-74C69B785732}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{5BE9E932-0EDF-4756-AA18-8010AFB7147F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{32DA20A5-46B8-4B4E-9443-1959A2DF57B1}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{6F05DA70-7327-423F-9F41-DDF0C3CB4E4E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{22C62C88-20BC-4DF1-AD00-965962B11F29}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{3B1B8C3D-921A-49B1-AEFF-5751321C09F0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{681F88EE-0D7E-4DB5-B072-6DB0DA1BA7D0}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{291B2A3C-22CB-4536-9F9B-D98FB01F64B0}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{48B05D55-9B77-4BE0-BEC0-56580C1D06CB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheCulling\TheCulling_Launcher.exe
FirewallRules: [{29E6BBCB-2C9D-4931-B013-B7B82456FA42}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheCulling\TheCulling_Launcher.exe
FirewallRules: [TCP Query User{911A3305-0B4D-4A24-9AB8-8F0B356CA4ED}C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe
FirewallRules: [UDP Query User{2817D04B-1938-4ABA-8464-42C57A0AAAD8}C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe
FirewallRules: [{89FFF51C-AD16-46FD-98F6-1607B0D62B04}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8B7252C3-908F-4F99-8885-251E9EA1B9F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{88F5EFDA-8F08-4E39-A4F2-9811249F5C9F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{ACC2ED08-F69C-4D07-B206-453AE2B702AF}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Wiederherstellungspunkte =========================
24-03-2016 20:58:53 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506
24-03-2016 20:59:02 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026
24-03-2016 20:59:08 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506
24-03-2016 20:59:17 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026
30-03-2016 15:21:55 Installiert Realtek Ethernet Controller Driver
30-03-2016 15:30:21 Entfernt Realtek High Definition Audio Driver
30-03-2016 15:33:46 Installiert Realtek High Definition Audio Driver
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (03/30/2016 11:56:51 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Osman-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (03/30/2016 03:33:48 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (03/30/2016 03:32:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: NvStreamNetworkService.exe, Version: 7.1.2057.3066, Zeitstempel: 0x56f3737e
Name des fehlerhaften Moduls: NvMdnsPlugin.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x56f37891
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000d45a0
ID des fehlerhaften Prozesses: 0x2dc8
Startzeit der fehlerhaften Anwendung: 0xNvStreamNetworkService.exe0
Pfad der fehlerhaften Anwendung: NvStreamNetworkService.exe1
Pfad des fehlerhaften Moduls: NvStreamNetworkService.exe2
Berichtskennung: NvStreamNetworkService.exe3
Vollständiger Name des fehlerhaften Pakets: NvStreamNetworkService.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: NvStreamNetworkService.exe5
Error: (03/30/2016 03:30:21 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (03/30/2016 03:21:56 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (03/24/2016 08:59:19 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (03/24/2016 08:59:10 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (03/24/2016 08:59:02 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (03/24/2016 08:58:54 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (03/22/2016 08:24:11 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Systemfehler:
=============
Error: (03/31/2016 05:23:07 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x8024200d fehlgeschlagen: Upgrade auf Windows 10 Pro, Version 1511, 10586
Error: (03/31/2016 05:15:45 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (03/31/2016 04:59:08 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (03/30/2016 11:56:51 PM) (Source: DCOM) (EventID: 10010) (User: Osman-PC)
Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca
Error: (03/30/2016 11:56:50 PM) (Source: DCOM) (EventID: 10010) (User: Osman-PC)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
Error: (03/30/2016 11:56:50 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}
Error: (03/30/2016 11:56:49 PM) (Source: DCOM) (EventID: 10010) (User: Osman-PC)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
Error: (03/30/2016 11:56:49 PM) (Source: DCOM) (EventID: 10010) (User: Osman-PC)
Description: {1A1F4206-0688-4E7F-BE03-D82EC69DF9A5}
Error: (03/30/2016 11:56:12 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (03/30/2016 11:56:11 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
%%1056
CodeIntegrity:
===================================
Date: 2016-03-31 17:22:31.002
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-03-25 19:28:02.978
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 19%
Installierter physikalischer RAM: 11767.23 MB
Verfügbarer physikalischer RAM: 9484.97 MB
Summe virtueller Speicher: 23543.23 MB
Verfügbarer virtueller Speicher: 20879.39 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:232.35 GB) (Free:59.7 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: F8A88DB0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
==================== Ende von Addition.txt ============================
TheNoobly |
|
01.04.2016, 13:43
| #4 |
| /// Malwareteam | Chrome flackert, CMD Pop Up Schritt 1 Lade dir folgendes Programm herunter und installiere es:  Malwarebytes Anti-Malware Hier findest du dazu eine bebilderte Anleitung
Schritt 2 Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Schritt 3 Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen. Bitte poste in deiner nächsten Antwort also:
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
01.04.2016, 23:28
| #5 |
| | Chrome flackert, CMD Pop Up MBAM Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 01.04.2016 Suchlaufzeit: 16:29 Protokolldatei: mbam.txt Administrator: Ja Version: 2.2.1.1043 Malware-Datenbank: v2016.04.01.04 Rootkit-Datenbank: v2016.03.30.01 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 10 CPU: x64 Dateisystem: NTFS Benutzer: Osman Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 384055 Abgelaufene Zeit: 11 Min., 42 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Aktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 0 (keine bösartigen Elemente erkannt) Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) Code:
ATTFilter # AdwCleaner v5.108 - Logfile created 01/04/2016 at 17:56:10
# Updated 30/03/2016 by Xplode
# Database : 2016-03-30.1 [Server]
# Operating system : Windows 10 Pro (x64)
# Username : Osman - OSMAN-PC
# Running from : C:\Users\Osman\Downloads\adwcleaner_5.108.exe
# Option : Scan
# Support : hxxp://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
***** [ DLL ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
***** [ Web browsers ] *****
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [1319 bytes] - [30/03/2016 23:55:42]
C:\AdwCleaner\AdwCleaner[S1].txt - [1210 bytes] - [30/03/2016 23:54:57]
C:\AdwCleaner\AdwCleaner[S2].txt - [895 bytes] - [01/04/2016 17:48:20]
C:\AdwCleaner\AdwCleaner[S4].txt - [967 bytes] - [01/04/2016 17:54:28]
C:\AdwCleaner\AdwCleaner[S5].txt - [889 bytes] - [01/04/2016 17:56:10]
########## EOF - C:\AdwCleaner\AdwCleaner[S5].txt - [961 bytes] ##########
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
durchgeführt von Osman (Administrator) auf OSMAN-PC (02-04-2016 00:26:37)
Gestartet von C:\Users\Osman\Desktop
Geladene Profile: Osman (Verfügbare Profile: Osman)
Platform: Windows 10 Pro (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicatorCom.exe
(Razer Inc) C:\Program Files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenHelper.exe
() C:\Program Files (x86)\Razer\Abyssus\razerhid.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Razer\Abyssus\razertra.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Abyssus\razerofa.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Razer, Inc.) C:\Users\Osman\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\rzcefrenderprocess.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicator.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
() C:\Program Files\DriverSetupUtility\FUB\LiveUpdateChecker.exe
() C:\Program Files (x86)\Razer\Abyssus\vdDaemon.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(TeamSpeak Systems GmbH) C:\Users\Osman\AppData\Local\TeamSpeak 3 Client\ts3client_win64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397752 2016-03-25] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728 2015-08-09] (IvoSoft)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16418560 2000-01-01] (Realtek Semiconductor)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [594240 2016-01-13] (Razer Inc.)
HKLM-x32\...\Run: [KrakenLauncher] => C:\Program Files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenHelper.exe [1599808 2015-08-14] (Razer Inc)
HKLM-x32\...\Run: [Abyssus] => C:\Program Files (x86)\Razer\Abyssus\razerhid.exe [295936 2013-01-21] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-12-22] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2016-03-22] (LogMeIn Inc.)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3077712 2016-03-31] (Valve Corporation)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\Run: [HP Photosmart 5520 series (NET)] => C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Keine Datei
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
Startup: C:\Users\Osman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Photosmart 5520 series (Netzwerk).lnk [2016-04-01]
ShortcutTarget: Tintenwarnungen überwachen - HP Photosmart 5520 series (Netzwerk).lnk -> C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5d5e4d95-d401-46ee-ba8d-3e62fda563f5}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{d4856a0e-77d9-4b49-806a-69752f023856}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.yahoo.com/?fr=yset_ie_syc_oracle&type=orcl_hpset
SearchScopes: HKU\S-1-5-21-2498436991-496876813-1431611548-1000 -> {31164661-CF05-4EDA-9E6D-7D839F670C21} URL = hxxps://ch.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-08-09] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll [2016-01-23] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-01-23] (Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
FireFox:
========
FF ProfilePath: C:\Users\Osman\AppData\Roaming\Mozilla\Firefox\Profiles\v50bv2sd.default
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [Keine Datei]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [Keine Datei]
FF Plugin-x32: @java.com/DTPlugin,version=11.71.2 -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\dtplugin\npDeployJava1.dll [2016-01-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.71.2 -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\plugin2\npjp2.dll [2016-01-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-27] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2498436991-496876813-1431611548-1000: @squareclock.com/SQ3DPlayer_Production_HBMV1 -> C:\Users\Osman\AppData\Local\SquareClock.Production_HBMV1\NPSQ3D.dll [2015-11-19] (SquareClock SAS)
Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.ch/
CHR StartupUrls: Default -> "hxxp://google.ch/"
CHR DefaultSearchURL: Default -> hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=orcl_default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://de.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-03-27]
CHR Extension: (Google Docs) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-27]
CHR Extension: (Google Drive) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-27]
CHR Extension: (YouTube) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-27]
CHR Extension: (Adblock Plus) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-27]
CHR Extension: (Steam inventory helper) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2016-03-27]
CHR Extension: (Google Tabellen) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-03-27]
CHR Extension: (Google Docs Offline) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-28]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-03-27]
CHR Extension: (Google Mail) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-27]
CHR HKLM-x32\...\Chrome\Extension: [eedgghdcpmmmilkmfpnklknlenbiolec] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1362464 2016-03-22] ()
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [243984 2016-03-24] (EasyAntiCheat Ltd)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342240 2015-06-03] (Futuremark)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164856 2016-03-25] (NVIDIA Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [26680 2016-02-18] (Hewlett-Packard Company)
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2016-03-22] (LogMeIn, Inc.)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [3512928 2015-07-22] (INCA Internet Co., Ltd.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-03-25] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-03-25] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-03-25] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-02] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2016-03-20] ()
R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [189248 2016-03-20] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-11-05] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 Abyssus; C:\Windows\system32\drivers\Abyssus.sys [23040 2013-01-09] ( )
S3 GVTDrv64; C:\WINDOWS\GVTDrv64.sys [30528 2015-10-31] ()
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608 2015-07-07] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-03-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-03-21] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [935168 2000-01-01] (Realtek )
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-09-23] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [130880 2015-12-15] (Razer, Inc.)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33960 2000-01-01] (Synaptics Incorporated)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 usbrndis6; C:\Windows\System32\drivers\usb80236.sys [22016 2015-07-10] (Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; kein ImagePath
S3 vmci; \SystemRoot\System32\drivers\vmci.sys [X]
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-04-02 00:26 - 2016-04-02 00:26 - 00019690 _____ C:\Users\Osman\Desktop\FRST.txt
2016-04-01 16:44 - 2016-04-01 16:44 - 00001194 _____ C:\Users\Osman\Desktop\mbam.txt
2016-04-01 16:28 - 2016-04-01 16:45 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-04-01 16:28 - 2016-04-01 16:28 - 00001171 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-04-01 16:28 - 2016-04-01 16:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2016-04-01 16:28 - 2016-04-01 16:28 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2016-04-01 16:28 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-04-01 16:28 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-04-01 16:28 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-04-01 16:27 - 2016-04-01 16:27 - 22851472 _____ (Malwarebytes ) C:\Users\Osman\Downloads\mbam-setup-2.2.1.1043.exe
2016-04-01 15:07 - 2016-04-01 15:07 - 00000000 ____D C:\Users\Osman\Documents\NFS Undercover
2016-04-01 15:06 - 2016-04-01 15:06 - 00001794 _____ C:\Users\Osman\Desktop\nfs - Shortcut.lnk
2016-04-01 15:05 - 2016-04-01 15:05 - 00000000 __RHD C:\Users\Osman\AppData\Roaming\SecuROM
2016-04-01 14:59 - 2016-04-01 14:59 - 00000000 ____D C:\Users\Osman\AppData\Roaming\Leadertech
2016-04-01 14:57 - 2016-04-01 14:57 - 00000000 ____D C:\Program Files (x86)\EA Games
2016-04-01 12:37 - 2016-04-01 12:37 - 00016148 _____ C:\WINDOWS\system32\OSMAN-PC_Osman_HistoryPrediction.bin
2016-03-31 21:36 - 2016-03-22 03:57 - 00110528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2016-03-31 21:35 - 2016-03-31 21:36 - 00000000 ____D C:\WINDOWS\LastGood
2016-03-31 21:35 - 2016-03-22 06:08 - 42923576 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 37567424 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 31594432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 25350080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 21364536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 20906168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 17755928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 17349776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 02614208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 02260024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00960056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00889400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00786872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00751552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00695864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00632336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00546328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00448824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00425016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00385080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00379448 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00379296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00348216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00317656 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00176064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00153392 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00151368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00129208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2016-03-31 21:07 - 2016-03-31 21:07 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-03-31 21:06 - 2016-02-24 01:57 - 01924152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436200.dll
2016-03-31 21:06 - 2016-02-24 01:57 - 01571776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436200.dll
2016-03-31 21:00 - 2016-03-31 21:00 - 00000000 ____D C:\Users\Osman\Intel
2016-03-31 20:59 - 2016-03-31 21:06 - 00000000 ____D C:\NVIDIA
2016-03-31 20:55 - 2016-03-31 21:09 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-03-31 20:55 - 2016-03-31 20:55 - 00001112 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-03-31 20:55 - 2016-03-31 20:55 - 00001100 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2016-03-31 20:55 - 2016-03-31 20:55 - 00000000 ____D C:\Users\Osman\AppData\Roaming\TeamViewer
2016-03-31 19:46 - 2016-04-02 00:26 - 00000000 ____D C:\FRST
2016-03-31 19:46 - 2016-03-31 19:46 - 02374144 _____ (Farbar) C:\Users\Osman\Desktop\FRST64.exe
2016-03-30 23:54 - 2016-03-30 23:54 - 03102720 _____ C:\Users\Osman\Downloads\adwcleaner_5.108.exe
2016-03-30 15:50 - 2016-03-30 15:50 - 00000000 ____D C:\ProgramData\updater2
2016-03-30 15:50 - 2016-03-30 15:50 - 00000000 ____D C:\oem
2016-03-30 15:34 - 2016-03-30 15:34 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-03-30 15:34 - 2016-03-30 15:34 - 00000000 ____D C:\Program Files\Realtek
2016-03-30 15:34 - 2000-01-01 02:00 - 72203792 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2016-03-30 15:34 - 2000-01-01 02:00 - 07172920 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 04779776 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2016-03-30 15:34 - 2000-01-01 02:00 - 03769493 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2016-03-30 15:34 - 2000-01-01 02:00 - 03283248 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 03195648 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 03080784 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 02894976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2016-03-30 15:34 - 2000-01-01 02:00 - 02036992 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 01356504 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00689888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00447728 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00343712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00192992 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00151792 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00134208 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00084616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00023704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2016-03-30 15:33 - 2016-03-30 15:33 - 00000000 ____D C:\WINDOWS\oem
2016-03-30 15:33 - 2000-01-01 02:00 - 07096192 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 01965816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 01780624 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 01591064 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 01508936 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00743968 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00727440 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00708320 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00504312 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00445408 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00441272 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00327464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00272720 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00253904 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00253872 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00252880 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00118600 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00105312 _____ C:\WINDOWS\system32\audioLibVc.dll
2016-03-30 15:32 - 2016-03-30 15:32 - 00003756 _____ C:\WINDOWS\System32\Tasks\ACC
2016-03-30 15:32 - 2016-03-30 15:32 - 00000000 ____D C:\ProgramData\DriverSetupUtility
2016-03-30 15:32 - 2016-03-30 15:32 - 00000000 ____D C:\Program Files\DriverSetupUtility
2016-03-30 15:27 - 2016-04-01 15:27 - 00000366 _____ C:\WINDOWS\Tasks\SlimCleaner Plus (Scheduled Scan - Osman).job
2016-03-30 15:27 - 2016-03-30 15:27 - 00003126 _____ C:\WINDOWS\System32\Tasks\SlimCleaner Plus (Scheduled Scan - Osman)
2016-03-30 15:26 - 2016-03-21 22:01 - 00109632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-03-30 15:26 - 2016-03-21 22:01 - 00100416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-03-30 15:22 - 2000-01-01 02:00 - 00082544 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2016-03-29 00:12 - 2016-03-29 00:12 - 00000222 _____ C:\Users\Osman\Desktop\Heroes & Generals.url
2016-03-28 15:09 - 2016-03-31 21:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan
2016-03-28 15:08 - 2016-03-22 06:08 - 17369448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 10550552 _____ C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 08659472 _____ C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 01922496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436472.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 01571776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436472.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00678520 _____ C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00572096 _____ C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00000139 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-03-28 15:08 - 2016-03-22 06:08 - 00000139 _____ C:\WINDOWS\system32\nv-vk64.json
2016-03-28 15:08 - 2016-02-24 01:57 - 17117128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\SET83BA.tmp
2016-03-27 22:49 - 2016-03-31 13:55 - 00002264 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-27 22:49 - 2016-03-31 13:55 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-03-27 22:21 - 2016-04-01 23:54 - 00001126 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-27 22:21 - 2016-04-01 22:54 - 00001122 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-27 22:21 - 2016-03-27 22:49 - 00003952 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-03-27 22:21 - 2016-03-27 22:21 - 00987728 _____ (Google Inc.) C:\Users\Osman\Downloads\ChromeSetup.exe
2016-03-27 14:50 - 2016-03-27 14:51 - 00000000 ____D C:\Users\Osman\AppData\Roaming\Mozilla
2016-03-27 14:50 - 2016-03-27 14:50 - 00000000 ____D C:\Users\Osman\AppData\Local\Mozilla
2016-03-25 02:02 - 2016-03-25 02:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-03-25 02:02 - 2016-03-25 02:02 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2016-03-24 21:00 - 2016-03-24 21:00 - 00000000 ____D C:\Users\Osman\AppData\Local\Victory
2016-03-24 21:00 - 2016-03-24 21:00 - 00000000 ____D C:\Users\Osman\AppData\Local\UnrealEngine
2016-03-24 20:01 - 2016-03-24 20:01 - 00000222 _____ C:\Users\Osman\Desktop\The Culling.url
2016-03-20 00:55 - 2016-03-20 00:55 - 00001243 _____ C:\Users\Public\Desktop\Battlefield 3.lnk
2016-03-16 23:30 - 2016-03-16 23:30 - 00128792 _____ C:\WINDOWS\SysWOW64\vulkan-1-1-0-5-1.dll
2016-03-16 23:29 - 2016-03-16 23:29 - 00127768 _____ C:\WINDOWS\system32\vulkan-1-1-0-5-1.dll
2016-03-16 23:29 - 2016-03-16 23:29 - 00041752 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-1-0-5-1.exe
2016-03-16 23:28 - 2016-03-16 23:28 - 00045848 _____ C:\WINDOWS\system32\vulkaninfo-1-1-0-5-1.exe
2016-03-16 19:20 - 2016-03-26 23:46 - 00000000 ____D C:\Users\Osman\AppData\Local\osu!
2016-03-16 19:20 - 2016-03-16 19:20 - 00001057 _____ C:\Users\Osman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2016-03-16 19:20 - 2016-03-16 19:20 - 00001049 _____ C:\Users\Osman\Desktop\osu!.lnk
2016-03-16 19:19 - 2016-03-16 19:19 - 04482104 _____ (ppy) C:\Users\Osman\Downloads\osu!install.exe
2016-03-16 19:19 - 2016-03-16 19:19 - 00000000 ____D C:\Users\Osman\Downloads\Localisation
2016-03-12 13:59 - 2016-03-31 21:36 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-03-12 13:59 - 2016-03-16 23:30 - 00128792 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-03-12 13:59 - 2016-03-16 23:29 - 00127768 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-03-12 13:59 - 2016-03-16 23:29 - 00041752 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-03-12 13:59 - 2016-03-16 23:28 - 00045848 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-03-12 13:59 - 2016-03-12 13:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.0
2016-03-12 13:58 - 2016-03-08 12:27 - 01922496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436451.dll
2016-03-12 13:58 - 2016-03-08 12:27 - 01571776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436451.dll
2016-03-11 16:51 - 2016-03-11 16:51 - 00000000 ___HD C:\$WINDOWS.~BT
2016-03-09 16:23 - 2016-02-23 16:53 - 01314496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-03-09 16:23 - 2016-02-23 16:52 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-03-09 16:23 - 2016-02-23 16:51 - 00633184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-03-09 16:23 - 2016-02-23 16:51 - 00146784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2016-03-09 16:23 - 2016-02-23 16:50 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-03-09 16:23 - 2016-02-23 16:48 - 08022368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-03-09 16:23 - 2016-02-23 16:48 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-03-09 16:23 - 2016-02-23 16:48 - 01123952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-03-09 16:23 - 2016-02-23 16:41 - 01150816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-03-09 16:23 - 2016-02-23 16:41 - 00299600 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMASF.DLL
2016-03-09 16:23 - 2016-02-23 16:41 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2016-03-09 16:23 - 2016-02-23 16:40 - 00110584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2016-03-09 16:23 - 2016-02-23 16:38 - 00272752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2016-03-09 16:23 - 2016-02-23 16:36 - 00080128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2016-03-09 16:23 - 2016-02-23 16:11 - 00781984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-03-09 16:23 - 2016-02-23 16:11 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-03-09 16:23 - 2016-02-23 16:11 - 00103776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-03-09 16:23 - 2016-02-23 16:08 - 03622272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-03-09 16:23 - 2016-02-23 16:07 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-03-09 16:23 - 2016-02-23 15:39 - 00607416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-03-09 16:23 - 2016-02-23 15:30 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-03-09 16:23 - 2016-02-23 15:25 - 01085632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-03-09 16:23 - 2016-02-23 15:23 - 00952968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-03-09 16:23 - 2016-02-23 15:21 - 00529456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-03-09 16:23 - 2016-02-23 15:21 - 00141152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2016-03-09 16:23 - 2016-02-23 15:11 - 00249976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMASF.DLL
2016-03-09 16:23 - 2016-02-23 15:11 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2016-03-09 16:23 - 2016-02-23 15:11 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2016-03-09 16:23 - 2016-02-23 15:09 - 00229352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2016-03-09 16:23 - 2016-02-23 15:06 - 00069232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2016-03-09 16:23 - 2016-02-23 14:58 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-03-09 16:23 - 2016-02-23 14:50 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-03-09 16:23 - 2016-02-23 14:50 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-03-09 16:23 - 2016-02-23 14:42 - 00658536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-03-09 16:23 - 2016-02-23 14:42 - 00467296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-03-09 16:23 - 2016-02-23 14:42 - 00078176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-03-09 16:23 - 2016-02-23 14:39 - 02879024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-03-09 16:23 - 2016-02-23 14:38 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-03-09 16:23 - 2016-02-23 14:35 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-03-09 16:23 - 2016-02-23 14:20 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-03-09 16:23 - 2016-02-23 14:17 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-03-09 16:23 - 2016-02-23 14:16 - 02237952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-03-09 16:23 - 2016-02-23 14:15 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-03-09 16:23 - 2016-02-23 14:15 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-03-09 16:23 - 2016-02-23 13:59 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-03-09 16:23 - 2016-02-23 13:59 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-03-09 16:23 - 2016-02-23 13:57 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-03-09 16:23 - 2016-02-23 13:55 - 24592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-03-09 16:23 - 2016-02-23 13:45 - 12504576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-03-09 16:23 - 2016-02-23 13:45 - 06788608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-03-09 16:23 - 2016-02-23 13:42 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-03-09 16:23 - 2016-02-23 13:42 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-03-09 16:23 - 2016-02-23 13:38 - 02663424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-03-09 16:23 - 2016-02-23 13:37 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetCfgNotifyObjectHost.exe
2016-03-09 16:23 - 2016-02-23 13:36 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-03-09 16:23 - 2016-02-23 13:25 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-03-09 16:23 - 2016-02-23 13:18 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-03-09 16:23 - 2016-02-23 13:17 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2016-03-09 16:23 - 2016-02-23 13:17 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll
2016-03-09 16:23 - 2016-02-23 13:14 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-03-09 16:23 - 2016-02-23 13:08 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-03-09 16:23 - 2016-02-23 13:04 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-03-09 16:23 - 2016-02-23 13:03 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2016-03-09 16:23 - 2016-02-23 13:03 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-03-09 16:23 - 2016-02-23 13:02 - 03587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-03-09 16:23 - 2016-02-23 12:55 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-03-09 16:23 - 2016-02-23 12:55 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-03-09 16:23 - 2016-02-23 12:51 - 00915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-03-09 16:23 - 2016-02-23 12:51 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-03-09 16:23 - 2016-02-23 12:48 - 21859840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-03-09 16:23 - 2016-02-23 12:48 - 05157376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-03-09 16:23 - 2016-02-23 12:46 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2016-03-09 16:23 - 2016-02-23 12:45 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-03-09 16:23 - 2016-02-23 12:45 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-03-09 16:23 - 2016-02-23 12:45 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-03-09 16:23 - 2016-02-23 12:45 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-03-09 16:23 - 2016-02-23 12:44 - 01821696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-03-09 16:23 - 2016-02-23 12:38 - 07524864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-03-09 16:23 - 2016-02-23 12:29 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll
2016-03-09 16:23 - 2016-02-23 12:17 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2016-03-09 16:23 - 2016-02-23 12:17 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-03-09 16:23 - 2016-02-23 12:11 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-03-09 16:23 - 2016-02-23 12:03 - 01495040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-03-09 16:23 - 2016-02-23 12:00 - 11263488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-03-09 16:23 - 2016-02-23 12:00 - 05457408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-03-09 16:23 - 2016-02-23 11:58 - 18800640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-03-07 19:26 - 2016-03-07 19:26 - 00000222 _____ C:\Users\Osman\Desktop\Worms Armageddon.url
2016-03-06 19:23 - 2016-03-06 19:25 - 00000000 ____D C:\Program Files (x86)\AdwCleaner
2016-03-06 19:22 - 2016-04-01 17:56 - 00000000 ____D C:\AdwCleaner
2016-03-06 19:22 - 2016-03-06 19:22 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-03-04 20:57 - 2016-03-04 20:57 - 00000222 _____ C:\Users\Osman\Desktop\The Binding of Isaac.url
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-04-02 00:24 - 2015-11-08 20:58 - 00000000 ____D C:\Users\Osman\AppData\Roaming\TS3Client
2016-04-01 20:56 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-04-01 20:51 - 2015-07-31 00:42 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-01 20:10 - 2015-11-08 20:56 - 00000000 ____D C:\Users\Osman\AppData\Local\ClassicShell
2016-04-01 19:10 - 2016-01-09 13:59 - 00000000 ____D C:\Users\Osman\AppData\LocalLow\Heroes and Generals
2016-04-01 19:10 - 2015-11-08 21:01 - 00000000 ____D C:\Program Files (x86)\Steam
2016-04-01 19:09 - 2015-10-31 02:56 - 00000000 ____D C:\Users\Osman
2016-04-01 19:00 - 2015-11-12 20:24 - 00283896 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2016-04-01 18:45 - 2015-11-09 17:23 - 00004156 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{2B17EC41-99A7-4254-9F30-A129F78769CF}
2016-04-01 18:37 - 2016-01-26 21:21 - 00000000 ____D C:\Users\Osman\AppData\Local\LogMeIn Hamachi
2016-04-01 15:05 - 2015-11-10 19:34 - 00000000 ____D C:\Users\Osman\AppData\Roaming\BitTorrent
2016-03-31 21:37 - 2015-10-31 03:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-03-31 21:37 - 2015-10-31 02:55 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-03-31 21:36 - 2015-10-31 02:55 - 00000000 ____D C:\ProgramData\NVIDIA
2016-03-31 21:36 - 2015-07-31 00:40 - 00000000 ____D C:\WINDOWS\INF
2016-03-31 21:35 - 2015-10-31 02:55 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-03-31 21:17 - 2015-10-31 03:01 - 01790124 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-03-31 21:17 - 2015-09-10 07:10 - 00771100 _____ C:\WINDOWS\system32\perfh007.dat
2016-03-31 21:17 - 2015-09-10 07:10 - 00153964 _____ C:\WINDOWS\system32\perfc007.dat
2016-03-31 21:11 - 2015-07-30 23:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-03-31 21:11 - 2015-07-30 23:49 - 00242008 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-03-31 21:11 - 2015-07-10 11:05 - 00131072 ___SH C:\WINDOWS\system32\config\BBI
2016-03-31 21:01 - 2015-10-31 02:55 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-03-31 21:01 - 2015-10-31 02:25 - 00000000 ____D C:\ProgramData\Intel
2016-03-31 21:01 - 2015-10-31 02:25 - 00000000 ____D C:\Program Files\Intel
2016-03-31 21:01 - 2015-10-31 02:24 - 00000000 ____D C:\Program Files (x86)\Intel
2016-03-31 17:23 - 2015-10-31 02:54 - 00000000 ___DC C:\WINDOWS\Panther
2016-03-30 15:34 - 2015-10-31 03:20 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-03-30 15:33 - 2015-10-31 02:24 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-03-30 15:30 - 2015-10-31 02:25 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-03-27 22:49 - 2015-10-31 04:16 - 00004184 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-03-27 22:49 - 2015-10-31 04:16 - 00000000 ____D C:\Users\Osman\AppData\Local\Google
2016-03-27 22:49 - 2015-10-31 04:16 - 00000000 ____D C:\Program Files (x86)\Google
2016-03-26 13:45 - 2015-09-10 07:44 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-03-26 02:01 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-03-26 02:01 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-03-26 02:01 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-03-26 02:01 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-03-25 23:16 - 2015-11-09 16:51 - 00000000 ____D C:\Users\Osman\Desktop\Fixed
2016-03-25 20:52 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\rescache
2016-03-25 20:30 - 2015-11-08 21:11 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-03-25 20:29 - 2015-11-08 21:11 - 143659408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-03-25 20:29 - 2015-07-31 00:25 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-03-25 03:49 - 2015-10-31 03:19 - 01373864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-03-25 03:49 - 2015-10-31 03:19 - 01316184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-03-25 03:48 - 2015-11-14 18:46 - 00112216 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-03-25 03:48 - 2015-10-31 03:19 - 01767432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-03-25 03:48 - 2015-10-31 03:19 - 01756608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2016-03-25 03:23 - 2015-10-31 03:17 - 12659136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2016-03-24 20:59 - 2015-11-14 18:46 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-24 20:48 - 2015-12-12 19:41 - 00000000 ____D C:\ProgramData\Origin
2016-03-24 20:03 - 2015-11-12 20:24 - 00243984 _____ (EasyAntiCheat Ltd) C:\WINDOWS\SysWOW64\EasyAntiCheat.exe
2016-03-24 14:06 - 2016-01-20 15:54 - 00000000 ____D C:\Users\Osman\Desktop\Emulator
2016-03-22 06:08 - 2015-11-10 20:17 - 17328008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2016-03-22 06:08 - 2015-10-31 03:17 - 20074728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2016-03-22 06:08 - 2015-10-31 03:17 - 14226672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2016-03-22 06:08 - 2015-10-31 03:17 - 03685280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-03-22 06:08 - 2015-10-31 03:17 - 03263480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-03-22 06:08 - 2014-08-19 23:14 - 00038050 _____ C:\WINDOWS\system32\nvinfo.pb
2016-03-22 04:37 - 2016-01-06 15:15 - 00530880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-03-22 04:37 - 2016-01-06 15:15 - 00083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 06369728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 02994744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 02561472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 01265720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-03-22 04:37 - 2015-10-31 02:55 - 00393784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-03-21 22:01 - 2015-10-31 03:17 - 00056384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2016-03-20 00:55 - 2015-12-12 21:15 - 00189248 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2016-03-20 00:55 - 2015-12-12 21:15 - 00189248 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2016-03-20 00:55 - 2015-12-12 21:15 - 00075136 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2016-03-19 23:46 - 2015-12-12 19:49 - 00000000 ____D C:\Program Files (x86)\Origin Games
2016-03-18 13:44 - 2015-10-31 02:55 - 06253721 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-03-17 13:33 - 2015-11-09 16:51 - 00000000 ____D C:\Users\Osman\Desktop\Bewerbungsunterlagen
2016-03-09 14:25 - 2015-11-17 16:37 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-03-08 18:28 - 2015-12-17 22:09 - 00000000 ____D C:\Users\Osman\Desktop\Kasti
2016-03-08 09:10 - 2015-07-31 00:43 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-03-08 09:10 - 2015-07-31 00:43 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-03-07 22:27 - 2015-10-31 02:14 - 00000000 ____D C:\Users\Osman\AppData\Local\VirtualStore
2016-03-06 23:13 - 2015-09-10 07:22 - 00000000 ____D C:\Program Files\Windows Journal
2016-03-06 23:13 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\security
2016-03-06 19:27 - 2015-10-31 04:15 - 00000000 ____D C:\ProgramData\AVAST Software
2016-03-06 14:04 - 2015-11-16 18:50 - 00000000 ____D C:\Users\Osman\AppData\Local\CrashDumps
2016-03-03 00:07 - 2016-01-10 20:59 - 00000000 ____D C:\Users\Osman\AppData\Local\Pokemon Showdown
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-11-19 15:44 - 2015-11-19 19:16 - 0353118 _____ () C:\Users\Osman\AppData\Local\SquareClock.Production_HBMV1Icon.ico
2015-11-12 23:15 - 2015-11-12 23:15 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-10-31 03:21 - 2015-10-31 03:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Einige Dateien in TEMP:
====================
C:\Users\Osman\AppData\Local\Temp\0KrakenDevProps.dll
C:\Users\Osman\AppData\Local\Temp\drm_dyndata_7380012.dll
C:\Users\Osman\AppData\Local\Temp\jansi-32-3038571992631331342.dll
C:\Users\Osman\AppData\Local\Temp\jansi-32-6966904423070836817.dll
C:\Users\Osman\AppData\Local\Temp\jansi-32-7430486011742709340.dll
C:\Users\Osman\AppData\Local\Temp\jansi-64-1481387193273386626.dll
C:\Users\Osman\AppData\Local\Temp\jansi-64-2126923826089639969.dll
C:\Users\Osman\AppData\Local\Temp\jansi-64-338925601032672504.dll
C:\Users\Osman\AppData\Local\Temp\jansi-64-4193995006428167263.dll
C:\Users\Osman\AppData\Local\Temp\jansi-64-4319051884597666757.dll
C:\Users\Osman\AppData\Local\Temp\jansi-64-71074657221587176.dll
C:\Users\Osman\AppData\Local\Temp\jansi-64-7939615834216326953.dll
C:\Users\Osman\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Osman\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Osman\AppData\Local\Temp\nvStInst.exe
C:\Users\Osman\AppData\Local\Temp\scpE6FE.tmp.exe
C:\Users\Osman\AppData\Local\Temp\Setup.exe
C:\Users\Osman\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Osman\AppData\Local\Temp\sfextra.dll
C:\Users\Osman\AppData\Local\Temp\tasklisten.exe
C:\Users\Osman\AppData\Local\Temp\ytb.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-03-31 17:22
==================== Ende von FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
durchgeführt von Osman (2016-04-02 00:27:02)
Gestartet von C:\Users\Osman\Desktop
Windows 10 Pro (X64) (2015-10-31 01:06:00)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2498436991-496876813-1431611548-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2498436991-496876813-1431611548-503 - Limited - Disabled)
Gast (S-1-5-21-2498436991-496876813-1431611548-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2498436991-496876813-1431611548-1002 - Limited - Enabled)
Osman (S-1-5-21-2498436991-496876813-1431611548-1000 - Administrator - Enabled) => C:\Users\Osman
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
3DMark (HKLM-x32\...\{12d6e0d7-21d5-4755-9da2-70352c6f7558}) (Version: 1.5.915.0 - Futuremark)
3DMark (Version: 1.5.915.0 - Futuremark) Hidden
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
BitTorrent (HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\BitTorrent) (Version: 7.9.5.41866 - BitTorrent Inc.)
Classic Shell (HKLM\...\{E289B7DD-6732-4333-A47A-75A145D23EE3}) (Version: 4.2.4 - IvoSoft)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Dead Space (HKLM-x32\...\{025A585C-0C66-413D-80D2-4C05CB699771}) (Version: 1.0.0.222 - Electronic Arts)
Dead Space™ 3 (HKLM-x32\...\{D4329609-4102-4F8C-B83F-7FE024EEA314}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3011 - Acer Incorporated)
Futuremark SystemInfo (HKLM-x32\...\{AFBB2F94-A43D-46AD-8F77-66ACB3C71EDF}) (Version: 4.39.552.0 - Futuremark)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Heroes & Generals (HKLM\...\Steam App 227940) (Version: - Reto-Moto)
HomeByMe (HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\SquareClock_Production_HBMV1) (Version: - 3DVIA SAS)
HP Photosmart 5520 series - Grundlegende Software für das Gerät (HKLM\...\{4F396B08-301D-4E53-A372-95A7E93ABD04}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Support Solutions Framework (HKLM-x32\...\{B1AD4FFB-DD17-43EC-8C30-B9E71EAD9132}) (Version: 12.2.8.17 - Hewlett-Packard Company)
InputMapper (HKLM-x32\...\{1A44056A-C7D8-4561-BC43-A0AA7D7AAA64}) (Version: 1.5.31.0 - DSDCS)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Java 8 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218071F0}) (Version: 8.0.710.15 - Oracle Corporation)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.420 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.420 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Word 2010 (HKLM\...\Office14.WORD) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Need for Speed™ Undercover (HKLM-x32\...\{E6D22FE1-AB5F-42CA-9480-6F70B96DDD88}) (Version: 1.0.1.0 - Electronic Arts)
NVIDIA 3D Vision Controller-Treiber 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 364.72 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.2.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.2.49 - NVIDIA Corporation)
NVIDIA Grafiktreiber 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 364.72 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.11.1.6605 - Electronic Arts, Inc.)
OSC Third Party Libraries (Version: 1.1 - NVIDIA Corporation) Hidden
osu! (HKLM-x32\...\{d5bab322-3b11-4379-a6a1-2beb86643aa3}) (Version: latest - ppy Pty Ltd)
paint.net (HKLM\...\{DF3A46D9-67B3-44B2-9D01-25C8BA772C8A}) (Version: 4.0.6 - dotPDN LLC)
Pokemon Showdown (HKLM-x32\...\Pokemon Showdown) (Version: - "Pokemon Showdown")
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Razer Abyssus (HKLM-x32\...\{CBD6B23A-B54F-476A-9527-C262F469CACF}) (Version: 2.02 - Razer USA Ltd.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.28549 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.6.1001.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7727 - Realtek Semiconductor Corp.)
Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.2.49 - NVIDIA Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.56083 - TeamViewer)
The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version: - Edmund McMillen and Florian Himsl)
The Culling (HKLM\...\Steam App 437220) (Version: - Xaviant)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.5.1 (HKLM\...\VulkanRT1.0.5.1) (Version: 1.0.5.1 - LunarG, Inc.)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Worms Armageddon (HKLM-x32\...\Steam App 217200) (Version: - Team17 Digital Ltd)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2498436991-496876813-1431611548-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Osman\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe (Microsoft Corporation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0307B023-7FC8-415F-AF73-4A419D6499FB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-03-07] (Hewlett-Packard)
Task: {07820D8F-71E4-40C8-9051-9CF558899E6B} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {08F82527-165D-440F-BEB9-47CA891F0940} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {0F2F8A01-D5CC-466C-A57B-D079C5357570} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-27] (Google Inc.)
Task: {15F486F4-3DF7-4CE6-8485-D9102F7FB6EF} - System32\Tasks\ACC => C:\Program Files\DriverSetupUtility\FUB\FUB_Send.bat [2015-06-22] ()
Task: {1CD72DDF-8022-4042-9013-C2A7BEEC289A} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {20084A7E-DF4C-4034-A971-F2BBE40AF33C} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {21257B26-32B7-421C-9D2F-FFC8C5E0C24A} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {458CB899-72AF-4983-A9F7-0CE7282757BC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {4820EF9A-F5EC-4908-AEC5-80239B2DCC01} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {48651DA7-436C-4A29-933B-28CDF8E45127} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {48F3BD53-C7FE-44B4-B581-2E6576E7AB16} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {6432796B-26D6-49E4-AC1D-7251287E2545} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {67535269-9CCC-492A-A2AA-8DD8F4B645E2} - System32\Tasks\SlimCleaner Plus (Scheduled Scan - Osman) => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
Task: {7009927D-0981-434B-8FFE-AB4AF05F1411} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {790D23D2-95D8-4D02-8EF5-075C090631ED} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {7DBF8C9B-4F40-4202-BFB1-DE7C9B939E72} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {81C7E8F4-A620-4411-8BA4-C278A6D0F53F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-03-11] (Hewlett-Packard)
Task: {8734E420-1D14-4154-9BD0-4E8B60A0234D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {950E226B-34F9-49B5-AECE-54D90E44296B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {961CBF50-4722-4DD1-9790-3A73E4220A37} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {99030FF5-62D2-47F4-AB61-1D03BE590877} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {9A002FB6-2BB5-4657-B4D4-4C09B9884AE2} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {AD002DF4-8E63-436B-A468-DA0D99E52F19} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {BC5F0F9B-1185-4A13-BD00-337BE315F50E} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {CC9F7F61-3F09-4540-89BA-080299385CE2} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {EAB09CDD-E555-4F36-BC52-05FDDD874C7D} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {F12C7D93-66A6-4D93-ABB0-89110F671512} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {F9B647CC-330E-4609-B693-791DF53880B6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-27] (Google Inc.)
Task: {FB171A85-9F6F-4A39-AEC4-4D931511FF0F} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\SlimCleaner Plus (Scheduled Scan - Osman).job => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-09-10 07:12 - 2015-09-10 07:12 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-09-10 07:12 - 2015-09-10 07:12 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-12-12 21:15 - 2016-03-20 00:55 - 00075136 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2016-02-24 22:02 - 2016-03-25 03:52 - 00368184 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2015-11-14 18:46 - 2016-03-25 03:52 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-02-24 22:02 - 2016-03-25 03:52 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-02-24 22:02 - 2016-03-25 03:52 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2015-12-12 21:15 - 2016-03-20 00:55 - 00189248 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.exe
2015-11-05 02:11 - 2015-11-05 02:12 - 00188072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2016-02-24 22:02 - 2016-03-25 03:52 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-02-24 22:02 - 2016-03-25 03:52 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-02-24 22:02 - 2016-03-25 03:52 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-01-06 15:06 - 2016-03-25 03:52 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2015-10-31 02:55 - 2016-03-22 04:37 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-11-08 21:11 - 2015-09-17 08:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-11-08 21:11 - 2015-09-17 08:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-11-08 21:10 - 2015-09-17 07:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-11-08 21:10 - 2015-09-17 08:04 - 00642048 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\MtcUvc.dll
2015-12-09 19:07 - 2015-11-25 06:20 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-09 19:07 - 2015-11-25 06:17 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-09 19:07 - 2015-11-25 06:17 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-11-08 21:11 - 2015-09-17 07:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-11-12 21:06 - 2013-01-21 15:17 - 00295936 _____ () C:\Program Files (x86)\Razer\Abyssus\razerhid.exe
2015-11-12 21:06 - 2013-01-21 15:20 - 00295936 _____ () C:\Program Files (x86)\Razer\Abyssus\razertra.exe
2016-03-30 15:27 - 2016-03-25 03:52 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-03-30 15:27 - 2016-03-25 03:52 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2015-12-21 09:55 - 2015-12-21 09:55 - 00292352 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2015-07-10 01:08 - 2015-07-10 01:08 - 00098656 _____ () C:\Program Files\DriverSetupUtility\FUB\LiveUpdateChecker.exe
2015-07-10 01:08 - 2015-07-10 01:08 - 00232288 _____ () C:\Program Files\DriverSetupUtility\FUB\ManagedNativeUtilities.dll
2015-11-12 21:06 - 2011-03-01 15:34 - 01759232 _____ () C:\Program Files (x86)\Razer\Abyssus\vdDaemon.exe
2015-10-22 13:22 - 2015-10-22 13:22 - 00175080 _____ () C:\Users\Osman\AppData\Local\TeamSpeak 3 Client\quazip.dll
2015-10-22 13:21 - 2015-10-22 13:21 - 00103400 _____ () C:\Users\Osman\AppData\Local\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2015-10-22 13:21 - 2015-10-22 13:21 - 00108008 _____ () C:\Users\Osman\AppData\Local\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2015-10-22 13:22 - 2015-10-22 13:22 - 00312296 _____ () C:\Users\Osman\AppData\Local\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2015-10-22 13:22 - 2015-10-22 13:22 - 00483816 _____ () C:\Users\Osman\AppData\Local\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2015-09-21 16:24 - 2015-09-21 16:24 - 00317440 _____ () C:\Users\Osman\AppData\Local\TeamSpeak 3 Client\ssleay32.dll
2015-09-21 16:24 - 2015-09-21 16:24 - 01709056 _____ () C:\Users\Osman\AppData\Local\TeamSpeak 3 Client\LIBEAY32.dll
2015-10-31 03:18 - 2016-03-25 03:52 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-11-08 21:09 - 2016-04-01 12:37 - 00619840 _____ () C:\Users\Osman\AppData\Local\Temp\0KrakenDevProps.dll
2016-02-26 10:29 - 2016-02-26 10:29 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2016-01-05 18:34 - 2015-10-06 21:26 - 50656768 _____ () C:\Users\Osman\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2016-01-05 18:34 - 2015-10-06 21:26 - 01874944 _____ () C:\Users\Osman\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll
2016-01-05 18:34 - 2015-10-06 21:26 - 00075264 _____ () C:\Users\Osman\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll
2015-11-08 21:03 - 2016-03-11 02:56 - 00783360 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-11-08 21:03 - 2015-07-03 18:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-11-08 21:03 - 2016-03-31 22:55 - 02549840 _____ () C:\Program Files (x86)\Steam\video.dll
2015-11-08 21:03 - 2015-07-03 18:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-11-08 21:03 - 2015-07-03 18:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-11-08 21:03 - 2016-03-31 22:55 - 00829008 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-09 15:15 - 2016-02-18 00:25 - 00281088 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2015-11-08 21:03 - 2016-02-09 03:33 - 48400672 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-11-08 21:03 - 2015-09-25 01:56 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2016-03-31 13:55 - 2016-03-27 09:58 - 01675928 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.110\libglesv2.dll
2016-03-31 13:55 - 2016-03-27 09:58 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.110\libegl.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Osman:Heroes & Generals [38]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2015-11-17 19:09 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Osman\Desktop\Fixed\TSS\TeamShadowShout\Wallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\StartupApproved\Run: => "OneDrive"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{3E2F69BC-328F-4EC4-99DB-E2C8AF135F45}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{B9103AEB-A569-4E8D-A623-6B217CD3BC52}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{C497A68C-676A-4060-AB82-B3906F2FED42}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B833F7FF-602D-454A-91B9-5893CB753D1A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{9BE53BB6-7E41-44A5-A29B-E80C718C9CDE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{ED623B69-9F69-46B7-A5EF-07B51A5120B3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1D6D9420-1B79-49B8-A8F5-1966F6ACD074}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{679AA548-620D-448C-8056-6102261C749E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{64B77EDD-60D1-4E40-82D6-156D28686FD4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{0DBC88EC-D64C-42FB-BCE0-EB6232034A50}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{EEA469CD-9795-496F-AA93-FB9C341AD624}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{98B5DDCF-71A1-4798-82C9-D7168E55AB72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{A486D504-CF79-4EC0-8DEA-F2194FB06F67}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{F5E8BCF2-452C-462C-BEE6-1FA8C0834A33}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{B4F2150C-E4F2-4A9C-8C5F-3C474BD56630}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{CC59B5E3-ECA1-4ED9-A369-E2F89FF61F5E}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{12A69A4C-299F-42D9-A810-73FC07AB93A0}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{E15FF490-D0B2-4394-AF83-F7EB6CEE3F0A}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{C9948869-D0AB-4669-A5FC-B09E2062984D}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{6764E70F-718D-4633-A6CE-71821519DECE}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\DeviceSetup.exe
FirewallRules: [{6DEC7811-A4BB-4B8F-9B29-242742F63256}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{7F10254F-0108-42D1-92C4-ABC489A46209}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [TCP Query User{805157EF-9F5C-4C43-837B-9FD8D1066647}C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe] => (Allow) C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe
FirewallRules: [UDP Query User{A17ECDE3-2688-48C8-82AC-C0E64881E5CE}C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe] => (Allow) C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe
FirewallRules: [{B46E8C0F-92B2-4DF2-AF11-5B89C2A01873}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{C6E4C398-35CE-41C7-81B4-F21B35CFE11B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{9B20A65D-AEC5-4D7E-BD22-B7417ED96C4A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{2934FB41-65C3-413A-BFBB-F1E98D6A278E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{32276A42-14CE-4D26-B651-6F1A91736686}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{FDE1EF00-1EF7-46FA-AC2F-727B3FB2E0C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{730725C1-9001-455E-914B-565B6283B60E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{6FE1034F-54CC-4645-BD54-37E7D7354B95}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{335CBAF1-B952-46F8-A7B0-4A1FE31229B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{DFE055ED-D38F-45C5-8C10-CDE671EB1A29}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{ACDD5590-8AED-4B90-A88C-0AA5D3A7AB21}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{2464BD2F-D4D8-4B93-B2DA-A4019CB23E71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{A163488E-D3CC-4919-942B-D694FC5D08A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{D11620F9-6130-4FFE-B704-007B8F2C54E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{FA4A9BFF-0102-496C-B20F-B7C68AED0295}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{1D91B6AD-913A-4082-9817-932A2DB9E1B6}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{7722D30C-1F26-4DB3-94AC-0B0E9C9FB307}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{4CB129D8-43F8-4D38-8D77-FBD954EA9762}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{0F740AE8-B8BF-48BB-8E22-D16AF7484630}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{4C1BB1D2-A7FC-48F9-98CA-BA46761BCA89}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{F1A49C1B-6ACF-45CC-8FD3-29C890B5E66D}] => (Allow) C:\Users\Osman\AppData\Local\Temp\Setup.exe
FirewallRules: [{16C2A55B-A0B9-4383-9417-1B405BF949F1}] => (Allow) C:\Users\Osman\AppData\Local\Temp\Setup.exe
FirewallRules: [{A9C3A14A-D28C-4831-A143-1732EDA97F06}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\My Name is Mayo\windows\My Name is Mayo.exe
FirewallRules: [{91B65285-C905-4AEE-BECC-E54C77B80581}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\My Name is Mayo\windows\My Name is Mayo.exe
FirewallRules: [{B118D548-ACBB-4B2C-8A3F-A2464A7CE242}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{6C8B620D-2D9A-4FFB-8359-1E209B32F393}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{64928B65-98EC-4BC5-A4C5-896B7104F857}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe
FirewallRules: [{C42D1250-0A89-4ED7-93C3-B8B617B165AA}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe
FirewallRules: [TCP Query User{0B2DCC73-CBB8-4B75-B3CC-4CEAB6AB556B}C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{59C5A8B8-49C4-419B-9D62-00884203C481}C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{F8739322-2DC5-4FF4-BA5C-24B79F753C77}] => (Block) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{5004D2EE-102D-4061-81BB-491615715FA0}] => (Block) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{CE61B4F3-9D2C-483D-9CBC-355F84710462}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [UDP Query User{534FF8CA-A26B-441E-9B02-20BA570D3E2D}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{F4926233-A035-40B9-939F-D2CE57F32BC0}] => (Block) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{561CD292-83D6-4D02-ADFE-F1422A946D2E}] => (Block) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{E1A84DDC-2444-4CF9-9D93-BBDFFB1BEFC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{826EA902-E613-4C9D-87D8-EDB92449FBA5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{D6A5731E-4ABF-4EF4-8219-4E26C2E1A28B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{8DDFCCEF-BC46-4CD7-A5BE-FF266A0B46F3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{67367524-88A8-4814-A8C0-1A0FA7FDC85D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Worms Armageddon\WA.exe
FirewallRules: [{02E50950-19CF-47F3-8B2B-837228FA7F8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Worms Armageddon\WA.exe
FirewallRules: [{C10B9F39-38FD-4CF1-8E5B-74C69B785732}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{5BE9E932-0EDF-4756-AA18-8010AFB7147F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{32DA20A5-46B8-4B4E-9443-1959A2DF57B1}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{6F05DA70-7327-423F-9F41-DDF0C3CB4E4E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{22C62C88-20BC-4DF1-AD00-965962B11F29}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{3B1B8C3D-921A-49B1-AEFF-5751321C09F0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{681F88EE-0D7E-4DB5-B072-6DB0DA1BA7D0}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{291B2A3C-22CB-4536-9F9B-D98FB01F64B0}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{48B05D55-9B77-4BE0-BEC0-56580C1D06CB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheCulling\TheCulling_Launcher.exe
FirewallRules: [{29E6BBCB-2C9D-4931-B013-B7B82456FA42}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheCulling\TheCulling_Launcher.exe
FirewallRules: [TCP Query User{911A3305-0B4D-4A24-9AB8-8F0B356CA4ED}C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe
FirewallRules: [UDP Query User{2817D04B-1938-4ABA-8464-42C57A0AAAD8}C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe
FirewallRules: [{89FFF51C-AD16-46FD-98F6-1607B0D62B04}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8B7252C3-908F-4F99-8885-251E9EA1B9F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{88F5EFDA-8F08-4E39-A4F2-9811249F5C9F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{ACC2ED08-F69C-4D07-B206-453AE2B702AF}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{F6259F9C-62A5-4198-822C-F108D263E2A6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{722819F5-6B43-48E0-859D-D181379211DF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{1B212C75-BD24-4546-8A1F-CC15778A10AE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{86193390-C4A9-4E19-B91D-21100C53F386}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
==================== Wiederherstellungspunkte =========================
30-03-2016 15:21:55 Installiert Realtek Ethernet Controller Driver
30-03-2016 15:30:21 Entfernt Realtek High Definition Audio Driver
30-03-2016 15:33:46 Installiert Realtek High Definition Audio Driver
01-04-2016 14:56:26 Installed ProductName
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (04/01/2016 02:56:27 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (03/31/2016 09:47:03 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm ShellExperienceHost.exe, Version 10.0.10240.16515 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1194
Startzeit: 01d18b812279322f
Beendigungszeit: 4294967295
Anwendungspfad: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
Berichts-ID: 55fbd032-f779-11e5-8d90-1c6f65d3966b
Vollständiger Name des fehlerhaften Pakets: Microsoft.Windows.ShellExperienceHost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy
Auf das fehlerhafte Paket bezogene Anwendungs-ID: App
Error: (03/31/2016 09:47:01 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: Osman-PC)
Description: Das Paket „Microsoft.Windows.ShellExperienceHost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy+App“ wurde beendet, da das Anhalten zu lange dauerte.
Error: (03/31/2016 09:10:17 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm ShellExperienceHost.exe, Version 10.0.10240.16515 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 115c
Startzeit: 01d18b5df7dfc45a
Beendigungszeit: 4294967295
Anwendungspfad: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
Berichts-ID: 32ada25a-f774-11e5-8d8f-1c6f65d3966b
Vollständiger Name des fehlerhaften Pakets: Microsoft.Windows.ShellExperienceHost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy
Auf das fehlerhafte Paket bezogene Anwendungs-ID: App
Error: (03/31/2016 09:10:15 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: Osman-PC)
Description: Das Paket „Microsoft.Windows.ShellExperienceHost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy+App“ wurde beendet, da das Anhalten zu lange dauerte.
Error: (03/30/2016 11:56:51 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Osman-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (03/30/2016 03:33:48 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (03/30/2016 03:32:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: NvStreamNetworkService.exe, Version: 7.1.2057.3066, Zeitstempel: 0x56f3737e
Name des fehlerhaften Moduls: NvMdnsPlugin.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x56f37891
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000d45a0
ID des fehlerhaften Prozesses: 0x2dc8
Startzeit der fehlerhaften Anwendung: 0xNvStreamNetworkService.exe0
Pfad der fehlerhaften Anwendung: NvStreamNetworkService.exe1
Pfad des fehlerhaften Moduls: NvStreamNetworkService.exe2
Berichtskennung: NvStreamNetworkService.exe3
Vollständiger Name des fehlerhaften Pakets: NvStreamNetworkService.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: NvStreamNetworkService.exe5
Error: (03/30/2016 03:30:21 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (03/30/2016 03:21:56 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Systemfehler:
=============
Error: (04/01/2016 01:33:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (04/01/2016 01:33:00 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (03/31/2016 10:51:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (03/31/2016 09:10:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (03/31/2016 05:23:07 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x8024200d fehlgeschlagen: Upgrade auf Windows 10 Pro, Version 1511, 10586
Error: (03/31/2016 05:15:45 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (03/31/2016 04:59:08 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (03/30/2016 11:56:51 PM) (Source: DCOM) (EventID: 10010) (User: Osman-PC)
Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca
Error: (03/30/2016 11:56:50 PM) (Source: DCOM) (EventID: 10010) (User: Osman-PC)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
Error: (03/30/2016 11:56:50 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}
CodeIntegrity:
===================================
Date: 2016-03-31 17:22:31.002
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-03-25 19:28:02.978
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 22%
Installierter physikalischer RAM: 11767.23 MB
Verfügbarer physikalischer RAM: 9121.45 MB
Summe virtueller Speicher: 23543.23 MB
Verfügbarer virtueller Speicher: 20557.22 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:232.35 GB) (Free:53 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: F8A88DB0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
==================== Ende von Addition.txt ============================
Geändert von TheNoobly (01.04.2016 um 16:57 Uhr) |
|
03.04.2016, 16:33
| #6 |
| /// Malwareteam | Chrome flackert, CMD Pop UpESET Online Scanner
Hinweis: Dieser Scan kann schon einmal mehrere Stunden dauern... Die Probleme hast du noch immer nehme ich an?
__________________ --> Chrome flackert, CMD Pop Up |
|
03.04.2016, 19:07
| #7 |
| | Chrome flackert, CMD Pop Up ESET Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=a2a750da1436d14fade218d724b40375
# end=init
# utc_time=2016-04-03 03:50:11
# local_time=2016-04-03 05:50:11 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
Update Init
Update Download
esets_scanner_update returned -1 esets_gle=41221
Update Finalize
Updated modules version: 0
Old modules - leave modules
Update Init
Update Download
Update Init
Update Download
Update Finalize
Updated modules version: 28887
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=a2a750da1436d14fade218d724b40375
# end=updated
# utc_time=2016-04-03 04:05:13
# local_time=2016-04-03 06:05:13 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=a2a750da1436d14fade218d724b40375
# engine=28887
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2016-04-03 04:55:14
# local_time=2016-04-03 06:55:14 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 19022 23204179 0 0
# scanned=226476
# found=0
# cleaned=0
# scan_time=3000
Chrome flackert ab und zu in verschiedenen Abständen, die CMD kommt auch und haut mich auf dem Desktop als hätte ich die Windowstaste gedrückt. |
|
03.04.2016, 20:15
| #8 |
| /// Malwareteam | Chrome flackert, CMD Pop Up Schritt 1 Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter HKLM-x32\...\Run: [] => [X]
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Keine Datei
Task: {67535269-9CCC-492A-A2AA-8DD8F4B645E2} - System32\Tasks\SlimCleaner Plus (Scheduled Scan - Osman) => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
Task: C:\WINDOWS\Tasks\SlimCleaner Plus (Scheduled Scan - Osman).job => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
C:\Program Files\SlimCleaner Plus
emptytemp:
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Schritt: 2 Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.  Hast du noch irgendwelche Probleme mit deinem Rechner?
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
04.04.2016, 00:27
| #9 |
| | Chrome flackert, CMD Pop Up Fixlog Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
durchgeführt von Osman (2016-04-03 21:29:12) Run:1
Gestartet von C:\Users\Osman\Desktop
Geladene Profile: Osman (Verfügbare Profile: Osman)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
HKLM-x32\...\Run: [] => [X]
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Keine Datei
Task: {67535269-9CCC-492A-A2AA-8DD8F4B645E2} - System32\Tasks\SlimCleaner Plus (Scheduled Scan - Osman) => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
Task: C:\WINDOWS\Tasks\SlimCleaner Plus (Scheduled Scan - Osman).job => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
C:\Program Files\SlimCleaner Plus
emptytemp:
*****************
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Wert erfolgreich entfernt
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => Schlüssel nicht gefunden.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{67535269-9CCC-492A-A2AA-8DD8F4B645E2}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{67535269-9CCC-492A-A2AA-8DD8F4B645E2}" => Schlüssel erfolgreich entfernt
C:\WINDOWS\System32\Tasks\SlimCleaner Plus (Scheduled Scan - Osman) => erfolgreich verschoben
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SlimCleaner Plus (Scheduled Scan - Osman)" => Schlüssel erfolgreich entfernt
C:\WINDOWS\Tasks\SlimCleaner Plus (Scheduled Scan - Osman).job => erfolgreich verschoben
"C:\Program Files\SlimCleaner Plus" => nicht gefunden.
EmptyTemp: => 5.8 GB temporäre Dateien entfernt.
Das System musste neu gestartet werden.
==== Ende von Fixlog 21:29:43 ====
Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
durchgeführt von Osman (Administrator) auf OSMAN-PC (03-04-2016 21:32:31)
Gestartet von C:\Users\Osman\Desktop
Geladene Profile: Osman (Verfügbare Profile: Osman)
Platform: Windows 10 Pro (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Users\Osman\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicatorCom.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Razer Inc) C:\Program Files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenHelper.exe
() C:\Program Files (x86)\Razer\Abyssus\razerhid.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Razer\Abyssus\razertra.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Abyssus\razerofa.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(TeamSpeak Systems GmbH) C:\Users\Osman\AppData\Local\TeamSpeak 3 Client\ts3client_win64.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Razer, Inc.) C:\Users\Osman\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\rzcefrenderprocess.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Razer\Abyssus\vdDaemon.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicator.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397752 2016-03-25] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728 2015-08-09] (IvoSoft)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16418560 2000-01-01] (Realtek Semiconductor)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [594240 2016-01-13] (Razer Inc.)
HKLM-x32\...\Run: [KrakenLauncher] => C:\Program Files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenHelper.exe [1599808 2015-08-14] (Razer Inc)
HKLM-x32\...\Run: [Abyssus] => C:\Program Files (x86)\Razer\Abyssus\razerhid.exe [295936 2013-01-21] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-12-22] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2016-03-22] (LogMeIn Inc.)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3077712 2016-03-31] (Valve Corporation)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\Run: [HP Photosmart 5520 series (NET)] => C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
Startup: C:\Users\Osman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Photosmart 5520 series (Netzwerk).lnk [2016-04-03]
ShortcutTarget: Tintenwarnungen überwachen - HP Photosmart 5520 series (Netzwerk).lnk -> C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\..\Interfaces\{5d5e4d95-d401-46ee-ba8d-3e62fda563f5}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{d4856a0e-77d9-4b49-806a-69752f023856}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f303f0ee-c7b3-4827-9113-657ab98dd75a}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.yahoo.com/?fr=yset_ie_syc_oracle&type=orcl_hpset
SearchScopes: HKU\S-1-5-21-2498436991-496876813-1431611548-1000 -> {31164661-CF05-4EDA-9E6D-7D839F670C21} URL = hxxps://ch.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-08-09] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll [2016-01-23] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-01-23] (Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
FireFox:
========
FF ProfilePath: C:\Users\Osman\AppData\Roaming\Mozilla\Firefox\Profiles\v50bv2sd.default
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [Keine Datei]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [Keine Datei]
FF Plugin-x32: @java.com/DTPlugin,version=11.71.2 -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\dtplugin\npDeployJava1.dll [2016-01-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.71.2 -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\plugin2\npjp2.dll [2016-01-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-27] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2498436991-496876813-1431611548-1000: @squareclock.com/SQ3DPlayer_Production_HBMV1 -> C:\Users\Osman\AppData\Local\SquareClock.Production_HBMV1\NPSQ3D.dll [2015-11-19] (SquareClock SAS)
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-03-16] [ist nicht signiert]
Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.ch/
CHR StartupUrls: Default -> "hxxp://google.ch/"
CHR DefaultSearchURL: Default -> hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=orcl_default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://de.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-03-27]
CHR Extension: (Google Docs) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-27]
CHR Extension: (Google Drive) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-27]
CHR Extension: (YouTube) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-27]
CHR Extension: (Adblock Plus) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-27]
CHR Extension: (Steam inventory helper) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2016-03-27]
CHR Extension: (Google Tabellen) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-03-27]
CHR Extension: (Google Docs Offline) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-28]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Google Mail) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-27]
CHR HKLM-x32\...\Chrome\Extension: [eedgghdcpmmmilkmfpnklknlenbiolec] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1362464 2016-03-22] ()
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [243984 2016-03-24] (EasyAntiCheat Ltd)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342240 2015-06-03] (Futuremark)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164856 2016-03-25] (NVIDIA Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [26680 2016-02-18] (Hewlett-Packard Company)
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2016-03-22] (LogMeIn, Inc.)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [3512928 2015-07-22] (INCA Internet Co., Ltd.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-03-25] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-03-25] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-03-25] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-02] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2016-03-20] ()
R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [189248 2016-03-20] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-11-05] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 Abyssus; C:\Windows\system32\drivers\Abyssus.sys [23040 2013-01-09] ( )
S3 GVTDrv64; C:\WINDOWS\GVTDrv64.sys [30528 2015-10-31] ()
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608 2015-07-07] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-03-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-03-21] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [935168 2000-01-01] (Realtek )
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-09-23] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [130880 2015-12-15] (Razer, Inc.)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33960 2000-01-01] (Synaptics Incorporated)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 usbrndis6; C:\Windows\System32\drivers\usb80236.sys [22016 2015-07-10] (Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; kein ImagePath
S3 vmci; \SystemRoot\System32\drivers\vmci.sys [X]
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-04-03 21:32 - 2016-04-03 21:32 - 00019304 _____ C:\Users\Osman\Desktop\FRST.txt
2016-04-03 21:30 - 2016-04-03 21:30 - 00016148 _____ C:\WINDOWS\system32\OSMAN-PC_Osman_HistoryPrediction.bin
2016-04-03 21:29 - 2016-04-03 21:29 - 00001955 _____ C:\Users\Osman\Desktop\Fixlog.txt
2016-04-03 17:50 - 2016-04-03 17:50 - 00000000 ____D C:\Program Files (x86)\ESET
2016-04-03 17:42 - 2016-04-03 17:50 - 02870984 _____ (ESET) C:\Users\Osman\Downloads\esetsmartinstaller_deu.exe
2016-04-03 13:41 - 2016-04-03 13:41 - 00001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-04-03 13:41 - 2016-04-03 13:41 - 00001216 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-04-03 13:41 - 2016-04-03 13:41 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-04-03 13:41 - 2016-04-03 13:41 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-04-03 13:40 - 2016-04-03 13:40 - 00242376 _____ C:\Users\Osman\Downloads\Firefox Setup Stub 45.0.1.exe
2016-04-02 12:50 - 2016-04-02 12:50 - 00000000 ____D C:\Users\Osman\AppData\Local\Integrad.3
2016-04-01 16:28 - 2016-04-01 16:45 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-04-01 16:28 - 2016-04-01 16:28 - 00001171 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-04-01 16:28 - 2016-04-01 16:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2016-04-01 16:28 - 2016-04-01 16:28 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2016-04-01 16:28 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-04-01 16:28 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-04-01 16:28 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-04-01 16:27 - 2016-04-01 16:27 - 22851472 _____ (Malwarebytes ) C:\Users\Osman\Downloads\mbam-setup-2.2.1.1043.exe
2016-04-01 15:07 - 2016-04-01 15:07 - 00000000 ____D C:\Users\Osman\Documents\NFS Undercover
2016-04-01 15:05 - 2016-04-01 15:05 - 00000000 __RHD C:\Users\Osman\AppData\Roaming\SecuROM
2016-04-01 14:59 - 2016-04-01 14:59 - 00000000 ____D C:\Users\Osman\AppData\Roaming\Leadertech
2016-03-31 21:36 - 2016-03-22 03:57 - 00110528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2016-03-31 21:35 - 2016-03-31 21:36 - 00000000 ____D C:\WINDOWS\LastGood
2016-03-31 21:35 - 2016-03-22 06:08 - 42923576 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 37567424 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 31594432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 25350080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 21364536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 20906168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 17755928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 17349776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 02614208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 02260024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00960056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00889400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00786872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00751552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00695864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00632336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00546328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00448824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00425016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00385080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00379448 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00379296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00348216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00317656 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00176064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00153392 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00151368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00129208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2016-03-31 21:07 - 2016-03-31 21:07 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-03-31 21:06 - 2016-02-24 01:57 - 01924152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436200.dll
2016-03-31 21:06 - 2016-02-24 01:57 - 01571776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436200.dll
2016-03-31 21:00 - 2016-03-31 21:00 - 00000000 ____D C:\Users\Osman\Intel
2016-03-31 20:59 - 2016-03-31 21:06 - 00000000 ____D C:\NVIDIA
2016-03-31 20:55 - 2016-03-31 21:09 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-03-31 20:55 - 2016-03-31 20:55 - 00001112 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-03-31 20:55 - 2016-03-31 20:55 - 00001100 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2016-03-31 20:55 - 2016-03-31 20:55 - 00000000 ____D C:\Users\Osman\AppData\Roaming\TeamViewer
2016-03-31 19:46 - 2016-04-03 21:32 - 00000000 ____D C:\FRST
2016-03-31 19:46 - 2016-03-31 19:46 - 02374144 _____ (Farbar) C:\Users\Osman\Desktop\FRST64.exe
2016-03-30 23:54 - 2016-03-30 23:54 - 03102720 _____ C:\Users\Osman\Downloads\adwcleaner_5.108.exe
2016-03-30 15:50 - 2016-03-30 15:50 - 00000000 ____D C:\ProgramData\updater2
2016-03-30 15:50 - 2016-03-30 15:50 - 00000000 ____D C:\oem
2016-03-30 15:34 - 2016-03-30 15:34 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-03-30 15:34 - 2016-03-30 15:34 - 00000000 ____D C:\Program Files\Realtek
2016-03-30 15:34 - 2000-01-01 02:00 - 72203792 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2016-03-30 15:34 - 2000-01-01 02:00 - 07172920 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 04779776 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2016-03-30 15:34 - 2000-01-01 02:00 - 03769493 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2016-03-30 15:34 - 2000-01-01 02:00 - 03283248 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 03195648 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 03080784 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 02894976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2016-03-30 15:34 - 2000-01-01 02:00 - 02036992 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 01356504 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00689888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00447728 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00343712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00192992 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00151792 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00134208 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00084616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00023704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2016-03-30 15:33 - 2016-03-30 15:33 - 00000000 ____D C:\WINDOWS\oem
2016-03-30 15:33 - 2000-01-01 02:00 - 07096192 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 01965816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 01780624 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 01591064 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 01508936 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00743968 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00727440 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00708320 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00504312 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00445408 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00441272 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00327464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00272720 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00253904 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00253872 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00252880 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00118600 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00105312 _____ C:\WINDOWS\system32\audioLibVc.dll
2016-03-30 15:32 - 2016-03-30 15:32 - 00003756 _____ C:\WINDOWS\System32\Tasks\ACC
2016-03-30 15:32 - 2016-03-30 15:32 - 00000000 ____D C:\ProgramData\DriverSetupUtility
2016-03-30 15:32 - 2016-03-30 15:32 - 00000000 ____D C:\Program Files\DriverSetupUtility
2016-03-30 15:26 - 2016-03-21 22:01 - 00109632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-03-30 15:26 - 2016-03-21 22:01 - 00100416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-03-30 15:22 - 2000-01-01 02:00 - 00082544 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2016-03-29 00:12 - 2016-03-29 00:12 - 00000222 _____ C:\Users\Osman\Desktop\Heroes & Generals.url
2016-03-28 15:09 - 2016-03-31 21:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan
2016-03-28 15:08 - 2016-03-22 06:08 - 17369448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 10550552 _____ C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 08659472 _____ C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 01922496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436472.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 01571776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436472.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00678520 _____ C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00572096 _____ C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00000139 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-03-28 15:08 - 2016-03-22 06:08 - 00000139 _____ C:\WINDOWS\system32\nv-vk64.json
2016-03-27 22:49 - 2016-03-31 13:55 - 00002264 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-27 22:49 - 2016-03-31 13:55 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-03-27 22:21 - 2016-04-03 21:30 - 00001122 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-27 22:21 - 2016-04-03 20:54 - 00001126 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-27 22:21 - 2016-03-27 22:49 - 00003952 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-03-27 22:21 - 2016-03-27 22:21 - 00987728 _____ (Google Inc.) C:\Users\Osman\Downloads\ChromeSetup.exe
2016-03-27 14:50 - 2016-04-03 14:07 - 00000000 ____D C:\Users\Osman\AppData\Local\Mozilla
2016-03-27 14:50 - 2016-03-27 14:51 - 00000000 ____D C:\Users\Osman\AppData\Roaming\Mozilla
2016-03-25 02:02 - 2016-03-25 02:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-03-25 02:02 - 2016-03-25 02:02 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2016-03-24 21:00 - 2016-03-24 21:00 - 00000000 ____D C:\Users\Osman\AppData\Local\Victory
2016-03-24 21:00 - 2016-03-24 21:00 - 00000000 ____D C:\Users\Osman\AppData\Local\UnrealEngine
2016-03-24 20:01 - 2016-03-24 20:01 - 00000222 _____ C:\Users\Osman\Desktop\The Culling.url
2016-03-20 00:55 - 2016-03-20 00:55 - 00001243 _____ C:\Users\Public\Desktop\Battlefield 3.lnk
2016-03-16 23:30 - 2016-03-16 23:30 - 00128792 _____ C:\WINDOWS\SysWOW64\vulkan-1-1-0-5-1.dll
2016-03-16 23:29 - 2016-03-16 23:29 - 00127768 _____ C:\WINDOWS\system32\vulkan-1-1-0-5-1.dll
2016-03-16 23:29 - 2016-03-16 23:29 - 00041752 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-1-0-5-1.exe
2016-03-16 23:28 - 2016-03-16 23:28 - 00045848 _____ C:\WINDOWS\system32\vulkaninfo-1-1-0-5-1.exe
2016-03-16 19:20 - 2016-03-26 23:46 - 00000000 ____D C:\Users\Osman\AppData\Local\osu!
2016-03-16 19:20 - 2016-03-16 19:20 - 00001057 _____ C:\Users\Osman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2016-03-16 19:20 - 2016-03-16 19:20 - 00001049 _____ C:\Users\Osman\Desktop\osu!.lnk
2016-03-16 19:19 - 2016-03-16 19:19 - 04482104 _____ (ppy) C:\Users\Osman\Downloads\osu!install.exe
2016-03-16 19:19 - 2016-03-16 19:19 - 00000000 ____D C:\Users\Osman\Downloads\Localisation
2016-03-12 13:59 - 2016-03-31 21:36 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-03-12 13:59 - 2016-03-16 23:30 - 00128792 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-03-12 13:59 - 2016-03-16 23:29 - 00127768 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-03-12 13:59 - 2016-03-16 23:29 - 00041752 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-03-12 13:59 - 2016-03-16 23:28 - 00045848 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-03-12 13:59 - 2016-03-12 13:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.0
2016-03-12 13:58 - 2016-03-08 12:27 - 01922496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436451.dll
2016-03-12 13:58 - 2016-03-08 12:27 - 01571776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436451.dll
2016-03-11 16:51 - 2016-03-11 16:51 - 00000000 ___HD C:\$WINDOWS.~BT
2016-03-09 16:23 - 2016-02-23 16:53 - 01314496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-03-09 16:23 - 2016-02-23 16:52 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-03-09 16:23 - 2016-02-23 16:51 - 00633184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-03-09 16:23 - 2016-02-23 16:51 - 00146784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2016-03-09 16:23 - 2016-02-23 16:50 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-03-09 16:23 - 2016-02-23 16:48 - 08022368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-03-09 16:23 - 2016-02-23 16:48 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-03-09 16:23 - 2016-02-23 16:48 - 01123952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-03-09 16:23 - 2016-02-23 16:41 - 01150816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-03-09 16:23 - 2016-02-23 16:41 - 00299600 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMASF.DLL
2016-03-09 16:23 - 2016-02-23 16:41 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2016-03-09 16:23 - 2016-02-23 16:40 - 00110584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2016-03-09 16:23 - 2016-02-23 16:38 - 00272752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2016-03-09 16:23 - 2016-02-23 16:36 - 00080128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2016-03-09 16:23 - 2016-02-23 16:11 - 00781984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-03-09 16:23 - 2016-02-23 16:11 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-03-09 16:23 - 2016-02-23 16:11 - 00103776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-03-09 16:23 - 2016-02-23 16:08 - 03622272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-03-09 16:23 - 2016-02-23 16:07 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-03-09 16:23 - 2016-02-23 15:39 - 00607416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-03-09 16:23 - 2016-02-23 15:30 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-03-09 16:23 - 2016-02-23 15:25 - 01085632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-03-09 16:23 - 2016-02-23 15:23 - 00952968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-03-09 16:23 - 2016-02-23 15:21 - 00529456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-03-09 16:23 - 2016-02-23 15:21 - 00141152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2016-03-09 16:23 - 2016-02-23 15:11 - 00249976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMASF.DLL
2016-03-09 16:23 - 2016-02-23 15:11 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2016-03-09 16:23 - 2016-02-23 15:11 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2016-03-09 16:23 - 2016-02-23 15:09 - 00229352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2016-03-09 16:23 - 2016-02-23 15:06 - 00069232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2016-03-09 16:23 - 2016-02-23 14:58 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-03-09 16:23 - 2016-02-23 14:50 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-03-09 16:23 - 2016-02-23 14:50 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-03-09 16:23 - 2016-02-23 14:42 - 00658536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-03-09 16:23 - 2016-02-23 14:42 - 00467296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-03-09 16:23 - 2016-02-23 14:42 - 00078176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-03-09 16:23 - 2016-02-23 14:39 - 02879024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-03-09 16:23 - 2016-02-23 14:38 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-03-09 16:23 - 2016-02-23 14:35 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-03-09 16:23 - 2016-02-23 14:20 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-03-09 16:23 - 2016-02-23 14:17 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-03-09 16:23 - 2016-02-23 14:16 - 02237952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-03-09 16:23 - 2016-02-23 14:15 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-03-09 16:23 - 2016-02-23 14:15 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-03-09 16:23 - 2016-02-23 13:59 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-03-09 16:23 - 2016-02-23 13:59 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-03-09 16:23 - 2016-02-23 13:57 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-03-09 16:23 - 2016-02-23 13:55 - 24592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-03-09 16:23 - 2016-02-23 13:45 - 12504576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-03-09 16:23 - 2016-02-23 13:45 - 06788608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-03-09 16:23 - 2016-02-23 13:42 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-03-09 16:23 - 2016-02-23 13:42 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-03-09 16:23 - 2016-02-23 13:38 - 02663424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-03-09 16:23 - 2016-02-23 13:37 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetCfgNotifyObjectHost.exe
2016-03-09 16:23 - 2016-02-23 13:36 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-03-09 16:23 - 2016-02-23 13:25 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-03-09 16:23 - 2016-02-23 13:18 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-03-09 16:23 - 2016-02-23 13:17 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2016-03-09 16:23 - 2016-02-23 13:17 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll
2016-03-09 16:23 - 2016-02-23 13:14 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-03-09 16:23 - 2016-02-23 13:08 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-03-09 16:23 - 2016-02-23 13:04 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-03-09 16:23 - 2016-02-23 13:03 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2016-03-09 16:23 - 2016-02-23 13:03 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-03-09 16:23 - 2016-02-23 13:02 - 03587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-03-09 16:23 - 2016-02-23 12:55 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-03-09 16:23 - 2016-02-23 12:55 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-03-09 16:23 - 2016-02-23 12:51 - 00915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-03-09 16:23 - 2016-02-23 12:51 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-03-09 16:23 - 2016-02-23 12:48 - 21859840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-03-09 16:23 - 2016-02-23 12:48 - 05157376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-03-09 16:23 - 2016-02-23 12:46 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2016-03-09 16:23 - 2016-02-23 12:45 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-03-09 16:23 - 2016-02-23 12:45 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-03-09 16:23 - 2016-02-23 12:45 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-03-09 16:23 - 2016-02-23 12:45 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-03-09 16:23 - 2016-02-23 12:44 - 01821696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-03-09 16:23 - 2016-02-23 12:38 - 07524864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-03-09 16:23 - 2016-02-23 12:29 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll
2016-03-09 16:23 - 2016-02-23 12:17 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2016-03-09 16:23 - 2016-02-23 12:17 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-03-09 16:23 - 2016-02-23 12:11 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-03-09 16:23 - 2016-02-23 12:03 - 01495040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-03-09 16:23 - 2016-02-23 12:00 - 11263488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-03-09 16:23 - 2016-02-23 12:00 - 05457408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-03-09 16:23 - 2016-02-23 11:58 - 18800640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-03-07 19:26 - 2016-03-07 19:26 - 00000222 _____ C:\Users\Osman\Desktop\Worms Armageddon.url
2016-03-06 19:23 - 2016-03-06 19:25 - 00000000 ____D C:\Program Files (x86)\AdwCleaner
2016-03-06 19:22 - 2016-04-01 17:56 - 00000000 ____D C:\AdwCleaner
2016-03-06 19:22 - 2016-03-06 19:22 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-03-04 20:57 - 2016-03-04 20:57 - 00000222 _____ C:\Users\Osman\Desktop\The Binding of Isaac.url
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-04-03 21:32 - 2015-11-08 20:58 - 00000000 ____D C:\Users\Osman\AppData\Roaming\TS3Client
2016-04-03 21:31 - 2016-01-26 21:21 - 00000000 ____D C:\Users\Osman\AppData\Local\LogMeIn Hamachi
2016-04-03 21:31 - 2015-11-08 21:01 - 00000000 ____D C:\Program Files (x86)\Steam
2016-04-03 21:30 - 2015-10-31 02:55 - 00000000 ____D C:\ProgramData\NVIDIA
2016-04-03 21:30 - 2015-07-30 23:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-04-03 21:30 - 2015-07-10 11:05 - 00131072 ___SH C:\WINDOWS\system32\config\BBI
2016-04-03 21:29 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-04-03 21:27 - 2015-11-08 20:56 - 00000000 ____D C:\Users\Osman\AppData\Local\ClassicShell
2016-04-03 20:15 - 2015-11-09 17:23 - 00004156 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{2B17EC41-99A7-4254-9F30-A129F78769CF}
2016-04-03 18:14 - 2015-11-09 16:51 - 00000000 ____D C:\Users\Osman\Desktop\Fixed
2016-04-03 18:12 - 2015-11-12 20:24 - 00283896 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2016-04-03 03:28 - 2015-10-31 03:01 - 01790124 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-04-03 03:28 - 2015-09-10 07:10 - 00771100 _____ C:\WINDOWS\system32\perfh007.dat
2016-04-03 03:28 - 2015-09-10 07:10 - 00153964 _____ C:\WINDOWS\system32\perfc007.dat
2016-04-03 03:28 - 2015-07-31 00:40 - 00000000 ____D C:\WINDOWS\INF
2016-04-02 19:11 - 2016-01-09 13:59 - 00000000 ____D C:\Users\Osman\AppData\LocalLow\Heroes and Generals
2016-04-02 18:54 - 2015-10-31 02:56 - 00000000 ____D C:\Users\Osman
2016-04-02 18:40 - 2015-07-31 00:42 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-02 16:40 - 2015-11-16 18:50 - 00000000 ____D C:\Users\Osman\AppData\Local\CrashDumps
2016-04-01 15:05 - 2015-11-10 19:34 - 00000000 ____D C:\Users\Osman\AppData\Roaming\BitTorrent
2016-03-31 21:37 - 2015-10-31 03:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-03-31 21:37 - 2015-10-31 02:55 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-03-31 21:35 - 2015-10-31 02:55 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-03-31 21:11 - 2015-07-30 23:49 - 00242008 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-03-31 21:01 - 2015-10-31 02:55 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-03-31 21:01 - 2015-10-31 02:25 - 00000000 ____D C:\ProgramData\Intel
2016-03-31 21:01 - 2015-10-31 02:25 - 00000000 ____D C:\Program Files\Intel
2016-03-31 21:01 - 2015-10-31 02:24 - 00000000 ____D C:\Program Files (x86)\Intel
2016-03-31 17:23 - 2015-10-31 02:54 - 00000000 ___DC C:\WINDOWS\Panther
2016-03-30 15:34 - 2015-10-31 03:20 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-03-30 15:33 - 2015-10-31 02:24 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-03-30 15:30 - 2015-10-31 02:25 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-03-27 22:49 - 2015-10-31 04:16 - 00004184 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-03-27 22:49 - 2015-10-31 04:16 - 00000000 ____D C:\Users\Osman\AppData\Local\Google
2016-03-27 22:49 - 2015-10-31 04:16 - 00000000 ____D C:\Program Files (x86)\Google
2016-03-26 13:45 - 2015-09-10 07:44 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-03-26 02:01 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-03-26 02:01 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-03-26 02:01 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-03-26 02:01 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-03-25 20:52 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\rescache
2016-03-25 20:30 - 2015-11-08 21:11 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-03-25 20:29 - 2015-11-08 21:11 - 143659408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-03-25 20:29 - 2015-07-31 00:25 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-03-25 03:49 - 2015-10-31 03:19 - 01373864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-03-25 03:49 - 2015-10-31 03:19 - 01316184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-03-25 03:48 - 2015-11-14 18:46 - 00112216 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-03-25 03:48 - 2015-10-31 03:19 - 01767432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-03-25 03:48 - 2015-10-31 03:19 - 01756608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2016-03-25 03:23 - 2015-10-31 03:17 - 12659136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2016-03-24 20:59 - 2015-11-14 18:46 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-24 20:48 - 2015-12-12 19:41 - 00000000 ____D C:\ProgramData\Origin
2016-03-24 20:03 - 2015-11-12 20:24 - 00243984 _____ (EasyAntiCheat Ltd) C:\WINDOWS\SysWOW64\EasyAntiCheat.exe
2016-03-24 14:06 - 2016-01-20 15:54 - 00000000 ____D C:\Users\Osman\Desktop\Emulator
2016-03-22 06:08 - 2015-11-10 20:17 - 17328008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2016-03-22 06:08 - 2015-10-31 03:17 - 20074728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2016-03-22 06:08 - 2015-10-31 03:17 - 14226672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2016-03-22 06:08 - 2015-10-31 03:17 - 03685280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-03-22 06:08 - 2015-10-31 03:17 - 03263480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-03-22 06:08 - 2014-08-19 23:14 - 00038050 _____ C:\WINDOWS\system32\nvinfo.pb
2016-03-22 04:37 - 2016-01-06 15:15 - 00530880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-03-22 04:37 - 2016-01-06 15:15 - 00083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 06369728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 02994744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 02561472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 01265720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-03-22 04:37 - 2015-10-31 02:55 - 00393784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-03-21 22:01 - 2015-10-31 03:17 - 00056384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2016-03-20 00:55 - 2015-12-12 21:15 - 00189248 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2016-03-20 00:55 - 2015-12-12 21:15 - 00189248 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2016-03-20 00:55 - 2015-12-12 21:15 - 00075136 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2016-03-19 23:46 - 2015-12-12 19:49 - 00000000 ____D C:\Program Files (x86)\Origin Games
2016-03-18 13:44 - 2015-10-31 02:55 - 06253721 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-03-17 13:33 - 2015-11-09 16:51 - 00000000 ____D C:\Users\Osman\Desktop\Bewerbungsunterlagen
2016-03-09 14:25 - 2015-11-17 16:37 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-03-08 18:28 - 2015-12-17 22:09 - 00000000 ____D C:\Users\Osman\Desktop\Kasti
2016-03-08 09:10 - 2015-07-31 00:43 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-03-08 09:10 - 2015-07-31 00:43 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-03-07 22:27 - 2015-10-31 02:14 - 00000000 ____D C:\Users\Osman\AppData\Local\VirtualStore
2016-03-06 23:13 - 2015-09-10 07:22 - 00000000 ____D C:\Program Files\Windows Journal
2016-03-06 23:13 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\security
2016-03-06 19:27 - 2015-10-31 04:15 - 00000000 ____D C:\ProgramData\AVAST Software
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-11-19 15:44 - 2015-11-19 19:16 - 0353118 _____ () C:\Users\Osman\AppData\Local\SquareClock.Production_HBMV1Icon.ico
2015-11-12 23:15 - 2015-11-12 23:15 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-10-31 03:21 - 2015-10-31 03:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Einige Dateien in TEMP:
====================
C:\Users\Osman\AppData\Local\Temp\0KrakenDevProps.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-03-31 17:22
==================== Ende von FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
durchgeführt von Osman (2016-04-03 21:32:59)
Gestartet von C:\Users\Osman\Desktop
Windows 10 Pro (X64) (2015-10-31 01:06:00)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2498436991-496876813-1431611548-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2498436991-496876813-1431611548-503 - Limited - Disabled)
Gast (S-1-5-21-2498436991-496876813-1431611548-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2498436991-496876813-1431611548-1002 - Limited - Enabled)
Osman (S-1-5-21-2498436991-496876813-1431611548-1000 - Administrator - Enabled) => C:\Users\Osman
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
3DMark (HKLM-x32\...\{12d6e0d7-21d5-4755-9da2-70352c6f7558}) (Version: 1.5.915.0 - Futuremark)
3DMark (Version: 1.5.915.0 - Futuremark) Hidden
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
BitTorrent (HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\BitTorrent) (Version: 7.9.5.41866 - BitTorrent Inc.)
Classic Shell (HKLM\...\{E289B7DD-6732-4333-A47A-75A145D23EE3}) (Version: 4.2.4 - IvoSoft)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Dead Space (HKLM-x32\...\{025A585C-0C66-413D-80D2-4C05CB699771}) (Version: 1.0.0.222 - Electronic Arts)
Dead Space™ 3 (HKLM-x32\...\{D4329609-4102-4F8C-B83F-7FE024EEA314}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3011 - Acer Incorporated)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Futuremark SystemInfo (HKLM-x32\...\{AFBB2F94-A43D-46AD-8F77-66ACB3C71EDF}) (Version: 4.39.552.0 - Futuremark)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Heroes & Generals (HKLM\...\Steam App 227940) (Version: - Reto-Moto)
HomeByMe (HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\SquareClock_Production_HBMV1) (Version: - 3DVIA SAS)
HP Photosmart 5520 series - Grundlegende Software für das Gerät (HKLM\...\{4F396B08-301D-4E53-A372-95A7E93ABD04}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Support Solutions Framework (HKLM-x32\...\{B1AD4FFB-DD17-43EC-8C30-B9E71EAD9132}) (Version: 12.2.8.17 - Hewlett-Packard Company)
InputMapper (HKLM-x32\...\{1A44056A-C7D8-4561-BC43-A0AA7D7AAA64}) (Version: 1.5.31.0 - DSDCS)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Java 8 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218071F0}) (Version: 8.0.710.15 - Oracle Corporation)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.420 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.420 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Word 2010 (HKLM\...\Office14.WORD) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mozilla Firefox 45.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 45.0.1 (x86 de)) (Version: 45.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0.1 - Mozilla)
NVIDIA 3D Vision Controller-Treiber 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 364.72 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.2.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.2.49 - NVIDIA Corporation)
NVIDIA Grafiktreiber 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 364.72 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.11.1.6605 - Electronic Arts, Inc.)
OSC Third Party Libraries (Version: 1.1 - NVIDIA Corporation) Hidden
osu! (HKLM-x32\...\{d5bab322-3b11-4379-a6a1-2beb86643aa3}) (Version: latest - ppy Pty Ltd)
paint.net (HKLM\...\{DF3A46D9-67B3-44B2-9D01-25C8BA772C8A}) (Version: 4.0.6 - dotPDN LLC)
Pokemon Showdown (HKLM-x32\...\Pokemon Showdown) (Version: - "Pokemon Showdown")
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Razer Abyssus (HKLM-x32\...\{CBD6B23A-B54F-476A-9527-C262F469CACF}) (Version: 2.02 - Razer USA Ltd.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.28549 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.6.1001.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7727 - Realtek Semiconductor Corp.)
Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.2.49 - NVIDIA Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.56083 - TeamViewer)
The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version: - Edmund McMillen and Florian Himsl)
The Culling (HKLM\...\Steam App 437220) (Version: - Xaviant)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.5.1 (HKLM\...\VulkanRT1.0.5.1) (Version: 1.0.5.1 - LunarG, Inc.)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Worms Armageddon (HKLM-x32\...\Steam App 217200) (Version: - Team17 Digital Ltd)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2498436991-496876813-1431611548-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Osman\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe (Microsoft Corporation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0307B023-7FC8-415F-AF73-4A419D6499FB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-03-07] (Hewlett-Packard)
Task: {07820D8F-71E4-40C8-9051-9CF558899E6B} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {08F82527-165D-440F-BEB9-47CA891F0940} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {0F2F8A01-D5CC-466C-A57B-D079C5357570} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-27] (Google Inc.)
Task: {15F486F4-3DF7-4CE6-8485-D9102F7FB6EF} - System32\Tasks\ACC => C:\Program Files\DriverSetupUtility\FUB\FUB_Send.bat [2015-06-22] ()
Task: {1CD72DDF-8022-4042-9013-C2A7BEEC289A} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {20084A7E-DF4C-4034-A971-F2BBE40AF33C} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {21257B26-32B7-421C-9D2F-FFC8C5E0C24A} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {458CB899-72AF-4983-A9F7-0CE7282757BC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {4820EF9A-F5EC-4908-AEC5-80239B2DCC01} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {48651DA7-436C-4A29-933B-28CDF8E45127} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {48F3BD53-C7FE-44B4-B581-2E6576E7AB16} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {6432796B-26D6-49E4-AC1D-7251287E2545} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {7009927D-0981-434B-8FFE-AB4AF05F1411} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {790D23D2-95D8-4D02-8EF5-075C090631ED} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {7DBF8C9B-4F40-4202-BFB1-DE7C9B939E72} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {81C7E8F4-A620-4411-8BA4-C278A6D0F53F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-03-11] (Hewlett-Packard)
Task: {8734E420-1D14-4154-9BD0-4E8B60A0234D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {950E226B-34F9-49B5-AECE-54D90E44296B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {961CBF50-4722-4DD1-9790-3A73E4220A37} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {99030FF5-62D2-47F4-AB61-1D03BE590877} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {9A002FB6-2BB5-4657-B4D4-4C09B9884AE2} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {AD002DF4-8E63-436B-A468-DA0D99E52F19} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {BC5F0F9B-1185-4A13-BD00-337BE315F50E} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {CC9F7F61-3F09-4540-89BA-080299385CE2} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {EAB09CDD-E555-4F36-BC52-05FDDD874C7D} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {F12C7D93-66A6-4D93-ABB0-89110F671512} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {F9B647CC-330E-4609-B693-791DF53880B6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-27] (Google Inc.)
Task: {FB171A85-9F6F-4A39-AEC4-4D931511FF0F} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-09-10 07:12 - 2015-09-10 07:12 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-10-31 02:55 - 2016-03-22 04:37 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-09-10 07:12 - 2015-09-10 07:12 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-12-12 21:15 - 2016-03-20 00:55 - 00075136 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-12-12 21:15 - 2016-03-20 00:55 - 00189248 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.exe
2016-02-24 22:02 - 2016-03-25 03:52 - 00368184 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2015-11-14 18:46 - 2016-03-25 03:52 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-02-24 22:02 - 2016-03-25 03:52 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-02-24 22:02 - 2016-03-25 03:52 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2015-11-05 02:11 - 2015-11-05 02:12 - 00188072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2016-02-24 22:02 - 2016-03-25 03:52 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-02-24 22:02 - 2016-03-25 03:52 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-02-24 22:02 - 2016-03-25 03:52 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-01-06 15:06 - 2016-03-25 03:52 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2015-11-08 21:11 - 2015-09-17 08:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-11-08 21:11 - 2015-09-17 08:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-03-30 15:27 - 2016-03-25 03:52 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-03-30 15:27 - 2016-03-25 03:52 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2015-11-08 21:10 - 2015-09-17 07:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-12-09 19:07 - 2015-11-25 06:20 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-09 19:07 - 2015-11-25 06:17 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-09 19:07 - 2015-11-25 06:17 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-11-08 21:11 - 2015-09-17 07:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-11-12 21:06 - 2013-01-21 15:17 - 00295936 _____ () C:\Program Files (x86)\Razer\Abyssus\razerhid.exe
2015-11-12 21:06 - 2013-01-21 15:20 - 00295936 _____ () C:\Program Files (x86)\Razer\Abyssus\razertra.exe
2015-12-21 09:55 - 2015-12-21 09:55 - 00292352 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2015-10-22 13:22 - 2015-10-22 13:22 - 00175080 _____ () C:\Users\Osman\AppData\Local\TeamSpeak 3 Client\quazip.dll
2015-10-22 13:21 - 2015-10-22 13:21 - 00103400 _____ () C:\Users\Osman\AppData\Local\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2015-10-22 13:21 - 2015-10-22 13:21 - 00108008 _____ () C:\Users\Osman\AppData\Local\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2015-10-22 13:22 - 2015-10-22 13:22 - 00312296 _____ () C:\Users\Osman\AppData\Local\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2015-10-22 13:22 - 2015-10-22 13:22 - 00483816 _____ () C:\Users\Osman\AppData\Local\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2015-09-21 16:24 - 2015-09-21 16:24 - 00317440 _____ () C:\Users\Osman\AppData\Local\TeamSpeak 3 Client\ssleay32.dll
2015-09-21 16:24 - 2015-09-21 16:24 - 01709056 _____ () C:\Users\Osman\AppData\Local\TeamSpeak 3 Client\LIBEAY32.dll
2015-11-12 21:06 - 2011-03-01 15:34 - 01759232 _____ () C:\Program Files (x86)\Razer\Abyssus\vdDaemon.exe
2015-10-31 03:18 - 2016-03-25 03:52 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-04-03 21:30 - 2016-04-03 21:30 - 00619840 _____ () C:\Users\Osman\AppData\Local\Temp\0KrakenDevProps.dll
2016-02-26 10:29 - 2016-02-26 10:29 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2016-01-05 18:34 - 2015-10-06 21:26 - 50656768 _____ () C:\Users\Osman\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2016-01-05 18:34 - 2015-10-06 21:26 - 01874944 _____ () C:\Users\Osman\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll
2016-01-05 18:34 - 2015-10-06 21:26 - 00075264 _____ () C:\Users\Osman\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll
2016-03-31 13:55 - 2016-03-27 09:58 - 01675928 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.110\libglesv2.dll
2016-03-31 13:55 - 2016-03-27 09:58 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.110\libegl.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Osman:Heroes & Generals [38]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2015-11-17 19:09 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Osman\Desktop\Fixed\TSS\TeamShadowShout\Wallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\StartupApproved\Run: => "OneDrive"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{3E2F69BC-328F-4EC4-99DB-E2C8AF135F45}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{B9103AEB-A569-4E8D-A623-6B217CD3BC52}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{C497A68C-676A-4060-AB82-B3906F2FED42}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B833F7FF-602D-454A-91B9-5893CB753D1A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{9BE53BB6-7E41-44A5-A29B-E80C718C9CDE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{ED623B69-9F69-46B7-A5EF-07B51A5120B3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1D6D9420-1B79-49B8-A8F5-1966F6ACD074}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{679AA548-620D-448C-8056-6102261C749E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{64B77EDD-60D1-4E40-82D6-156D28686FD4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{0DBC88EC-D64C-42FB-BCE0-EB6232034A50}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{EEA469CD-9795-496F-AA93-FB9C341AD624}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{98B5DDCF-71A1-4798-82C9-D7168E55AB72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{A486D504-CF79-4EC0-8DEA-F2194FB06F67}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{F5E8BCF2-452C-462C-BEE6-1FA8C0834A33}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{B4F2150C-E4F2-4A9C-8C5F-3C474BD56630}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{CC59B5E3-ECA1-4ED9-A369-E2F89FF61F5E}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{12A69A4C-299F-42D9-A810-73FC07AB93A0}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{E15FF490-D0B2-4394-AF83-F7EB6CEE3F0A}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{C9948869-D0AB-4669-A5FC-B09E2062984D}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{6764E70F-718D-4633-A6CE-71821519DECE}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\DeviceSetup.exe
FirewallRules: [{6DEC7811-A4BB-4B8F-9B29-242742F63256}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{7F10254F-0108-42D1-92C4-ABC489A46209}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [TCP Query User{805157EF-9F5C-4C43-837B-9FD8D1066647}C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe] => (Allow) C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe
FirewallRules: [UDP Query User{A17ECDE3-2688-48C8-82AC-C0E64881E5CE}C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe] => (Allow) C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe
FirewallRules: [{B46E8C0F-92B2-4DF2-AF11-5B89C2A01873}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{C6E4C398-35CE-41C7-81B4-F21B35CFE11B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{9B20A65D-AEC5-4D7E-BD22-B7417ED96C4A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{2934FB41-65C3-413A-BFBB-F1E98D6A278E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{32276A42-14CE-4D26-B651-6F1A91736686}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{FDE1EF00-1EF7-46FA-AC2F-727B3FB2E0C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{730725C1-9001-455E-914B-565B6283B60E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{6FE1034F-54CC-4645-BD54-37E7D7354B95}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{335CBAF1-B952-46F8-A7B0-4A1FE31229B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{DFE055ED-D38F-45C5-8C10-CDE671EB1A29}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{ACDD5590-8AED-4B90-A88C-0AA5D3A7AB21}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{2464BD2F-D4D8-4B93-B2DA-A4019CB23E71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{A163488E-D3CC-4919-942B-D694FC5D08A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{D11620F9-6130-4FFE-B704-007B8F2C54E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{FA4A9BFF-0102-496C-B20F-B7C68AED0295}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{1D91B6AD-913A-4082-9817-932A2DB9E1B6}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{7722D30C-1F26-4DB3-94AC-0B0E9C9FB307}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{4CB129D8-43F8-4D38-8D77-FBD954EA9762}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{0F740AE8-B8BF-48BB-8E22-D16AF7484630}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{4C1BB1D2-A7FC-48F9-98CA-BA46761BCA89}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{F1A49C1B-6ACF-45CC-8FD3-29C890B5E66D}] => (Allow) C:\Users\Osman\AppData\Local\Temp\Setup.exe
FirewallRules: [{16C2A55B-A0B9-4383-9417-1B405BF949F1}] => (Allow) C:\Users\Osman\AppData\Local\Temp\Setup.exe
FirewallRules: [{A9C3A14A-D28C-4831-A143-1732EDA97F06}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\My Name is Mayo\windows\My Name is Mayo.exe
FirewallRules: [{91B65285-C905-4AEE-BECC-E54C77B80581}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\My Name is Mayo\windows\My Name is Mayo.exe
FirewallRules: [{B118D548-ACBB-4B2C-8A3F-A2464A7CE242}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{6C8B620D-2D9A-4FFB-8359-1E209B32F393}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{64928B65-98EC-4BC5-A4C5-896B7104F857}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe
FirewallRules: [{C42D1250-0A89-4ED7-93C3-B8B617B165AA}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe
FirewallRules: [TCP Query User{0B2DCC73-CBB8-4B75-B3CC-4CEAB6AB556B}C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{59C5A8B8-49C4-419B-9D62-00884203C481}C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{F8739322-2DC5-4FF4-BA5C-24B79F753C77}] => (Block) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{5004D2EE-102D-4061-81BB-491615715FA0}] => (Block) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{CE61B4F3-9D2C-483D-9CBC-355F84710462}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [UDP Query User{534FF8CA-A26B-441E-9B02-20BA570D3E2D}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{F4926233-A035-40B9-939F-D2CE57F32BC0}] => (Block) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{561CD292-83D6-4D02-ADFE-F1422A946D2E}] => (Block) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{E1A84DDC-2444-4CF9-9D93-BBDFFB1BEFC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{826EA902-E613-4C9D-87D8-EDB92449FBA5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{D6A5731E-4ABF-4EF4-8219-4E26C2E1A28B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{8DDFCCEF-BC46-4CD7-A5BE-FF266A0B46F3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{67367524-88A8-4814-A8C0-1A0FA7FDC85D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Worms Armageddon\WA.exe
FirewallRules: [{02E50950-19CF-47F3-8B2B-837228FA7F8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Worms Armageddon\WA.exe
FirewallRules: [{C10B9F39-38FD-4CF1-8E5B-74C69B785732}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{5BE9E932-0EDF-4756-AA18-8010AFB7147F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{32DA20A5-46B8-4B4E-9443-1959A2DF57B1}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{6F05DA70-7327-423F-9F41-DDF0C3CB4E4E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{22C62C88-20BC-4DF1-AD00-965962B11F29}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{3B1B8C3D-921A-49B1-AEFF-5751321C09F0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{681F88EE-0D7E-4DB5-B072-6DB0DA1BA7D0}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{291B2A3C-22CB-4536-9F9B-D98FB01F64B0}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{48B05D55-9B77-4BE0-BEC0-56580C1D06CB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheCulling\TheCulling_Launcher.exe
FirewallRules: [{29E6BBCB-2C9D-4931-B013-B7B82456FA42}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheCulling\TheCulling_Launcher.exe
FirewallRules: [TCP Query User{911A3305-0B4D-4A24-9AB8-8F0B356CA4ED}C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe
FirewallRules: [UDP Query User{2817D04B-1938-4ABA-8464-42C57A0AAAD8}C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe
FirewallRules: [{89FFF51C-AD16-46FD-98F6-1607B0D62B04}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8B7252C3-908F-4F99-8885-251E9EA1B9F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{88F5EFDA-8F08-4E39-A4F2-9811249F5C9F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{ACC2ED08-F69C-4D07-B206-453AE2B702AF}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{F6259F9C-62A5-4198-822C-F108D263E2A6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{722819F5-6B43-48E0-859D-D181379211DF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{1B212C75-BD24-4546-8A1F-CC15778A10AE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{86193390-C4A9-4E19-B91D-21100C53F386}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
==================== Wiederherstellungspunkte =========================
30-03-2016 15:21:55 Installiert Realtek Ethernet Controller Driver
30-03-2016 15:30:21 Entfernt Realtek High Definition Audio Driver
30-03-2016 15:33:46 Installiert Realtek High Definition Audio Driver
01-04-2016 14:56:26 Installed ProductName
02-04-2016 16:57:50 Removed Need for Speed™ Undercover
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (04/03/2016 06:56:18 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Error: (04/03/2016 05:50:08 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Error: (04/03/2016 05:50:07 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Error: (04/03/2016 05:50:06 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Error: (04/03/2016 03:24:05 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: NvStreamNetworkService.exe, Version: 7.1.2057.4495, Zeitstempel: 0x56f3ff60
Name des fehlerhaften Moduls: NvMdnsPlugin.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x56f47fc3
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000d45a0
ID des fehlerhaften Prozesses: 0xdc4
Startzeit der fehlerhaften Anwendung: 0xNvStreamNetworkService.exe0
Pfad der fehlerhaften Anwendung: NvStreamNetworkService.exe1
Pfad des fehlerhaften Moduls: NvStreamNetworkService.exe2
Berichtskennung: NvStreamNetworkService.exe3
Vollständiger Name des fehlerhaften Pakets: NvStreamNetworkService.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: NvStreamNetworkService.exe5
Error: (04/02/2016 04:57:51 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (04/02/2016 04:40:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: nfs.exe, Version: 1.0.0.1, Zeitstempel: 0x4903d933
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0001abf0
ID des fehlerhaften Prozesses: 0x2140
Startzeit der fehlerhaften Anwendung: 0xnfs.exe0
Pfad der fehlerhaften Anwendung: nfs.exe1
Pfad des fehlerhaften Moduls: nfs.exe2
Berichtskennung: nfs.exe3
Vollständiger Name des fehlerhaften Pakets: nfs.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: nfs.exe5
Error: (04/01/2016 02:56:27 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (03/31/2016 09:47:03 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm ShellExperienceHost.exe, Version 10.0.10240.16515 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1194
Startzeit: 01d18b812279322f
Beendigungszeit: 4294967295
Anwendungspfad: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
Berichts-ID: 55fbd032-f779-11e5-8d90-1c6f65d3966b
Vollständiger Name des fehlerhaften Pakets: Microsoft.Windows.ShellExperienceHost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy
Auf das fehlerhafte Paket bezogene Anwendungs-ID: App
Error: (03/31/2016 09:47:01 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: Osman-PC)
Description: Das Paket „Microsoft.Windows.ShellExperienceHost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy+App“ wurde beendet, da das Anhalten zu lange dauerte.
Systemfehler:
=============
Error: (04/03/2016 09:29:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session4" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (04/03/2016 07:10:45 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session3" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (04/03/2016 06:05:06 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Osman\AppData\Local\Temp\ehdrv.sys
Error: (04/03/2016 06:05:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (04/03/2016 06:05:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (04/03/2016 06:05:05 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Osman\AppData\Local\Temp\ehdrv.sys
Error: (04/03/2016 06:05:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (04/03/2016 06:05:05 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Osman\AppData\Local\Temp\ehdrv.sys
Error: (04/03/2016 06:04:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
Error: (04/03/2016 06:04:19 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Osman\AppData\Local\Temp\ehdrv.sys
CodeIntegrity:
===================================
Date: 2016-03-31 17:22:31.002
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-03-25 19:28:02.978
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 15%
Installierter physikalischer RAM: 11767.23 MB
Verfügbarer physikalischer RAM: 9893.79 MB
Summe virtueller Speicher: 23543.23 MB
Verfügbarer virtueller Speicher: 21526.27 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:232.35 GB) (Free:63.8 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: F8A88DB0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
==================== Ende von Addition.txt ============================
Ist dies nun erledigt? Falls ja, was war dann genau das Problem von Chrome und der CMD? Gruss TheNoobly Könnte auch ein Spielfehler sein. Hab es nun neu installiert. Falls dies nochmal passiert lass ich es dir wissen 04.04.2016 0:45 CMD wieder gekommen 04.04.2016 1:26 Chrom ist wieder am durchdrehen. Flackert immernoch ---> keine besserung Geändert von TheNoobly (03.04.2016 um 20:48 Uhr) |
|
04.04.2016, 01:27
| #10 |
| /// Malwareteam | Chrome flackert, CMD Pop Up okay, ich habe was recherchiert - das folgende sollte gegen deine plötzlichen Fenster helfen. Wie gehts deinem Chrome mittlerweile? Schritt 1 Lade Dir bitte von hier  Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
Hinweis: Falls bei der Deinstallation zu Beginn ein Fehler auftritt oder du den aufgerufenen Uninstaller nicht bedienen kannst, breche dieses Setup einfach ab und fahre mit der Entfernung durch Revo wie oben beschrieben fort. Schritt 2 Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen. Hast du noch irgendwelche Probleme mit deinem Rechner?
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... Geändert von burningice (04.04.2016 um 01:36 Uhr) |
|
04.04.2016, 16:28
| #11 |
| | Chrome flackert, CMD Pop Up Kein fund unter dem Namen DriverSetupUtility. Chrome spinnt immernoch gleich. |
|
04.04.2016, 22:26
| #12 |
| | Chrome flackert, CMD Pop Up Yo Rafael Nachdem Revo uninstaller DriverSetupUtilities nicht gefunden hat, konnte ich dank Bandicam ein Screenshot errichten von der CMD.  Nachdem ein Kolleg der Informatiker ist von den Ferien zurück kam hat er mir DriverSetupUtilities entfernt. Hoffe es macht dir nichts aus :l Marker kam Acer heraus im Bezug der DriverSetupUtilities. Ich kann dir gerne noch Logfiles von FRST senden wenn du willst. Könnte aber immer noch Hilfe wegen Chrome gebrauchen da dies immer noch Probleme bereitet.  Tut mir leid eine andere Person um Hilfe gebeten zu haben, obwohl du dir Zeit genommen hast.  Gruss TheNoobly |
|
05.04.2016, 00:22
| #13 |
| /// Malwareteam | Chrome flackert, CMD Pop Up Immerhin ist das Programm weg, wie richtig vermutet die Lösung dafür  Machen wir mal neue Scans: Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
05.04.2016, 12:51
| #14 |
| | Chrome flackert, CMD Pop Up FRST Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
durchgeführt von Osman (Administrator) auf OSMAN-PC (05-04-2016 13:49:25)
Gestartet von C:\Users\Osman\Desktop
Geladene Profile: Osman (Verfügbare Profile: Osman)
Platform: Windows 10 Pro (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Users\Osman\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicatorCom.exe
(Razer Inc) C:\Program Files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenHelper.exe
() C:\Program Files (x86)\Razer\Abyssus\razerhid.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Razer\Abyssus\razertra.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Abyssus\razerofa.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Microsoft Corporation) C:\Windows\System32\wuapihost.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Razer, Inc.) C:\Users\Osman\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\rzcefrenderprocess.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
() C:\Program Files (x86)\Razer\Abyssus\vdDaemon.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicator.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397568 2016-03-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728 2015-08-09] (IvoSoft)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16418560 2000-01-01] (Realtek Semiconductor)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [594240 2016-01-13] (Razer Inc.)
HKLM-x32\...\Run: [KrakenLauncher] => C:\Program Files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenHelper.exe [1599808 2015-08-14] (Razer Inc)
HKLM-x32\...\Run: [Abyssus] => C:\Program Files (x86)\Razer\Abyssus\razerhid.exe [295936 2013-01-21] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-12-22] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2016-03-22] (LogMeIn Inc.)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3077712 2016-03-31] (Valve Corporation)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\Run: [HP Photosmart 5520 series (NET)] => C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\Run: [ApowersoftScreenRecorder] => C:\Program Files (x86)\Apowersoft\Apowersoft Screen Recorder Pro 2\Apowersoft Screen Recorder Pro 2.exe /autoStart
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
Startup: C:\Users\Osman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Photosmart 5520 series (Netzwerk).lnk [2016-04-05]
ShortcutTarget: Tintenwarnungen überwachen - HP Photosmart 5520 series (Netzwerk).lnk -> C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5d5e4d95-d401-46ee-ba8d-3e62fda563f5}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{d4856a0e-77d9-4b49-806a-69752f023856}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f303f0ee-c7b3-4827-9113-657ab98dd75a}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.yahoo.com/?fr=yset_ie_syc_oracle&type=orcl_hpset
SearchScopes: HKU\S-1-5-21-2498436991-496876813-1431611548-1000 -> {31164661-CF05-4EDA-9E6D-7D839F670C21} URL = hxxps://ch.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-08-09] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll [2016-01-23] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-01-23] (Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
FireFox:
========
FF ProfilePath: C:\Users\Osman\AppData\Roaming\Mozilla\Firefox\Profiles\v50bv2sd.default
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [Keine Datei]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [Keine Datei]
FF Plugin-x32: @java.com/DTPlugin,version=11.71.2 -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\dtplugin\npDeployJava1.dll [2016-01-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.71.2 -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\plugin2\npjp2.dll [2016-01-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-27] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.ch/
CHR StartupUrls: Default -> "hxxp://google.ch/"
CHR DefaultSearchURL: Default -> hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=orcl_default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://de.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-03-27]
CHR Extension: (Google Docs) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-27]
CHR Extension: (Google Drive) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-27]
CHR Extension: (YouTube) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-27]
CHR Extension: (Adblock Plus) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-27]
CHR Extension: (Steam inventory helper) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2016-03-27]
CHR Extension: (Google Tabellen) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-03-27]
CHR Extension: (Google Docs Offline) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-28]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Google Mail) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-27]
CHR HKLM-x32\...\Chrome\Extension: [eedgghdcpmmmilkmfpnklknlenbiolec] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1362464 2016-03-22] ()
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [243984 2016-03-24] (EasyAntiCheat Ltd)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342240 2015-06-03] (Futuremark)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164672 2016-03-30] (NVIDIA Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [26680 2016-02-18] (Hewlett-Packard Company)
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2016-03-22] (LogMeIn, Inc.)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [3512928 2015-07-22] (INCA Internet Co., Ltd.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1880960 2016-03-30] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634048 2016-03-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522496 2016-03-30] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-02] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2016-03-20] ()
R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [189248 2016-03-20] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-11-05] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 Abyssus; C:\Windows\system32\drivers\Abyssus.sys [23040 2013-01-09] ( )
S3 GVTDrv64; C:\WINDOWS\GVTDrv64.sys [30528 2015-10-31] ()
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608 2015-07-07] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28032 2016-03-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-03-21] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [935168 2000-01-01] (Realtek )
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-09-23] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [130880 2015-12-15] (Razer, Inc.)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33960 2000-01-01] (Synaptics Incorporated)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 usbrndis6; C:\Windows\System32\drivers\usb80236.sys [22016 2015-07-10] (Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; kein ImagePath
S3 vmci; \SystemRoot\System32\drivers\vmci.sys [X]
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-04-05 13:49 - 2016-04-05 13:49 - 00019574 _____ C:\Users\Osman\Desktop\FRST.txt
2016-04-05 13:44 - 2016-04-05 13:44 - 00016148 _____ C:\WINDOWS\system32\OSMAN-PC_Osman_HistoryPrediction.bin
2016-04-04 23:11 - 2016-04-04 23:11 - 00000408 _____ C:\Users\Osman\AppData\Roaming\CamShapes.ini
2016-04-04 23:11 - 2016-04-04 23:11 - 00000408 _____ C:\Users\Osman\AppData\Roaming\CamLayout.ini
2016-04-04 23:11 - 2016-04-04 23:11 - 00000046 _____ C:\Users\Osman\AppData\Roaming\Camdata.ini
2016-04-04 23:11 - 2016-04-04 23:11 - 00000000 ____D C:\Users\Osman\Documents\My CamStudio Videos
2016-04-04 23:11 - 2016-04-04 23:11 - 00000000 ____D C:\Users\Osman\Documents\My CamStudio Temp Files
2016-04-04 23:10 - 2016-04-04 23:11 - 00004536 _____ C:\Users\Osman\AppData\Roaming\CamStudio.cfg
2016-04-04 23:10 - 2016-04-04 23:10 - 01059800 _____ (CamStudio) C:\Users\Osman\Downloads\camstudio.exe
2016-04-04 23:10 - 2016-04-04 23:10 - 00000096 _____ C:\Users\Osman\AppData\Roaming\version2.xml
2016-04-04 23:10 - 2016-04-04 23:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CamStudio 2.7
2016-04-04 23:10 - 2016-04-04 23:10 - 00000000 ____D C:\Program Files\CamStudio 2.7
2016-04-04 22:55 - 2016-04-04 23:05 - 00000000 ____D C:\Fraps
2016-04-04 17:45 - 2016-04-04 23:04 - 00000000 ____D C:\Users\Osman\Documents\Bandicam
2016-04-04 17:45 - 2016-04-04 17:45 - 00000000 ____D C:\Users\Osman\AppData\Roaming\BANDISOFT
2016-04-04 17:45 - 2016-04-04 17:45 - 00000000 ____D C:\Program Files (x86)\BandiMPEG1
2016-04-04 17:41 - 2016-04-04 17:41 - 00000000 ____D C:\Users\Osman\Documents\Apowersoft
2016-04-04 17:41 - 2016-04-04 17:41 - 00000000 ____D C:\Users\Osman\AppData\Roaming\Apowersoft
2016-04-04 17:25 - 2016-04-04 17:25 - 00000000 ____D C:\Users\Osman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-04-04 17:25 - 2016-04-04 17:25 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2016-04-02 12:50 - 2016-04-02 12:50 - 00000000 ____D C:\Users\Osman\AppData\Local\Integrad.3
2016-04-01 16:28 - 2016-04-01 16:45 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-04-01 16:28 - 2016-04-01 16:28 - 00001171 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-04-01 16:28 - 2016-04-01 16:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2016-04-01 16:28 - 2016-04-01 16:28 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2016-04-01 16:28 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-04-01 16:28 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-04-01 16:28 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-04-01 15:07 - 2016-04-01 15:07 - 00000000 ____D C:\Users\Osman\Documents\NFS Undercover
2016-04-01 15:05 - 2016-04-01 15:05 - 00000000 __RHD C:\Users\Osman\AppData\Roaming\SecuROM
2016-04-01 14:59 - 2016-04-01 14:59 - 00000000 ____D C:\Users\Osman\AppData\Roaming\Leadertech
2016-03-31 21:36 - 2016-03-22 03:57 - 00110528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2016-03-31 21:35 - 2016-03-31 21:36 - 00000000 ____D C:\WINDOWS\LastGood
2016-03-31 21:35 - 2016-03-22 06:08 - 42923576 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 37567424 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 31594432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 25350080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 21364536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 20906168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 17755928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 17349776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 02614208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 02260024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00960056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00889400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00786872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00751552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00695864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00632336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00546328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00448824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00425016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00385080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00379448 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00379296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00348216 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00317656 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00176064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00153392 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00151368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2016-03-31 21:35 - 2016-03-22 06:08 - 00129208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2016-03-31 21:07 - 2016-03-31 21:07 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-03-31 21:06 - 2016-02-24 01:57 - 01924152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436200.dll
2016-03-31 21:06 - 2016-02-24 01:57 - 01571776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436200.dll
2016-03-31 21:00 - 2016-03-31 21:00 - 00000000 ____D C:\Users\Osman\Intel
2016-03-31 20:59 - 2016-03-31 21:06 - 00000000 ____D C:\NVIDIA
2016-03-31 20:55 - 2016-03-31 21:09 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-03-31 20:55 - 2016-03-31 20:55 - 00001112 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-03-31 20:55 - 2016-03-31 20:55 - 00001100 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2016-03-31 20:55 - 2016-03-31 20:55 - 00000000 ____D C:\Users\Osman\AppData\Roaming\TeamViewer
2016-03-31 19:46 - 2016-04-05 13:49 - 00000000 ____D C:\FRST
2016-03-31 19:46 - 2016-03-31 19:46 - 02374144 _____ (Farbar) C:\Users\Osman\Desktop\FRST64.exe
2016-03-30 15:50 - 2016-03-30 15:50 - 00000000 ____D C:\ProgramData\updater2
2016-03-30 15:50 - 2016-03-30 15:50 - 00000000 ____D C:\oem
2016-03-30 15:34 - 2016-03-30 15:34 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-03-30 15:34 - 2016-03-30 15:34 - 00000000 ____D C:\Program Files\Realtek
2016-03-30 15:34 - 2000-01-01 02:00 - 72203792 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2016-03-30 15:34 - 2000-01-01 02:00 - 07172920 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 04779776 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2016-03-30 15:34 - 2000-01-01 02:00 - 03769493 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2016-03-30 15:34 - 2000-01-01 02:00 - 03283248 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 03195648 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 03080784 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 02894976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2016-03-30 15:34 - 2000-01-01 02:00 - 02036992 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 01356504 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00689888 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00447728 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00343712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00192992 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00151792 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00134208 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00084616 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2016-03-30 15:34 - 2000-01-01 02:00 - 00023704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2016-03-30 15:33 - 2016-03-30 15:33 - 00000000 ____D C:\WINDOWS\oem
2016-03-30 15:33 - 2000-01-01 02:00 - 07096192 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 01965816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 01780624 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 01591064 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 01508936 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00743968 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00727440 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00708320 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00504312 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00445408 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00441272 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00327464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00272720 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00253904 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00253872 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00252880 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00118600 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2016-03-30 15:33 - 2000-01-01 02:00 - 00105312 _____ C:\WINDOWS\system32\audioLibVc.dll
2016-03-30 15:32 - 2016-03-30 15:32 - 00003756 _____ C:\WINDOWS\System32\Tasks\ACC
2016-03-30 15:26 - 2016-03-21 22:01 - 00109632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-03-30 15:26 - 2016-03-21 22:01 - 00100416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-03-30 15:22 - 2000-01-01 02:00 - 00082544 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2016-03-29 00:12 - 2016-03-29 00:12 - 00000222 _____ C:\Users\Osman\Desktop\Heroes & Generals.url
2016-03-28 15:09 - 2016-03-31 21:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan
2016-03-28 15:08 - 2016-03-22 06:08 - 17369448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 10550552 _____ C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 08659472 _____ C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 01922496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436472.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 01571776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436472.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00678520 _____ C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00572096 _____ C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-03-28 15:08 - 2016-03-22 06:08 - 00000139 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-03-28 15:08 - 2016-03-22 06:08 - 00000139 _____ C:\WINDOWS\system32\nv-vk64.json
2016-03-27 22:49 - 2016-03-31 13:55 - 00002264 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-27 22:49 - 2016-03-31 13:55 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-03-27 22:21 - 2016-04-05 13:44 - 00001122 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-03-27 22:21 - 2016-04-04 23:54 - 00001126 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-03-27 22:21 - 2016-03-27 22:49 - 00003952 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-03-27 14:50 - 2016-04-03 14:07 - 00000000 ____D C:\Users\Osman\AppData\Local\Mozilla
2016-03-27 14:50 - 2016-03-27 14:51 - 00000000 ____D C:\Users\Osman\AppData\Roaming\Mozilla
2016-03-25 02:02 - 2016-03-25 02:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-03-25 02:02 - 2016-03-25 02:02 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2016-03-24 21:00 - 2016-03-24 21:00 - 00000000 ____D C:\Users\Osman\AppData\Local\Victory
2016-03-24 21:00 - 2016-03-24 21:00 - 00000000 ____D C:\Users\Osman\AppData\Local\UnrealEngine
2016-03-24 20:01 - 2016-03-24 20:01 - 00000222 _____ C:\Users\Osman\Desktop\The Culling.url
2016-03-20 00:55 - 2016-03-20 00:55 - 00001243 _____ C:\Users\Public\Desktop\Battlefield 3.lnk
2016-03-16 23:30 - 2016-03-16 23:30 - 00128792 _____ C:\WINDOWS\SysWOW64\vulkan-1-1-0-5-1.dll
2016-03-16 23:29 - 2016-03-16 23:29 - 00127768 _____ C:\WINDOWS\system32\vulkan-1-1-0-5-1.dll
2016-03-16 23:29 - 2016-03-16 23:29 - 00041752 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-1-0-5-1.exe
2016-03-16 23:28 - 2016-03-16 23:28 - 00045848 _____ C:\WINDOWS\system32\vulkaninfo-1-1-0-5-1.exe
2016-03-16 19:20 - 2016-03-26 23:46 - 00000000 ____D C:\Users\Osman\AppData\Local\osu!
2016-03-16 19:20 - 2016-03-16 19:20 - 00001057 _____ C:\Users\Osman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2016-03-16 19:20 - 2016-03-16 19:20 - 00001049 _____ C:\Users\Osman\Desktop\osu!.lnk
2016-03-12 13:59 - 2016-03-31 21:36 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-03-12 13:59 - 2016-03-16 23:30 - 00128792 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-03-12 13:59 - 2016-03-16 23:29 - 00127768 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-03-12 13:59 - 2016-03-16 23:29 - 00041752 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-03-12 13:59 - 2016-03-16 23:28 - 00045848 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-03-12 13:59 - 2016-03-12 13:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.0
2016-03-12 13:58 - 2016-03-08 12:27 - 01922496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436451.dll
2016-03-12 13:58 - 2016-03-08 12:27 - 01571776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436451.dll
2016-03-11 16:51 - 2016-03-11 16:51 - 00000000 ___HD C:\$WINDOWS.~BT
2016-03-09 16:23 - 2016-02-23 16:53 - 01314496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-03-09 16:23 - 2016-02-23 16:52 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-03-09 16:23 - 2016-02-23 16:51 - 00633184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-03-09 16:23 - 2016-02-23 16:51 - 00146784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2016-03-09 16:23 - 2016-02-23 16:50 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-03-09 16:23 - 2016-02-23 16:48 - 08022368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-03-09 16:23 - 2016-02-23 16:48 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-03-09 16:23 - 2016-02-23 16:48 - 01123952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-03-09 16:23 - 2016-02-23 16:41 - 01150816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-03-09 16:23 - 2016-02-23 16:41 - 00299600 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMASF.DLL
2016-03-09 16:23 - 2016-02-23 16:41 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2016-03-09 16:23 - 2016-02-23 16:40 - 00110584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2016-03-09 16:23 - 2016-02-23 16:38 - 00272752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2016-03-09 16:23 - 2016-02-23 16:36 - 00080128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2016-03-09 16:23 - 2016-02-23 16:11 - 00781984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-03-09 16:23 - 2016-02-23 16:11 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-03-09 16:23 - 2016-02-23 16:11 - 00103776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-03-09 16:23 - 2016-02-23 16:08 - 03622272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-03-09 16:23 - 2016-02-23 16:07 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-03-09 16:23 - 2016-02-23 15:39 - 00607416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-03-09 16:23 - 2016-02-23 15:30 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-03-09 16:23 - 2016-02-23 15:25 - 01085632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-03-09 16:23 - 2016-02-23 15:23 - 00952968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-03-09 16:23 - 2016-02-23 15:21 - 00529456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-03-09 16:23 - 2016-02-23 15:21 - 00141152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2016-03-09 16:23 - 2016-02-23 15:11 - 00249976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMASF.DLL
2016-03-09 16:23 - 2016-02-23 15:11 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2016-03-09 16:23 - 2016-02-23 15:11 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2016-03-09 16:23 - 2016-02-23 15:09 - 00229352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2016-03-09 16:23 - 2016-02-23 15:06 - 00069232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2016-03-09 16:23 - 2016-02-23 14:58 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-03-09 16:23 - 2016-02-23 14:50 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-03-09 16:23 - 2016-02-23 14:50 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-03-09 16:23 - 2016-02-23 14:42 - 00658536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-03-09 16:23 - 2016-02-23 14:42 - 00467296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-03-09 16:23 - 2016-02-23 14:42 - 00078176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-03-09 16:23 - 2016-02-23 14:39 - 02879024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-03-09 16:23 - 2016-02-23 14:38 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-03-09 16:23 - 2016-02-23 14:35 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-03-09 16:23 - 2016-02-23 14:20 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-03-09 16:23 - 2016-02-23 14:17 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-03-09 16:23 - 2016-02-23 14:16 - 02237952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-03-09 16:23 - 2016-02-23 14:15 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-03-09 16:23 - 2016-02-23 14:15 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-03-09 16:23 - 2016-02-23 13:59 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-03-09 16:23 - 2016-02-23 13:59 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-03-09 16:23 - 2016-02-23 13:57 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-03-09 16:23 - 2016-02-23 13:55 - 24592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-03-09 16:23 - 2016-02-23 13:45 - 12504576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-03-09 16:23 - 2016-02-23 13:45 - 06788608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-03-09 16:23 - 2016-02-23 13:42 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-03-09 16:23 - 2016-02-23 13:42 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-03-09 16:23 - 2016-02-23 13:38 - 02663424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-03-09 16:23 - 2016-02-23 13:37 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetCfgNotifyObjectHost.exe
2016-03-09 16:23 - 2016-02-23 13:36 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-03-09 16:23 - 2016-02-23 13:25 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-03-09 16:23 - 2016-02-23 13:18 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-03-09 16:23 - 2016-02-23 13:17 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2016-03-09 16:23 - 2016-02-23 13:17 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll
2016-03-09 16:23 - 2016-02-23 13:14 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-03-09 16:23 - 2016-02-23 13:08 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-03-09 16:23 - 2016-02-23 13:04 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-03-09 16:23 - 2016-02-23 13:03 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2016-03-09 16:23 - 2016-02-23 13:03 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-03-09 16:23 - 2016-02-23 13:02 - 03587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-03-09 16:23 - 2016-02-23 12:55 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-03-09 16:23 - 2016-02-23 12:55 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-03-09 16:23 - 2016-02-23 12:51 - 00915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-03-09 16:23 - 2016-02-23 12:51 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-03-09 16:23 - 2016-02-23 12:48 - 21859840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-03-09 16:23 - 2016-02-23 12:48 - 05157376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-03-09 16:23 - 2016-02-23 12:46 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2016-03-09 16:23 - 2016-02-23 12:45 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-03-09 16:23 - 2016-02-23 12:45 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-03-09 16:23 - 2016-02-23 12:45 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-03-09 16:23 - 2016-02-23 12:45 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-03-09 16:23 - 2016-02-23 12:44 - 01821696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-03-09 16:23 - 2016-02-23 12:38 - 07524864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-03-09 16:23 - 2016-02-23 12:29 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll
2016-03-09 16:23 - 2016-02-23 12:17 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2016-03-09 16:23 - 2016-02-23 12:17 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-03-09 16:23 - 2016-02-23 12:11 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-03-09 16:23 - 2016-02-23 12:03 - 01495040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2016-03-09 16:23 - 2016-02-23 12:00 - 11263488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-03-09 16:23 - 2016-02-23 12:00 - 05457408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-03-09 16:23 - 2016-02-23 11:58 - 18800640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-03-07 19:26 - 2016-03-07 19:26 - 00000222 _____ C:\Users\Osman\Desktop\Worms Armageddon.url
2016-03-06 19:23 - 2016-03-06 19:25 - 00000000 ____D C:\Program Files (x86)\AdwCleaner
2016-03-06 19:22 - 2016-04-01 17:56 - 00000000 ____D C:\AdwCleaner
2016-03-06 19:22 - 2016-03-06 19:22 - 00000000 ____D C:\ProgramData\Malwarebytes
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-04-05 13:48 - 2015-11-09 17:23 - 00004156 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{2B17EC41-99A7-4254-9F30-A129F78769CF}
2016-04-05 13:48 - 2015-07-31 00:42 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-05 13:48 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-04-05 13:45 - 2016-01-26 21:21 - 00000000 ____D C:\Users\Osman\AppData\Local\LogMeIn Hamachi
2016-04-05 13:45 - 2015-11-08 21:01 - 00000000 ____D C:\Program Files (x86)\Steam
2016-04-05 00:24 - 2015-11-08 20:58 - 00000000 ____D C:\Users\Osman\AppData\Roaming\TS3Client
2016-04-05 00:24 - 2015-11-08 20:56 - 00000000 ____D C:\Users\Osman\AppData\Local\ClassicShell
2016-04-04 23:53 - 2016-01-20 15:54 - 00000000 ____D C:\Users\Osman\Desktop\Emulator
2016-04-04 23:53 - 2015-11-09 16:51 - 00000000 ____D C:\Users\Osman\Desktop\Fixed
2016-04-04 23:03 - 2015-11-16 18:50 - 00000000 ____D C:\Users\Osman\AppData\Local\CrashDumps
2016-04-04 23:02 - 2015-10-31 03:01 - 01790124 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-04-04 23:02 - 2015-09-10 07:10 - 00771100 _____ C:\WINDOWS\system32\perfh007.dat
2016-04-04 23:02 - 2015-09-10 07:10 - 00153964 _____ C:\WINDOWS\system32\perfc007.dat
2016-04-04 23:02 - 2015-07-31 00:40 - 00000000 ____D C:\WINDOWS\INF
2016-04-04 23:00 - 2015-10-31 02:55 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-04-04 22:56 - 2015-10-31 02:55 - 00000000 ____D C:\ProgramData\NVIDIA
2016-04-04 22:56 - 2015-07-30 23:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-04-04 22:55 - 2015-07-10 11:05 - 00131072 ___SH C:\WINDOWS\system32\config\BBI
2016-04-03 18:12 - 2015-11-12 20:24 - 00283896 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2016-04-02 19:11 - 2016-01-09 13:59 - 00000000 ____D C:\Users\Osman\AppData\LocalLow\Heroes and Generals
2016-04-02 18:54 - 2015-10-31 02:56 - 00000000 ____D C:\Users\Osman
2016-04-01 15:05 - 2015-11-10 19:34 - 00000000 ____D C:\Users\Osman\AppData\Roaming\BitTorrent
2016-03-31 21:37 - 2015-10-31 03:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-03-31 21:37 - 2015-10-31 02:55 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-03-31 21:35 - 2015-10-31 02:55 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-03-31 21:11 - 2015-07-30 23:49 - 00242008 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-03-31 21:01 - 2015-10-31 02:25 - 00000000 ____D C:\ProgramData\Intel
2016-03-31 21:01 - 2015-10-31 02:25 - 00000000 ____D C:\Program Files\Intel
2016-03-31 21:01 - 2015-10-31 02:24 - 00000000 ____D C:\Program Files (x86)\Intel
2016-03-31 17:23 - 2015-10-31 02:54 - 00000000 ___DC C:\WINDOWS\Panther
2016-03-30 15:34 - 2015-10-31 03:20 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-03-30 15:33 - 2015-10-31 02:24 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-03-30 15:30 - 2015-10-31 02:25 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-03-30 04:21 - 2015-10-31 03:19 - 01373680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-03-30 04:21 - 2015-10-31 03:19 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-03-30 04:20 - 2015-11-14 18:46 - 00112216 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-03-30 04:20 - 2015-10-31 03:19 - 01767248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-03-30 04:20 - 2015-10-31 03:19 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2016-03-27 22:49 - 2015-10-31 04:16 - 00004184 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-03-27 22:49 - 2015-10-31 04:16 - 00000000 ____D C:\Users\Osman\AppData\Local\Google
2016-03-27 22:49 - 2015-10-31 04:16 - 00000000 ____D C:\Program Files (x86)\Google
2016-03-26 13:45 - 2015-09-10 07:44 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-03-26 02:01 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-03-26 02:01 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-03-26 02:01 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-03-26 02:01 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-03-25 20:52 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\rescache
2016-03-25 20:30 - 2015-11-08 21:11 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-03-25 20:29 - 2015-11-08 21:11 - 143659408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-03-25 20:29 - 2015-07-31 00:25 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-03-25 03:23 - 2015-10-31 03:17 - 12659136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2016-03-24 20:59 - 2015-11-14 18:46 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-24 20:48 - 2015-12-12 19:41 - 00000000 ____D C:\ProgramData\Origin
2016-03-24 20:03 - 2015-11-12 20:24 - 00243984 _____ (EasyAntiCheat Ltd) C:\WINDOWS\SysWOW64\EasyAntiCheat.exe
2016-03-22 06:08 - 2015-11-10 20:17 - 17328008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2016-03-22 06:08 - 2015-10-31 03:17 - 20074728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2016-03-22 06:08 - 2015-10-31 03:17 - 14226672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2016-03-22 06:08 - 2015-10-31 03:17 - 03685280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-03-22 06:08 - 2015-10-31 03:17 - 03263480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-03-22 06:08 - 2014-08-19 23:14 - 00038050 _____ C:\WINDOWS\system32\nvinfo.pb
2016-03-22 04:37 - 2016-01-06 15:15 - 00530880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-03-22 04:37 - 2016-01-06 15:15 - 00083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 06369728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 02994744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 02561472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 01265720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-03-22 04:37 - 2015-10-31 02:55 - 00393784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-03-22 04:37 - 2015-10-31 02:55 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-03-21 22:01 - 2015-10-31 03:17 - 00056384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2016-03-20 00:55 - 2015-12-12 21:15 - 00189248 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2016-03-20 00:55 - 2015-12-12 21:15 - 00189248 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2016-03-20 00:55 - 2015-12-12 21:15 - 00075136 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2016-03-19 23:46 - 2015-12-12 19:49 - 00000000 ____D C:\Program Files (x86)\Origin Games
2016-03-18 13:44 - 2015-10-31 02:55 - 06253721 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-03-17 13:33 - 2015-11-09 16:51 - 00000000 ____D C:\Users\Osman\Desktop\Bewerbungsunterlagen
2016-03-09 14:25 - 2015-11-17 16:37 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-03-08 18:28 - 2015-12-17 22:09 - 00000000 ____D C:\Users\Osman\Desktop\Kasti
2016-03-08 09:10 - 2015-07-31 00:43 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-03-08 09:10 - 2015-07-31 00:43 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-03-07 22:27 - 2015-10-31 02:14 - 00000000 ____D C:\Users\Osman\AppData\Local\VirtualStore
2016-03-06 23:13 - 2015-09-10 07:22 - 00000000 ____D C:\Program Files\Windows Journal
2016-03-06 23:13 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\security
2016-03-06 19:27 - 2015-10-31 04:15 - 00000000 ____D C:\ProgramData\AVAST Software
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-04-04 23:11 - 2016-04-04 23:11 - 0000046 _____ () C:\Users\Osman\AppData\Roaming\Camdata.ini
2016-04-04 23:11 - 2016-04-04 23:11 - 0000408 _____ () C:\Users\Osman\AppData\Roaming\CamLayout.ini
2016-04-04 23:11 - 2016-04-04 23:11 - 0000408 _____ () C:\Users\Osman\AppData\Roaming\CamShapes.ini
2016-04-04 23:10 - 2016-04-04 23:11 - 0004536 _____ () C:\Users\Osman\AppData\Roaming\CamStudio.cfg
2016-04-04 23:10 - 2016-04-04 23:10 - 0000096 _____ () C:\Users\Osman\AppData\Roaming\version2.xml
2015-11-19 15:44 - 2015-11-19 19:16 - 0353118 _____ () C:\Users\Osman\AppData\Local\SquareClock.Production_HBMV1Icon.ico
2015-11-12 23:15 - 2015-11-12 23:15 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-10-31 03:21 - 2015-10-31 03:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Einige Dateien in TEMP:
====================
C:\Users\Osman\AppData\Local\Temp\0KrakenDevProps.dll
C:\Users\Osman\AppData\Local\Temp\ApowersoftAutoUpdater.exe
C:\Users\Osman\AppData\Local\Temp\A~NSISu_.exe
C:\Users\Osman\AppData\Local\Temp\bdcam64_0.dll
C:\Users\Osman\AppData\Local\Temp\bdfilters.dll
C:\Users\Osman\AppData\Local\Temp\pin2taskbar.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-03-31 17:22
==================== Ende von FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
durchgeführt von Osman (2016-04-05 13:49:51)
Gestartet von C:\Users\Osman\Desktop
Windows 10 Pro (X64) (2015-10-31 01:06:00)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2498436991-496876813-1431611548-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2498436991-496876813-1431611548-503 - Limited - Disabled)
Gast (S-1-5-21-2498436991-496876813-1431611548-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2498436991-496876813-1431611548-1002 - Limited - Enabled)
Osman (S-1-5-21-2498436991-496876813-1431611548-1000 - Administrator - Enabled) => C:\Users\Osman
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
3DMark (HKLM-x32\...\{12d6e0d7-21d5-4755-9da2-70352c6f7558}) (Version: 1.5.915.0 - Futuremark)
3DMark (Version: 1.5.915.0 - Futuremark) Hidden
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
BitTorrent (HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\BitTorrent) (Version: 7.9.5.41866 - BitTorrent Inc.)
CamStudio 2.7.4 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.4 - CamStudio Open Source)
Classic Shell (HKLM\...\{E289B7DD-6732-4333-A47A-75A145D23EE3}) (Version: 4.2.4 - IvoSoft)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Dead Space (HKLM-x32\...\{025A585C-0C66-413D-80D2-4C05CB699771}) (Version: 1.0.0.222 - Electronic Arts)
Dead Space™ 3 (HKLM-x32\...\{D4329609-4102-4F8C-B83F-7FE024EEA314}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Futuremark SystemInfo (HKLM-x32\...\{AFBB2F94-A43D-46AD-8F77-66ACB3C71EDF}) (Version: 4.39.552.0 - Futuremark)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Heroes & Generals (HKLM\...\Steam App 227940) (Version: - Reto-Moto)
HP Photosmart 5520 series - Grundlegende Software für das Gerät (HKLM\...\{4F396B08-301D-4E53-A372-95A7E93ABD04}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Support Solutions Framework (HKLM-x32\...\{B1AD4FFB-DD17-43EC-8C30-B9E71EAD9132}) (Version: 12.2.8.17 - Hewlett-Packard Company)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Java 8 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218071F0}) (Version: 8.0.710.15 - Oracle Corporation)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.420 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.420 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Word 2010 (HKLM\...\Office14.WORD) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
NVIDIA 3D Vision Controller-Treiber 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 364.72 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.2.55 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.2.55 - NVIDIA Corporation)
NVIDIA Grafiktreiber 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 364.72 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.11.1.6605 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{d5bab322-3b11-4379-a6a1-2beb86643aa3}) (Version: latest - ppy Pty Ltd)
paint.net (HKLM\...\{DF3A46D9-67B3-44B2-9D01-25C8BA772C8A}) (Version: 4.0.6 - dotPDN LLC)
Pokemon Showdown (HKLM-x32\...\Pokemon Showdown) (Version: - "Pokemon Showdown")
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Razer Abyssus (HKLM-x32\...\{CBD6B23A-B54F-476A-9527-C262F469CACF}) (Version: 2.02 - Razer USA Ltd.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.28549 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.6.1001.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7727 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.2.55 - NVIDIA Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.56083 - TeamViewer)
The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version: - Edmund McMillen and Florian Himsl)
The Culling (HKLM\...\Steam App 437220) (Version: - Xaviant)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.5.1 (HKLM\...\VulkanRT1.0.5.1) (Version: 1.0.5.1 - LunarG, Inc.)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Worms Armageddon (HKLM-x32\...\Steam App 217200) (Version: - Team17 Digital Ltd)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2498436991-496876813-1431611548-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Osman\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe (Microsoft Corporation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0307B023-7FC8-415F-AF73-4A419D6499FB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-03-07] (Hewlett-Packard)
Task: {07820D8F-71E4-40C8-9051-9CF558899E6B} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {08F82527-165D-440F-BEB9-47CA891F0940} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {0F2F8A01-D5CC-466C-A57B-D079C5357570} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-27] (Google Inc.)
Task: {15F486F4-3DF7-4CE6-8485-D9102F7FB6EF} - System32\Tasks\ACC => C:\Program Files\DriverSetupUtility\FUB\FUB_Send.bat
Task: {1CD72DDF-8022-4042-9013-C2A7BEEC289A} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {20084A7E-DF4C-4034-A971-F2BBE40AF33C} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {21257B26-32B7-421C-9D2F-FFC8C5E0C24A} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {458CB899-72AF-4983-A9F7-0CE7282757BC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {4820EF9A-F5EC-4908-AEC5-80239B2DCC01} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {48651DA7-436C-4A29-933B-28CDF8E45127} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {48F3BD53-C7FE-44B4-B581-2E6576E7AB16} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {6432796B-26D6-49E4-AC1D-7251287E2545} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {7009927D-0981-434B-8FFE-AB4AF05F1411} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {790D23D2-95D8-4D02-8EF5-075C090631ED} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {7DBF8C9B-4F40-4202-BFB1-DE7C9B939E72} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {81C7E8F4-A620-4411-8BA4-C278A6D0F53F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-03-11] (Hewlett-Packard)
Task: {8734E420-1D14-4154-9BD0-4E8B60A0234D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {950E226B-34F9-49B5-AECE-54D90E44296B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {961CBF50-4722-4DD1-9790-3A73E4220A37} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {99030FF5-62D2-47F4-AB61-1D03BE590877} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {9A002FB6-2BB5-4657-B4D4-4C09B9884AE2} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {AD002DF4-8E63-436B-A468-DA0D99E52F19} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {BC5F0F9B-1185-4A13-BD00-337BE315F50E} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {CC9F7F61-3F09-4540-89BA-080299385CE2} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {EAB09CDD-E555-4F36-BC52-05FDDD874C7D} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {F12C7D93-66A6-4D93-ABB0-89110F671512} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {F9B647CC-330E-4609-B693-791DF53880B6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-27] (Google Inc.)
Task: {FB171A85-9F6F-4A39-AEC4-4D931511FF0F} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-09-10 07:12 - 2015-09-10 07:12 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-09-10 07:12 - 2015-09-10 07:12 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-12-12 21:15 - 2016-03-20 00:55 - 00189248 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.exe
2015-12-12 21:15 - 2016-03-20 00:55 - 00075136 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-11-05 02:11 - 2015-11-05 02:12 - 00188072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2016-02-24 22:02 - 2016-03-30 04:36 - 00368000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2015-11-14 18:46 - 2016-03-30 04:37 - 00289664 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-02-24 22:02 - 2016-03-30 04:36 - 01148800 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-02-24 22:02 - 2016-03-30 04:37 - 03613056 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-02-24 22:02 - 2016-03-30 04:37 - 01990016 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-02-24 22:02 - 2016-03-30 04:37 - 02667392 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-02-24 22:02 - 2016-03-30 04:37 - 01842048 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-01-06 15:06 - 2016-03-30 04:37 - 00208768 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2015-10-31 02:55 - 2016-03-22 04:37 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-11-08 21:11 - 2015-09-17 08:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-11-08 21:11 - 2015-09-17 08:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-11-08 21:10 - 2015-09-17 07:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-12-09 19:07 - 2015-11-25 06:20 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-09 19:07 - 2015-11-25 06:17 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-09 19:07 - 2015-11-25 06:17 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-11-08 21:11 - 2015-09-17 07:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-11-12 21:06 - 2013-01-21 15:17 - 00295936 _____ () C:\Program Files (x86)\Razer\Abyssus\razerhid.exe
2015-11-12 21:06 - 2013-01-21 15:20 - 00295936 _____ () C:\Program Files (x86)\Razer\Abyssus\razertra.exe
2015-12-21 09:55 - 2015-12-21 09:55 - 00292352 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2016-03-30 15:27 - 2016-03-30 04:36 - 00035712 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-03-30 15:27 - 2016-03-30 04:36 - 00921472 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2015-11-12 21:06 - 2011-03-01 15:34 - 01759232 _____ () C:\Program Files (x86)\Razer\Abyssus\vdDaemon.exe
2015-10-31 03:18 - 2016-03-30 04:44 - 00020352 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-04-03 21:30 - 2016-04-05 13:45 - 00619840 _____ () C:\Users\Osman\AppData\Local\Temp\0KrakenDevProps.dll
2015-11-08 21:03 - 2016-03-11 02:56 - 00783360 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-11-08 21:03 - 2015-07-03 18:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-11-08 21:03 - 2016-03-31 22:55 - 02549840 _____ () C:\Program Files (x86)\Steam\video.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-11-08 21:03 - 2015-07-03 18:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-11-08 21:03 - 2015-07-03 18:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-11-08 21:03 - 2016-03-31 22:55 - 00829008 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-09 15:15 - 2016-02-18 00:25 - 00281088 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-02-26 10:29 - 2016-02-26 10:29 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2016-01-05 18:34 - 2015-10-06 21:26 - 50656768 _____ () C:\Users\Osman\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2015-11-08 21:03 - 2016-02-09 03:33 - 48400672 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2016-01-05 18:34 - 2015-10-06 21:26 - 01874944 _____ () C:\Users\Osman\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll
2016-01-05 18:34 - 2015-10-06 21:26 - 00075264 _____ () C:\Users\Osman\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll
2016-03-31 13:55 - 2016-03-27 09:58 - 01675928 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.110\libglesv2.dll
2016-03-31 13:55 - 2016-03-27 09:58 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.110\libegl.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Osman:Heroes & Generals [38]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2015-11-17 19:09 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Osman\Desktop\Fixed\TSS\TeamShadowShout\Wallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\StartupApproved\Run: => "OneDrive"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{3E2F69BC-328F-4EC4-99DB-E2C8AF135F45}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{B9103AEB-A569-4E8D-A623-6B217CD3BC52}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{C497A68C-676A-4060-AB82-B3906F2FED42}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B833F7FF-602D-454A-91B9-5893CB753D1A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{9BE53BB6-7E41-44A5-A29B-E80C718C9CDE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{ED623B69-9F69-46B7-A5EF-07B51A5120B3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1D6D9420-1B79-49B8-A8F5-1966F6ACD074}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{679AA548-620D-448C-8056-6102261C749E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{64B77EDD-60D1-4E40-82D6-156D28686FD4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{0DBC88EC-D64C-42FB-BCE0-EB6232034A50}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{EEA469CD-9795-496F-AA93-FB9C341AD624}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{98B5DDCF-71A1-4798-82C9-D7168E55AB72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{A486D504-CF79-4EC0-8DEA-F2194FB06F67}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{F5E8BCF2-452C-462C-BEE6-1FA8C0834A33}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{B4F2150C-E4F2-4A9C-8C5F-3C474BD56630}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{CC59B5E3-ECA1-4ED9-A369-E2F89FF61F5E}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{12A69A4C-299F-42D9-A810-73FC07AB93A0}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{E15FF490-D0B2-4394-AF83-F7EB6CEE3F0A}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{C9948869-D0AB-4669-A5FC-B09E2062984D}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{6764E70F-718D-4633-A6CE-71821519DECE}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\DeviceSetup.exe
FirewallRules: [{6DEC7811-A4BB-4B8F-9B29-242742F63256}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{7F10254F-0108-42D1-92C4-ABC489A46209}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [TCP Query User{805157EF-9F5C-4C43-837B-9FD8D1066647}C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe] => (Allow) C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe
FirewallRules: [UDP Query User{A17ECDE3-2688-48C8-82AC-C0E64881E5CE}C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe] => (Allow) C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe
FirewallRules: [{B46E8C0F-92B2-4DF2-AF11-5B89C2A01873}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{C6E4C398-35CE-41C7-81B4-F21B35CFE11B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{9B20A65D-AEC5-4D7E-BD22-B7417ED96C4A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{2934FB41-65C3-413A-BFBB-F1E98D6A278E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{32276A42-14CE-4D26-B651-6F1A91736686}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{FDE1EF00-1EF7-46FA-AC2F-727B3FB2E0C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{730725C1-9001-455E-914B-565B6283B60E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{6FE1034F-54CC-4645-BD54-37E7D7354B95}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{335CBAF1-B952-46F8-A7B0-4A1FE31229B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{DFE055ED-D38F-45C5-8C10-CDE671EB1A29}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{ACDD5590-8AED-4B90-A88C-0AA5D3A7AB21}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{2464BD2F-D4D8-4B93-B2DA-A4019CB23E71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{A163488E-D3CC-4919-942B-D694FC5D08A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{D11620F9-6130-4FFE-B704-007B8F2C54E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{FA4A9BFF-0102-496C-B20F-B7C68AED0295}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{1D91B6AD-913A-4082-9817-932A2DB9E1B6}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{7722D30C-1F26-4DB3-94AC-0B0E9C9FB307}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{4CB129D8-43F8-4D38-8D77-FBD954EA9762}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{0F740AE8-B8BF-48BB-8E22-D16AF7484630}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{4C1BB1D2-A7FC-48F9-98CA-BA46761BCA89}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{F1A49C1B-6ACF-45CC-8FD3-29C890B5E66D}] => (Allow) C:\Users\Osman\AppData\Local\Temp\Setup.exe
FirewallRules: [{16C2A55B-A0B9-4383-9417-1B405BF949F1}] => (Allow) C:\Users\Osman\AppData\Local\Temp\Setup.exe
FirewallRules: [{A9C3A14A-D28C-4831-A143-1732EDA97F06}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\My Name is Mayo\windows\My Name is Mayo.exe
FirewallRules: [{91B65285-C905-4AEE-BECC-E54C77B80581}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\My Name is Mayo\windows\My Name is Mayo.exe
FirewallRules: [{B118D548-ACBB-4B2C-8A3F-A2464A7CE242}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{6C8B620D-2D9A-4FFB-8359-1E209B32F393}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{64928B65-98EC-4BC5-A4C5-896B7104F857}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe
FirewallRules: [{C42D1250-0A89-4ED7-93C3-B8B617B165AA}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe
FirewallRules: [TCP Query User{0B2DCC73-CBB8-4B75-B3CC-4CEAB6AB556B}C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{59C5A8B8-49C4-419B-9D62-00884203C481}C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{F8739322-2DC5-4FF4-BA5C-24B79F753C77}] => (Block) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{5004D2EE-102D-4061-81BB-491615715FA0}] => (Block) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{CE61B4F3-9D2C-483D-9CBC-355F84710462}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [UDP Query User{534FF8CA-A26B-441E-9B02-20BA570D3E2D}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{F4926233-A035-40B9-939F-D2CE57F32BC0}] => (Block) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{561CD292-83D6-4D02-ADFE-F1422A946D2E}] => (Block) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{E1A84DDC-2444-4CF9-9D93-BBDFFB1BEFC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{826EA902-E613-4C9D-87D8-EDB92449FBA5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{D6A5731E-4ABF-4EF4-8219-4E26C2E1A28B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{8DDFCCEF-BC46-4CD7-A5BE-FF266A0B46F3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{67367524-88A8-4814-A8C0-1A0FA7FDC85D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Worms Armageddon\WA.exe
FirewallRules: [{02E50950-19CF-47F3-8B2B-837228FA7F8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Worms Armageddon\WA.exe
FirewallRules: [{C10B9F39-38FD-4CF1-8E5B-74C69B785732}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{5BE9E932-0EDF-4756-AA18-8010AFB7147F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{32DA20A5-46B8-4B4E-9443-1959A2DF57B1}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{6F05DA70-7327-423F-9F41-DDF0C3CB4E4E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{22C62C88-20BC-4DF1-AD00-965962B11F29}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{3B1B8C3D-921A-49B1-AEFF-5751321C09F0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{681F88EE-0D7E-4DB5-B072-6DB0DA1BA7D0}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{291B2A3C-22CB-4536-9F9B-D98FB01F64B0}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{48B05D55-9B77-4BE0-BEC0-56580C1D06CB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheCulling\TheCulling_Launcher.exe
FirewallRules: [{29E6BBCB-2C9D-4931-B013-B7B82456FA42}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheCulling\TheCulling_Launcher.exe
FirewallRules: [TCP Query User{911A3305-0B4D-4A24-9AB8-8F0B356CA4ED}C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe
FirewallRules: [UDP Query User{2817D04B-1938-4ABA-8464-42C57A0AAAD8}C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe
FirewallRules: [{8B7252C3-908F-4F99-8885-251E9EA1B9F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{88F5EFDA-8F08-4E39-A4F2-9811249F5C9F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{ACC2ED08-F69C-4D07-B206-453AE2B702AF}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{F6259F9C-62A5-4198-822C-F108D263E2A6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{722819F5-6B43-48E0-859D-D181379211DF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{1B212C75-BD24-4546-8A1F-CC15778A10AE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{86193390-C4A9-4E19-B91D-21100C53F386}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{38AD967D-5C2D-4E2F-9DF3-DA90384F6587}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Screen Recorder Pro 2\Apowersoft Screen Recorder Pro 2.exe
FirewallRules: [{32E18AEE-F647-45AF-9161-998511A49FA5}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Screen Recorder Pro 2\Apowersoft Screen Recorder Pro 2.exe
==================== Wiederherstellungspunkte =========================
30-03-2016 15:21:55 Installiert Realtek Ethernet Controller Driver
30-03-2016 15:30:21 Entfernt Realtek High Definition Audio Driver
30-03-2016 15:33:46 Installiert Realtek High Definition Audio Driver
01-04-2016 14:56:26 Installed ProductName
02-04-2016 16:57:50 Removed Need for Speed™ Undercover
04-04-2016 21:39:30 DirectX wurde installiert
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (04/04/2016 11:06:30 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Error: (04/04/2016 11:03:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: bdcam.exe, Version: 3.0.3.1025, Zeitstempel: 0x56cd490c
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0xf78
Startzeit der fehlerhaften Anwendung: 0xbdcam.exe0
Pfad der fehlerhaften Anwendung: bdcam.exe1
Pfad des fehlerhaften Moduls: bdcam.exe2
Berichtskennung: bdcam.exe3
Vollständiger Name des fehlerhaften Pakets: bdcam.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: bdcam.exe5
Error: (04/04/2016 09:39:31 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (04/04/2016 05:42:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Apowersoft Screen Recorder Pro 2.exe, Version: 2.1.1.0, Zeitstempel: 0x569dd95b
Name des fehlerhaften Moduls: swscale-3.dll, Version: 3.1.101.0, Zeitstempel: 0x37213719
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00045d6f
ID des fehlerhaften Prozesses: 0x1d58
Startzeit der fehlerhaften Anwendung: 0xApowersoft Screen Recorder Pro 2.exe0
Pfad der fehlerhaften Anwendung: Apowersoft Screen Recorder Pro 2.exe1
Pfad des fehlerhaften Moduls: Apowersoft Screen Recorder Pro 2.exe2
Berichtskennung: Apowersoft Screen Recorder Pro 2.exe3
Vollständiger Name des fehlerhaften Pakets: Apowersoft Screen Recorder Pro 2.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Apowersoft Screen Recorder Pro 2.exe5
Error: (04/04/2016 05:42:41 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Apowersoft Screen Recorder Pro 2.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.AccessViolationException
Stapel:
bei <Module>.sws_scale(libffmpeg.SwsContext*, Byte**, Int32*, Int32, Int32, Byte**, Int32*)
bei AForge.Video.FFMPEG.VideoFileWriter.WriteVideoFrame(System.Drawing.Bitmap, System.TimeSpan)
bei Apowersoft.Utils.Record.Rec.LoopWriteVideoFrameQueue()
bei System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
bei System.Threading.ThreadHelper.ThreadStart()
Error: (04/04/2016 05:42:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Apowersoft Screen Recorder Pro 2.exe, Version: 2.1.1.0, Zeitstempel: 0x569dd95b
Name des fehlerhaften Moduls: swscale-3.dll, Version: 3.1.101.0, Zeitstempel: 0x37213719
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00045d6f
ID des fehlerhaften Prozesses: 0x1718
Startzeit der fehlerhaften Anwendung: 0xApowersoft Screen Recorder Pro 2.exe0
Pfad der fehlerhaften Anwendung: Apowersoft Screen Recorder Pro 2.exe1
Pfad des fehlerhaften Moduls: Apowersoft Screen Recorder Pro 2.exe2
Berichtskennung: Apowersoft Screen Recorder Pro 2.exe3
Vollständiger Name des fehlerhaften Pakets: Apowersoft Screen Recorder Pro 2.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Apowersoft Screen Recorder Pro 2.exe5
Error: (04/04/2016 05:42:07 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Apowersoft Screen Recorder Pro 2.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.AccessViolationException
Stapel:
bei <Module>.sws_scale(libffmpeg.SwsContext*, Byte**, Int32*, Int32, Int32, Byte**, Int32*)
bei AForge.Video.FFMPEG.VideoFileWriter.WriteVideoFrame(System.Drawing.Bitmap, System.TimeSpan)
bei Apowersoft.Utils.Record.Rec.LoopWriteVideoFrameQueue()
bei System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
bei System.Threading.ThreadHelper.ThreadStart()
Error: (04/04/2016 05:40:42 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Error: (04/03/2016 06:56:18 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Error: (04/03/2016 05:50:08 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Systemfehler:
=============
Error: (04/05/2016 12:24:28 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (04/04/2016 10:55:38 PM) (Source: DCOM) (EventID: 10010) (User: Osman-PC)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}
Error: (04/04/2016 10:55:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (04/04/2016 05:55:21 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (04/04/2016 05:38:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (04/04/2016 01:54:17 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (04/03/2016 09:29:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session4" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (04/03/2016 07:10:45 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session3" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (04/03/2016 06:05:06 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Osman\AppData\Local\Temp\ehdrv.sys
Error: (04/03/2016 06:05:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1275
CodeIntegrity:
===================================
Date: 2016-03-31 17:22:31.002
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-03-25 19:28:02.978
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 18%
Installierter physikalischer RAM: 11767.23 MB
Verfügbarer physikalischer RAM: 9636.91 MB
Summe virtueller Speicher: 23543.23 MB
Verfügbarer virtueller Speicher: 21275.64 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:232.35 GB) (Free:63.48 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: F8A88DB0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
==================== Ende von Addition.txt ============================
|
|
07.04.2016, 01:25
| #15 |
| /// Malwareteam | Chrome flackert, CMD Pop Up Schritt: 1 Lade Dir bitte von hier Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
Achtung: Wenn deine Daten nicht über einen Google Account synchronisiert sind, sichere vorher deine Lesezeichen und Passwörter wenn nötig! Danach neu runterladen, direkt nach der Installation zurücksetzen. Log dich mal noch nicht in deinen Google Account ein. Tritt das Problem noch auf? Schritt: 2 Welche Probleme hast du jetzt konkret noch? Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
| Themen zu Chrome flackert, CMD Pop Up |
| andere, beenden, browser, chrome, cmd, commandozeile, deinstalliert, flackern, flackert, funktionieren, hallo zusammen, intel, länger, lösung, nerviges, neu, pop up, popup, realtek, schnell, screenshot, sofort, spiel, starte, steam, treiber, update, verschwindet, zusammen |
dann auf 
und dann auf 
. 
Linear-Darstellung
