Pc plötzlich langsam und die größe der Icons etc. war plötzlich verstellt

Shattro · 26.10.2016, 15:28

Mir ist gestern aufgefallen, dass die Größenskalierung von Google und auch Spielen plötzlich seltsam war und ich dachte, dass ich vielleicht wie auch immer eine falsche Auflösung hatte, dies war aber nicht der Fall und ich kann es auch nicht mehr umstellen, außer mit einer Systemwiederherstellung, aber das Problem bestand nach kurzer Zeit wieder. Außerdem war heute mein Pc erstaunlich langsam und einige Programme stürzten ab und auch Adblock funktioniert nicht mehr im Browser. Meine Internetverbindung auf dem Pc war auch auf einmal weg , bzw. mir wurden auch keine Wlan-Router angezeigt. Das Internet Problem legte sich nach einem Neustart jedoch wieder.

deeprybka · 26.10.2016, 19:07

Mein Name ist Jürgen und ich werde Dir bei Deinem Problem behilflich sein. Zusammen schaffen wir das...

Bitte arbeite alle Schritte der Reihe nach ab.
Lies die Anleitungen sorgfältig durch bevor Du beginnst. Wenn es Probleme gibt oder Du etwas nicht verstehst, dann stoppe mit Deiner Ausführung und beschreibe mir das Problem.
Führe bitte nur Scans durch, zu denen Du von mir aufgefordert wurdest.
Bitte kein Crossposting (posten in mehreren Foren).
Installiere oder deinstalliere während der Bereinigung keine Software, außer Du wurdest dazu aufgefordert.
Speichere alle unsere Tools auf dem Desktop ab. Link: So ladet Ihr unsere Tools richtig
Poste die Logfiles direkt in Deinen Thread in Code-Tags.
Bedenke, dass wir hier alle während unserer Freizeit tätig sind, wenn du innerhalb von 24 Stunden nichts von mir liest, dann schreibe mir bitte eine PM.

Hinweis:
Ich kann Dir niemals eine Garantie geben, dass wir alle schädlichen Dateien finden werden.
Eine Formatierung ist meist der schnellere und immer der sicherste Weg, aber auch nur bei wirklicher Malware empfehlenswert.
Adware & Co. können wir sehr gut entfernen.
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Du mein clean bekommst.

Los geht's:

Schritt 1

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Lesestoff
Posten in CODE-Tags: So gehts...
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert uns massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Shattro · 26.10.2016, 19:48

Frst.txt

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 26-10-2016
durchgeführt von Michel (Administrator) auf SHATTRO-PC (26-10-2016 20:34:07)
Gestartet von C:\Users\Michel\Downloads
Geladene Profile: Michel (Verfügbare Profile: Michel)
Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Condusiv Technologies) C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Mad Catz Inc) C:\Program Files\Mad Catz\M.M.O.TE\MMO_TE_Profiler.exe
(Spotify Ltd) C:\Users\Michel\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Akamai Technologies, Inc.) C:\Users\Michel\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Michel\AppData\Local\Akamai\netsession_win.exe
(TeamSpeak Systems GmbH) C:\Program Files (x86)\TeamSpeak 3 Client\ts3client_win32.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe
(ROCCAT GmbH Co., Ltd.) C:\Program Files (x86)\ROCCAT\Roccat Talk\Roccat Talk.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Isku FX Keyboard\IskuFXMonitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
() C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.1.30\deploy\LoLLauncher.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.70\deploy\LoLPatcher.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.227\deploy\LolClient.exe
(Spotify Ltd) C:\Users\Michel\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Michel\AppData\Roaming\Spotify\SpotifyCrashService.exe
(Spotify Ltd) C:\Users\Michel\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Michel\AppData\Roaming\Spotify\Spotify.exe
(Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.5220\Agent.exe
(Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.8098\Battle.net.exe
() C:\Program Files (x86)\Battle.net\Battle.net.8098\Battle.net Helper.exe
() C:\Program Files (x86)\Battle.net\Battle.net.8098\Battle.net Helper.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Farbar) C:\Users\Michel\Downloads\FRST64 (2).exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13650648 2013-08-21] (Realtek Semiconductor)
HKLM\...\Run: [MBCfg64] => C:\Windows\system32\MBCfg64.dll [27648 2013-01-07] (Creative Technology Ltd.)
HKLM\...\Run: [M.M.O.TE] => C:\Program Files\Mad Catz\M.M.O.TE\MMO_TE_Profiler.exe [129536 2014-09-12] (Mad Catz Inc)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1844280 2016-09-30] (NVIDIA Corporation)
HKLM-x32\...\Run: [Sound Blaster Cinema] => C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [711680 2012-11-29] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [BacKGround Agent] => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [51456 2014-07-22] (Acer Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9083840 2016-10-26] (AVAST Software)
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [190032 2014-07-14] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [RoccatIskuFX] => C:\Program Files (x86)\ROCCAT\Isku FX Keyboard\IskuFXMonitor.exe [540672 2014-10-19] (ROCCAT GmbH)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [Spotify Web Helper] => C:\Users\Michel\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1483888 2016-10-12] (Spotify Ltd)
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [GoogleChromeAutoLaunch_ABA838D1AB29E25FB0D77DCA9110CD1C] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [921704 2016-10-20] (Google Inc.)
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe /launchViaAutoStart
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Michel\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [TSMApplication] => C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe [1623040 2016-08-16] ()
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [Discord] => C:\Users\Michel\AppData\Local\Discord\app-0.0.296\Discord.exe
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\lol.scr
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-10-26] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2014-12-29]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (Keine Datei)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Roccat Talk.lnk [2015-01-10]
ShortcutTarget: Roccat Talk.lnk -> C:\Program Files (x86)\ROCCAT\Roccat Talk\Roccat Talk.exe (ROCCAT GmbH Co., Ltd.)
Startup: C:\Users\Michel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2016-02-28]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Keine Datei)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

ProxyEnable: [.DEFAULT] => Proxy ist aktiviert.
ProxyServer: [.DEFAULT] => http=127.0.0.1:51097;https=127.0.0.1:51097
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{76CBA152-DCB9-405B-B273-65FABF22418A}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1473415466-3613894533-4282407392-1001 -> {6FB73551-6C1D-4E9E-9AA0-9BAA3881DC83} URL = 
BHO: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
BHO-x32: Kein Name -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> Keine Datei
BHO-x32: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2014-01-24] (McAfee, Inc.)

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: (McAfee SiteAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor [2014-08-04] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_205.dll [2016-10-26] ()
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_205.dll [2016-10-26] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-10-22] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-10-22] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)

Chrome: 
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.search.ask.com/?gct=hp
CHR StartupUrls: Default -> "hxxp://www.google.de/"
CHR Profile: C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default [2016-10-26]
CHR Extension: (Adblock Pro) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhifeddjphjgoeajnekfceoifcigbhlb [2014-08-04]
CHR Extension: (Adblock Plus) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-26]
CHR Extension: (Avast Online Security) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-10-26]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Google Mail) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR Extension: (Chrome Media Router) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-26]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-10-26] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [223600 2016-10-26] (AVAST Software)
R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [141392 2014-07-14] (Avira Operations GmbH & Co. KG)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [3058944 2014-07-22] (Acer Incorporated)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2014-05-28] (Creative Labs) [Datei ist nicht signiert]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2014-05-28] (Creative Labs) [Datei ist nicht signiert]
R2 ExpressCache; C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe [107792 2013-07-03] (Condusiv Technologies)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6952504 2015-10-23] (GOG.com)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-08-07] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-08-07] (McAfee, Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [457272 2016-09-30] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [457272 2016-09-30] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-10-22] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1165368 2016-09-30] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-03] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-03-02] ()
S3 vmicvss; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [730304 2016-01-11] (Wacom Technology, Corp.)
S3 DAUpdaterSvc; C:\Program Files (x86)\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe [X]
S3 GalaxyClientService; "C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe" [X]
S2 McAfee SiteAdvisor Service; "C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [78840 2016-10-26] (AVAST Software)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-10-26] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-10-26] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-10-26] (AVAST Software)
R1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [453192 2016-10-26] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-10-26] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-10-26] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-10-26] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-10-26] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-10-26] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-26] (AVAST Software)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-08-07] (McAfee, Inc.)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d64x64.sys [469264 2013-06-26] (Intel Corporation)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [25872 2013-07-03] (Condusiv Technologies)
R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [112912 2013-07-03] (Condusiv Technologies)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179664 2013-08-07] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [310224 2013-08-07] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69264 2013-08-07] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519064 2013-08-07] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [776168 2013-08-07] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343568 2013-08-07] (McAfee, Inc.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [29240 2016-09-30] (NVIDIA Corporation)
R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [46016 2016-10-22] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47672 2016-09-30] (NVIDIA Corporation)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [23968 2014-09-15] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [51488 2014-09-15] (Saitek)
R3 UHSfiltv; C:\Windows\system32\drivers\UHSfiltv.sys [23552 2014-12-22] (Creative Technology Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
R3 _hid_0738_1714; C:\Windows\system32\DRIVERS\_hid_0738_1714.sys [179904 2014-09-15] (Saitek)
R3 _usb_0738_1714; C:\Windows\System32\drivers\_usb_0738_1714.sys [46528 2014-09-15] (Saitek)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-10-26 20:34 - 2016-10-26 20:36 - 00024969 _____ C:\Users\Michel\Downloads\FRST.txt
2016-10-26 20:33 - 2016-10-26 20:34 - 00000000 ____D C:\FRST
2016-10-26 20:33 - 2016-10-26 20:33 - 02407936 _____ (Farbar) C:\Users\Michel\Downloads\FRST64 (2).exe
2016-10-26 20:33 - 2016-10-26 20:33 - 02407936 _____ (Farbar) C:\Users\Michel\Downloads\FRST64 (1).exe
2016-10-26 20:32 - 2016-10-26 20:32 - 02407936 _____ (Farbar) C:\Users\Michel\Downloads\FRST64.exe
2016-10-26 16:55 - 2016-10-26 16:55 - 773422787 _____ C:\Windows\MEMORY.DMP
2016-10-26 16:55 - 2016-10-26 16:55 - 00262144 _____ C:\Windows\Minidump\102616-15937-01.dmp
2016-10-26 16:48 - 2016-10-26 16:48 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-10-26 16:48 - 2016-10-22 07:22 - 00133056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-10-26 16:48 - 2016-09-09 20:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-10-26 16:48 - 2016-09-09 20:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-10-26 16:48 - 2016-09-09 20:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-10-26 16:48 - 2016-09-09 20:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-10-26 16:46 - 2016-10-26 16:48 - 00000000 ____D C:\Windows\LastGood.Tmp
2016-10-26 16:45 - 2016-10-22 10:40 - 00212936 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-10-26 16:45 - 2016-10-22 10:40 - 00046024 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 40125496 _____ C:\Windows\system32\nvcompiler.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 35224120 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 34701368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 14017984 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-10-26 16:45 - 2016-10-22 09:20 - 10910184 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 10772640 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 10324072 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 09112272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 08912488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 08715728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 03627968 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 03193400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 01953336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437563.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 01585088 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437563.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 00975416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 00944184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 00896056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 00894760 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 00683824 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 00573072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 00521096 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 00492560 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 00439864 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 00435904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 00407248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 00388544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 00170688 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 00131536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 00124352 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll
2016-10-26 16:45 - 2016-10-22 09:20 - 00046016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys
2016-10-26 16:45 - 2016-10-22 09:20 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-10-26 16:45 - 2016-10-22 09:20 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2016-10-26 16:22 - 2016-10-26 16:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-10-26 16:21 - 2016-10-26 16:20 - 00453192 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetSec.sys
2016-10-26 16:21 - 2016-10-26 15:51 - 00391496 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-10-26 16:10 - 2016-10-26 16:46 - 00000000 ___SH C:\DkHyperbootSync
2016-10-26 16:09 - 2016-10-26 15:45 - 00078840 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2016-10-26 15:57 - 2016-10-26 15:57 - 00003788 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-26 15:57 - 2016-10-26 15:57 - 00001396 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-10-26 15:57 - 2016-09-30 06:22 - 01844280 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-10-26 15:57 - 2016-09-30 06:22 - 01756728 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-10-26 15:57 - 2016-09-30 06:22 - 01445944 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-10-26 15:57 - 2016-09-30 06:22 - 01318968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-10-26 15:57 - 2016-09-30 06:22 - 00121912 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-10-26 15:56 - 2016-10-26 15:56 - 00003838 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-26 15:56 - 2016-10-26 15:56 - 00003838 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-26 15:56 - 2016-10-26 15:56 - 00003776 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-26 15:56 - 2016-10-26 15:56 - 00003600 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-26 15:56 - 2016-10-26 15:56 - 00003540 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-26 15:56 - 2016-10-22 07:33 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2016-10-26 15:51 - 2016-10-26 15:51 - 00053208 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-10-26 15:49 - 2016-10-26 15:51 - 71063336 _____ (NVIDIA Corporation) C:\Users\Michel\Downloads\GeForce_Experience_v3.0.7.34.exe
2016-10-26 15:07 - 2016-10-26 15:08 - 04128644 _____ C:\Users\Michel\Downloads\DBM-Core-7.1.0.zip
2016-10-20 13:33 - 2016-10-20 13:33 - 00411512 _____ C:\Windows\Minidump\102016-14937-01.dmp
2016-10-19 14:32 - 2016-10-19 14:32 - 00411512 _____ C:\Windows\Minidump\101916-13578-01.dmp
2016-10-18 17:14 - 2016-10-18 17:14 - 00411352 _____ C:\Windows\Minidump\101816-12859-01.dmp
2016-10-18 15:27 - 2016-10-18 15:28 - 00411520 _____ C:\Windows\Minidump\101816-17593-01.dmp
2016-10-18 13:58 - 2016-10-26 15:38 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-10-18 13:58 - 2016-10-18 13:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-10-18 13:41 - 2016-10-18 13:41 - 00411168 _____ C:\Windows\Minidump\101816-12468-01.dmp
2016-10-17 13:19 - 2016-10-17 13:19 - 00411624 _____ C:\Windows\Minidump\101716-13156-01.dmp
2016-10-16 13:34 - 2016-10-16 13:34 - 00411512 _____ C:\Windows\Minidump\101616-15906-01.dmp
2016-10-15 15:00 - 2016-10-15 15:00 - 00411472 _____ C:\Windows\Minidump\101516-14812-01.dmp
2016-10-13 11:04 - 2016-10-13 11:04 - 00411504 _____ C:\Windows\Minidump\101316-113171-01.dmp
2016-10-12 23:27 - 2016-10-12 23:27 - 00000000 ____D C:\Users\Michel\Documents\Lucius
2016-10-12 13:24 - 2016-10-12 13:24 - 00411512 _____ C:\Windows\Minidump\101216-14046-01.dmp
2016-10-11 19:51 - 2016-10-01 02:22 - 07444312 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-10-11 19:51 - 2016-09-30 09:55 - 25765376 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-10-11 19:51 - 2016-09-30 08:25 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-10-11 19:51 - 2016-09-30 08:25 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-10-11 19:51 - 2016-09-30 08:12 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-10-11 19:51 - 2016-09-30 08:09 - 06048256 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-10-11 19:51 - 2016-09-30 07:47 - 20306944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-10-11 19:51 - 2016-09-30 07:42 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-10-11 19:51 - 2016-09-30 07:41 - 01033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-10-11 19:51 - 2016-09-30 07:38 - 02286592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-10-11 19:51 - 2016-09-30 07:33 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-10-11 19:51 - 2016-09-30 07:33 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-10-11 19:51 - 2016-09-30 07:32 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-10-11 19:51 - 2016-09-30 07:32 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-10-11 19:51 - 2016-09-30 07:31 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-10-11 19:51 - 2016-09-30 07:21 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-10-11 19:51 - 2016-09-30 07:17 - 02920960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-10-11 19:51 - 2016-09-30 07:12 - 04608512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-10-11 19:51 - 2016-09-30 07:11 - 00880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-10-11 19:51 - 2016-09-30 07:06 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-10-11 19:51 - 2016-09-30 07:05 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-10-11 19:51 - 2016-09-30 07:05 - 01544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-10-11 19:51 - 2016-09-30 07:05 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-10-11 19:51 - 2016-09-30 07:03 - 13653504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-10-11 19:51 - 2016-09-30 06:54 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-10-11 19:51 - 2016-09-30 06:46 - 02444288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-10-11 19:51 - 2016-09-30 06:43 - 01312768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-10-11 19:51 - 2016-09-30 06:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-10-11 19:51 - 2016-09-17 20:16 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-10-11 19:51 - 2016-09-17 19:53 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-10-11 19:51 - 2016-09-17 19:21 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll
2016-10-11 19:51 - 2016-09-17 19:03 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-10-11 19:51 - 2016-09-17 19:02 - 01446400 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-10-11 19:51 - 2016-09-14 03:53 - 01663184 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-10-11 19:51 - 2016-09-14 03:53 - 01523208 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-10-11 19:51 - 2016-09-14 03:53 - 01490112 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-10-11 19:51 - 2016-09-14 03:53 - 01358952 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-10-11 19:51 - 2016-09-13 00:03 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2016-10-11 19:51 - 2016-09-12 23:01 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offreg.dll
2016-10-11 19:51 - 2016-09-09 16:17 - 04170752 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-10-11 19:51 - 2016-09-08 22:41 - 00121176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tm.sys
2016-10-11 19:51 - 2016-09-08 16:00 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-10-11 19:51 - 2016-09-08 16:00 - 00138240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-10-11 19:51 - 2016-09-08 00:07 - 01988096 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-10-11 19:51 - 2016-09-07 23:59 - 01754112 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-10-11 19:51 - 2016-09-07 23:59 - 01377792 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-10-11 19:51 - 2016-09-07 23:57 - 01560064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-10-11 19:51 - 2016-09-07 23:56 - 01491456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-10-11 19:51 - 2016-08-31 19:22 - 03754496 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-10-11 19:51 - 2016-08-31 18:33 - 02410496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-10-11 19:51 - 2016-08-25 22:50 - 00747008 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2016-10-11 19:51 - 2016-08-25 21:40 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2016-10-11 19:51 - 2016-08-13 02:05 - 09323008 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-10-11 19:51 - 2016-08-13 02:03 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifibus.sys
2016-10-11 19:51 - 2016-08-13 02:02 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys
2016-10-11 19:51 - 2016-08-13 02:01 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys
2016-10-11 19:51 - 2016-08-13 00:35 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2016-10-11 19:51 - 2016-08-13 00:19 - 09323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-10-11 19:51 - 2016-08-12 23:47 - 15431168 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-10-11 19:51 - 2016-08-12 23:17 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll
2016-10-11 19:51 - 2016-08-12 22:52 - 13317120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-10-11 19:51 - 2016-08-12 03:58 - 02315496 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2016-10-11 19:51 - 2016-08-12 03:58 - 01946176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2016-10-11 19:51 - 2016-08-11 20:33 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\parport.sys
2016-10-11 19:51 - 2016-08-11 20:33 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serial.sys
2016-10-11 19:51 - 2016-08-11 20:33 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serenum.sys
2016-10-11 19:51 - 2016-08-11 19:17 - 01574912 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2016-10-11 19:51 - 2016-08-11 15:39 - 00445765 _____ C:\Windows\system32\ApnDatabase.xml
2016-10-11 19:51 - 2016-08-11 07:46 - 00420184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2016-10-11 19:51 - 2016-08-03 17:42 - 01317888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2016-10-11 19:51 - 2016-08-03 17:36 - 01102848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2016-10-11 19:51 - 2016-08-03 17:36 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2016-10-11 19:51 - 2016-08-03 17:33 - 00215552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll
2016-10-11 19:51 - 2016-07-30 19:12 - 02896384 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2016-10-11 19:51 - 2016-07-30 18:36 - 02537472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2016-10-11 19:51 - 2016-07-26 15:40 - 00162850 _____ C:\Windows\SysWOW64\C_932.NLS
2016-10-11 19:51 - 2016-07-26 15:40 - 00162850 _____ C:\Windows\system32\C_932.NLS
2016-10-11 19:51 - 2016-07-23 20:18 - 01220096 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2016-10-11 19:51 - 2016-07-23 20:12 - 00954880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2016-10-11 19:49 - 2016-09-13 01:48 - 00085680 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-10-11 19:49 - 2016-09-09 15:38 - 01629184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-10-11 19:49 - 2016-09-09 15:38 - 01226752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-10-11 19:49 - 2016-09-09 15:38 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-10-11 19:49 - 2016-09-09 15:38 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-10-11 19:49 - 2016-09-09 15:38 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-10-11 19:49 - 2016-09-09 15:38 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-10-11 19:49 - 2016-09-09 15:38 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-10-11 19:49 - 2016-09-09 15:38 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-10-11 19:49 - 2016-08-27 21:44 - 22360288 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-10-11 19:49 - 2016-08-27 21:44 - 02755504 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-10-11 19:49 - 2016-08-27 21:44 - 00133256 _____ (Microsoft Corporation) C:\Windows\system32\RestoreOptIn.exe
2016-10-11 19:49 - 2016-08-27 20:26 - 19789232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-10-11 19:49 - 2016-08-27 20:26 - 02411048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-10-11 19:49 - 2016-08-27 20:26 - 00113656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RestoreOptIn.exe
2016-10-11 19:49 - 2016-08-27 18:33 - 02881536 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2016-10-11 19:49 - 2016-08-27 18:11 - 01049600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2016-10-11 19:49 - 2016-08-27 18:09 - 14466560 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2016-10-11 19:49 - 2016-08-27 17:55 - 12879360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2016-10-11 19:49 - 2016-08-21 00:24 - 02778624 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-10-11 19:49 - 2016-08-21 00:12 - 02463744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-10-11 13:27 - 2016-10-11 13:27 - 00411504 _____ C:\Windows\Minidump\101116-16843-01.dmp
2016-10-10 11:38 - 2016-10-10 11:38 - 00411512 _____ C:\Windows\Minidump\101016-13703-01.dmp
2016-10-09 11:52 - 2016-10-09 11:52 - 00411512 _____ C:\Windows\Minidump\100916-19937-01.dmp
2016-10-08 15:13 - 2016-10-08 15:13 - 01474568 _____ C:\Users\Michel\Downloads\Skype - CHIP-Installer.exe
2016-10-08 12:08 - 2016-10-08 12:08 - 00411504 _____ C:\Windows\Minidump\100816-14640-01.dmp
2016-10-07 12:54 - 2016-10-07 12:55 - 00411512 _____ C:\Windows\Minidump\100716-12890-01.dmp
2016-10-06 16:29 - 2016-10-06 16:29 - 00411432 _____ C:\Windows\Minidump\100616-15421-01.dmp
2016-10-05 20:30 - 2016-10-05 20:30 - 00411488 _____ C:\Windows\Minidump\100516-18390-01.dmp
2016-10-05 13:40 - 2016-10-05 13:41 - 00411464 _____ C:\Windows\Minidump\100516-17062-01.dmp
2016-10-04 16:29 - 2016-10-20 13:33 - 00000000 ____D C:\Windows\Minidump
2016-10-04 16:29 - 2016-10-04 16:29 - 00419704 _____ C:\Windows\Minidump\100416-28281-01.dmp
2016-10-03 12:34 - 2016-10-22 09:20 - 28136504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-10-03 12:34 - 2016-10-22 09:20 - 17338976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-10-03 12:34 - 2016-10-22 09:20 - 01037368 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-10-03 12:34 - 2016-09-17 02:46 - 01922616 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437290.dll
2016-10-03 12:34 - 2016-09-17 02:46 - 01585088 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437290.dll
2016-10-03 01:17 - 2016-10-26 15:52 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-10-03 01:16 - 2016-10-03 01:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-10-03 01:16 - 2016-10-03 01:16 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-10-03 01:16 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-10-03 01:16 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-10-03 01:16 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-10-03 01:15 - 2016-10-03 01:15 - 22851472 _____ (Malwarebytes ) C:\Users\Michel\Downloads\mbam-setup-2.2.1.1043.exe
2016-10-02 12:35 - 2016-10-02 12:35 - 00000000 ____D C:\Users\Michel\Documents\Square Enix
2016-10-01 23:10 - 2016-10-02 15:56 - 00000000 ____D C:\Users\Michel\AppData\Local\Discord
2016-10-01 23:10 - 2016-10-01 23:11 - 00000000 ____D C:\Users\Michel\AppData\Roaming\discord
2016-10-01 23:10 - 2016-10-01 23:10 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2016-10-01 23:10 - 2016-10-01 23:10 - 00000000 ____D C:\Users\Michel\AppData\Local\SquirrelTemp
2016-10-01 23:09 - 2016-10-01 23:10 - 50343608 _____ (Hammer & Chisel, Inc.) C:\Users\Michel\Downloads\DiscordSetup.exe
2016-09-30 23:10 - 2016-09-30 23:10 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-10-26 20:37 - 2014-12-22 03:24 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-10-26 20:37 - 2014-08-13 03:26 - 00000000 ____D C:\Users\Michel\AppData\Local\Spotify
2016-10-26 20:36 - 2014-08-13 03:26 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Spotify
2016-10-26 20:34 - 2014-08-04 21:26 - 00000000 ____D C:\Users\Michel\AppData\Local\Battle.net
2016-10-26 20:29 - 2014-08-24 16:29 - 00000000 ____D C:\Users\Michel\AppData\Roaming\TS3Client
2016-10-26 19:42 - 2014-08-04 20:36 - 00001140 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-10-26 19:23 - 2014-08-04 20:23 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1473415466-3613894533-4282407392-1001
2016-10-26 19:04 - 2014-08-04 21:26 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-10-26 17:37 - 2014-12-22 03:24 - 00003862 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-10-26 17:37 - 2014-12-22 03:24 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-10-26 17:37 - 2014-12-22 03:24 - 00000892 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-10-26 17:37 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-10-26 17:37 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\Macromed
2016-10-26 17:20 - 2014-08-05 00:41 - 00000000 ____D C:\Program Files (x86)\Steam
2016-10-26 17:04 - 2014-08-04 21:44 - 00000000 ___DO C:\Users\Michel\SkyDrive
2016-10-26 17:03 - 2014-05-28 17:14 - 00000000 ____D C:\ProgramData\NVIDIA
2016-10-26 17:02 - 2014-08-04 20:36 - 00001136 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-10-26 16:58 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-10-26 16:49 - 2014-08-04 20:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-10-26 16:49 - 2014-05-28 17:14 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-10-26 16:48 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf
2016-10-26 16:47 - 2014-08-04 20:18 - 00000000 ____D C:\Users\Michel\AppData\Local\NVIDIA Corporation
2016-10-26 16:47 - 2014-05-28 17:14 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-10-26 16:47 - 2014-05-28 17:13 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-10-26 16:22 - 2016-06-16 18:45 - 00003916 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1466095500
2016-10-26 16:22 - 2016-06-16 18:45 - 00001023 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone 1 Browser.lnk
2016-10-26 16:21 - 2014-08-04 20:50 - 00003922 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-10-26 15:57 - 2014-08-04 20:17 - 00000000 ____D C:\Users\Michel\AppData\Local\NVIDIA
2016-10-26 15:52 - 2014-08-04 20:50 - 00969184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2016-10-26 15:52 - 2014-08-04 20:50 - 00513632 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2016-10-26 15:52 - 2014-08-04 20:50 - 00293352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2016-10-26 15:51 - 2014-08-04 20:50 - 00969560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.147748994364007
2016-10-26 15:51 - 2014-08-04 20:50 - 00513496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.147748994692110
2016-10-26 15:51 - 2014-08-04 20:50 - 00292704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys.147748994715612
2016-10-26 15:51 - 2014-08-04 20:50 - 00163416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-10-26 15:51 - 2014-08-04 20:50 - 00108816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-10-26 15:51 - 2014-08-04 20:50 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-10-26 15:51 - 2014-08-04 20:50 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-10-26 15:51 - 2014-08-04 20:50 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-10-26 15:50 - 2016-05-13 13:45 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-10-26 15:50 - 2014-08-04 21:49 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Skype
2016-10-26 15:50 - 2014-08-04 21:49 - 00000000 ____D C:\ProgramData\Skype
2016-10-26 15:44 - 2014-08-04 20:38 - 00002171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-26 15:39 - 2014-08-04 20:17 - 00000000 ____D C:\Users\Michel
2016-10-26 15:38 - 2016-05-04 19:57 - 00000000 ____D C:\Users\Michel\Documents\Overwatch
2016-10-26 15:38 - 2015-12-03 15:10 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2016-10-26 15:38 - 2015-08-16 17:21 - 00000000 ____D C:\Users\Michel\AppData\Local\Akamai
2016-10-26 15:38 - 2014-08-13 20:15 - 00000000 ____D C:\Program Files (x86)\osu!
2016-10-26 15:38 - 2014-08-04 21:26 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Battle.net
2016-10-26 15:38 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-10-26 15:37 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-10-26 15:33 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\registration
2016-10-26 15:27 - 2014-08-04 23:57 - 00000000 ____D C:\Users\Michel\AppData\Local\CrashDumps
2016-10-25 21:37 - 2015-08-11 18:04 - 00485032 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-10-23 00:46 - 2016-05-31 18:16 - 00000000 ____D C:\Users\Michel\Desktop\Bilder
2016-10-23 00:46 - 2015-08-23 21:39 - 00000000 ____D C:\Users\Michel\Desktop\Schule
2016-10-22 10:40 - 2016-07-06 16:51 - 01595456 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2016-10-22 09:20 - 2015-12-30 18:59 - 19917400 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-10-22 09:20 - 2015-12-30 18:59 - 17426520 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-10-22 09:20 - 2015-12-30 18:59 - 14394528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-10-22 09:20 - 2015-12-30 18:59 - 03930688 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-10-22 09:20 - 2015-12-30 18:59 - 03469408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-10-22 09:20 - 2015-12-30 18:59 - 01585088 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll
2016-10-22 09:20 - 2014-05-28 17:13 - 00041344 _____ C:\Windows\system32\nvinfo.pb
2016-10-22 08:04 - 2015-12-30 19:00 - 00548408 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-10-22 08:04 - 2015-12-30 19:00 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-10-22 08:04 - 2014-05-28 17:14 - 06386232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-10-22 08:04 - 2014-05-28 17:14 - 02475968 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-10-22 08:04 - 2014-05-28 17:14 - 01762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-10-22 08:04 - 2014-05-28 17:14 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-10-22 08:04 - 2014-05-28 17:14 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-10-21 09:17 - 2014-05-28 17:14 - 07500035 _____ C:\Windows\system32\nvcoproc.bin
2016-10-20 19:58 - 2014-08-04 20:35 - 00003942 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{8B871452-4DB6-4A2A-B4EB-4FABBABFEBA4}
2016-10-16 17:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2016-10-15 18:43 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2016-10-14 12:52 - 2013-08-22 16:44 - 00483672 _____ C:\Windows\system32\FNTCACHE.DAT
2016-10-14 03:23 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI(18)
2016-10-14 03:22 - 2014-12-10 23:28 - 00000000 ____D C:\Windows\system32\appraiser
2016-10-14 03:22 - 2014-08-16 17:23 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-10-14 03:21 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2016-10-13 20:10 - 2015-03-11 18:41 - 00474112 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-10-13 19:46 - 2014-08-04 21:42 - 00000000 ____D C:\Windows\system32\MRT
2016-10-13 19:39 - 2014-08-04 21:42 - 143495576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-10-13 11:03 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ToastData
2016-10-10 14:45 - 2014-08-23 18:59 - 00000000 ____D C:\Users\Michel\Documents\My Games
2016-10-03 00:13 - 2014-10-11 18:07 - 00000000 ____D C:\Users\Michel\AppData\Local\Ubisoft Game Launcher
2016-10-03 00:09 - 2014-08-24 13:11 - 00000000 ____D C:\ProgramData\Package Cache
2016-10-01 02:15 - 2016-07-15 02:36 - 00828408 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-10-01 02:15 - 2016-07-15 02:36 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-09-30 06:22 - 2016-06-16 19:00 - 00106040 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-09-30 06:22 - 2016-06-16 19:00 - 00095800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-09-30 06:22 - 2016-06-16 19:00 - 00047672 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2014-12-04 18:46 - 2014-12-04 18:46 - 0007618 _____ () C:\Users\Michel\AppData\Local\Resmon.ResmonCfg

Einige Dateien in TEMP:
====================
C:\Users\Michel\AppData\Local\Temp\FoxitUpdater.exe
C:\Users\Michel\AppData\Local\Temp\Gw2.exe
C:\Users\Michel\AppData\Local\Temp\ICSharpCode.SharpZipLib.dll
C:\Users\Michel\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Michel\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Michel\AppData\Local\Temp\nvscpapisvr.exe
C:\Users\Michel\AppData\Local\Temp\nvStInst.exe
C:\Users\Michel\AppData\Local\Temp\utils.dll
C:\Users\Michel\AppData\Local\Temp\YgoUpdater.exe


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-10-18 13:52

==================== Ende von FRST.txt ============================

Shattro · 26.10.2016, 19:49

Addition.txt

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 26-10-2016
durchgeführt von Michel (26-10-2016 20:37:56)
Gestartet von C:\Users\Michel\Downloads
Windows 8.1 (Update) (X64) (2014-08-04 18:17:24)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1473415466-3613894533-4282407392-500 - Administrator - Disabled)
Gast (S-1-5-21-1473415466-3613894533-4282407392-501 - Limited - Disabled)
Michel (S-1-5-21-1473415466-3613894533-4282407392-1001 - Administrator - Enabled) => C:\Users\Michel

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: Avast Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

abDocs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.04.3004 - Acer Incorporated)
abMedia (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.05.2004.3 - Acer Incorporated)
abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 3.00.2007.1 - Acer Incorporated)
Acer Docs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 3.01.2001 - Acer)
Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.02.3104 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8100 - Acer Incorporated)
Acer Remote Files (HKLM\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 1.00.3007 - Acer Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.205 - Adobe Systems Incorporated)
Adobe Flash Player 23 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 23.0.0.205 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Akamai) (Version:  - Akamai Technologies, Inc)
AlienFX for IskuFX (HKLM-x32\...\InstallShield_{2C3FC2CC-0A8B-409E-B487-8CD54F4DC1D4}) (Version: 1.02 - Roccat GmbH)
AlienFX for IskuFX (Version: 1.02 - Roccat GmbH) Hidden
Ansel (Version: 375.63 - NVIDIA Corporation) Hidden
AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.01.2010.0 - Acer Incorporated)
ArtRage Studio (HKLM-x32\...\{E0540EB6-E8D2-4F55-8429-E41A1DD12254}) (Version: 3.5.12 - Ambient Design)
Avast Internet Security (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
Avira (HKLM-x32\...\{df495620-2ba9-412d-828d-b27f020d9fc8}) (Version: 1.1.18.28431 - Avira Operations GmbH & Co. KG)
Avira (x32 Version: 1.1.18.28431 - Avira Operations GmbH & Co. KG) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version:  - )
Belkin USB Wireless Adapter (HKLM-x32\...\InstallShield_{549CE1BD-88E4-4C5E-BF75-B155624714CC}) (Version: 1.0.0.12 - Belkin)
Belkin USB Wireless Adapter (x32 Version: 1.0.0.12 - Belkin) Hidden
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version:  - Valve)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3323.57 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Don't Starve (HKLM\...\Steam App 219740) (Version:  - Klei Entertainment)
ExpressCache (HKLM\...\{6E55C9F8-138E-4128-8A9F-6464725BE98A}) (Version: 1.0.102.0 - Condusiv Technologies)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Gear Up (HKLM\...\Steam App 214420) (Version:  - Doctor Entertainment AB)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.71 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Hotkey Utility (HKLM-x32\...\{A6DC88AD-501A-44BC-884D-57435F972E2C}) (Version: 3.00.8101 - Acer Incorporated)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.8100 - Acer Incorporated)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Network Connections 18.5.54.0 (HKLM\...\PROSetDX) (Version: 18.5.54.0 - Intel)
Just Cause 3 (HKLM\...\Steam App 225540) (Version:  - Avalanche Studios)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.8100 - Acer Incorporated)
Lucius (HKLM\...\Steam App 218640) (Version:  - Shiver Games)
M.M.O.TE (HKLM\...\{B690198B-ABC1-4F0E-84E3-F68D600D34EC}) (Version: 7.0.35.0 - Mad Catz Inc)
M.M.O.TE Game Profiles (HKLM-x32\...\{A3A15E78-7082-436E-9CE4-78DEC008E716}) (Version: 1.0.0.0 - Mad Catz Inc)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{551AC8F2-FEA2-4B45-ACF7-C98681233CC9}) (Version: 12.5.01200 - Nero AG)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 375.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 375.63 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.0.7.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.0.7.34 - NVIDIA Corporation)
NVIDIA Grafiktreiber 375.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.63 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA Miracast Virtueller Ton 375.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 375.63 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.0.7.34 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.0.0.0 - NVIDIA Corporation) Hidden
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2009 - Acer)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{7996efb2-c9f4-4120-aea7-e36bb2da30f8}) (Version: latest - ppy Pty Ltd)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
paint.net (HKLM\...\{F509C1F4-0029-49F9-B145-A4C4E8DF481A}) (Version: 4.0.3 - dotPDN LLC)
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.988 - Even Balance, Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.30166 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7023 - Realtek Semiconductor Corp.)
ROCCAT Isku FX Keyboard Driver (HKLM-x32\...\{DC69933C-E7B0-455D-8E54-FAC1EEF046FF}) (Version:  - Roccat GmbH)
Roccat Talk (HKLM-x32\...\{605D671E-1D1E-4840-84D9-BFACE17F160D}) (Version: 1.00.0013 - Roccat GmbH)
SafeZone Stable 1.46.1990.55 (x32 Version: 1.46.1990.55 - Avast Software) Hidden
SafeZone Stable 1.51.2220.53 (x32 Version: 1.51.2220.53 - Avast Software) Hidden
SHIELD Streaming (Version: 7.1.0320 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.0.7.34 - NVIDIA Corporation) Hidden
Skype™ 7.29 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.29.102 - Skype Technologies S.A.)
Sound Blaster Cinema (HKLM-x32\...\{AF2E323C-1E8A-4CE6-BE9E-B29296BF7FAE}) (Version: 1.00.03 - Creative Technology Limited)
Spotify (HKLM-x32\...\Spotify) (Version: 0.9.1.57.ge7405149 - Spotify AB)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
Terraria (HKLM\...\Steam App 105600) (Version:  - Re-Logic)
The Elder Scrolls V: Skyrim (HKLM\...\Steam App 72850) (Version:  - Bethesda Game Studios)
TradeSkillMaster Application version 1.0 (HKLM-x32\...\{c44da794-b956-4d50-8733-346d56ae63c7}_is1) (Version: 1.0 - TradeSkillMaster)
Unity (HKLM-x32\...\Unity) (Version: 5.2.1f1 - Unity Technologies ApS)
Uplay (HKLM-x32\...\Uplay) (Version: 15.0 - Ubisoft)
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Wacom Tablett (HKLM\...\Wacom Tablet Driver) (Version: 6.3.15-3 - Wacom Technology Corp.)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
YGOPro DevPro Launcher (HKLM-x32\...\{8D09DD74-E630-4629-80DC-7FB13AE58F3F}) (Version: 2.0.13 - DevPro, LLC)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0347894E-55F1-4A4B-8487-D040E3E32837} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-02] (AVAST Software)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {226CE824-69F8-4CE9-8927-F6942A674D5D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-09-30] (NVIDIA Corporation)
Task: {287A7677-ED27-4009-A50E-8B98F92DEFC3} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-09-30] (NVIDIA Corporation)
Task: {331B0F16-2D05-42BD-BE88-24BAD09BDDC3} - System32\Tasks\{9E74B0DC-6AFA-44E3-9368-D7095B8849F3} => pcalua.exe -a "C:\Riot Games\League of Legends\lol.launcher.admin.exe" -d "C:\Riot Games\League of Legends"
Task: {33B195D0-B634-4D88-A85F-A3BA2678BF11} - System32\Tasks\{F20A194F-0778-4B2F-8793-20623341653D} => pcalua.exe -a "C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe" -d "C:\Program Files (x86)\Battle.net"
Task: {38A451E7-E14D-4A69-B5E4-F0190899A1B5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-26] (Adobe Systems Incorporated)
Task: {3B5DE90B-603A-4EF2-8726-5C51D4D36640} - System32\Tasks\Hotkey Utility => C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [2013-08-22] (Acer Incorporated)
Task: {43177D68-F1DC-4E62-ABBD-1FBF8F53E3E2} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
Task: {4C7DC027-2017-41C8-BE17-EA93CABD1916} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-09-30] (NVIDIA Corporation)
Task: {506A60EA-2B11-4822-98CC-752A4ACB7514} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {51C18BEF-FF4A-4D33-B8CB-8A8DA40BF110} - System32\Tasks\SafeZone scheduled Autoupdate 1466095500 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-08-09] (Avast Software)
Task: {53FA74BA-951A-4371-B7EB-4E761D61651E} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {86B4EC6A-10B0-4871-B9BA-3FB322448079} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-09-30] (NVIDIA Corporation)
Task: {9047882F-9093-4106-85AC-BD42BCFBCF89} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-09-30] (NVIDIA Corporation)
Task: {AB960717-2A2D-4FDD-8D3F-24371083E397} - System32\Tasks\{9AA01830-429D-44A8-A792-871045BD222D} => pcalua.exe -a C:\Users\Michel\Downloads\MMO_TE_Mouse_7_0_35_0_x64_Software.exe -d C:\Users\Michel\Downloads
Task: {AC0ECED6-8A8F-4958-81CA-5621235ECDF3} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-10-26] (AVAST Software)
Task: {B56ED7AA-F3B1-47CD-8981-1E9916F7E394} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-07-08] ()
Task: {CCBAF009-FC6D-4936-9ACB-6FF52FAFB1BA} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-09-30] (NVIDIA Corporation)
Task: {CF609C1B-8B02-46CD-8641-886C737688D8} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2016-10-13] (Microsoft Corporation)
Task: {D0E2F806-654E-4552-8DA7-476CE2E8348B} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2013-07-10] (Acer Incorporated)
Task: {D4B0A9CF-7079-42E9-90DD-E55F6F6EB7D0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {E99D16A4-A1DB-487E-ACCE-B567BD134893} - System32\Tasks\SafeZone scheduled Autoupdate 1447175292 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-08-09] (Avast Software)
Task: {FE0C6341-053A-406F-8BF0-F7E54DC8CE99} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_205_pepper.exe [2016-10-26] (Adobe Systems Incorporated)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_205_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-10-26 15:56 - 2016-09-30 06:22 - 04490808 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-10-26 15:56 - 2016-09-30 06:22 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-10-26 15:57 - 2016-09-30 06:22 - 00419896 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2016-02-02 03:56 - 2016-03-02 18:08 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-05-28 17:14 - 2016-10-22 08:04 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-05-28 17:36 - 2013-07-30 18:11 - 00110152 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll
2015-04-04 12:29 - 2016-01-11 19:30 - 01349824 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2014-05-28 17:19 - 2012-11-01 11:21 - 00325120 _____ () C:\Windows\SYSTEM32\APOMgr64.DLL
2014-09-12 15:29 - 2014-09-12 15:29 - 12541952 _____ () C:\Program Files\Mad Catz\M.M.O.TE\Pr0fileEditor_Forms.dll
2014-09-12 15:29 - 2014-09-12 15:29 - 00311296 _____ () C:\Program Files\Mad Catz\M.M.O.TE\de\Pr0fileEditor_Forms.resources.dll
2013-06-12 18:11 - 2014-08-05 00:35 - 01294336 _____ () C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
2016-10-19 15:10 - 2016-10-19 15:10 - 02790904 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.1.30\deploy\LoLLauncher.exe
2016-10-19 15:10 - 2016-10-19 15:10 - 04933112 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.70\deploy\LoLPatcher.exe
2016-10-26 17:25 - 2016-10-26 17:25 - 00074752 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.227\deploy\LolClient.exe
2016-10-26 15:42 - 2016-10-26 15:42 - 01484776 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8098\Battle.net Helper.exe
2016-10-26 15:51 - 2016-10-26 15:51 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-10-26 15:51 - 2016-10-26 15:51 - 03123088 _____ () C:\Program Files\AVAST Software\Avast\defs\16102600\algo.dll
2016-10-26 15:51 - 2016-10-26 15:51 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2014-07-14 16:49 - 2014-07-14 16:49 - 00137296 _____ () C:\Program Files (x86)\Avira\My Avira\Avira.OE.NativeCore.dll
2016-10-26 15:56 - 2016-09-30 06:22 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2014-05-28 17:16 - 2013-09-16 21:20 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-02-28 15:33 - 2016-08-31 15:01 - 00149272 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\quazip.dll
2014-07-11 16:02 - 2016-08-31 15:01 - 00089880 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\soundbackends\directsound_win32.dll
2014-07-11 16:02 - 2016-08-31 15:01 - 00103192 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win32.dll
2014-07-11 16:04 - 2016-08-31 15:01 - 00259352 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2014-07-14 10:21 - 2016-08-31 15:01 - 00373016 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2014-08-04 20:31 - 2014-08-04 20:31 - 00015616 _____ () C:\Windows\assembly\GAC_MSIL\MyService\1.0.0.1__2dfa3f50f0bed57d\MyService.dll
2014-07-22 16:24 - 2014-07-22 16:24 - 00013568 _____ () C:\Program Files (x86)\Acer\AOP Framework\ServiceInterface.dll
2014-06-30 21:26 - 2014-06-30 21:26 - 00279296 _____ () C:\Program Files (x86)\Acer\abMedia\libcurl.dll
2014-07-22 17:43 - 2014-07-22 17:43 - 00203008 _____ () C:\Program Files (x86)\Acer\abPhoto\curllib.dll
2014-07-22 17:44 - 2014-07-22 17:44 - 00630528 _____ () C:\Program Files (x86)\Acer\abPhoto\tag.dll
2014-07-22 17:44 - 2014-07-22 17:44 - 00654552 _____ () C:\Program Files (x86)\Acer\abPhoto\sqlite3.dll
2014-07-22 17:43 - 2014-07-22 17:43 - 00119552 _____ () C:\Program Files (x86)\Acer\abPhoto\OpenLDAP.dll
2016-10-26 15:51 - 2016-10-26 15:51 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-01-10 18:00 - 2012-07-08 17:31 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Isku FX Keyboard\hiddriver.dll
2016-10-26 15:56 - 2016-09-30 06:22 - 60819000 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2016-10-26 15:56 - 2016-09-29 19:20 - 00500792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-10-26 15:56 - 2016-09-29 19:20 - 00255936 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-10-26 15:56 - 2016-09-29 19:20 - 02801208 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-10-26 15:56 - 2016-09-29 19:20 - 00244672 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-10-26 15:56 - 2016-09-29 19:20 - 00430648 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-10-26 15:56 - 2016-09-29 19:20 - 00336832 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-10-26 15:56 - 2016-09-29 19:20 - 00373696 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-10-19 15:10 - 2016-10-19 15:10 - 00610808 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.70\deploy\RiotLauncher.dll
2014-08-05 00:46 - 2016-09-08 05:14 - 00784672 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-01-20 18:11 - 2016-09-01 03:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2014-08-05 00:46 - 2016-10-13 03:58 - 02321696 _____ () C:\Program Files (x86)\Steam\video.dll
2015-01-20 18:11 - 2016-09-01 03:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-01-20 18:11 - 2016-09-01 03:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2014-08-29 15:22 - 2016-01-27 09:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2014-08-29 15:22 - 2016-01-27 09:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2014-08-29 15:22 - 2016-01-27 09:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2014-08-29 15:22 - 2016-01-27 09:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2014-08-29 15:22 - 2016-01-27 09:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2014-08-05 00:46 - 2016-10-13 03:58 - 00836896 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-09 17:19 - 2016-07-05 00:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-10-14 00:09 - 2016-08-04 22:56 - 49825056 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.winxp\libcef.dll
2015-01-20 18:11 - 2015-09-25 01:52 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2016-10-26 17:25 - 2016-10-26 17:25 - 04887216 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.227\deploy\Adobe AIR\Versions\1.0\Resources\WebKit.dll
2016-10-26 17:25 - 2016-10-26 17:25 - 19397808 _____ () C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.227\deploy\Adobe AIR\Versions\1.0\Resources\NPSWF32.dll
2016-10-26 15:42 - 2016-10-26 15:42 - 37247976 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8098\libcef.dll
2016-10-26 15:42 - 2016-10-26 15:42 - 00540336 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8098\ortp.dll
2016-10-26 15:42 - 2016-10-26 15:42 - 06402560 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8098\battle.net.dll
2016-10-26 15:42 - 2016-10-26 15:42 - 00133632 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8098\libEGL.dll
2016-10-26 15:42 - 2016-10-26 15:42 - 03384832 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8098\libGLESv2.dll
2016-10-26 15:42 - 2016-10-26 15:42 - 03384832 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8098\libglesv2.dll
2016-10-26 15:42 - 2016-10-26 15:42 - 00133632 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8098\libegl.dll
2016-10-26 15:42 - 2016-10-26 15:42 - 00990696 _____ () C:\Program Files (x86)\Battle.net\Battle.net.8098\ffmpegsumo.dll
2016-10-26 15:44 - 2016-10-20 10:47 - 01819240 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\libglesv2.dll
2016-10-26 15:44 - 2016-10-20 10:47 - 00093288 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Michel\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\StartupApproved\Run: => "GalaxyClient"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{57FBABCE-7AD9-48C8-8880-C526A97D4AC2}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{41F8ED07-4FA6-4BC5-B6A3-CAEA61D2E2E8}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{7D93A718-E5F6-4F13-9A5D-BC812F5B5F1C}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{5DB33E60-3F5A-46B0-94AD-03E6CE84ADEC}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{F5D48745-4D62-4E9E-8335-FF2B4C414AEB}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{CF4C626C-835D-4A06-918C-6485DF41540E}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{C91630F8-3A75-4191-BC4C-3B77F7EA4926}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{CE5FA555-E17D-4B70-95A0-D3471E07D173}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{34125AE7-4E35-4C62-A399-D48FBF2C97E3}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{2ADF31E3-B26B-498F-BD16-F774512A0E40}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
FirewallRules: [{E9E54A3D-7C4E-468B-B151-7FE88B779263}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{95C9DEFF-020D-42AF-B1AB-39301FC89672}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
FirewallRules: [{821186DD-2B7C-4014-B973-AA950B3F910E}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{BCB83C40-92AC-4D2B-9AF9-97B3936DBF7A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{AB3F9C3F-01E5-4ABD-8AAD-223046190737}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{203469DE-3446-438E-B74E-EACB759E596B}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{B386393B-9A7F-436D-985E-F3AD231C34BC}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{DCBC50A4-EB49-49F1-A2B3-43FE1E834070}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{63CBD55E-D58D-4E47-A0BD-CAED9CE01F6F}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{70DE0911-0EE4-4AD4-97C4-0805AE1A43B2}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{258C6CB6-852E-46DA-8BD5-3AE42C11C69D}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{BEA4718D-0AEF-418D-8DF8-5BDC63D64F27}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{5E80D6A5-7C04-473C-B116-9051B4762B1E}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{A45A4CF6-1318-4B3D-8736-C6C55EAB4182}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{19D7C092-FCC4-4F58-AA7F-6BF72BBE7336}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{6799EC88-B26E-4569-A5B5-0940BEB0B096}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{2C063840-F431-4744-902D-F4C1B4BB3793}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{0A515436-41F8-436F-9C7D-15D750872DDB}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{97399A42-B310-48B5-AD80-013B0658D3B8}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{8BCB6F5D-16DB-4E98-961E-037DBC1FA135}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{4DBA4CFD-6EC5-40CC-AD5A-A3367E7D8EA5}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{274A2648-B9BD-45AB-95C1-07687CF8018F}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{69B82859-BCC8-43C6-BC78-B6B4BF4F01D4}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\Sdd.exe
FirewallRules: [{8690AE9A-490A-4F84-9A08-EFAF06543A82}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\Sdd.exe
FirewallRules: [{AEF5C10E-8420-4F99-A294-A07F99C4A773}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\virtualdrive.exe
FirewallRules: [{98A65F14-6CE5-4721-9C8C-1F84E4CC0060}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\virtualdrive.exe
FirewallRules: [{008B8829-A6E6-4FFA-8C18-A44FFCCAEDAE}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{F49AEA58-0755-4104-9F0E-66A2F6E5FF04}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{E88C9A41-351D-4C25-88D6-7CE56C8465A7}] => (Allow) C:\Program Files (x86)\Acer\abPhoto_\DMCDaemon.exe
FirewallRules: [{3F04CA4C-1008-4C39-9E70-8E76A710A712}] => (Allow) C:\Program Files (x86)\Acer\abPhoto_\DMCDaemon.exe
FirewallRules: [{F8FCC361-F48E-4E5F-8F98-35D727684A0E}] => (Allow) C:\Program Files (x86)\Acer\abPhoto_\WindowsUpnp.exe
FirewallRules: [{7A428BB7-42C4-4E7C-AC32-F4B252DC52E7}] => (Allow) C:\Program Files (x86)\Acer\abPhoto_\WindowsUpnp.exe
FirewallRules: [{D855636C-DDCA-417F-8B71-129DB9EFB05F}] => (Allow) C:\Program Files (x86)\Acer\abPhoto_\DMCDaemon.exe
FirewallRules: [{21F56A6B-C96E-423A-B55E-015693C3FDF7}] => (Allow) C:\Program Files (x86)\Acer\abPhoto_\DMCDaemon.exe
FirewallRules: [{2DB857AE-C6D0-47D2-9D65-60753E266CF9}] => (Allow) C:\Program Files (x86)\Acer\abPhoto_\WindowsUpnp.exe
FirewallRules: [{8B5E318F-DA2C-4ED4-B498-1AFE9F1E12EC}] => (Allow) C:\Program Files (x86)\Acer\abPhoto_\WindowsUpnp.exe
FirewallRules: [{F3FE3BA7-0FDD-4850-AAD9-EFC380922576}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{55F1FB01-D61F-4DB2-B853-9815FB749A10}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{B4279435-0B90-4E50-985F-83606764D645}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{C286B2E8-052F-427E-9CD3-007FDB0301E1}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{72211944-05FB-4CD2-8061-F0DDBC4AA037}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{F5AC28C2-2479-4417-91AF-D23EA88822F9}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{1E24E612-2763-4D8C-8200-D616734736EC}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{A22A65F7-7470-42E9-801D-5F755E91E002}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{923E952F-5639-489D-B55A-EE3CDF17A3EF}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\DMCDaemon.exe
FirewallRules: [{F3962E30-A864-48A0-8A72-BF1725A8365A}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\DMCDaemon.exe
FirewallRules: [{A62A179A-D972-49A2-9904-1C6F55D94CE5}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\WindowsUpnpMV.exe
FirewallRules: [{B604F105-8E28-43EA-BABD-E708021179E3}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\WindowsUpnpMV.exe
FirewallRules: [{108BF8B4-DD1C-499D-9D75-9FB8A384851D}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\DMCDaemon.exe
FirewallRules: [{F02662B5-DEC1-43F2-B29E-59B6B2E50399}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\DMCDaemon.exe
FirewallRules: [{D86375DE-894F-43A6-A0DD-62410110FE16}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\WindowsUpnpMV.exe
FirewallRules: [{97D34FC7-D564-47D7-A9F5-5E14C667B880}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\WindowsUpnpMV.exe
FirewallRules: [{1EFC35BF-23C3-4C71-BE6D-E8AC07D5A79A}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{7922D759-D3D4-4A5D-B903-D9476F48B734}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{F21C1D5D-CD2F-40A6-964C-A53ADECCCF58}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{F90231F1-4F67-4434-90E0-C4A76565DFC6}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{6AB40993-2EBC-46D8-B1FD-69D79ACEEE1B}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{AD1BF7BF-2DC8-4B05-AA0C-6BC02B0F3EE1}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{2E0E7F9D-73CD-4EC3-AF0D-2413D271FE50}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{55944B89-927D-4598-B917-FD7903BC8065}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{617DD027-39B6-4BD3-B0BD-DF66F766C398}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
FirewallRules: [{9BDF3681-4629-4F92-8B22-3A7E72DEF90F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
FirewallRules: [{9FCF0BEE-4877-4D0C-938E-E9D82CF57CAA}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{F29FB478-094C-434B-91F9-A0E1BF30A7B6}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{68D1E622-AFA4-4065-BA9C-DAF2ADFBEB8D}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{29497FFD-B2BA-44E8-B4BC-02FD816F8CDE}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{C9445324-8B3D-4576-89D6-52D118AEB059}] => (Allow) C:\Program Files (x86)\Blizzard\Hearthstone\Hearthstone.exe
FirewallRules: [{36343BC3-B12E-4556-B391-B6D3AEA6708A}] => (Allow) C:\Program Files (x86)\Blizzard\Hearthstone\Hearthstone.exe
FirewallRules: [{EBDF54E3-270A-484D-B9BC-DAB0382AE196}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A2D5C499-4B66-4A7D-B75A-F051F0F33E5C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [TCP Query User{ADFAE426-EBBF-476D-981D-F3B9389CBF97}C:\users\michel\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\michel\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{7A80E055-CD99-4BA1-8F46-269CFFA25B0A}C:\users\michel\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\michel\appdata\roaming\spotify\spotify.exe
FirewallRules: [{EBEAE492-772A-401D-A77C-93C427BF99C0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{F66ABA6A-6C58-4199-84F3-96B39AD909D5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{099DC489-70F8-4DF1-8D60-EA8D80BDCF48}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{517A293D-A0B1-4BF3-A244-F90130009585}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{C79C0F99-CED7-45B6-985F-58F726E287BD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe
FirewallRules: [{C244B4A8-D447-4476-BDD7-FD4710CDD75A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe
FirewallRules: [{B522B395-10B3-4AA5-9C00-335EB3E42C51}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{0F9A8EA5-67F3-44E7-9104-411039D77F27}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{F52DC84C-4698-4A48-AC4A-CEC9B1995825}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{3F80E684-1182-44A8-B109-4D91013F92A6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{6833E97C-A3CC-41FF-84B1-2B7FF7129DD1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{95026827-E88E-46D7-B10E-FA74474C34EF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{25A3C3C6-E98F-4243-BC25-A9A0DBC9549A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{D7FE09EB-ACFC-4CD5-B6BA-3FC485F3061C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{E50B4209-7C47-40D6-96C7-6593E7FE1B1F}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{EBEA32C8-EB94-435F-9C95-D7DDDB84F626}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{698B5BA6-5BCA-4360-B959-206A77871783}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{1B079581-5DBC-4989-9D94-5AD42886B3E5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{0CBB8C62-3FB9-4B71-B158-F44EFE4E1A34}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{C5C4E382-5FD4-4534-8D8C-4C19A75875F3}] => (Allow) LPort=2869
FirewallRules: [{6DE8956F-D1C1-4FE6-B46E-CFB9333F11C5}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{E42D7504-980F-4CAF-981E-0323ECAB6877}C:\programdata\battle.net\agent\agent.3372\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3372\agent.exe
FirewallRules: [UDP Query User{345E4E76-714E-4B51-A31B-88502184AC21}C:\programdata\battle.net\agent\agent.3372\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3372\agent.exe
FirewallRules: [TCP Query User{EF6B9E25-E181-4F28-B7CA-740E30242E7D}C:\program files (x86)\dayzlauncher\dayzlauncher.exe] => (Block) C:\program files (x86)\dayzlauncher\dayzlauncher.exe
FirewallRules: [UDP Query User{1289A79B-8741-4596-8D12-60CE476A02A2}C:\program files (x86)\dayzlauncher\dayzlauncher.exe] => (Block) C:\program files (x86)\dayzlauncher\dayzlauncher.exe
FirewallRules: [{9F3A9B24-8566-4D02-A9DD-1A7E18434EE5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{B241A210-6F4F-4D68-A570-369809688382}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{E746FE6B-14B2-4752-A98F-00C18381513F}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\Future Soldier.exe
FirewallRules: [{692AFB5D-580E-416D-AE01-262D783C393B}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\Future Soldier.exe
FirewallRules: [{2FD00C27-6B21-4025-92F8-E07B8FE6A788}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\gu.exe
FirewallRules: [{DB36BB76-CE49-4971-A4D0-42172B2ED861}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\gu.exe
FirewallRules: [{E5AF5F8D-DDD0-49D8-8F75-E71D6EC03796}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\Future Soldier DX11.exe
FirewallRules: [{A2A9996F-4B0B-44DE-A82B-6C58A6BF216A}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\Future Soldier DX11.exe
FirewallRules: [{4FFCA11D-23EA-4486-9E27-5ACE03E711F5}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\Future Soldier DX9.exe
FirewallRules: [{2B732F63-8BD0-4374-B56C-AE8EA42646D1}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\Future Soldier DX9.exe
FirewallRules: [TCP Query User{76AA4795-E7A1-45AA-B21B-D445579DC381}C:\users\michel\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\michel\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{DB98A8A9-940D-4CEB-B7C5-117EEB794C83}C:\users\michel\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\michel\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{A209CD5C-899C-4FF5-9718-B105F8A5EC03}C:\program files (x86)\ubisoft\tom clancy's ghost recon future soldier\future soldier dx11.exe] => (Allow) C:\program files (x86)\ubisoft\tom clancy's ghost recon future soldier\future soldier dx11.exe
FirewallRules: [UDP Query User{3CCC70E0-C091-42A7-A5BF-C9A8F43F7706}C:\program files (x86)\ubisoft\tom clancy's ghost recon future soldier\future soldier dx11.exe] => (Allow) C:\program files (x86)\ubisoft\tom clancy's ghost recon future soldier\future soldier dx11.exe
FirewallRules: [TCP Query User{236713AA-F082-41C9-9FF0-C0F539BD046B}C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe
FirewallRules: [UDP Query User{E70448FB-FE97-4DFF-8060-97EFD0B0263F}C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe
FirewallRules: [{00BEA19C-4929-46D9-B68B-5E9166942944}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{0C56E166-C272-48D1-926B-0CE0C87C0FDB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [TCP Query User{EB1C724B-638A-428B-9354-C3C51EFF819F}C:\programdata\battle.net\agent\agent.3526\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3526\agent.exe
FirewallRules: [UDP Query User{9964DEF8-9B2C-40D0-ACE8-3DE80824EAD4}C:\programdata\battle.net\agent\agent.3526\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3526\agent.exe
FirewallRules: [TCP Query User{5FB7A348-0200-430B-9704-F890E55777D3}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{76131D6D-CB97-4A89-9BF2-FF7D06169CF7}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{F531EB61-872F-49E9-8051-C0C900BDDB40}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [{99BB42FA-2289-4849-8C5C-FD6238E668B6}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [{7CF8C288-540F-4A93-B64B-640FCAF30380}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{0CA428AD-1535-49D8-95DB-A3BD6439EC4E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [TCP Query User{DE17C543-A415-41D5-B109-8D485507A280}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{F857844F-A1D7-4170-996D-492012FAC470}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [TCP Query User{BD7EEF8D-1967-4905-BB8B-95205E649EE7}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Block) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [UDP Query User{A6A3F0A7-D515-496C-815F-D66F96340B94}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Block) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [TCP Query User{E977E616-F64C-4A95-8C0A-B2932F21AD2B}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [UDP Query User{AAD59D17-9DCF-499C-8525-D6B1AFC3D6F4}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [{7D260A6C-DF13-4B1E-94BA-683AD718B291}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe
FirewallRules: [{990F3F32-5F56-4D0A-B30B-C7D637E25896}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe
FirewallRules: [{4AA40E4D-B112-4354-AB22-FA1D129FCDA2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{B898B673-D4CC-4381-A81C-13B91E8B4A09}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{184188F7-FCD7-4059-B059-93F6F0242E90}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 4\bin\FarCry4.exe
FirewallRules: [{8601F9B4-65B9-41FE-9A1E-9A4C596821EF}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 4\bin\FarCry4.exe
FirewallRules: [{D209620D-38B7-46A4-897B-C2296CCE1672}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 4\bin\IGE_WPF64.exe
FirewallRules: [{FDC9854E-E662-4BAB-8AC7-3B9004D18F27}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 4\bin\IGE_WPF64.exe
FirewallRules: [TCP Query User{D5425602-1D70-4BC1-A32C-C9B44E452B17}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{89812EFC-FE19-4562-872F-D42900E494CB}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [{63CFB828-7BAE-4AA6-86F9-090A63491E89}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [{44925085-79DA-4A2D-A12E-6F7AB54FC7B7}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [{0F9023EB-5DAA-4569-BE93-321888789BC8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{D4A6AA3F-7D02-4535-BCCF-7E4399146932}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [TCP Query User{F3DE45A2-4383-4A16-92FE-22BEB1CFC38A}C:\program files (x86)\dayzlauncher\dayzlauncher.exe] => (Allow) C:\program files (x86)\dayzlauncher\dayzlauncher.exe
FirewallRules: [UDP Query User{4BEE4397-B962-4B37-BAB6-FAD14D6F16B0}C:\program files (x86)\dayzlauncher\dayzlauncher.exe] => (Allow) C:\program files (x86)\dayzlauncher\dayzlauncher.exe
FirewallRules: [{66EE1EF5-1797-40A4-8438-57ADF0898206}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{05FD4698-7FF4-47BD-8BE0-FBA90E1C6516}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{B1AA4C3E-A46D-4BDE-8832-E8C75159C947}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{58FF1657-3D63-4C75-8434-B5DA13C59487}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{B182BF1C-3D7D-408D-99E3-6165140384B2}] => (Allow) C:\Program Files (x86)\Blizzard\StarCraft II\StarCraft II.exe
FirewallRules: [{1D8BB965-FF74-4B12-93AE-5916CD36A271}] => (Allow) C:\Program Files (x86)\Blizzard\StarCraft II\StarCraft II.exe
FirewallRules: [TCP Query User{51355C3A-78AC-4F6C-9BB4-6DC9D5368F55}C:\program files (x86)\blizzard\starcraft ii\versions\base32283\sc2.exe] => (Allow) C:\program files (x86)\blizzard\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [UDP Query User{236E5F7C-AA48-4239-9953-AFE78C2EB605}C:\program files (x86)\blizzard\starcraft ii\versions\base32283\sc2.exe] => (Allow) C:\program files (x86)\blizzard\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{1AD59C22-885B-496A-9165-D233A228103A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magicka 2\engine\Magicka2.exe
FirewallRules: [{F7455D96-0F96-4D64-8B93-5CCAC9E35CD5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magicka 2\engine\Magicka2.exe
FirewallRules: [{002721EE-01D7-46AE-857B-B4EBFF836E4D}] => (Allow) C:\Program Files (x86)\Origin Games\Kingdoms of Amalur Reckoning\Reckoning.exe
FirewallRules: [{312E4C0D-540E-4182-85BE-CCFF3795DFE6}] => (Allow) C:\Program Files (x86)\Origin Games\Kingdoms of Amalur Reckoning\Reckoning.exe
FirewallRules: [{E44B46DA-6C93-4230-842B-FB5BC5B507F3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe
FirewallRules: [{EB76D6F1-C057-4BCD-AAA3-8CDAE3203B09}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe
FirewallRules: [TCP Query User{DF0F9190-EA49-470A-BDFA-D1C408E6FF3E}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe
FirewallRules: [UDP Query User{C43B5F12-790D-4F8E-8F05-AA636F01145D}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe
FirewallRules: [{2DEF2276-F73B-4A57-8EAF-F7464368F51E}] => (Block) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe
FirewallRules: [{FDF71D48-E9C5-4514-B945-C5B60F9B0164}] => (Block) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe
FirewallRules: [{166586D8-F9AF-45C8-8308-44B949D9D23F}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age II\bin_ship\DragonAge2.exe
FirewallRules: [{B621EB5C-FEEE-4D03-AF1A-B174A33DA85D}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age II\bin_ship\DragonAge2.exe
FirewallRules: [TCP Query User{A5CA727C-2BB7-4C13-81DA-022A104D5E2F}C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [UDP Query User{DF4F0375-32E5-472E-B430-C6EAF04A282A}C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [{AB9D57C3-C838-4E12-8F60-E7C7BC747DA8}] => (Block) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [{0D57B596-4C54-421A-83E2-57B860969D8B}] => (Block) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [TCP Query User{87BB1A0D-4994-456D-B1B3-0C481DBDF3AA}C:\users\michel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\michel\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{E2BB1DB0-3E87-4FE3-B4E1-B6F8619E2329}C:\users\michel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\michel\appdata\local\akamai\netsession_win.exe
FirewallRules: [{24ED443E-F8C7-402D-9F2F-D5525792F834}] => (Block) C:\users\michel\appdata\local\akamai\netsession_win.exe
FirewallRules: [{20528020-381A-4025-A87F-D25A3F3EEBD1}] => (Block) C:\users\michel\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{A0D89AEA-5C5E-42E0-ADD7-9C104870A17A}C:\users\michel\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe] => (Allow) C:\users\michel\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe
FirewallRules: [UDP Query User{5855D12F-D0B3-4CBE-917B-FEA98723D89F}C:\users\michel\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe] => (Allow) C:\users\michel\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe
FirewallRules: [{FA1E77A5-6CCC-4D32-844A-0E4CBEFF098C}] => (Block) C:\users\michel\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe
FirewallRules: [{3AC2631C-AC64-4AB7-ABB0-1EB8EF7259B9}] => (Block) C:\users\michel\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe
FirewallRules: [{054D0A1C-A021-46D6-A4B4-CCCD5341A2DE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{D978EC70-DE76-4630-85C9-7F76D065E03C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [TCP Query User{694B8F1D-24E7-4A05-8959-DC2ECC739F40}C:\users\michel\desktop\originslauncher\originslauncher.exe] => (Allow) C:\users\michel\desktop\originslauncher\originslauncher.exe
FirewallRules: [UDP Query User{14646EA8-A88F-4D53-BBDF-A9ECC55AE73B}C:\users\michel\desktop\originslauncher\originslauncher.exe] => (Allow) C:\users\michel\desktop\originslauncher\originslauncher.exe
FirewallRules: [{97D706EE-FECE-47C2-B982-48B452887DB7}] => (Block) C:\users\michel\desktop\originslauncher\originslauncher.exe
FirewallRules: [{A4678BF7-8EF8-4849-8F4F-58105DC8A1E8}] => (Block) C:\users\michel\desktop\originslauncher\originslauncher.exe
FirewallRules: [{041C999F-A8BF-403A-89F0-A6C80A531888}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SniperGhostWarrior2\Bin32\SniperGhostWarrior2.exe
FirewallRules: [{20054D1B-C064-4DA0-8969-D33FD4A5A216}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SniperGhostWarrior2\Bin32\SniperGhostWarrior2.exe
FirewallRules: [TCP Query User{A68CF9AC-46E7-4941-BEC2-B5AAB790ED35}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{2A7934B4-4FC7-46F8-8DD5-C527FCC0A607}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{103C9A33-121C-4C57-ADFF-36EA9F0BA2DE}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{83AEF4C3-A336-4F97-A1E6-15CD6078CE82}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [TCP Query User{DB3E4405-0FF0-4AE5-99CC-223FDDF4148F}C:\program files (x86)\blizzard\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\blizzard\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{DA4E129F-57D0-4110-A441-A6A5C40C5654}C:\program files (x86)\blizzard\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\blizzard\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{562266EC-C1B3-4270-B83D-E607AAB746E6}C:\program files (x86)\blizzard\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\blizzard\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{1249E191-A977-4AB9-9CA6-CB05D518CFD8}C:\program files (x86)\blizzard\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\blizzard\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{2097AAD1-EE89-4CF8-8048-47340D05EB7A}C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe
FirewallRules: [UDP Query User{739D4336-BC42-4052-9963-7B212574E0F7}C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe
FirewallRules: [TCP Query User{F86E02E5-F717-4BEE-9D07-B010C6ACF7FF}C:\program files (x86)\blizzard\hearthstone\hearthstone.exe] => (Block) C:\program files (x86)\blizzard\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{AD9258D1-1014-4C1B-934F-051014C3FCA8}C:\program files (x86)\blizzard\hearthstone\hearthstone.exe] => (Block) C:\program files (x86)\blizzard\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{32AED536-B8DF-4574-80AE-E7F362780411}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe
FirewallRules: [UDP Query User{37EE08BE-AAB6-45A8-ADED-F1489793420B}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe
FirewallRules: [{EC19A829-D8C7-4F17-AB19-BAE3452E2F77}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{9102B83E-6B9E-449A-8E78-6CB57417A4BA}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{7337D5A6-7A91-447E-98F9-8179D74956AD}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{0400B42F-AB74-4E17-AC3A-130D9D529231}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [TCP Query User{C7A6C7E1-FA6E-40E5-B806-2588FBF4F24D}C:\program files (x86)\blizzard\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\blizzard\overwatch\overwatch.exe
FirewallRules: [UDP Query User{7607EB4B-D526-40FE-8368-26AE0B334E9E}C:\program files (x86)\blizzard\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\blizzard\overwatch\overwatch.exe
FirewallRules: [{A7293B7D-AE21-4B03-AF9F-CF9929B3365C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magicka 2\engine\Magicka2.exe
FirewallRules: [{5857DA5D-8E90-49B4-9E81-BC73E30DD6E4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magicka 2\engine\Magicka2.exe
FirewallRules: [TCP Query User{6DEE526C-B74E-4D63-820A-E64E895C8937}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{6F882AFC-F944-450E-A480-30B5523F9003}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [{C4EAE022-D1AB-424C-B8C6-437B40EB6494}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{C789058F-FD26-406B-8BC7-E2B0996F2073}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [TCP Query User{E32B2ABA-7547-4EB3-BAF8-55151CBD482A}C:\program files (x86)\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe
FirewallRules: [UDP Query User{8B0F8452-60EB-4BF1-8190-FB6E51C0995C}C:\program files (x86)\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe
FirewallRules: [TCP Query User{2EB7DBDF-2297-42C5-B087-D6C07C12A5B1}C:\users\michel\desktop\release\necrobot.exe] => (Allow) C:\users\michel\desktop\release\necrobot.exe
FirewallRules: [UDP Query User{14941171-2354-4042-A12D-9B7AE1DDA1A0}C:\users\michel\desktop\release\necrobot.exe] => (Allow) C:\users\michel\desktop\release\necrobot.exe
FirewallRules: [{7CDF25A9-FF67-4550-8843-607758A986AF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{F896BFC6-ADCF-41B5-BF21-B0F70F8F2A12}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [TCP Query User{5E267E99-2995-4822-8FC4-EDC1A7ADB17A}C:\program files (x86)\blizzard\starcraft ii\versions\base44983\sc2_x64.exe] => (Allow) C:\program files (x86)\blizzard\starcraft ii\versions\base44983\sc2_x64.exe
FirewallRules: [UDP Query User{DEC72DAE-45A3-4252-B215-8F2A8AA91CA1}C:\program files (x86)\blizzard\starcraft ii\versions\base44983\sc2_x64.exe] => (Allow) C:\program files (x86)\blizzard\starcraft ii\versions\base44983\sc2_x64.exe
FirewallRules: [{94ACFF7B-62D7-4E02-BB0D-547E98AC03CD}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GearUp\bin\Traktor.Amalgam.App.exe
FirewallRules: [{010221E1-A31A-4427-B2E8-9B86A4831869}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GearUp\bin\Traktor.Amalgam.App.exe
FirewallRules: [{123EAF4B-6507-4B9B-908C-94599FD5E903}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{D3C5775D-74AE-43D9-A403-45E045F51F8A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{EA691FCE-718B-41B4-9D26-9F611E80D361}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{86712F59-C38C-4AEE-A794-54784412694B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [TCP Query User{9C7FB9A3-627E-46AD-A0BD-CD3D858BC7E8}C:\program files (x86)\blizzard\starcraft ii\versions\base46154\sc2_x64.exe] => (Allow) C:\program files (x86)\blizzard\starcraft ii\versions\base46154\sc2_x64.exe
FirewallRules: [UDP Query User{F46B4DDA-3CE8-4994-B6AE-5C6BDD20DDA5}C:\program files (x86)\blizzard\starcraft ii\versions\base46154\sc2_x64.exe] => (Allow) C:\program files (x86)\blizzard\starcraft ii\versions\base46154\sc2_x64.exe
FirewallRules: [{E886B49E-5E17-4E45-A8B9-B2435904506B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{B1B9C075-7631-42E0-A15E-C0A79C427D3F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{D8A00852-94AC-49A7-BA66-39FE611C3AB3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Just Cause 3\JustCause3.exe
FirewallRules: [{EA662D8F-1D0B-4C75-A1EE-4F31EB8301E8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Just Cause 3\JustCause3.exe
FirewallRules: [{C3E446A1-6640-4106-B5B6-5FCB40A33436}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Lucius\Lucius.exe
FirewallRules: [{C38303A2-C0F7-444F-8C74-F2DCFCADA93B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Lucius\Lucius.exe
FirewallRules: [{D74F972D-5CB6-4E00-9D8A-45333CE04963}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{200FC93A-65E3-493A-B192-A87A24E61D5C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{4C6C0ABC-C8CA-4C45-9F52-C4547C26928C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{B9836C62-D030-4BCA-84B8-9783310A37AB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{E03CA714-BCE5-4E10-B4AA-D73B847336BD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{396AC12E-6D36-4B4D-9378-A82B74C947E7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{DD996F16-B0FD-4136-AAC8-9F4EDF69CC9C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C2B2A6A0-705E-4E3D-BE99-6E41696A2623}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe

==================== Wiederherstellungspunkte =========================

08-10-2016 15:14:33 Installed Skype™ 7.28
13-10-2016 01:59:10 Windows Update
21-10-2016 00:51:20 Geplanter Prüfpunkt
26-10-2016 15:30:27 Wiederherstellungsvorgang

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (10/26/2016 04:20:48 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20911 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: f18

Startzeit: 01d22f936ce0ca26

Endzeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe

Berichts-ID: 61ac71f4-9b87-11e6-82e5-448a5b672c44

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1

Error: (10/26/2016 04:07:39 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Taskmgr.exe, Version 6.3.9600.17415 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 12a0

Startzeit: 01d22f923b1d5f3d

Endzeit: 5

Anwendungspfad: C:\Windows\System32\Taskmgr.exe

Berichts-ID: 8cbee49d-9b85-11e6-82e3-448a5b672c44

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (10/26/2016 04:07:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Taskmgr.exe, Version 6.3.9600.17415 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1de8

Startzeit: 01d22f92273a4402

Endzeit: 3

Anwendungspfad: C:\Windows\System32\Taskmgr.exe

Berichts-ID: 7abfe844-9b85-11e6-82e3-448a5b672c44

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (10/26/2016 04:06:29 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Taskmgr.exe, Version 6.3.9600.17415 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: c64

Startzeit: 01d22f90ad159de7

Endzeit: 4

Anwendungspfad: C:\Windows\System32\Taskmgr.exe

Berichts-ID: 62306c1b-9b85-11e6-82e3-448a5b672c44

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (10/26/2016 04:00:00 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1752) SRUJet: Fehler -1811 (0xfffff8ed) beim Öffnen von Protokolldatei C:\Windows\system32\SRU\SRU04B6B.log.

Error: (10/26/2016 03:57:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: svchost.exe_PcaSvc, Version: 6.3.9600.17415, Zeitstempel: 0x54504177
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.18438, Zeitstempel: 0x57ae642e
Ausnahmecode: 0xc0000008
Fehleroffset: 0x00000000000925fa
ID des fehlerhaften Prozesses: 0x468
Startzeit der fehlerhaften Anwendung: 0x01d22f8e5bc0be54
Pfad der fehlerhaften Anwendung: C:\Windows\System32\svchost.exe
Pfad des fehlerhaften Moduls: C:\Windows\SYSTEM32\ntdll.dll
Berichtskennung: 2bd76dcd-9b84-11e6-82e3-448a5b672c44
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (10/26/2016 03:49:04 PM) (Source: MsiInstaller) (EventID: 1041) (User: NT-AUTORITÄT)
Description: Fehler beim Starten einer Windows Installer-Transaktion: ASU_MSI_TRAN. Fehler 1603 beim Starten der Transaktion.

Error: (10/26/2016 03:40:30 PM) (Source: System Restore) (EventID: 8210) (User: )
Description: Unbekannter Fehler bei der Systemwiederherstellung: (Geplanter Prüfpunkt). Zusätzliche Informationen: 0xc0000022.

Error: (10/26/2016 03:27:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: setup.exe_unknown, Version: 0.0.0.0, Zeitstempel: 0x57d87fc5
Name des fehlerhaften Moduls: NVI2.DLL, Version: 2.1002.224.1962, Zeitstempel: 0x57d880dc
Ausnahmecode: 0x40000015
Fehleroffset: 0x00278476
ID des fehlerhaften Prozesses: 0xbf0
Startzeit der fehlerhaften Anwendung: 0x01d22f8c62a20900
Pfad der fehlerhaften Anwendung: C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\setup.exe
Pfad des fehlerhaften Moduls: C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{2F8F7332-C3EB-4A0D-BA40-C5549AD37028}\NVI2.DLL
Berichtskennung: ee76574c-9b7f-11e6-82e8-448a5b672c44
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (10/24/2016 11:14:47 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm TESV.exe, Version 1.9.32.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1fdc

Startzeit: 01d22e304666c839

Endzeit: 307

Anwendungspfad: C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\TESV.exe

Berichts-ID: dee88e30-9a2e-11e6-82e6-448a5b672c44

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:


Systemfehler:
=============
Error: (10/26/2016 05:00:23 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: Der Server "{DDCFD26B-FEED-44CD-B71D-79487D2E5E5A}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (10/26/2016 04:59:20 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst ExpressCache erreicht.

Error: (10/26/2016 04:58:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
Das System kann die angegebene Datei nicht finden.

Error: (10/26/2016 04:21:37 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: NT-AUTORITÄT)
Description: 0x8000002a41\??\C:\Windows\system32\config\COMPONENTS

Error: (10/26/2016 04:16:15 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst ExpressCache erreicht.

Error: (10/26/2016 04:15:45 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst ExpressCache erreicht.

Error: (10/26/2016 04:15:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
Das System kann die angegebene Datei nicht finden.

Error: (10/26/2016 04:14:36 PM) (Source: volmgr) (EventID: 46) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.

Error: (10/26/2016 04:14:52 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎26.‎10.‎2016 um 15:39:21 unerwartet heruntergefahren.

Error: (10/26/2016 04:11:27 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Gerätezuordnungsdienst" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
Es wird bereits eine Instanz des Dienstes ausgeführt.


CodeIntegrity:
===================================
  Date: 2015-07-18 17:16:31.022
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 17:16:30.914
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 17:16:30.809
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 17:16:30.703
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 17:16:30.601
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 17:16:30.497
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 17:16:30.397
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 17:16:30.290
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-10-25 16:23:56.841
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-10-25 16:23:56.780
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
Prozentuale Nutzung des RAM: 51%
Installierter physikalischer RAM: 8111.7 MB
Verfügbarer physikalischer RAM: 3934.41 MB
Summe virtueller Speicher: 16303.7 MB
Verfügbarer virtueller Speicher: 10902.89 MB

==================== Laufwerke ================================

Drive c: (Acer) (Fixed) (Total:455.1 GB) (Free:122.75 GB) NTFS
Drive d: (DATA) (Fixed) (Total:455.61 GB) (Free:453.46 GB) NTFS
Drive e: (XCOM 2 Disc 4) (CDROM) (Total:2.47 GB) (Free:0 GB) CDFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 22.4 GB) (Disk ID: 74F02DEA)
Partition 1: (Not Active) - (Size=22.4 GB) - (Type=73)

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: BB7F90EA)

Partition: GPT.

==================== Ende von Addition.txt ============================

deeprybka · 27.10.2016, 15:27

Avira bitte deinstallieren. Ein Antivirusprogramm reicht. Sollte avast ohne Lizenz sein, auch deinstallieren. Den Schutz übernimmt dann der Windows Defender.

Shattro · 27.10.2016, 17:23

Ok, ich hab beide Programme deinstalliert.

deeprybka · 28.10.2016, 17:43

OK.

Schritt 1

Downloade Dir bitte

AdwCleaner auf Deinen Desktop.

Schließe alle offenen Programme und Browser.
Starte die adwcleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Werkzeuge > Optionen und vergewissere Dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel
- "Prefetch" Dateien
- Proxy
- Winsock
- Internet Explorer Richtlinien
- Chrome Richtlinien
Bestätige die Auswahl mit Ok.
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen (auch dann wenn AdwCleaner sagt, dass nichts gefunden wurde) und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit Deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Schritt 2

Download und Anleitung
Starte Malwarebytes' Anti-Malware (MBAM).
Unter Einstellungen/ Erkennung und Schutz setze bitte einen Haken bei "Suche nach Rootkits".
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass Deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Schritt 3

Bitte starte FRST erneut, markiere auch die checkbox

und drücke auf Untersuchen.
Bitte poste mir den Inhalt der beiden Logs die erstellt werden.

Shattro · 30.10.2016, 02:23

AdwCleaner

Code:

ATTFilter

# AdwCleaner v6.030 - Bericht erstellt am 30/10/2016 um 02:37:19
# Aktualisiert am 19/10/2016 von Malwarebytes
# Datenbank : 2016-10-28.2 [Server]
# Betriebssystem : Windows 8.1  (X64)
# Benutzername : Michel - SHATTRO-PC
# Gestartet von : C:\Users\Michel\Downloads\AdwCleaner_6.030.exe
# Modus: Löschen
# Unterstützung : hxxps://www.malwarebytes.com/support



***** [ Dienste ] *****



***** [ Ordner ] *****

[-] Ordner gelöscht: C:\rei
[-] Ordner gelöscht: C:\ProgramData\apn
[#] Ordner mit Neustart gelöscht: C:\ProgramData\Application Data\apn
[-] Ordner gelöscht: C:\Users\Default User\AppData\Local\Pokki
[#] Ordner mit Neustart gelöscht: C:\Users\Default\AppData\Local\Pokki


***** [ Dateien ] *****

[-] Datei gelöscht: C:\Users\Michel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
[-] Datei gelöscht: C:\END
[-] Datei gelöscht: C:\Users\Michel\AppData\Local\Temp\Utils.dll


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Verknüpfungen ] *****



***** [ Aufgabenplanung ] *****



***** [ Registrierungsdatenbank ] *****

[-] Wert gelöscht: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
[-] Schlüssel gelöscht: HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\Software\Probit Software
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1473415466-3613894533-4282407392-1001\Software\Deal Keeper
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\Probit Software
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1473415466-3613894533-4282407392-1001\Software\Deal Keeper
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Probit Software
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\api.ciuvo.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ciuvo.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\api.ciuvo.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\ciuvo.com
[-] Wert gelöscht: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 [AnyProtect Scanner]
[-] Wert gelöscht: HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Browser Infrastructure Helper]
[-] Wert gelöscht: HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Pokki]
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Record\{425E7597-03A2-338D-B72A-0E51FFE77A7E}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Record\{915BB7D5-082E-3B91-B1E0-45B5FDE01F24}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Record\{2009AF2F-5786-3067-8799-B97F7832FDD6}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Record\{FB2E65F4-5687-33EF-9BBF-4E3C9C98D3B9}
[-] Wert gelöscht: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext [DisableAddonLoadTimePerformanceNotifications]


***** [ Browser ] *****

[-] [C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: aaaaajhmeplfccacopbgpfaibalfnhcb


*************************

:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: "Prefetch" Dateien gelöscht
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [4086 Bytes] - [30/10/2016 02:37:19]
C:\AdwCleaner\AdwCleaner[S0].txt - [4070 Bytes] - [30/10/2016 02:36:20]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [4232 Bytes] ##########

mbam.txt

Code:

ATTFilter

 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlaufdatum: 30.10.2016
Suchlaufzeit: 02:43
Protokolldatei: mbam.txt
Administrator: Ja

Version: 2.2.1.1043
Malware-Datenbank: v2016.10.29.08
Rootkit-Datenbank: v2016.09.26.02
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 8.1
CPU: x64
Dateisystem: NTFS
Benutzer: Michel

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 340004
Abgelaufene Zeit: 1192 Std., 32 Min., 6 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswerte: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 0
(keine bösartigen Elemente erkannt)

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)

FRST.txt

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 29-10-2016
durchgeführt von Michel (Administrator) auf SHATTRO-PC (30-10-2016 02:16:42)
Gestartet von C:\Users\Michel\Downloads
Geladene Profile: Michel (Verfügbare Profile: Michel)
Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Condusiv Technologies) C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Mad Catz Inc) C:\Program Files\Mad Catz\M.M.O.TE\MMO_TE_Profiler.exe
(Spotify Ltd) C:\Users\Michel\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Akamai Technologies, Inc.) C:\Users\Michel\AppData\Local\Akamai\netsession_win.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Akamai Technologies, Inc.) C:\Users\Michel\AppData\Local\Akamai\netsession_win.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Isku FX Keyboard\IskuFXMonitor.exe
(ROCCAT GmbH Co., Ltd.) C:\Program Files (x86)\ROCCAT\Roccat Talk\Roccat Talk.exe
(Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.98.211.0\OverwolfBrowser.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.98.211.0\OverwolfHelper.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.98.211.0\OverwolfHelper64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.18384_none_fa1d93c39b41b41a\TiWorker.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Farbar) C:\Users\Michel\Downloads\FRST64 (3).exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13650648 2013-08-21] (Realtek Semiconductor)
HKLM\...\Run: [MBCfg64] => C:\Windows\system32\MBCfg64.dll [27648 2013-01-07] (Creative Technology Ltd.)
HKLM\...\Run: [M.M.O.TE] => C:\Program Files\Mad Catz\M.M.O.TE\MMO_TE_Profiler.exe [129536 2014-09-12] (Mad Catz Inc)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1844280 2016-09-30] (NVIDIA Corporation)
HKLM-x32\...\Run: [Sound Blaster Cinema] => C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [711680 2012-11-29] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [BacKGround Agent] => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [51456 2014-07-22] (Acer Incorporated)
HKLM-x32\...\Run: [RoccatIskuFX] => C:\Program Files (x86)\ROCCAT\Isku FX Keyboard\IskuFXMonitor.exe [540672 2014-10-19] (ROCCAT GmbH)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [Spotify Web Helper] => C:\Users\Michel\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1431664 2016-10-26] (Spotify Ltd)
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [GoogleChromeAutoLaunch_ABA838D1AB29E25FB0D77DCA9110CD1C] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [921704 2016-10-20] (Google Inc.)
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe /launchViaAutoStart
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Michel\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [TSMApplication] => C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe [1623040 2016-08-16] ()
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [Discord] => C:\Users\Michel\AppData\Local\Discord\app-0.0.296\Discord.exe
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [247344 2016-09-27] ()
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\lol.scr
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  Keine Datei
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2014-12-29]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (Keine Datei)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Roccat Talk.lnk [2015-01-10]
ShortcutTarget: Roccat Talk.lnk -> C:\Program Files (x86)\ROCCAT\Roccat Talk\Roccat Talk.exe (ROCCAT GmbH Co., Ltd.)
Startup: C:\Users\Michel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2016-02-28]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Keine Datei)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

ProxyEnable: [.DEFAULT] => Proxy ist aktiviert.
ProxyServer: [.DEFAULT] => http=127.0.0.1:51097;https=127.0.0.1:51097
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{76CBA152-DCB9-405B-B273-65FABF22418A}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1473415466-3613894533-4282407392-1001 -> {6FB73551-6C1D-4E9E-9AA0-9BAA3881DC83} URL = 
BHO: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
BHO-x32: Kein Name -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> Keine Datei
BHO-x32: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2014-01-24] (McAfee, Inc.)

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: (McAfee SiteAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor [2014-08-04] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_205.dll [2016-10-26] ()
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_205.dll [2016-10-26] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-10-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-10-25] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)

Chrome: 
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://www.google.de/"
CHR Profile: C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default [2016-10-30]
CHR Extension: (Adblock Pro) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhifeddjphjgoeajnekfceoifcigbhlb [2014-08-04]
CHR Extension: (Adblock Plus) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-26]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Google Mail) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR Extension: (Chrome Media Router) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-26]

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [3058944 2014-07-22] (Acer Incorporated)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2014-05-28] (Creative Labs) [Datei ist nicht signiert]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2014-05-28] (Creative Labs) [Datei ist nicht signiert]
R2 ExpressCache; C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe [107792 2013-07-03] (Condusiv Technologies)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6952504 2015-10-23] (GOG.com)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-08-07] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-08-07] (McAfee, Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [457272 2016-09-30] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [457272 2016-09-30] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-10-25] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1165368 2016-09-30] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-03] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1310960 2016-09-27] (Overwolf LTD)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-03-02] ()
S3 vmicvss; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [730304 2016-01-11] (Wacom Technology, Corp.)
S3 DAUpdaterSvc; C:\Program Files (x86)\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe [X]
S3 GalaxyClientService; "C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe" [X]
S2 McAfee SiteAdvisor Service; "C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-08-07] (McAfee, Inc.)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d64x64.sys [469264 2013-06-26] (Intel Corporation)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [25872 2013-07-03] (Condusiv Technologies)
R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [112912 2013-07-03] (Condusiv Technologies)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179664 2013-08-07] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [310224 2013-08-07] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69264 2013-08-07] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519064 2013-08-07] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [776168 2013-08-07] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343568 2013-08-07] (McAfee, Inc.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [29240 2016-09-30] (NVIDIA Corporation)
R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [47672 2016-10-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47672 2016-09-30] (NVIDIA Corporation)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [23968 2014-09-15] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [51488 2014-09-15] (Saitek)
R3 UHSfiltv; C:\Windows\system32\drivers\UHSfiltv.sys [23552 2014-12-22] (Creative Technology Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
R3 _hid_0738_1714; C:\Windows\system32\DRIVERS\_hid_0738_1714.sys [179904 2014-09-15] (Saitek)
R3 _usb_0738_1714; C:\Windows\System32\drivers\_usb_0738_1714.sys [46528 2014-09-15] (Saitek)
S3 aswHdsKe; \??\C:\Windows\system32\drivers\aswHdsKe.sys [X]
U0 aswVmm; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-10-30 02:16 - 2016-10-30 02:16 - 02408448 _____ (Farbar) C:\Users\Michel\Downloads\FRST64 (3).exe
2016-10-30 02:14 - 2016-10-30 02:14 - 00001206 _____ C:\Users\Michel\Desktop\mbam.txt
2016-10-30 02:09 - 2016-10-30 02:09 - 00000000 ___SH C:\DkHyperbootSync
2016-10-30 01:41 - 2016-10-30 01:41 - 22851472 _____ (Malwarebytes ) C:\Users\Michel\Downloads\mbam-setup-2.2.1.1043 (1).exe
2016-10-30 01:39 - 2016-10-30 01:39 - 00004342 _____ C:\Users\Michel\Desktop\AdwCleaner[C0].txt
2016-10-30 01:34 - 2016-10-30 01:37 - 00000000 ____D C:\AdwCleaner
2016-10-30 01:34 - 2016-10-30 01:34 - 03910208 _____ C:\Users\Michel\Downloads\AdwCleaner_6.030.exe
2016-10-29 19:15 - 2016-10-29 19:15 - 00003728 _____ C:\Windows\System32\Tasks\Overwolf Updater Task
2016-10-29 19:15 - 2016-10-29 19:15 - 00001061 _____ C:\Users\Public\Desktop\Overwolf.lnk
2016-10-29 19:15 - 2016-10-29 19:15 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2016-10-29 19:14 - 2016-10-29 19:15 - 00000000 ____D C:\ProgramData\Overwolf
2016-10-29 19:14 - 2016-10-29 19:15 - 00000000 ____D C:\Program Files (x86)\Overwolf
2016-10-29 19:13 - 2016-10-30 01:39 - 00000000 ____D C:\Users\Michel\AppData\Local\Overwolf
2016-10-29 19:12 - 2016-10-29 19:12 - 00914864 _____ (Overwolf Ltd.) C:\Users\Michel\Downloads\OverwolfTeamSpeakInstaller (1).exe
2016-10-29 11:16 - 2016-10-29 11:16 - 00419592 _____ C:\Windows\Minidump\102916-17562-01.dmp
2016-10-28 16:49 - 2016-10-28 16:49 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-10-28 16:49 - 2016-10-25 21:00 - 00134712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-10-28 16:49 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-10-28 16:49 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-10-28 16:49 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-10-28 16:49 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-10-28 16:47 - 2016-10-25 22:39 - 40123840 _____ C:\Windows\system32\nvcompiler.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 35224632 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 34701760 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 28138552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 14033976 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-10-28 16:47 - 2016-10-25 22:39 - 10912232 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 10773504 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 10324400 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 09113296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 08913512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 08716056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 03628992 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 03193912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 01953336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437570.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437570.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00974272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00945208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00897080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00894760 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00683640 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00572888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00521096 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00439864 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00436088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00407064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00388544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00170688 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00153368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00148200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00131536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00124352 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00047672 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys
2016-10-28 10:51 - 2016-10-28 10:52 - 00411448 _____ C:\Windows\Minidump\102816-27812-01.dmp
2016-10-27 21:50 - 2016-10-27 21:50 - 00000000 ____D C:\Users\Michel\Desktop\Recount
2016-10-27 21:38 - 2016-10-27 21:38 - 00395445 _____ C:\Users\Michel\Downloads\Recount-v7.1.0a_release.zip
2016-10-27 15:34 - 2016-10-27 15:34 - 00411520 _____ C:\Windows\Minidump\102716-14421-01.dmp
2016-10-26 19:37 - 2016-10-26 19:39 - 00082280 _____ C:\Users\Michel\Downloads\Addition.txt
2016-10-26 19:34 - 2016-10-30 02:17 - 00021611 _____ C:\Users\Michel\Downloads\FRST.txt
2016-10-26 19:33 - 2016-10-30 02:16 - 00000000 ____D C:\FRST
2016-10-26 19:33 - 2016-10-26 19:33 - 02407936 _____ (Farbar) C:\Users\Michel\Downloads\FRST64 (2).exe
2016-10-26 19:33 - 2016-10-26 19:33 - 02407936 _____ (Farbar) C:\Users\Michel\Downloads\FRST64 (1).exe
2016-10-26 19:32 - 2016-10-26 19:32 - 02407936 _____ (Farbar) C:\Users\Michel\Downloads\FRST64.exe
2016-10-26 15:55 - 2016-10-29 11:15 - 534204043 _____ C:\Windows\MEMORY.DMP
2016-10-26 15:55 - 2016-10-26 15:55 - 00262144 _____ C:\Windows\Minidump\102616-15937-01.dmp
2016-10-26 15:45 - 2016-10-25 22:39 - 00492744 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-10-26 15:45 - 2016-10-22 09:40 - 00212936 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-10-26 15:45 - 2016-10-22 09:40 - 00046024 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-10-26 15:45 - 2016-10-22 08:20 - 01953336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437563.dll
2016-10-26 15:45 - 2016-10-22 08:20 - 01585088 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437563.dll
2016-10-26 15:45 - 2016-10-22 08:20 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-10-26 15:45 - 2016-10-22 08:20 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2016-10-26 14:57 - 2016-10-26 14:57 - 00003788 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-26 14:57 - 2016-10-26 14:57 - 00001396 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-10-26 14:57 - 2016-09-30 05:22 - 01844280 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-10-26 14:57 - 2016-09-30 05:22 - 01756728 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-10-26 14:57 - 2016-09-30 05:22 - 01445944 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-10-26 14:57 - 2016-09-30 05:22 - 01318968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-10-26 14:57 - 2016-09-30 05:22 - 00121912 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-10-26 14:56 - 2016-10-26 14:56 - 00003838 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-26 14:56 - 2016-10-26 14:56 - 00003838 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-26 14:56 - 2016-10-26 14:56 - 00003776 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-26 14:56 - 2016-10-26 14:56 - 00003600 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-26 14:56 - 2016-10-26 14:56 - 00003540 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-26 14:56 - 2016-10-25 21:13 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2016-10-26 14:49 - 2016-10-26 14:51 - 71063336 _____ (NVIDIA Corporation) C:\Users\Michel\Downloads\GeForce_Experience_v3.0.7.34.exe
2016-10-26 14:07 - 2016-10-26 14:08 - 04128644 _____ C:\Users\Michel\Downloads\DBM-Core-7.1.0.zip
2016-10-20 12:33 - 2016-10-20 12:33 - 00411512 _____ C:\Windows\Minidump\102016-14937-01.dmp
2016-10-19 13:32 - 2016-10-19 13:32 - 00411512 _____ C:\Windows\Minidump\101916-13578-01.dmp
2016-10-18 16:14 - 2016-10-18 16:14 - 00411352 _____ C:\Windows\Minidump\101816-12859-01.dmp
2016-10-18 14:27 - 2016-10-18 14:28 - 00411520 _____ C:\Windows\Minidump\101816-17593-01.dmp
2016-10-18 12:58 - 2016-10-26 14:38 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-10-18 12:58 - 2016-10-18 12:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-10-18 12:41 - 2016-10-18 12:41 - 00411168 _____ C:\Windows\Minidump\101816-12468-01.dmp
2016-10-17 12:19 - 2016-10-17 12:19 - 00411624 _____ C:\Windows\Minidump\101716-13156-01.dmp
2016-10-16 12:34 - 2016-10-16 12:34 - 00411512 _____ C:\Windows\Minidump\101616-15906-01.dmp
2016-10-15 14:00 - 2016-10-15 14:00 - 00411472 _____ C:\Windows\Minidump\101516-14812-01.dmp
2016-10-13 10:04 - 2016-10-13 10:04 - 00411504 _____ C:\Windows\Minidump\101316-113171-01.dmp
2016-10-12 22:27 - 2016-10-12 22:27 - 00000000 ____D C:\Users\Michel\Documents\Lucius
2016-10-12 12:24 - 2016-10-12 12:24 - 00411512 _____ C:\Windows\Minidump\101216-14046-01.dmp
2016-10-11 18:51 - 2016-10-01 01:22 - 07444312 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-10-11 18:51 - 2016-09-30 08:55 - 25765376 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-10-11 18:51 - 2016-09-30 07:25 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-10-11 18:51 - 2016-09-30 07:25 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-10-11 18:51 - 2016-09-30 07:12 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-10-11 18:51 - 2016-09-30 07:09 - 06048256 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-10-11 18:51 - 2016-09-30 06:47 - 20306944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-10-11 18:51 - 2016-09-30 06:42 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-10-11 18:51 - 2016-09-30 06:41 - 01033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-10-11 18:51 - 2016-09-30 06:38 - 02286592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-10-11 18:51 - 2016-09-30 06:33 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-10-11 18:51 - 2016-09-30 06:33 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-10-11 18:51 - 2016-09-30 06:32 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-10-11 18:51 - 2016-09-30 06:32 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-10-11 18:51 - 2016-09-30 06:31 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-10-11 18:51 - 2016-09-30 06:21 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-10-11 18:51 - 2016-09-30 06:17 - 02920960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-10-11 18:51 - 2016-09-30 06:12 - 04608512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-10-11 18:51 - 2016-09-30 06:11 - 00880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-10-11 18:51 - 2016-09-30 06:06 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-10-11 18:51 - 2016-09-30 06:05 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-10-11 18:51 - 2016-09-30 06:05 - 01544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-10-11 18:51 - 2016-09-30 06:05 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-10-11 18:51 - 2016-09-30 06:03 - 13653504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-10-11 18:51 - 2016-09-30 05:54 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-10-11 18:51 - 2016-09-30 05:46 - 02444288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-10-11 18:51 - 2016-09-30 05:43 - 01312768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-10-11 18:51 - 2016-09-30 05:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-10-11 18:51 - 2016-09-17 19:16 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-10-11 18:51 - 2016-09-17 18:53 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-10-11 18:51 - 2016-09-17 18:21 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll
2016-10-11 18:51 - 2016-09-17 18:03 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-10-11 18:51 - 2016-09-17 18:02 - 01446400 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-10-11 18:51 - 2016-09-14 02:53 - 01663184 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-10-11 18:51 - 2016-09-14 02:53 - 01523208 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-10-11 18:51 - 2016-09-14 02:53 - 01490112 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-10-11 18:51 - 2016-09-14 02:53 - 01358952 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-10-11 18:51 - 2016-09-12 23:03 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2016-10-11 18:51 - 2016-09-12 22:01 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offreg.dll
2016-10-11 18:51 - 2016-09-09 15:17 - 04170752 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-10-11 18:51 - 2016-09-08 21:41 - 00121176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tm.sys
2016-10-11 18:51 - 2016-09-08 15:00 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-10-11 18:51 - 2016-09-08 15:00 - 00138240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-10-11 18:51 - 2016-09-07 23:07 - 01988096 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-10-11 18:51 - 2016-09-07 22:59 - 01754112 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-10-11 18:51 - 2016-09-07 22:59 - 01377792 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-10-11 18:51 - 2016-09-07 22:57 - 01560064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-10-11 18:51 - 2016-09-07 22:56 - 01491456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-10-11 18:51 - 2016-08-31 18:22 - 03754496 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-10-11 18:51 - 2016-08-31 17:33 - 02410496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-10-11 18:51 - 2016-08-25 21:50 - 00747008 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2016-10-11 18:51 - 2016-08-25 20:40 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2016-10-11 18:51 - 2016-08-13 01:05 - 09323008 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-10-11 18:51 - 2016-08-13 01:03 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifibus.sys
2016-10-11 18:51 - 2016-08-13 01:02 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys
2016-10-11 18:51 - 2016-08-13 01:01 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys
2016-10-11 18:51 - 2016-08-12 23:35 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2016-10-11 18:51 - 2016-08-12 23:19 - 09323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-10-11 18:51 - 2016-08-12 22:47 - 15431168 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-10-11 18:51 - 2016-08-12 22:17 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll
2016-10-11 18:51 - 2016-08-12 21:52 - 13317120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-10-11 18:51 - 2016-08-12 02:58 - 02315496 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2016-10-11 18:51 - 2016-08-12 02:58 - 01946176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2016-10-11 18:51 - 2016-08-11 19:33 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\parport.sys
2016-10-11 18:51 - 2016-08-11 19:33 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serial.sys
2016-10-11 18:51 - 2016-08-11 19:33 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serenum.sys
2016-10-11 18:51 - 2016-08-11 18:17 - 01574912 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2016-10-11 18:51 - 2016-08-11 14:39 - 00445765 _____ C:\Windows\system32\ApnDatabase.xml
2016-10-11 18:51 - 2016-08-11 06:46 - 00420184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2016-10-11 18:51 - 2016-08-03 16:42 - 01317888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2016-10-11 18:51 - 2016-08-03 16:36 - 01102848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2016-10-11 18:51 - 2016-08-03 16:36 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2016-10-11 18:51 - 2016-08-03 16:33 - 00215552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll
2016-10-11 18:51 - 2016-07-30 18:12 - 02896384 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2016-10-11 18:51 - 2016-07-30 17:36 - 02537472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2016-10-11 18:51 - 2016-07-26 14:40 - 00162850 _____ C:\Windows\SysWOW64\C_932.NLS
2016-10-11 18:51 - 2016-07-26 14:40 - 00162850 _____ C:\Windows\system32\C_932.NLS
2016-10-11 18:51 - 2016-07-23 19:18 - 01220096 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2016-10-11 18:51 - 2016-07-23 19:12 - 00954880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2016-10-11 18:49 - 2016-09-13 00:48 - 00085680 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-10-11 18:49 - 2016-09-09 14:38 - 01629184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-10-11 18:49 - 2016-09-09 14:38 - 01226752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-10-11 18:49 - 2016-09-09 14:38 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-10-11 18:49 - 2016-09-09 14:38 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-10-11 18:49 - 2016-09-09 14:38 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-10-11 18:49 - 2016-09-09 14:38 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-10-11 18:49 - 2016-09-09 14:38 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-10-11 18:49 - 2016-09-09 14:38 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-10-11 18:49 - 2016-08-27 20:44 - 22360288 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-10-11 18:49 - 2016-08-27 20:44 - 02755504 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-10-11 18:49 - 2016-08-27 20:44 - 00133256 _____ (Microsoft Corporation) C:\Windows\system32\RestoreOptIn.exe
2016-10-11 18:49 - 2016-08-27 19:26 - 19789232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-10-11 18:49 - 2016-08-27 19:26 - 02411048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-10-11 18:49 - 2016-08-27 19:26 - 00113656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RestoreOptIn.exe
2016-10-11 18:49 - 2016-08-27 17:33 - 02881536 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2016-10-11 18:49 - 2016-08-27 17:11 - 01049600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2016-10-11 18:49 - 2016-08-27 17:09 - 14466560 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2016-10-11 18:49 - 2016-08-27 16:55 - 12879360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2016-10-11 18:49 - 2016-08-20 23:24 - 02778624 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-10-11 18:49 - 2016-08-20 23:12 - 02463744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-10-11 12:27 - 2016-10-11 12:27 - 00411504 _____ C:\Windows\Minidump\101116-16843-01.dmp
2016-10-10 10:38 - 2016-10-10 10:38 - 00411512 _____ C:\Windows\Minidump\101016-13703-01.dmp
2016-10-09 10:52 - 2016-10-09 10:52 - 00411512 _____ C:\Windows\Minidump\100916-19937-01.dmp
2016-10-08 14:13 - 2016-10-08 14:13 - 01474568 _____ C:\Users\Michel\Downloads\Skype - CHIP-Installer.exe
2016-10-08 11:08 - 2016-10-08 11:08 - 00411504 _____ C:\Windows\Minidump\100816-14640-01.dmp
2016-10-07 11:54 - 2016-10-07 11:55 - 00411512 _____ C:\Windows\Minidump\100716-12890-01.dmp
2016-10-06 15:29 - 2016-10-06 15:29 - 00411432 _____ C:\Windows\Minidump\100616-15421-01.dmp
2016-10-05 19:30 - 2016-10-05 19:30 - 00411488 _____ C:\Windows\Minidump\100516-18390-01.dmp
2016-10-05 12:40 - 2016-10-05 12:41 - 00411464 _____ C:\Windows\Minidump\100516-17062-01.dmp
2016-10-04 15:29 - 2016-10-29 11:16 - 00000000 ____D C:\Windows\Minidump
2016-10-04 15:29 - 2016-10-04 15:29 - 00419704 _____ C:\Windows\Minidump\100416-28281-01.dmp
2016-10-03 11:34 - 2016-10-25 22:39 - 17348752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-10-03 11:34 - 2016-10-25 22:39 - 01037248 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-10-03 11:34 - 2016-09-17 01:46 - 01922616 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437290.dll
2016-10-03 11:34 - 2016-09-17 01:46 - 01585088 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437290.dll
2016-10-03 00:17 - 2016-10-30 01:43 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-10-03 00:16 - 2016-10-30 01:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-10-03 00:16 - 2016-10-30 01:42 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-10-03 00:16 - 2016-03-10 13:09 - 00065408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-10-03 00:16 - 2016-03-10 13:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-10-03 00:16 - 2016-03-10 13:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-10-03 00:15 - 2016-10-03 00:15 - 22851472 _____ (Malwarebytes ) C:\Users\Michel\Downloads\mbam-setup-2.2.1.1043.exe
2016-10-02 11:35 - 2016-10-02 11:35 - 00000000 ____D C:\Users\Michel\Documents\Square Enix
2016-10-01 22:10 - 2016-10-02 14:56 - 00000000 ____D C:\Users\Michel\AppData\Local\Discord
2016-10-01 22:10 - 2016-10-01 22:11 - 00000000 ____D C:\Users\Michel\AppData\Roaming\discord
2016-10-01 22:10 - 2016-10-01 22:10 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2016-10-01 22:10 - 2016-10-01 22:10 - 00000000 ____D C:\Users\Michel\AppData\Local\SquirrelTemp
2016-10-01 22:09 - 2016-10-01 22:10 - 50343608 _____ (Hammer & Chisel, Inc.) C:\Users\Michel\Downloads\DiscordSetup.exe
2016-09-30 22:10 - 2016-09-30 22:10 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-10-30 01:43 - 2014-08-04 19:23 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1473415466-3613894533-4282407392-1001
2016-10-30 01:38 - 2014-08-04 20:44 - 00000000 ___DO C:\Users\Michel\SkyDrive
2016-10-30 01:38 - 2014-08-04 19:36 - 00001136 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-10-30 01:38 - 2014-05-28 16:14 - 00000000 ____D C:\ProgramData\NVIDIA
2016-10-30 01:38 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-10-30 01:37 - 2014-12-22 02:24 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-10-30 01:37 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-10-30 01:34 - 2014-08-24 15:29 - 00000000 ____D C:\Users\Michel\AppData\Roaming\TS3Client
2016-10-30 01:30 - 2014-08-04 20:26 - 00000000 ____D C:\Users\Michel\AppData\Local\Battle.net
2016-10-30 01:10 - 2014-12-22 02:24 - 00000892 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-10-30 00:42 - 2014-08-04 19:36 - 00001140 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-10-30 00:05 - 2014-08-04 20:26 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-10-30 00:04 - 2014-08-04 19:35 - 00003942 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{8B871452-4DB6-4A2A-B4EB-4FABBABFEBA4}
2016-10-29 22:24 - 2014-08-04 22:57 - 00000000 ____D C:\Users\Michel\AppData\Local\CrashDumps
2016-10-29 22:04 - 2014-08-04 19:18 - 00000000 ____D C:\Users\Michel\AppData\Local\NVIDIA Corporation
2016-10-29 15:00 - 2014-08-13 02:26 - 00000000 ____D C:\Users\Michel\AppData\Local\Spotify
2016-10-29 14:03 - 2014-08-13 02:26 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Spotify
2016-10-29 13:41 - 2013-08-22 16:20 - 00000000 ____D C:\Windows\CbsTemp
2016-10-29 11:25 - 2014-08-04 23:41 - 00000000 ____D C:\Program Files (x86)\Steam
2016-10-28 16:50 - 2014-08-04 19:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-10-28 16:50 - 2014-05-28 16:14 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-10-28 16:50 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\Inf
2016-10-28 10:51 - 2014-08-04 19:50 - 00000000 ____D C:\Program Files\AVAST Software
2016-10-28 10:51 - 2014-08-04 19:49 - 00000000 ____D C:\ProgramData\AVAST Software
2016-10-28 02:22 - 2015-08-11 17:04 - 00485032 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-10-27 15:43 - 2014-08-24 12:11 - 00000000 ____D C:\ProgramData\Package Cache
2016-10-27 15:43 - 2014-08-24 12:11 - 00000000 ____D C:\ProgramData\Avira
2016-10-27 15:43 - 2014-08-24 12:11 - 00000000 ____D C:\Program Files (x86)\Avira
2016-10-26 16:37 - 2014-12-22 02:24 - 00003862 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-10-26 16:37 - 2014-12-22 02:24 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-10-26 16:37 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-10-26 16:37 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\Macromed
2016-10-26 15:47 - 2014-05-28 16:14 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-10-26 15:47 - 2014-05-28 16:13 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-10-26 14:57 - 2014-08-04 19:17 - 00000000 ____D C:\Users\Michel\AppData\Local\NVIDIA
2016-10-26 14:51 - 2014-08-04 19:50 - 00969560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.147748994364007
2016-10-26 14:51 - 2014-08-04 19:50 - 00513496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.147748994692110
2016-10-26 14:51 - 2014-08-04 19:50 - 00292704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys.147748994715612
2016-10-26 14:50 - 2014-08-04 20:49 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Skype
2016-10-26 14:50 - 2014-08-04 20:49 - 00000000 ____D C:\ProgramData\Skype
2016-10-26 14:44 - 2014-08-04 19:38 - 00002171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-26 14:39 - 2014-08-04 19:17 - 00000000 ____D C:\Users\Michel
2016-10-26 14:38 - 2016-05-04 18:57 - 00000000 ____D C:\Users\Michel\Documents\Overwatch
2016-10-26 14:38 - 2015-12-03 14:10 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2016-10-26 14:38 - 2015-08-16 16:21 - 00000000 ____D C:\Users\Michel\AppData\Local\Akamai
2016-10-26 14:38 - 2014-08-13 19:15 - 00000000 ____D C:\Program Files (x86)\osu!
2016-10-26 14:38 - 2014-08-04 20:26 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Battle.net
2016-10-26 14:37 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-10-26 14:33 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\registration
2016-10-25 22:39 - 2015-12-30 17:59 - 19925152 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-10-25 22:39 - 2015-12-30 17:59 - 17429080 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-10-25 22:39 - 2015-12-30 17:59 - 14397272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-10-25 22:39 - 2015-12-30 17:59 - 03933968 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-10-25 22:39 - 2015-12-30 17:59 - 03473368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-10-25 22:39 - 2015-12-30 17:59 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll
2016-10-25 22:39 - 2014-05-28 16:13 - 00041344 _____ C:\Windows\system32\nvinfo.pb
2016-10-25 21:17 - 2015-12-30 18:00 - 00548408 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-10-25 21:17 - 2015-12-30 18:00 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-10-25 21:17 - 2014-05-28 16:14 - 06386232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-10-25 21:17 - 2014-05-28 16:14 - 02475968 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-10-25 21:17 - 2014-05-28 16:14 - 01764408 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-10-25 21:17 - 2014-05-28 16:14 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-10-25 21:17 - 2014-05-28 16:14 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-10-24 22:54 - 2016-07-15 01:36 - 00828408 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-10-24 22:54 - 2016-07-15 01:36 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-24 07:31 - 2014-05-28 16:14 - 07507695 _____ C:\Windows\system32\nvcoproc.bin
2016-10-22 23:46 - 2016-05-31 17:16 - 00000000 ____D C:\Users\Michel\Desktop\Bilder
2016-10-22 23:46 - 2015-08-23 20:39 - 00000000 ____D C:\Users\Michel\Desktop\Schule
2016-10-22 09:40 - 2016-07-06 15:51 - 01595456 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2016-10-16 16:10 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\AppReadiness
2016-10-15 17:43 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\rescache
2016-10-14 11:52 - 2013-08-22 15:44 - 00483672 _____ C:\Windows\system32\FNTCACHE.DAT
2016-10-14 02:23 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\BBI(18)
2016-10-14 02:22 - 2014-12-10 22:28 - 00000000 ____D C:\Windows\system32\appraiser
2016-10-14 02:22 - 2014-08-16 16:23 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-10-13 19:10 - 2015-03-11 17:41 - 00474112 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-10-13 18:46 - 2014-08-04 20:42 - 00000000 ____D C:\Windows\system32\MRT
2016-10-13 18:39 - 2014-08-04 20:42 - 143495576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-10-13 10:03 - 2013-08-22 16:36 - 00000000 ___RD C:\Windows\ToastData
2016-10-10 13:45 - 2014-08-23 17:59 - 00000000 ____D C:\Users\Michel\Documents\My Games
2016-10-02 23:13 - 2014-10-11 17:07 - 00000000 ____D C:\Users\Michel\AppData\Local\Ubisoft Game Launcher
2016-09-30 05:22 - 2016-06-16 18:00 - 00106040 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-09-30 05:22 - 2016-06-16 18:00 - 00095800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-09-30 05:22 - 2016-06-16 18:00 - 00047672 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2014-12-04 17:46 - 2014-12-04 17:46 - 0007618 _____ () C:\Users\Michel\AppData\Local\Resmon.ResmonCfg

Einige Dateien in TEMP:
====================
C:\Users\Michel\AppData\Local\Temp\FoxitUpdater.exe
C:\Users\Michel\AppData\Local\Temp\Gw2.exe
C:\Users\Michel\AppData\Local\Temp\ICSharpCode.SharpZipLib.dll
C:\Users\Michel\AppData\Local\Temp\libeay32.dll
C:\Users\Michel\AppData\Local\Temp\msvcr120.dll
C:\Users\Michel\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Michel\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Michel\AppData\Local\Temp\nvscpapisvr.exe
C:\Users\Michel\AppData\Local\Temp\nvStInst.exe
C:\Users\Michel\AppData\Local\Temp\sqlite3.dll
C:\Users\Michel\AppData\Local\Temp\YgoUpdater.exe


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-10-27 18:42

==================== Ende von FRST.txt ============================

Shattro · 30.10.2016, 02:27

Addition.txt

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 29-10-2016
durchgeführt von Michel (30-10-2016 02:17:21)
Gestartet von C:\Users\Michel\Downloads
Windows 8.1 (Update) (X64) (2014-08-04 18:17:24)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1473415466-3613894533-4282407392-500 - Administrator - Disabled)
Gast (S-1-5-21-1473415466-3613894533-4282407392-501 - Limited - Disabled)
Michel (S-1-5-21-1473415466-3613894533-4282407392-1001 - Administrator - Enabled) => C:\Users\Michel

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

abDocs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.04.3004 - Acer Incorporated)
abMedia (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.05.2004.3 - Acer Incorporated)
abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 3.00.2007.1 - Acer Incorporated)
Acer Docs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 3.01.2001 - Acer)
Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.02.3104 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8100 - Acer Incorporated)
Acer Remote Files (HKLM\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 1.00.3007 - Acer Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.205 - Adobe Systems Incorporated)
Adobe Flash Player 23 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 23.0.0.205 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Akamai) (Version:  - Akamai Technologies, Inc)
AlienFX for IskuFX (HKLM-x32\...\InstallShield_{2C3FC2CC-0A8B-409E-B487-8CD54F4DC1D4}) (Version: 1.02 - Roccat GmbH)
AlienFX for IskuFX (Version: 1.02 - Roccat GmbH) Hidden
Ansel (Version: 375.70 - NVIDIA Corporation) Hidden
AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.01.2010.0 - Acer Incorporated)
ArtRage Studio (HKLM-x32\...\{E0540EB6-E8D2-4F55-8429-E41A1DD12254}) (Version: 3.5.12 - Ambient Design)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version:  - )
Belkin USB Wireless Adapter (HKLM-x32\...\InstallShield_{549CE1BD-88E4-4C5E-BF75-B155624714CC}) (Version: 1.0.0.12 - Belkin)
Belkin USB Wireless Adapter (x32 Version: 1.0.0.12 - Belkin) Hidden
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version:  - Valve)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3323.57 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Don't Starve (HKLM\...\Steam App 219740) (Version:  - Klei Entertainment)
ExpressCache (HKLM\...\{6E55C9F8-138E-4128-8A9F-6464725BE98A}) (Version: 1.0.102.0 - Condusiv Technologies)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Gear Up (HKLM\...\Steam App 214420) (Version:  - Doctor Entertainment AB)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.71 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Hotkey Utility (HKLM-x32\...\{A6DC88AD-501A-44BC-884D-57435F972E2C}) (Version: 3.00.8101 - Acer Incorporated)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.8100 - Acer Incorporated)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Network Connections 18.5.54.0 (HKLM\...\PROSetDX) (Version: 18.5.54.0 - Intel)
Just Cause 3 (HKLM\...\Steam App 225540) (Version:  - Avalanche Studios)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.8100 - Acer Incorporated)
Lucius (HKLM\...\Steam App 218640) (Version:  - Shiver Games)
M.M.O.TE (HKLM\...\{B690198B-ABC1-4F0E-84E3-F68D600D34EC}) (Version: 7.0.35.0 - Mad Catz Inc)
M.M.O.TE Game Profiles (HKLM-x32\...\{A3A15E78-7082-436E-9CE4-78DEC008E716}) (Version: 1.0.0.0 - Mad Catz Inc)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{551AC8F2-FEA2-4B45-ACF7-C98681233CC9}) (Version: 12.5.01200 - Nero AG)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 375.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 375.70 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.0.7.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.0.7.34 - NVIDIA Corporation)
NVIDIA Grafiktreiber 375.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.70 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA Miracast Virtueller Ton 375.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 375.70 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.0.7.34 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.0.0.0 - NVIDIA Corporation) Hidden
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2009 - Acer)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{7996efb2-c9f4-4120-aea7-e36bb2da30f8}) (Version: latest - ppy Pty Ltd)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.98.211.0 - Overwolf Ltd.)
paint.net (HKLM\...\{F509C1F4-0029-49F9-B145-A4C4E8DF481A}) (Version: 4.0.3 - dotPDN LLC)
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.988 - Even Balance, Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.30166 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7023 - Realtek Semiconductor Corp.)
ROCCAT Isku FX Keyboard Driver (HKLM-x32\...\{DC69933C-E7B0-455D-8E54-FAC1EEF046FF}) (Version:  - Roccat GmbH)
Roccat Talk (HKLM-x32\...\{605D671E-1D1E-4840-84D9-BFACE17F160D}) (Version: 1.00.0013 - Roccat GmbH)
SafeZone Stable 1.46.1990.55 (x32 Version: 1.46.1990.55 - Avast Software) Hidden
SHIELD Streaming (Version: 7.1.0320 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.0.7.34 - NVIDIA Corporation) Hidden
Skype™ 7.29 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.29.102 - Skype Technologies S.A.)
Sound Blaster Cinema (HKLM-x32\...\{AF2E323C-1E8A-4CE6-BE9E-B29296BF7FAE}) (Version: 1.00.03 - Creative Technology Limited)
Spotify (HKLM-x32\...\Spotify) (Version: 0.9.1.57.ge7405149 - Spotify AB)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
Terraria (HKLM\...\Steam App 105600) (Version:  - Re-Logic)
The Elder Scrolls V: Skyrim (HKLM\...\Steam App 72850) (Version:  - Bethesda Game Studios)
TradeSkillMaster Application version 1.0 (HKLM-x32\...\{c44da794-b956-4d50-8733-346d56ae63c7}_is1) (Version: 1.0 - TradeSkillMaster)
Unity (HKLM-x32\...\Unity) (Version: 5.2.1f1 - Unity Technologies ApS)
Uplay (HKLM-x32\...\Uplay) (Version: 15.0 - Ubisoft)
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Wacom Tablett (HKLM\...\Wacom Tablet Driver) (Version: 6.3.15-3 - Wacom Technology Corp.)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
YGOPro DevPro Launcher (HKLM-x32\...\{8D09DD74-E630-4629-80DC-7FB13AE58F3F}) (Version: 2.0.13 - DevPro, LLC)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0347894E-55F1-4A4B-8487-D040E3E32837} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-02] (AVAST Software)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {226CE824-69F8-4CE9-8927-F6942A674D5D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-09-30] (NVIDIA Corporation)
Task: {287A7677-ED27-4009-A50E-8B98F92DEFC3} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-09-30] (NVIDIA Corporation)
Task: {331B0F16-2D05-42BD-BE88-24BAD09BDDC3} - System32\Tasks\{9E74B0DC-6AFA-44E3-9368-D7095B8849F3} => pcalua.exe -a "C:\Riot Games\League of Legends\lol.launcher.admin.exe" -d "C:\Riot Games\League of Legends"
Task: {33B195D0-B634-4D88-A85F-A3BA2678BF11} - System32\Tasks\{F20A194F-0778-4B2F-8793-20623341653D} => pcalua.exe -a "C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe" -d "C:\Program Files (x86)\Battle.net"
Task: {38A451E7-E14D-4A69-B5E4-F0190899A1B5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-26] (Adobe Systems Incorporated)
Task: {3B5DE90B-603A-4EF2-8726-5C51D4D36640} - System32\Tasks\Hotkey Utility => C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [2013-08-22] (Acer Incorporated)
Task: {43177D68-F1DC-4E62-ABBD-1FBF8F53E3E2} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
Task: {4C7DC027-2017-41C8-BE17-EA93CABD1916} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-09-30] (NVIDIA Corporation)
Task: {506A60EA-2B11-4822-98CC-752A4ACB7514} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {53FA74BA-951A-4371-B7EB-4E761D61651E} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {7CB122AF-8198-4F84-A484-E6E8CAAA5F96} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2016-09-27] (Overwolf LTD)
Task: {86B4EC6A-10B0-4871-B9BA-3FB322448079} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-09-30] (NVIDIA Corporation)
Task: {9047882F-9093-4106-85AC-BD42BCFBCF89} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-09-30] (NVIDIA Corporation)
Task: {AB960717-2A2D-4FDD-8D3F-24371083E397} - System32\Tasks\{9AA01830-429D-44A8-A792-871045BD222D} => pcalua.exe -a C:\Users\Michel\Downloads\MMO_TE_Mouse_7_0_35_0_x64_Software.exe -d C:\Users\Michel\Downloads
Task: {B56ED7AA-F3B1-47CD-8981-1E9916F7E394} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-07-08] ()
Task: {CCBAF009-FC6D-4936-9ACB-6FF52FAFB1BA} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-09-30] (NVIDIA Corporation)
Task: {CF609C1B-8B02-46CD-8641-886C737688D8} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2016-10-13] (Microsoft Corporation)
Task: {D0E2F806-654E-4552-8DA7-476CE2E8348B} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2013-07-10] (Acer Incorporated)
Task: {D4B0A9CF-7079-42E9-90DD-E55F6F6EB7D0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {E99D16A4-A1DB-487E-ACCE-B567BD134893} - System32\Tasks\SafeZone scheduled Autoupdate 1447175292 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe
Task: {FE0C6341-053A-406F-8BF0-F7E54DC8CE99} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_205_pepper.exe [2016-10-26] (Adobe Systems Incorporated)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_205_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-10-26 14:56 - 2016-09-30 05:22 - 04490808 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-10-26 14:56 - 2016-09-30 05:22 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-10-26 14:57 - 2016-09-30 05:22 - 00419896 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2016-02-02 02:56 - 2016-03-02 17:08 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-05-28 16:14 - 2016-10-25 21:17 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-05-28 16:36 - 2013-07-30 17:11 - 00110152 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll
2015-04-04 11:29 - 2016-01-11 18:30 - 01349824 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2014-05-28 16:19 - 2012-11-01 10:21 - 00325120 _____ () C:\Windows\SYSTEM32\APOMgr64.DLL
2014-09-12 14:29 - 2014-09-12 14:29 - 12541952 _____ () C:\Program Files\Mad Catz\M.M.O.TE\Pr0fileEditor_Forms.dll
2014-09-12 14:29 - 2014-09-12 14:29 - 00311296 _____ () C:\Program Files\Mad Catz\M.M.O.TE\de\Pr0fileEditor_Forms.resources.dll
2016-10-26 14:56 - 2016-09-30 05:22 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-10-26 14:56 - 2016-09-29 18:20 - 00500792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-10-26 14:56 - 2016-09-29 18:20 - 00255936 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-10-26 14:56 - 2016-09-29 18:20 - 02801208 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-10-26 14:56 - 2016-09-29 18:20 - 00244672 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-10-26 14:56 - 2016-09-29 18:20 - 00430648 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-10-26 14:56 - 2016-09-29 18:20 - 00336832 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-10-26 14:56 - 2016-09-29 18:20 - 00373696 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-10-26 14:56 - 2016-09-30 05:22 - 60819000 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2016-09-27 12:35 - 2016-09-27 12:35 - 45069312 _____ () C:\Program Files (x86)\Overwolf\0.98.211.0\libcef.DLL
2014-08-04 19:31 - 2014-08-04 19:31 - 00015616 _____ () C:\Windows\assembly\GAC_MSIL\MyService\1.0.0.1__2dfa3f50f0bed57d\MyService.dll
2014-07-22 15:24 - 2014-07-22 15:24 - 00013568 _____ () C:\Program Files (x86)\Acer\AOP Framework\ServiceInterface.dll
2014-06-30 20:26 - 2014-06-30 20:26 - 00279296 _____ () C:\Program Files (x86)\Acer\abMedia\libcurl.dll
2014-07-22 16:43 - 2014-07-22 16:43 - 00203008 _____ () C:\Program Files (x86)\Acer\abPhoto\curllib.dll
2014-07-22 16:44 - 2014-07-22 16:44 - 00630528 _____ () C:\Program Files (x86)\Acer\abPhoto\tag.dll
2014-07-22 16:44 - 2014-07-22 16:44 - 00654552 _____ () C:\Program Files (x86)\Acer\abPhoto\sqlite3.dll
2014-07-22 16:43 - 2014-07-22 16:43 - 00119552 _____ () C:\Program Files (x86)\Acer\abPhoto\OpenLDAP.dll
2015-01-10 17:00 - 2012-07-08 16:31 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Isku FX Keyboard\hiddriver.dll
2016-09-27 12:35 - 2016-09-27 12:35 - 01643008 _____ () C:\Program Files (x86)\Overwolf\0.98.211.0\libglesv2.dll
2016-09-27 12:35 - 2016-09-27 12:35 - 00074752 _____ () C:\Program Files (x86)\Overwolf\0.98.211.0\libegl.dll
2016-10-26 14:44 - 2016-10-20 09:47 - 01819240 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\libglesv2.dll
2016-10-26 14:44 - 2016-10-20 09:47 - 00093288 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.71\libegl.dll
2014-05-28 16:16 - 2013-09-16 20:20 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Michel\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\StartupApproved\Run: => "GalaxyClient"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{57FBABCE-7AD9-48C8-8880-C526A97D4AC2}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{41F8ED07-4FA6-4BC5-B6A3-CAEA61D2E2E8}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{7D93A718-E5F6-4F13-9A5D-BC812F5B5F1C}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{5DB33E60-3F5A-46B0-94AD-03E6CE84ADEC}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{F5D48745-4D62-4E9E-8335-FF2B4C414AEB}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{CF4C626C-835D-4A06-918C-6485DF41540E}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{C91630F8-3A75-4191-BC4C-3B77F7EA4926}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{CE5FA555-E17D-4B70-95A0-D3471E07D173}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{34125AE7-4E35-4C62-A399-D48FBF2C97E3}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{2ADF31E3-B26B-498F-BD16-F774512A0E40}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
FirewallRules: [{E9E54A3D-7C4E-468B-B151-7FE88B779263}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{95C9DEFF-020D-42AF-B1AB-39301FC89672}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
FirewallRules: [{821186DD-2B7C-4014-B973-AA950B3F910E}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{BCB83C40-92AC-4D2B-9AF9-97B3936DBF7A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{AB3F9C3F-01E5-4ABD-8AAD-223046190737}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{203469DE-3446-438E-B74E-EACB759E596B}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{B386393B-9A7F-436D-985E-F3AD231C34BC}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{DCBC50A4-EB49-49F1-A2B3-43FE1E834070}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{63CBD55E-D58D-4E47-A0BD-CAED9CE01F6F}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{70DE0911-0EE4-4AD4-97C4-0805AE1A43B2}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{258C6CB6-852E-46DA-8BD5-3AE42C11C69D}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{BEA4718D-0AEF-418D-8DF8-5BDC63D64F27}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{5E80D6A5-7C04-473C-B116-9051B4762B1E}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{A45A4CF6-1318-4B3D-8736-C6C55EAB4182}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{19D7C092-FCC4-4F58-AA7F-6BF72BBE7336}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{6799EC88-B26E-4569-A5B5-0940BEB0B096}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{2C063840-F431-4744-902D-F4C1B4BB3793}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{0A515436-41F8-436F-9C7D-15D750872DDB}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{97399A42-B310-48B5-AD80-013B0658D3B8}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{8BCB6F5D-16DB-4E98-961E-037DBC1FA135}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{4DBA4CFD-6EC5-40CC-AD5A-A3367E7D8EA5}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{274A2648-B9BD-45AB-95C1-07687CF8018F}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{69B82859-BCC8-43C6-BC78-B6B4BF4F01D4}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\Sdd.exe
FirewallRules: [{8690AE9A-490A-4F84-9A08-EFAF06543A82}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\Sdd.exe
FirewallRules: [{AEF5C10E-8420-4F99-A294-A07F99C4A773}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\virtualdrive.exe
FirewallRules: [{98A65F14-6CE5-4721-9C8C-1F84E4CC0060}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\virtualdrive.exe
FirewallRules: [{008B8829-A6E6-4FFA-8C18-A44FFCCAEDAE}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{F49AEA58-0755-4104-9F0E-66A2F6E5FF04}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{E88C9A41-351D-4C25-88D6-7CE56C8465A7}] => (Allow) C:\Program Files (x86)\Acer\abPhoto_\DMCDaemon.exe
FirewallRules: [{3F04CA4C-1008-4C39-9E70-8E76A710A712}] => (Allow) C:\Program Files (x86)\Acer\abPhoto_\DMCDaemon.exe
FirewallRules: [{F8FCC361-F48E-4E5F-8F98-35D727684A0E}] => (Allow) C:\Program Files (x86)\Acer\abPhoto_\WindowsUpnp.exe
FirewallRules: [{7A428BB7-42C4-4E7C-AC32-F4B252DC52E7}] => (Allow) C:\Program Files (x86)\Acer\abPhoto_\WindowsUpnp.exe
FirewallRules: [{D855636C-DDCA-417F-8B71-129DB9EFB05F}] => (Allow) C:\Program Files (x86)\Acer\abPhoto_\DMCDaemon.exe
FirewallRules: [{21F56A6B-C96E-423A-B55E-015693C3FDF7}] => (Allow) C:\Program Files (x86)\Acer\abPhoto_\DMCDaemon.exe
FirewallRules: [{2DB857AE-C6D0-47D2-9D65-60753E266CF9}] => (Allow) C:\Program Files (x86)\Acer\abPhoto_\WindowsUpnp.exe
FirewallRules: [{8B5E318F-DA2C-4ED4-B498-1AFE9F1E12EC}] => (Allow) C:\Program Files (x86)\Acer\abPhoto_\WindowsUpnp.exe
FirewallRules: [{F3FE3BA7-0FDD-4850-AAD9-EFC380922576}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{55F1FB01-D61F-4DB2-B853-9815FB749A10}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{B4279435-0B90-4E50-985F-83606764D645}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{C286B2E8-052F-427E-9CD3-007FDB0301E1}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{72211944-05FB-4CD2-8061-F0DDBC4AA037}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{F5AC28C2-2479-4417-91AF-D23EA88822F9}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{1E24E612-2763-4D8C-8200-D616734736EC}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{A22A65F7-7470-42E9-801D-5F755E91E002}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{923E952F-5639-489D-B55A-EE3CDF17A3EF}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\DMCDaemon.exe
FirewallRules: [{F3962E30-A864-48A0-8A72-BF1725A8365A}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\DMCDaemon.exe
FirewallRules: [{A62A179A-D972-49A2-9904-1C6F55D94CE5}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\WindowsUpnpMV.exe
FirewallRules: [{B604F105-8E28-43EA-BABD-E708021179E3}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\WindowsUpnpMV.exe
FirewallRules: [{108BF8B4-DD1C-499D-9D75-9FB8A384851D}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\DMCDaemon.exe
FirewallRules: [{F02662B5-DEC1-43F2-B29E-59B6B2E50399}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\DMCDaemon.exe
FirewallRules: [{D86375DE-894F-43A6-A0DD-62410110FE16}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\WindowsUpnpMV.exe
FirewallRules: [{97D34FC7-D564-47D7-A9F5-5E14C667B880}] => (Allow) C:\Program Files (x86)\Acer\abMedia_\WindowsUpnpMV.exe
FirewallRules: [{1EFC35BF-23C3-4C71-BE6D-E8AC07D5A79A}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{7922D759-D3D4-4A5D-B903-D9476F48B734}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{F21C1D5D-CD2F-40A6-964C-A53ADECCCF58}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{F90231F1-4F67-4434-90E0-C4A76565DFC6}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{6AB40993-2EBC-46D8-B1FD-69D79ACEEE1B}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{AD1BF7BF-2DC8-4B05-AA0C-6BC02B0F3EE1}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe
FirewallRules: [{2E0E7F9D-73CD-4EC3-AF0D-2413D271FE50}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{55944B89-927D-4598-B917-FD7903BC8065}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe
FirewallRules: [{617DD027-39B6-4BD3-B0BD-DF66F766C398}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
FirewallRules: [{9BDF3681-4629-4F92-8B22-3A7E72DEF90F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3182\Agent.exe
FirewallRules: [{9FCF0BEE-4877-4D0C-938E-E9D82CF57CAA}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{F29FB478-094C-434B-91F9-A0E1BF30A7B6}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{68D1E622-AFA4-4065-BA9C-DAF2ADFBEB8D}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{29497FFD-B2BA-44E8-B4BC-02FD816F8CDE}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{C9445324-8B3D-4576-89D6-52D118AEB059}] => (Allow) C:\Program Files (x86)\Blizzard\Hearthstone\Hearthstone.exe
FirewallRules: [{36343BC3-B12E-4556-B391-B6D3AEA6708A}] => (Allow) C:\Program Files (x86)\Blizzard\Hearthstone\Hearthstone.exe
FirewallRules: [{EBDF54E3-270A-484D-B9BC-DAB0382AE196}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A2D5C499-4B66-4A7D-B75A-F051F0F33E5C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [TCP Query User{ADFAE426-EBBF-476D-981D-F3B9389CBF97}C:\users\michel\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\michel\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{7A80E055-CD99-4BA1-8F46-269CFFA25B0A}C:\users\michel\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\michel\appdata\roaming\spotify\spotify.exe
FirewallRules: [{EBEAE492-772A-401D-A77C-93C427BF99C0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{F66ABA6A-6C58-4199-84F3-96B39AD909D5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{099DC489-70F8-4DF1-8D60-EA8D80BDCF48}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{517A293D-A0B1-4BF3-A244-F90130009585}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{C79C0F99-CED7-45B6-985F-58F726E287BD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe
FirewallRules: [{C244B4A8-D447-4476-BDD7-FD4710CDD75A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe
FirewallRules: [{B522B395-10B3-4AA5-9C00-335EB3E42C51}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{0F9A8EA5-67F3-44E7-9104-411039D77F27}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{F52DC84C-4698-4A48-AC4A-CEC9B1995825}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{3F80E684-1182-44A8-B109-4D91013F92A6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{6833E97C-A3CC-41FF-84B1-2B7FF7129DD1}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{95026827-E88E-46D7-B10E-FA74474C34EF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{25A3C3C6-E98F-4243-BC25-A9A0DBC9549A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{D7FE09EB-ACFC-4CD5-B6BA-3FC485F3061C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3334\Agent.exe
FirewallRules: [{E50B4209-7C47-40D6-96C7-6593E7FE1B1F}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{EBEA32C8-EB94-435F-9C95-D7DDDB84F626}] => (Allow) C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{698B5BA6-5BCA-4360-B959-206A77871783}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{1B079581-5DBC-4989-9D94-5AD42886B3E5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3346\Agent.exe
FirewallRules: [{0CBB8C62-3FB9-4B71-B158-F44EFE4E1A34}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{C5C4E382-5FD4-4534-8D8C-4C19A75875F3}] => (Allow) LPort=2869
FirewallRules: [{6DE8956F-D1C1-4FE6-B46E-CFB9333F11C5}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{E42D7504-980F-4CAF-981E-0323ECAB6877}C:\programdata\battle.net\agent\agent.3372\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3372\agent.exe
FirewallRules: [UDP Query User{345E4E76-714E-4B51-A31B-88502184AC21}C:\programdata\battle.net\agent\agent.3372\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3372\agent.exe
FirewallRules: [TCP Query User{EF6B9E25-E181-4F28-B7CA-740E30242E7D}C:\program files (x86)\dayzlauncher\dayzlauncher.exe] => (Block) C:\program files (x86)\dayzlauncher\dayzlauncher.exe
FirewallRules: [UDP Query User{1289A79B-8741-4596-8D12-60CE476A02A2}C:\program files (x86)\dayzlauncher\dayzlauncher.exe] => (Block) C:\program files (x86)\dayzlauncher\dayzlauncher.exe
FirewallRules: [{9F3A9B24-8566-4D02-A9DD-1A7E18434EE5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{B241A210-6F4F-4D68-A570-369809688382}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{E746FE6B-14B2-4752-A98F-00C18381513F}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\Future Soldier.exe
FirewallRules: [{692AFB5D-580E-416D-AE01-262D783C393B}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\Future Soldier.exe
FirewallRules: [{2FD00C27-6B21-4025-92F8-E07B8FE6A788}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\gu.exe
FirewallRules: [{DB36BB76-CE49-4971-A4D0-42172B2ED861}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\gu.exe
FirewallRules: [{E5AF5F8D-DDD0-49D8-8F75-E71D6EC03796}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\Future Soldier DX11.exe
FirewallRules: [{A2A9996F-4B0B-44DE-A82B-6C58A6BF216A}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\Future Soldier DX11.exe
FirewallRules: [{4FFCA11D-23EA-4486-9E27-5ACE03E711F5}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\Future Soldier DX9.exe
FirewallRules: [{2B732F63-8BD0-4374-B56C-AE8EA42646D1}] => (Allow) C:\Program Files (x86)\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\Future Soldier DX9.exe
FirewallRules: [TCP Query User{76AA4795-E7A1-45AA-B21B-D445579DC381}C:\users\michel\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\michel\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{DB98A8A9-940D-4CEB-B7C5-117EEB794C83}C:\users\michel\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\michel\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{A209CD5C-899C-4FF5-9718-B105F8A5EC03}C:\program files (x86)\ubisoft\tom clancy's ghost recon future soldier\future soldier dx11.exe] => (Allow) C:\program files (x86)\ubisoft\tom clancy's ghost recon future soldier\future soldier dx11.exe
FirewallRules: [UDP Query User{3CCC70E0-C091-42A7-A5BF-C9A8F43F7706}C:\program files (x86)\ubisoft\tom clancy's ghost recon future soldier\future soldier dx11.exe] => (Allow) C:\program files (x86)\ubisoft\tom clancy's ghost recon future soldier\future soldier dx11.exe
FirewallRules: [TCP Query User{236713AA-F082-41C9-9FF0-C0F539BD046B}C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe
FirewallRules: [UDP Query User{E70448FB-FE97-4DFF-8060-97EFD0B0263F}C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe
FirewallRules: [{00BEA19C-4929-46D9-B68B-5E9166942944}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{0C56E166-C272-48D1-926B-0CE0C87C0FDB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [TCP Query User{EB1C724B-638A-428B-9354-C3C51EFF819F}C:\programdata\battle.net\agent\agent.3526\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3526\agent.exe
FirewallRules: [UDP Query User{9964DEF8-9B2C-40D0-ACE8-3DE80824EAD4}C:\programdata\battle.net\agent\agent.3526\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3526\agent.exe
FirewallRules: [TCP Query User{5FB7A348-0200-430B-9704-F890E55777D3}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{76131D6D-CB97-4A89-9BF2-FF7D06169CF7}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{F531EB61-872F-49E9-8051-C0C900BDDB40}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [{99BB42FA-2289-4849-8C5C-FD6238E668B6}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [{7CF8C288-540F-4A93-B64B-640FCAF30380}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{0CA428AD-1535-49D8-95DB-A3BD6439EC4E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [TCP Query User{DE17C543-A415-41D5-B109-8D485507A280}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{F857844F-A1D7-4170-996D-492012FAC470}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [TCP Query User{BD7EEF8D-1967-4905-BB8B-95205E649EE7}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Block) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [UDP Query User{A6A3F0A7-D515-496C-815F-D66F96340B94}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Block) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [TCP Query User{E977E616-F64C-4A95-8C0A-B2932F21AD2B}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [UDP Query User{AAD59D17-9DCF-499C-8525-D6B1AFC3D6F4}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [{7D260A6C-DF13-4B1E-94BA-683AD718B291}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe
FirewallRules: [{990F3F32-5F56-4D0A-B30B-C7D637E25896}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3632\Agent.exe
FirewallRules: [{4AA40E4D-B112-4354-AB22-FA1D129FCDA2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{B898B673-D4CC-4381-A81C-13B91E8B4A09}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{184188F7-FCD7-4059-B059-93F6F0242E90}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 4\bin\FarCry4.exe
FirewallRules: [{8601F9B4-65B9-41FE-9A1E-9A4C596821EF}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 4\bin\FarCry4.exe
FirewallRules: [{D209620D-38B7-46A4-897B-C2296CCE1672}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 4\bin\IGE_WPF64.exe
FirewallRules: [{FDC9854E-E662-4BAB-8AC7-3B9004D18F27}] => (Allow) C:\Program Files (x86)\Ubisoft\FarCry 4\bin\IGE_WPF64.exe
FirewallRules: [TCP Query User{D5425602-1D70-4BC1-A32C-C9B44E452B17}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{89812EFC-FE19-4562-872F-D42900E494CB}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [{63CFB828-7BAE-4AA6-86F9-090A63491E89}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [{44925085-79DA-4A2D-A12E-6F7AB54FC7B7}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3669\Agent.exe
FirewallRules: [{0F9023EB-5DAA-4569-BE93-321888789BC8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [{D4A6AA3F-7D02-4535-BCCF-7E4399146932}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3688\Agent.exe
FirewallRules: [TCP Query User{F3DE45A2-4383-4A16-92FE-22BEB1CFC38A}C:\program files (x86)\dayzlauncher\dayzlauncher.exe] => (Allow) C:\program files (x86)\dayzlauncher\dayzlauncher.exe
FirewallRules: [UDP Query User{4BEE4397-B962-4B37-BAB6-FAD14D6F16B0}C:\program files (x86)\dayzlauncher\dayzlauncher.exe] => (Allow) C:\program files (x86)\dayzlauncher\dayzlauncher.exe
FirewallRules: [{66EE1EF5-1797-40A4-8438-57ADF0898206}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{05FD4698-7FF4-47BD-8BE0-FBA90E1C6516}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{B1AA4C3E-A46D-4BDE-8832-E8C75159C947}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{58FF1657-3D63-4C75-8434-B5DA13C59487}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe
FirewallRules: [{B182BF1C-3D7D-408D-99E3-6165140384B2}] => (Allow) C:\Program Files (x86)\Blizzard\StarCraft II\StarCraft II.exe
FirewallRules: [{1D8BB965-FF74-4B12-93AE-5916CD36A271}] => (Allow) C:\Program Files (x86)\Blizzard\StarCraft II\StarCraft II.exe
FirewallRules: [TCP Query User{51355C3A-78AC-4F6C-9BB4-6DC9D5368F55}C:\program files (x86)\blizzard\starcraft ii\versions\base32283\sc2.exe] => (Allow) C:\program files (x86)\blizzard\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [UDP Query User{236E5F7C-AA48-4239-9953-AFE78C2EB605}C:\program files (x86)\blizzard\starcraft ii\versions\base32283\sc2.exe] => (Allow) C:\program files (x86)\blizzard\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{1AD59C22-885B-496A-9165-D233A228103A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magicka 2\engine\Magicka2.exe
FirewallRules: [{F7455D96-0F96-4D64-8B93-5CCAC9E35CD5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magicka 2\engine\Magicka2.exe
FirewallRules: [{002721EE-01D7-46AE-857B-B4EBFF836E4D}] => (Allow) C:\Program Files (x86)\Origin Games\Kingdoms of Amalur Reckoning\Reckoning.exe
FirewallRules: [{312E4C0D-540E-4182-85BE-CCFF3795DFE6}] => (Allow) C:\Program Files (x86)\Origin Games\Kingdoms of Amalur Reckoning\Reckoning.exe
FirewallRules: [{E44B46DA-6C93-4230-842B-FB5BC5B507F3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe
FirewallRules: [{EB76D6F1-C057-4BCD-AAA3-8CDAE3203B09}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe
FirewallRules: [TCP Query User{DF0F9190-EA49-470A-BDFA-D1C408E6FF3E}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe
FirewallRules: [UDP Query User{C43B5F12-790D-4F8E-8F05-AA636F01145D}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe
FirewallRules: [{2DEF2276-F73B-4A57-8EAF-F7464368F51E}] => (Block) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe
FirewallRules: [{FDF71D48-E9C5-4514-B945-C5B60F9B0164}] => (Block) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe
FirewallRules: [{166586D8-F9AF-45C8-8308-44B949D9D23F}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age II\bin_ship\DragonAge2.exe
FirewallRules: [{B621EB5C-FEEE-4D03-AF1A-B174A33DA85D}] => (Allow) C:\Program Files (x86)\Origin Games\Dragon Age II\bin_ship\DragonAge2.exe
FirewallRules: [TCP Query User{A5CA727C-2BB7-4C13-81DA-022A104D5E2F}C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [UDP Query User{DF4F0375-32E5-472E-B430-C6EAF04A282A}C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [{AB9D57C3-C838-4E12-8F60-E7C7BC747DA8}] => (Block) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [{0D57B596-4C54-421A-83E2-57B860969D8B}] => (Block) C:\program files (x86)\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [TCP Query User{87BB1A0D-4994-456D-B1B3-0C481DBDF3AA}C:\users\michel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\michel\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{E2BB1DB0-3E87-4FE3-B4E1-B6F8619E2329}C:\users\michel\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\michel\appdata\local\akamai\netsession_win.exe
FirewallRules: [{24ED443E-F8C7-402D-9F2F-D5525792F834}] => (Block) C:\users\michel\appdata\local\akamai\netsession_win.exe
FirewallRules: [{20528020-381A-4025-A87F-D25A3F3EEBD1}] => (Block) C:\users\michel\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{A0D89AEA-5C5E-42E0-ADD7-9C104870A17A}C:\users\michel\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe] => (Allow) C:\users\michel\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe
FirewallRules: [UDP Query User{5855D12F-D0B3-4CBE-917B-FEA98723D89F}C:\users\michel\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe] => (Allow) C:\users\michel\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe
FirewallRules: [{FA1E77A5-6CCC-4D32-844A-0E4CBEFF098C}] => (Block) C:\users\michel\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe
FirewallRules: [{3AC2631C-AC64-4AB7-ABB0-1EB8EF7259B9}] => (Block) C:\users\michel\appdata\roaming\octoshape\octoshape streaming services\octoshapeclient.exe
FirewallRules: [{054D0A1C-A021-46D6-A4B4-CCCD5341A2DE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{D978EC70-DE76-4630-85C9-7F76D065E03C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [TCP Query User{694B8F1D-24E7-4A05-8959-DC2ECC739F40}C:\users\michel\desktop\originslauncher\originslauncher.exe] => (Allow) C:\users\michel\desktop\originslauncher\originslauncher.exe
FirewallRules: [UDP Query User{14646EA8-A88F-4D53-BBDF-A9ECC55AE73B}C:\users\michel\desktop\originslauncher\originslauncher.exe] => (Allow) C:\users\michel\desktop\originslauncher\originslauncher.exe
FirewallRules: [{97D706EE-FECE-47C2-B982-48B452887DB7}] => (Block) C:\users\michel\desktop\originslauncher\originslauncher.exe
FirewallRules: [{A4678BF7-8EF8-4849-8F4F-58105DC8A1E8}] => (Block) C:\users\michel\desktop\originslauncher\originslauncher.exe
FirewallRules: [{041C999F-A8BF-403A-89F0-A6C80A531888}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SniperGhostWarrior2\Bin32\SniperGhostWarrior2.exe
FirewallRules: [{20054D1B-C064-4DA0-8969-D33FD4A5A216}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\SniperGhostWarrior2\Bin32\SniperGhostWarrior2.exe
FirewallRules: [TCP Query User{A68CF9AC-46E7-4941-BEC2-B5AAB790ED35}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{2A7934B4-4FC7-46F8-8DD5-C527FCC0A607}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{103C9A33-121C-4C57-ADFF-36EA9F0BA2DE}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{83AEF4C3-A336-4F97-A1E6-15CD6078CE82}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [TCP Query User{DB3E4405-0FF0-4AE5-99CC-223FDDF4148F}C:\program files (x86)\blizzard\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\blizzard\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{DA4E129F-57D0-4110-A441-A6A5C40C5654}C:\program files (x86)\blizzard\diablo iii\diablo iii.exe] => (Allow) C:\program files (x86)\blizzard\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{562266EC-C1B3-4270-B83D-E607AAB746E6}C:\program files (x86)\blizzard\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\blizzard\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{1249E191-A977-4AB9-9CA6-CB05D518CFD8}C:\program files (x86)\blizzard\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\blizzard\heroes of the storm\versions\base39595\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{2097AAD1-EE89-4CF8-8048-47340D05EB7A}C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe
FirewallRules: [UDP Query User{739D4336-BC42-4052-9963-7B212574E0F7}C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe
FirewallRules: [TCP Query User{F86E02E5-F717-4BEE-9D07-B010C6ACF7FF}C:\program files (x86)\blizzard\hearthstone\hearthstone.exe] => (Block) C:\program files (x86)\blizzard\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{AD9258D1-1014-4C1B-934F-051014C3FCA8}C:\program files (x86)\blizzard\hearthstone\hearthstone.exe] => (Block) C:\program files (x86)\blizzard\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{32AED536-B8DF-4574-80AE-E7F362780411}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe
FirewallRules: [UDP Query User{37EE08BE-AAB6-45A8-ADED-F1489793420B}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe
FirewallRules: [{EC19A829-D8C7-4F17-AB19-BAE3452E2F77}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{9102B83E-6B9E-449A-8E78-6CB57417A4BA}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{7337D5A6-7A91-447E-98F9-8179D74956AD}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{0400B42F-AB74-4E17-AC3A-130D9D529231}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [TCP Query User{C7A6C7E1-FA6E-40E5-B806-2588FBF4F24D}C:\program files (x86)\blizzard\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\blizzard\overwatch\overwatch.exe
FirewallRules: [UDP Query User{7607EB4B-D526-40FE-8368-26AE0B334E9E}C:\program files (x86)\blizzard\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\blizzard\overwatch\overwatch.exe
FirewallRules: [{A7293B7D-AE21-4B03-AF9F-CF9929B3365C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magicka 2\engine\Magicka2.exe
FirewallRules: [{5857DA5D-8E90-49B4-9E81-BC73E30DD6E4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magicka 2\engine\Magicka2.exe
FirewallRules: [TCP Query User{6DEE526C-B74E-4D63-820A-E64E895C8937}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [UDP Query User{6F882AFC-F944-450E-A480-30B5523F9003}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe
FirewallRules: [{C4EAE022-D1AB-424C-B8C6-437B40EB6494}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{C789058F-FD26-406B-8BC7-E2B0996F2073}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [TCP Query User{E32B2ABA-7547-4EB3-BAF8-55151CBD482A}C:\program files (x86)\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe
FirewallRules: [UDP Query User{8B0F8452-60EB-4BF1-8190-FB6E51C0995C}C:\program files (x86)\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\xcom 2\binaries\win64\xcom2.exe
FirewallRules: [TCP Query User{2EB7DBDF-2297-42C5-B087-D6C07C12A5B1}C:\users\michel\desktop\release\necrobot.exe] => (Allow) C:\users\michel\desktop\release\necrobot.exe
FirewallRules: [UDP Query User{14941171-2354-4042-A12D-9B7AE1DDA1A0}C:\users\michel\desktop\release\necrobot.exe] => (Allow) C:\users\michel\desktop\release\necrobot.exe
FirewallRules: [{7CDF25A9-FF67-4550-8843-607758A986AF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{F896BFC6-ADCF-41B5-BF21-B0F70F8F2A12}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [TCP Query User{5E267E99-2995-4822-8FC4-EDC1A7ADB17A}C:\program files (x86)\blizzard\starcraft ii\versions\base44983\sc2_x64.exe] => (Allow) C:\program files (x86)\blizzard\starcraft ii\versions\base44983\sc2_x64.exe
FirewallRules: [UDP Query User{DEC72DAE-45A3-4252-B215-8F2A8AA91CA1}C:\program files (x86)\blizzard\starcraft ii\versions\base44983\sc2_x64.exe] => (Allow) C:\program files (x86)\blizzard\starcraft ii\versions\base44983\sc2_x64.exe
FirewallRules: [{94ACFF7B-62D7-4E02-BB0D-547E98AC03CD}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GearUp\bin\Traktor.Amalgam.App.exe
FirewallRules: [{010221E1-A31A-4427-B2E8-9B86A4831869}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GearUp\bin\Traktor.Amalgam.App.exe
FirewallRules: [{123EAF4B-6507-4B9B-908C-94599FD5E903}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{D3C5775D-74AE-43D9-A403-45E045F51F8A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{EA691FCE-718B-41B4-9D26-9F611E80D361}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{86712F59-C38C-4AEE-A794-54784412694B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [TCP Query User{9C7FB9A3-627E-46AD-A0BD-CD3D858BC7E8}C:\program files (x86)\blizzard\starcraft ii\versions\base46154\sc2_x64.exe] => (Allow) C:\program files (x86)\blizzard\starcraft ii\versions\base46154\sc2_x64.exe
FirewallRules: [UDP Query User{F46B4DDA-3CE8-4994-B6AE-5C6BDD20DDA5}C:\program files (x86)\blizzard\starcraft ii\versions\base46154\sc2_x64.exe] => (Allow) C:\program files (x86)\blizzard\starcraft ii\versions\base46154\sc2_x64.exe
FirewallRules: [{E886B49E-5E17-4E45-A8B9-B2435904506B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{B1B9C075-7631-42E0-A15E-C0A79C427D3F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{D8A00852-94AC-49A7-BA66-39FE611C3AB3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Just Cause 3\JustCause3.exe
FirewallRules: [{EA662D8F-1D0B-4C75-A1EE-4F31EB8301E8}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Just Cause 3\JustCause3.exe
FirewallRules: [{C3E446A1-6640-4106-B5B6-5FCB40A33436}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Lucius\Lucius.exe
FirewallRules: [{C38303A2-C0F7-444F-8C74-F2DCFCADA93B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Lucius\Lucius.exe
FirewallRules: [{4C6C0ABC-C8CA-4C45-9F52-C4547C26928C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{B9836C62-D030-4BCA-84B8-9783310A37AB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{E03CA714-BCE5-4E10-B4AA-D73B847336BD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{396AC12E-6D36-4B4D-9378-A82B74C947E7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{DD996F16-B0FD-4136-AAC8-9F4EDF69CC9C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C2B2A6A0-705E-4E3D-BE99-6E41696A2623}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{ED946C04-2023-4022-8A8B-DAF801EE5567}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{D8496413-2B9F-4DC0-99B3-675F471A752B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe

==================== Wiederherstellungspunkte =========================

20-10-2016 23:51:20 Geplanter Prüfpunkt
26-10-2016 14:30:27 Wiederherstellungsvorgang

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (10/30/2016 01:39:18 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "WmiApRpl" in der DLL "C:\Windows\system32\wbem\wmiaprpl.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.

Error: (10/30/2016 01:39:18 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Das Serverdienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.

Error: (10/30/2016 01:39:18 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "MSDTC" in der DLL "C:\Windows\system32\msdtcuiu.DLL" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.

Error: (10/30/2016 01:39:18 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "Lsa" in der DLL "C:\Windows\System32\Secur32.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.

Error: (10/30/2016 01:39:18 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "ESENT" in der DLL "C:\Windows\system32\esentprf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.

Error: (10/30/2016 01:39:18 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.

Error: (10/29/2016 10:23:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: OverwolfBrowser.exe, Version: 0.98.211.0, Zeitstempel: 0x57ea59ae
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.18340, Zeitstempel: 0x5736541b
Ausnahmecode: 0x4000001f
Fehleroffset: 0x000b8e42
ID des fehlerhaften Prozesses: 0x1c0c
Startzeit der fehlerhaften Anwendung: 0x01d2322878592508
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Overwolf\0.98.211.0\OverwolfBrowser.exe
Pfad des fehlerhaften Moduls: C:\Windows\SYSTEM32\KERNELBASE.dll
Berichtskennung: ffae3d3f-9e1d-11e6-82ea-448a5b672c44
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (10/29/2016 07:22:25 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "WmiApRpl" in der DLL "C:\Windows\system32\wbem\wmiaprpl.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.

Error: (10/29/2016 07:22:25 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Das Serverdienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.

Error: (10/29/2016 07:22:25 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "MSDTC" in der DLL "C:\Windows\system32\msdtcuiu.DLL" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.


Systemfehler:
=============
Error: (10/30/2016 01:38:22 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
Das System kann die angegebene Datei nicht finden.

Error: (10/30/2016 01:37:46 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "McAfee Firewall Core Service" ist vom Dienst "McAfee Validation Trust Protection Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
Die Pipe wurde beendet.

Error: (10/30/2016 01:37:46 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee Validation Trust Protection Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
Die Pipe wurde beendet.

Error: (10/30/2016 01:37:17 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
Es wird bereits eine Instanz des Dienstes ausgeführt.

Error: (10/30/2016 01:36:51 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Nero Update" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (10/30/2016 01:36:51 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Steam Client Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (10/30/2016 01:36:51 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (10/30/2016 01:36:51 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) ME Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (10/30/2016 01:36:47 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (10/30/2016 01:36:46 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "McAfee Firewall Core Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.


CodeIntegrity:
===================================
  Date: 2015-07-18 17:16:31.022
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 17:16:30.914
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 17:16:30.809
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 17:16:30.703
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 17:16:30.601
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 17:16:30.497
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 17:16:30.397
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-07-18 17:16:30.290
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-10-25 16:23:56.841
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-10-25 16:23:56.780
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\UHSAPO64.dll because the set of per-page image hashes could not be found on the system.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
Prozentuale Nutzung des RAM: 54%
Installierter physikalischer RAM: 8111.7 MB
Verfügbarer physikalischer RAM: 3658.03 MB
Summe virtueller Speicher: 16303.7 MB
Verfügbarer virtueller Speicher: 11659.45 MB

==================== Laufwerke ================================

Drive c: (Acer) (Fixed) (Total:455.1 GB) (Free:127.88 GB) NTFS
Drive d: (DATA) (Fixed) (Total:455.61 GB) (Free:453.46 GB) NTFS
Drive e: (XCOM 2 Disc 4) (CDROM) (Total:2.47 GB) (Free:0 GB) CDFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 22.4 GB) (Disk ID: 74F02DEA)
Partition 1: (Not Active) - (Size=22.4 GB) - (Type=73)

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: BB7F90EA)

Partition: GPT.

==================== Ende von Addition.txt ============================

Tut mir Leid für die späte Antwort, doch ich hatte gestern keine Zeit. Ich hoffe ich hab alles richtig gepostet.

deeprybka · 30.10.2016, 14:16

Jetzt bitte Suchscan durchführen:

Schritt 1

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Shattro · 01.11.2016, 17:58

ESET log.txt

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=6515a4b360c1944bb58f3b44589434fc
# end=init
# utc_time=2016-11-01 02:11:28
# local_time=2016-11-01 03:11:28 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT 
Update Init
Update Download
Update Init
Update Download
Update Finalize
Updated modules version: 31265
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=6515a4b360c1944bb58f3b44589434fc
# end=updated
# utc_time=2016-11-01 02:14:29
# local_time=2016-11-01 03:14:29 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT 
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=6515a4b360c1944bb58f3b44589434fc
# engine=31265
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2016-11-01 04:56:02
# local_time=2016-11-01 05:56:02 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT 
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 19229 41808932 0 0
# scanned=492666
# found=3
# cleaned=0
# scan_time=9692
sh=928A536FBFF196495B90E4BD51B932485B84A099 ft=1 fh=748b6a41a833329e vn="Variante von Win32/DownloadSponsor.C evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\Users\Michel\AppData\Local\Temp\DMR\dmr_72.exe"
sh=DEC9DB0314DDF062820B685CFE85008333285EAD ft=1 fh=cbcc4e8e75b2c052 vn="Variante von Win32/DownloadSponsor.C evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\Users\Michel\Downloads\Skype - CHIP-Installer.exe"
sh=DB2E6D29D1F2BB5ADAE6783E38506744850CB5EE ft=1 fh=7c778f2f46c95c7b vn="Variante von Win32/DownloadSponsor.C evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\Users\Michel\Downloads\Word Viewer - CHIP-Installer.exe"

deeprybka · 01.11.2016, 18:27

Gibt es jetzt noch Probleme mit dem PC? Wenn ja, welche?

Shattro · 01.11.2016, 22:19

Also bisher hab ich keine Probleme mehr und der Pc ist auch nicht mehr langsamer etc. Danke für die Hilfe.

deeprybka · 02.11.2016, 18:26

Gut, dann bitte nochmal frische Logs:

Schritt 1

Bitte starte FRST erneut, markiere auch die checkbox

und drücke auf Untersuchen.
Bitte poste mir den Inhalt der beiden Logs die erstellt werden.

Shattro · 05.11.2016, 17:32

FRSt.txt

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 04-11-2016
durchgeführt von Michel (Administrator) auf SHATTRO-PC (05-11-2016 17:28:54)
Gestartet von C:\Users\Michel\Downloads
Geladene Profile: Michel (Verfügbare Profile: Michel)
Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Condusiv Technologies) C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Mad Catz Inc) C:\Program Files\Mad Catz\M.M.O.TE\MMO_TE_Profiler.exe
(Spotify Ltd) C:\Users\Michel\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Akamai Technologies, Inc.) C:\Users\Michel\AppData\Local\Akamai\netsession_win.exe
() C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe
(Akamai Technologies, Inc.) C:\Users\Michel\AppData\Local\Akamai\netsession_win.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe
(ROCCAT GmbH Co., Ltd.) C:\Program Files (x86)\ROCCAT\Roccat Talk\Roccat Talk.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Isku FX Keyboard\IskuFXMonitor.exe
(Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.98.211.0\OverwolfBrowser.exe
(TeamSpeak Systems GmbH) C:\Program Files (x86)\TeamSpeak 3 Client\ts3client_win32.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.98.211.0\OverwolfHelper.exe
(Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.98.211.0\OverwolfHelper64.exe
(Overwolf LTD) C:\Program Files (x86)\Overwolf\0.98.211.0\OverwolfTSHelper.exe
() C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.1.30\deploy\LoLLauncher.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.70\deploy\LoLPatcher.exe
() C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.229\deploy\LolClient.exe
() C:\Program Files\WindowsApps\Microsoft.Studios.Wordament_2.8.4.0_x86__8wekyb3d8bbwe\WordamentWin8.1.exe
(Spotify Ltd) C:\Users\Michel\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Michel\AppData\Roaming\Spotify\SpotifyCrashService.exe
(Spotify Ltd) C:\Users\Michel\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\Michel\AppData\Roaming\Spotify\Spotify.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
(Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.5220\Agent.exe
(Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.8098\Battle.net.exe
() C:\Program Files (x86)\Battle.net\Battle.net.8098\Battle.net Helper.exe
() C:\Program Files (x86)\Battle.net\Battle.net.8098\Battle.net Helper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\Michel\Downloads\FRST64 (4).exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13650648 2013-08-21] (Realtek Semiconductor)
HKLM\...\Run: [MBCfg64] => C:\Windows\system32\MBCfg64.dll [27648 2013-01-07] (Creative Technology Ltd.)
HKLM\...\Run: [M.M.O.TE] => C:\Program Files\Mad Catz\M.M.O.TE\MMO_TE_Profiler.exe [129536 2014-09-12] (Mad Catz Inc)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1844280 2016-09-30] (NVIDIA Corporation)
HKLM-x32\...\Run: [Sound Blaster Cinema] => C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [711680 2012-11-29] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [BacKGround Agent] => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [51456 2014-07-22] (Acer Incorporated)
HKLM-x32\...\Run: [RoccatIskuFX] => C:\Program Files (x86)\ROCCAT\Isku FX Keyboard\IskuFXMonitor.exe [540672 2014-10-19] (ROCCAT GmbH)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [Spotify Web Helper] => C:\Users\Michel\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1431664 2016-10-26] (Spotify Ltd)
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [GoogleChromeAutoLaunch_ABA838D1AB29E25FB0D77DCA9110CD1C] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [921704 2016-10-20] (Google Inc.)
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe /launchViaAutoStart
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Michel\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [TSMApplication] => C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe [1623040 2016-08-16] ()
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [Discord] => C:\Users\Michel\AppData\Local\Discord\app-0.0.296\Discord.exe
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [247344 2016-09-27] ()
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\lol.scr
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  Keine Datei
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2014-12-29]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (Keine Datei)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Roccat Talk.lnk [2015-01-10]
ShortcutTarget: Roccat Talk.lnk -> C:\Program Files (x86)\ROCCAT\Roccat Talk\Roccat Talk.exe (ROCCAT GmbH Co., Ltd.)
Startup: C:\Users\Michel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2016-02-28]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Keine Datei)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

ProxyEnable: [.DEFAULT] => Proxy ist aktiviert.
ProxyServer: [.DEFAULT] => http=127.0.0.1:51097;https=127.0.0.1:51097
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{76CBA152-DCB9-405B-B273-65FABF22418A}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1473415466-3613894533-4282407392-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1473415466-3613894533-4282407392-1001 -> {6FB73551-6C1D-4E9E-9AA0-9BAA3881DC83} URL = 
BHO: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
BHO-x32: Kein Name -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> Keine Datei
BHO-x32: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2014-01-24] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2014-01-24] (McAfee, Inc.)

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: (McAfee SiteAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor [2014-08-04] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_205.dll [2016-10-26] ()
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_205.dll [2016-10-26] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-10-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-10-25] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)

Chrome: 
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://www.google.de/"
CHR Profile: C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default [2016-11-05]
CHR Extension: (Adblock Pro) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhifeddjphjgoeajnekfceoifcigbhlb [2014-08-04]
CHR Extension: (Adblock Plus) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-26]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Google Mail) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR Extension: (Chrome Media Router) - C:\Users\Michel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-26]

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [3058944 2014-07-22] (Acer Incorporated)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2014-05-28] (Creative Labs) [Datei ist nicht signiert]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2014-05-28] (Creative Labs) [Datei ist nicht signiert]
R2 ExpressCache; C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe [107792 2013-07-03] (Condusiv Technologies)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6952504 2015-10-23] (GOG.com)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-08-07] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-08-07] (McAfee, Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [457272 2016-09-30] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [457272 2016-09-30] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-10-25] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1165368 2016-09-30] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-03] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1310960 2016-09-27] (Overwolf LTD)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-03-02] ()
S3 vmicguestinterface; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 vmicheartbeat; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 vmickvpexchange; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 vmicshutdown; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 vmictimesync; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [730304 2016-01-11] (Wacom Technology, Corp.)
S3 DAUpdaterSvc; C:\Program Files (x86)\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe [X]
S3 GalaxyClientService; "C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe" [X]
S2 McAfee SiteAdvisor Service; "C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-08-07] (McAfee, Inc.)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d64x64.sys [469264 2013-06-26] (Intel Corporation)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [25872 2013-07-03] (Condusiv Technologies)
R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [112912 2013-07-03] (Condusiv Technologies)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179664 2013-08-07] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [310224 2013-08-07] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69264 2013-08-07] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519064 2013-08-07] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [776168 2013-08-07] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343568 2013-08-07] (McAfee, Inc.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [29240 2016-09-30] (NVIDIA Corporation)
R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [47672 2016-10-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47672 2016-09-30] (NVIDIA Corporation)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [23968 2014-09-15] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [51488 2014-09-15] (Saitek)
R3 UHSfiltv; C:\Windows\system32\drivers\UHSfiltv.sys [23552 2014-12-22] (Creative Technology Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
R3 _hid_0738_1714; C:\Windows\system32\DRIVERS\_hid_0738_1714.sys [179904 2014-09-15] (Saitek)
R3 _usb_0738_1714; C:\Windows\System32\drivers\_usb_0738_1714.sys [46528 2014-09-15] (Saitek)
S3 aswHdsKe; \??\C:\Windows\system32\drivers\aswHdsKe.sys [X]
U0 aswVmm; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-05 17:28 - 2016-11-05 17:28 - 02409984 _____ (Farbar) C:\Users\Michel\Downloads\FRST64 (4).exe
2016-11-05 14:04 - 2016-11-05 14:04 - 00000000 ____D C:\Program Files (x86)\ESET
2016-11-05 11:21 - 2016-11-05 11:22 - 113651192 _____ (Riot Games, Inc) C:\Users\Michel\Downloads\League client alpha installer EUW.exe
2016-11-05 11:14 - 2016-11-05 11:14 - 00000000 ___SH C:\DkHyperbootSync
2016-11-05 10:42 - 2016-11-05 10:42 - 00419640 _____ C:\Windows\Minidump\110516-17171-01.dmp
2016-11-04 11:51 - 2016-11-04 11:51 - 00411376 _____ C:\Windows\Minidump\110416-15937-01.dmp
2016-11-03 16:29 - 2016-11-03 16:30 - 00411408 _____ C:\Windows\Minidump\110316-20968-01.dmp
2016-11-03 00:05 - 2016-11-03 00:05 - 24640990 _____ C:\Users\Michel\Downloads\Straight From Elena.zip
2016-11-03 00:01 - 2016-11-03 00:01 - 32236043 _____ C:\Users\Michel\Downloads\Gateway of Control (1).zip
2016-11-02 20:51 - 2016-11-02 20:51 - 02870984 _____ (ESET) C:\Users\Michel\Downloads\esetsmartinstaller_deu (2).exe
2016-11-02 16:00 - 2016-11-02 16:00 - 00411464 _____ C:\Windows\Minidump\110216-14281-01.dmp
2016-11-01 22:20 - 2016-11-01 22:20 - 02870984 _____ (ESET) C:\Users\Michel\Downloads\esetsmartinstaller_deu (1).exe
2016-11-01 15:10 - 2016-11-01 15:10 - 02870984 _____ (ESET) C:\Users\Michel\Downloads\esetsmartinstaller_deu.exe
2016-11-01 13:24 - 2016-11-01 13:24 - 00411464 _____ C:\Windows\Minidump\110116-12890-01.dmp
2016-10-31 18:27 - 2016-10-31 18:27 - 32236043 _____ C:\Users\Michel\Downloads\Gateway of Control.zip
2016-10-31 16:23 - 2016-10-31 16:23 - 00266320 _____ C:\Windows\Minidump\103116-13625-01.dmp
2016-10-31 12:20 - 2016-10-31 12:21 - 00411464 _____ C:\Windows\Minidump\103116-12390-01.dmp
2016-10-30 12:06 - 2016-10-30 12:06 - 00266320 _____ C:\Windows\Minidump\103016-15843-01.dmp
2016-10-30 02:16 - 2016-10-30 02:16 - 02408448 _____ (Farbar) C:\Users\Michel\Downloads\FRST64 (3).exe
2016-10-30 02:14 - 2016-10-30 02:14 - 00001206 _____ C:\Users\Michel\Desktop\mbam.txt
2016-10-30 01:41 - 2016-10-30 01:41 - 22851472 _____ (Malwarebytes ) C:\Users\Michel\Downloads\mbam-setup-2.2.1.1043 (1).exe
2016-10-30 01:39 - 2016-10-30 01:39 - 00004342 _____ C:\Users\Michel\Desktop\AdwCleaner[C0].txt
2016-10-30 01:34 - 2016-10-30 01:37 - 00000000 ____D C:\AdwCleaner
2016-10-30 01:34 - 2016-10-30 01:34 - 03910208 _____ C:\Users\Michel\Downloads\AdwCleaner_6.030.exe
2016-10-29 19:15 - 2016-10-29 19:15 - 00003728 _____ C:\Windows\System32\Tasks\Overwolf Updater Task
2016-10-29 19:15 - 2016-10-29 19:15 - 00001061 _____ C:\Users\Public\Desktop\Overwolf.lnk
2016-10-29 19:15 - 2016-10-29 19:15 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2016-10-29 19:14 - 2016-10-29 19:15 - 00000000 ____D C:\ProgramData\Overwolf
2016-10-29 19:14 - 2016-10-29 19:15 - 00000000 ____D C:\Program Files (x86)\Overwolf
2016-10-29 19:13 - 2016-11-05 11:13 - 00000000 ____D C:\Users\Michel\AppData\Local\Overwolf
2016-10-29 19:12 - 2016-10-29 19:12 - 00914864 _____ (Overwolf Ltd.) C:\Users\Michel\Downloads\OverwolfTeamSpeakInstaller (1).exe
2016-10-29 11:16 - 2016-10-29 11:16 - 00419592 _____ C:\Windows\Minidump\102916-17562-01.dmp
2016-10-28 16:49 - 2016-10-28 16:49 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-10-28 16:49 - 2016-10-25 21:00 - 00134712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-10-28 16:49 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-10-28 16:49 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-10-28 16:49 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-10-28 16:49 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-10-28 16:47 - 2016-10-25 22:39 - 40123840 _____ C:\Windows\system32\nvcompiler.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 35224632 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 34701760 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 28138552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 14033976 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-10-28 16:47 - 2016-10-25 22:39 - 10912232 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 10773504 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 10324400 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 09113296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 08913512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 08716056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 03628992 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 03193912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 01953336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437570.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437570.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00974272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00945208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00897080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00894760 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00683640 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00572888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00521096 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00439864 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00436088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00407064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00388544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00170688 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00153368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00148200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00131536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00124352 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll
2016-10-28 16:47 - 2016-10-25 22:39 - 00047672 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys
2016-10-28 10:51 - 2016-10-28 10:52 - 00411448 _____ C:\Windows\Minidump\102816-27812-01.dmp
2016-10-27 21:50 - 2016-10-27 21:50 - 00000000 ____D C:\Users\Michel\Desktop\Recount
2016-10-27 21:38 - 2016-10-27 21:38 - 00395445 _____ C:\Users\Michel\Downloads\Recount-v7.1.0a_release.zip
2016-10-27 15:34 - 2016-10-27 15:34 - 00411520 _____ C:\Windows\Minidump\102716-14421-01.dmp
2016-10-26 19:37 - 2016-10-30 02:18 - 00075306 _____ C:\Users\Michel\Downloads\Addition.txt
2016-10-26 19:34 - 2016-11-05 17:29 - 00023731 _____ C:\Users\Michel\Downloads\FRST.txt
2016-10-26 19:33 - 2016-11-05 17:28 - 00000000 ____D C:\FRST
2016-10-26 19:33 - 2016-10-26 19:33 - 02407936 _____ (Farbar) C:\Users\Michel\Downloads\FRST64 (2).exe
2016-10-26 19:33 - 2016-10-26 19:33 - 02407936 _____ (Farbar) C:\Users\Michel\Downloads\FRST64 (1).exe
2016-10-26 19:32 - 2016-10-26 19:32 - 02407936 _____ (Farbar) C:\Users\Michel\Downloads\FRST64.exe
2016-10-26 15:55 - 2016-11-05 10:42 - 605752971 _____ C:\Windows\MEMORY.DMP
2016-10-26 15:55 - 2016-10-26 15:55 - 00262144 _____ C:\Windows\Minidump\102616-15937-01.dmp
2016-10-26 15:45 - 2016-10-25 22:39 - 00492744 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-10-26 15:45 - 2016-10-22 09:40 - 00212936 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-10-26 15:45 - 2016-10-22 09:40 - 00046024 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-10-26 15:45 - 2016-10-22 08:20 - 01953336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437563.dll
2016-10-26 15:45 - 2016-10-22 08:20 - 01585088 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437563.dll
2016-10-26 15:45 - 2016-10-22 08:20 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-10-26 15:45 - 2016-10-22 08:20 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2016-10-26 14:57 - 2016-10-26 14:57 - 00003788 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-26 14:57 - 2016-10-26 14:57 - 00001396 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-10-26 14:57 - 2016-09-30 05:22 - 01844280 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-10-26 14:57 - 2016-09-30 05:22 - 01756728 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-10-26 14:57 - 2016-09-30 05:22 - 01445944 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-10-26 14:57 - 2016-09-30 05:22 - 01318968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-10-26 14:57 - 2016-09-30 05:22 - 00121912 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-10-26 14:56 - 2016-10-26 14:56 - 00003838 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-26 14:56 - 2016-10-26 14:56 - 00003838 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-26 14:56 - 2016-10-26 14:56 - 00003776 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-26 14:56 - 2016-10-26 14:56 - 00003600 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-26 14:56 - 2016-10-26 14:56 - 00003540 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-26 14:56 - 2016-10-25 21:13 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2016-10-26 14:49 - 2016-10-26 14:51 - 71063336 _____ (NVIDIA Corporation) C:\Users\Michel\Downloads\GeForce_Experience_v3.0.7.34.exe
2016-10-26 14:07 - 2016-10-26 14:08 - 04128644 _____ C:\Users\Michel\Downloads\DBM-Core-7.1.0.zip
2016-10-20 12:33 - 2016-10-20 12:33 - 00411512 _____ C:\Windows\Minidump\102016-14937-01.dmp
2016-10-19 13:32 - 2016-10-19 13:32 - 00411512 _____ C:\Windows\Minidump\101916-13578-01.dmp
2016-10-18 16:14 - 2016-10-18 16:14 - 00411352 _____ C:\Windows\Minidump\101816-12859-01.dmp
2016-10-18 14:27 - 2016-10-18 14:28 - 00411520 _____ C:\Windows\Minidump\101816-17593-01.dmp
2016-10-18 12:58 - 2016-10-26 14:38 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-10-18 12:58 - 2016-10-18 12:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-10-18 12:41 - 2016-10-18 12:41 - 00411168 _____ C:\Windows\Minidump\101816-12468-01.dmp
2016-10-17 12:19 - 2016-10-17 12:19 - 00411624 _____ C:\Windows\Minidump\101716-13156-01.dmp
2016-10-16 12:34 - 2016-10-16 12:34 - 00411512 _____ C:\Windows\Minidump\101616-15906-01.dmp
2016-10-15 14:00 - 2016-10-15 14:00 - 00411472 _____ C:\Windows\Minidump\101516-14812-01.dmp
2016-10-13 10:04 - 2016-10-13 10:04 - 00411504 _____ C:\Windows\Minidump\101316-113171-01.dmp
2016-10-12 22:27 - 2016-10-12 22:27 - 00000000 ____D C:\Users\Michel\Documents\Lucius
2016-10-12 12:24 - 2016-10-12 12:24 - 00411512 _____ C:\Windows\Minidump\101216-14046-01.dmp
2016-10-11 18:51 - 2016-10-01 01:22 - 07444312 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-10-11 18:51 - 2016-09-30 08:55 - 25765376 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-10-11 18:51 - 2016-09-30 07:25 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-10-11 18:51 - 2016-09-30 07:25 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-10-11 18:51 - 2016-09-30 07:12 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-10-11 18:51 - 2016-09-30 07:09 - 06048256 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-10-11 18:51 - 2016-09-30 06:47 - 20306944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-10-11 18:51 - 2016-09-30 06:42 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-10-11 18:51 - 2016-09-30 06:41 - 01033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-10-11 18:51 - 2016-09-30 06:38 - 02286592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-10-11 18:51 - 2016-09-30 06:33 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-10-11 18:51 - 2016-09-30 06:33 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-10-11 18:51 - 2016-09-30 06:32 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-10-11 18:51 - 2016-09-30 06:32 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-10-11 18:51 - 2016-09-30 06:31 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-10-11 18:51 - 2016-09-30 06:21 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-10-11 18:51 - 2016-09-30 06:17 - 02920960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-10-11 18:51 - 2016-09-30 06:12 - 04608512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-10-11 18:51 - 2016-09-30 06:11 - 00880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-10-11 18:51 - 2016-09-30 06:06 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-10-11 18:51 - 2016-09-30 06:05 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-10-11 18:51 - 2016-09-30 06:05 - 01544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-10-11 18:51 - 2016-09-30 06:05 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-10-11 18:51 - 2016-09-30 06:03 - 13653504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-10-11 18:51 - 2016-09-30 05:54 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-10-11 18:51 - 2016-09-30 05:46 - 02444288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-10-11 18:51 - 2016-09-30 05:43 - 01312768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-10-11 18:51 - 2016-09-30 05:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-10-11 18:51 - 2016-09-17 19:16 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-10-11 18:51 - 2016-09-17 18:53 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-10-11 18:51 - 2016-09-17 18:21 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll
2016-10-11 18:51 - 2016-09-17 18:03 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-10-11 18:51 - 2016-09-17 18:02 - 01446400 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-10-11 18:51 - 2016-09-14 02:53 - 01663184 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-10-11 18:51 - 2016-09-14 02:53 - 01523208 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-10-11 18:51 - 2016-09-14 02:53 - 01490112 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-10-11 18:51 - 2016-09-14 02:53 - 01358952 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-10-11 18:51 - 2016-09-12 23:03 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2016-10-11 18:51 - 2016-09-12 22:01 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offreg.dll
2016-10-11 18:51 - 2016-09-09 15:17 - 04170752 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-10-11 18:51 - 2016-09-08 21:41 - 00121176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tm.sys
2016-10-11 18:51 - 2016-09-08 15:00 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-10-11 18:51 - 2016-09-08 15:00 - 00138240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-10-11 18:51 - 2016-09-07 23:07 - 01988096 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-10-11 18:51 - 2016-09-07 22:59 - 01754112 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-10-11 18:51 - 2016-09-07 22:59 - 01377792 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-10-11 18:51 - 2016-09-07 22:57 - 01560064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-10-11 18:51 - 2016-09-07 22:56 - 01491456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-10-11 18:51 - 2016-08-31 18:22 - 03754496 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-10-11 18:51 - 2016-08-31 17:33 - 02410496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-10-11 18:51 - 2016-08-25 21:50 - 00747008 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2016-10-11 18:51 - 2016-08-25 20:40 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2016-10-11 18:51 - 2016-08-13 01:05 - 09323008 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-10-11 18:51 - 2016-08-13 01:03 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifibus.sys
2016-10-11 18:51 - 2016-08-13 01:02 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys
2016-10-11 18:51 - 2016-08-13 01:01 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys
2016-10-11 18:51 - 2016-08-12 23:35 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2016-10-11 18:51 - 2016-08-12 23:19 - 09323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-10-11 18:51 - 2016-08-12 22:47 - 15431168 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-10-11 18:51 - 2016-08-12 22:17 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll
2016-10-11 18:51 - 2016-08-12 21:52 - 13317120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-10-11 18:51 - 2016-08-12 02:58 - 02315496 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2016-10-11 18:51 - 2016-08-12 02:58 - 01946176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2016-10-11 18:51 - 2016-08-11 19:33 - 00096256 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\parport.sys
2016-10-11 18:51 - 2016-08-11 19:33 - 00083456 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\serial.sys
2016-10-11 18:51 - 2016-08-11 19:33 - 00023040 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\serenum.sys
2016-10-11 18:51 - 2016-08-11 18:17 - 01574912 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2016-10-11 18:51 - 2016-08-11 14:39 - 00445765 _____ C:\Windows\system32\ApnDatabase.xml
2016-10-11 18:51 - 2016-08-11 06:46 - 00420184 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2016-10-11 18:51 - 2016-08-03 16:42 - 01317888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2016-10-11 18:51 - 2016-08-03 16:36 - 01102848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2016-10-11 18:51 - 2016-08-03 16:36 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2016-10-11 18:51 - 2016-08-03 16:33 - 00215552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll
2016-10-11 18:51 - 2016-07-30 18:12 - 02896384 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2016-10-11 18:51 - 2016-07-30 17:36 - 02537472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2016-10-11 18:51 - 2016-07-26 14:40 - 00162850 _____ C:\Windows\SysWOW64\C_932.NLS
2016-10-11 18:51 - 2016-07-26 14:40 - 00162850 _____ C:\Windows\system32\C_932.NLS
2016-10-11 18:51 - 2016-07-23 19:18 - 01220096 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2016-10-11 18:51 - 2016-07-23 19:12 - 00954880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2016-10-11 18:49 - 2016-09-13 00:48 - 00085680 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-10-11 18:49 - 2016-09-09 14:38 - 01629184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-10-11 18:49 - 2016-09-09 14:38 - 01226752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-10-11 18:49 - 2016-09-09 14:38 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-10-11 18:49 - 2016-09-09 14:38 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-10-11 18:49 - 2016-09-09 14:38 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-10-11 18:49 - 2016-09-09 14:38 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-10-11 18:49 - 2016-09-09 14:38 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-10-11 18:49 - 2016-09-09 14:38 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-10-11 18:49 - 2016-08-27 20:44 - 22360288 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-10-11 18:49 - 2016-08-27 20:44 - 02755504 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-10-11 18:49 - 2016-08-27 20:44 - 00133256 _____ (Microsoft Corporation) C:\Windows\system32\RestoreOptIn.exe
2016-10-11 18:49 - 2016-08-27 19:26 - 19789232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-10-11 18:49 - 2016-08-27 19:26 - 02411048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-10-11 18:49 - 2016-08-27 19:26 - 00113656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RestoreOptIn.exe
2016-10-11 18:49 - 2016-08-27 17:33 - 02881536 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2016-10-11 18:49 - 2016-08-27 17:11 - 01049600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2016-10-11 18:49 - 2016-08-27 17:09 - 14466560 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2016-10-11 18:49 - 2016-08-27 16:55 - 12879360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2016-10-11 18:49 - 2016-08-20 23:24 - 02778624 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-10-11 18:49 - 2016-08-20 23:12 - 02463744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-10-11 12:27 - 2016-10-11 12:27 - 00411504 _____ C:\Windows\Minidump\101116-16843-01.dmp
2016-10-10 10:38 - 2016-10-10 10:38 - 00411512 _____ C:\Windows\Minidump\101016-13703-01.dmp
2016-10-09 10:52 - 2016-10-09 10:52 - 00411512 _____ C:\Windows\Minidump\100916-19937-01.dmp
2016-10-08 11:08 - 2016-10-08 11:08 - 00411504 _____ C:\Windows\Minidump\100816-14640-01.dmp
2016-10-07 11:54 - 2016-10-07 11:55 - 00411512 _____ C:\Windows\Minidump\100716-12890-01.dmp
2016-10-06 15:29 - 2016-10-06 15:29 - 00411432 _____ C:\Windows\Minidump\100616-15421-01.dmp

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-05 17:26 - 2014-08-24 15:29 - 00000000 ____D C:\Users\Michel\AppData\Roaming\TS3Client
2016-11-05 17:25 - 2014-08-04 20:26 - 00000000 ____D C:\Users\Michel\AppData\Local\Battle.net
2016-11-05 17:18 - 2014-08-13 02:26 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Spotify
2016-11-05 17:10 - 2014-12-22 02:24 - 00000892 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-11-05 16:59 - 2014-08-04 23:41 - 00000000 ____D C:\Program Files (x86)\Steam
2016-11-05 16:42 - 2014-08-04 19:36 - 00001140 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-05 16:37 - 2014-12-22 02:24 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-11-05 16:05 - 2014-08-04 20:26 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-11-05 15:39 - 2014-08-13 02:26 - 00000000 ____D C:\Users\Michel\AppData\Local\Spotify
2016-11-05 14:31 - 2014-08-13 19:15 - 00000000 ____D C:\Program Files (x86)\osu!
2016-11-05 11:12 - 2014-08-04 20:44 - 00000000 __RDO C:\Users\Michel\SkyDrive
2016-11-05 11:12 - 2014-08-04 19:36 - 00001136 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-05 11:12 - 2014-05-28 16:14 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-05 10:46 - 2014-05-24 15:46 - 00764340 _____ C:\Windows\system32\perfh007.dat
2016-11-05 10:46 - 2014-05-24 15:46 - 00159160 _____ C:\Windows\system32\perfc007.dat
2016-11-05 10:46 - 2013-10-31 04:21 - 01776918 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-05 10:46 - 2013-08-22 14:36 - 00000000 ____D C:\Windows\Inf
2016-11-05 10:42 - 2016-10-04 15:29 - 00000000 ____D C:\Windows\Minidump
2016-11-05 10:42 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-05 00:25 - 2014-08-04 19:35 - 00003942 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{8B871452-4DB6-4A2A-B4EB-4FABBABFEBA4}
2016-11-02 17:34 - 2014-08-04 19:23 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1473415466-3613894533-4282407392-1001
2016-10-31 22:10 - 2014-08-04 22:57 - 00000000 ____D C:\Users\Michel\AppData\Local\CrashDumps
2016-10-30 22:08 - 2014-08-04 19:36 - 00000000 ____D C:\Users\Michel\AppData\Local\Google
2016-10-30 01:37 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-10-29 22:04 - 2014-08-04 19:18 - 00000000 ____D C:\Users\Michel\AppData\Local\NVIDIA Corporation
2016-10-29 13:41 - 2013-08-22 16:20 - 00000000 ____D C:\Windows\CbsTemp
2016-10-28 16:50 - 2014-08-04 19:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-10-28 16:50 - 2014-05-28 16:14 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-10-28 10:51 - 2014-08-04 19:50 - 00000000 ____D C:\Program Files\AVAST Software
2016-10-28 10:51 - 2014-08-04 19:49 - 00000000 ____D C:\ProgramData\AVAST Software
2016-10-28 02:22 - 2015-08-11 17:04 - 00485032 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-10-27 15:43 - 2014-08-24 12:11 - 00000000 ____D C:\ProgramData\Package Cache
2016-10-27 15:43 - 2014-08-24 12:11 - 00000000 ____D C:\ProgramData\Avira
2016-10-27 15:43 - 2014-08-24 12:11 - 00000000 ____D C:\Program Files (x86)\Avira
2016-10-26 16:37 - 2014-12-22 02:24 - 00003862 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-10-26 16:37 - 2014-12-22 02:24 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-10-26 16:37 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-10-26 16:37 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\Macromed
2016-10-26 15:47 - 2014-05-28 16:14 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-10-26 15:47 - 2014-05-28 16:13 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-10-26 14:57 - 2014-08-04 19:17 - 00000000 ____D C:\Users\Michel\AppData\Local\NVIDIA
2016-10-26 14:51 - 2014-08-04 19:50 - 00969560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.147748994364007
2016-10-26 14:51 - 2014-08-04 19:50 - 00513496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.147748994692110
2016-10-26 14:51 - 2014-08-04 19:50 - 00292704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys.147748994715612
2016-10-26 14:50 - 2014-08-04 20:49 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Skype
2016-10-26 14:50 - 2014-08-04 20:49 - 00000000 ____D C:\ProgramData\Skype
2016-10-26 14:44 - 2014-08-04 19:38 - 00002171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-26 14:39 - 2014-08-04 19:17 - 00000000 ____D C:\Users\Michel
2016-10-26 14:38 - 2016-05-04 18:57 - 00000000 ____D C:\Users\Michel\Documents\Overwatch
2016-10-26 14:38 - 2015-12-03 14:10 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2016-10-26 14:38 - 2015-08-16 16:21 - 00000000 ____D C:\Users\Michel\AppData\Local\Akamai
2016-10-26 14:38 - 2014-08-04 20:26 - 00000000 ____D C:\Users\Michel\AppData\Roaming\Battle.net
2016-10-26 14:37 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-10-26 14:33 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\registration
2016-10-25 22:39 - 2016-10-03 11:34 - 17348752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-10-25 22:39 - 2016-10-03 11:34 - 01037248 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-10-25 22:39 - 2015-12-30 17:59 - 19925152 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-10-25 22:39 - 2015-12-30 17:59 - 17429080 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-10-25 22:39 - 2015-12-30 17:59 - 14397272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-10-25 22:39 - 2015-12-30 17:59 - 03933968 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-10-25 22:39 - 2015-12-30 17:59 - 03473368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-10-25 22:39 - 2015-12-30 17:59 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll
2016-10-25 22:39 - 2014-05-28 16:13 - 00041344 _____ C:\Windows\system32\nvinfo.pb
2016-10-25 21:17 - 2015-12-30 18:00 - 00548408 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-10-25 21:17 - 2015-12-30 18:00 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-10-25 21:17 - 2014-05-28 16:14 - 06386232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-10-25 21:17 - 2014-05-28 16:14 - 02475968 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-10-25 21:17 - 2014-05-28 16:14 - 01764408 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-10-25 21:17 - 2014-05-28 16:14 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-10-25 21:17 - 2014-05-28 16:14 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-10-24 22:54 - 2016-07-15 01:36 - 00828408 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-10-24 22:54 - 2016-07-15 01:36 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-24 07:31 - 2014-05-28 16:14 - 07507695 _____ C:\Windows\system32\nvcoproc.bin
2016-10-22 23:46 - 2016-05-31 17:16 - 00000000 ____D C:\Users\Michel\Desktop\Bilder
2016-10-22 23:46 - 2015-08-23 20:39 - 00000000 ____D C:\Users\Michel\Desktop\Schule
2016-10-22 09:40 - 2016-07-06 15:51 - 01595456 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2016-10-16 16:10 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\AppReadiness
2016-10-15 17:43 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\rescache
2016-10-14 11:52 - 2013-08-22 15:44 - 00483672 _____ C:\Windows\system32\FNTCACHE.DAT
2016-10-14 02:23 - 2013-08-22 14:25 - 00262144 ___SH C:\Windows\system32\config\BBI(18)
2016-10-14 02:22 - 2014-12-10 22:28 - 00000000 ____D C:\Windows\system32\appraiser
2016-10-14 02:22 - 2014-08-16 16:23 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-10-13 19:10 - 2015-03-11 17:41 - 00474112 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-10-13 18:46 - 2014-08-04 20:42 - 00000000 ____D C:\Windows\system32\MRT
2016-10-13 18:39 - 2014-08-04 20:42 - 143495576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-10-13 10:03 - 2013-08-22 16:36 - 00000000 ___RD C:\Windows\ToastData
2016-10-10 13:45 - 2014-08-23 17:59 - 00000000 ____D C:\Users\Michel\Documents\My Games

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2014-12-04 17:46 - 2014-12-04 17:46 - 0007618 _____ () C:\Users\Michel\AppData\Local\Resmon.ResmonCfg

Einige Dateien in TEMP:
====================
C:\Users\Michel\AppData\Local\Temp\FoxitUpdater.exe
C:\Users\Michel\AppData\Local\Temp\Gw2.exe
C:\Users\Michel\AppData\Local\Temp\ICSharpCode.SharpZipLib.dll
C:\Users\Michel\AppData\Local\Temp\libeay32.dll
C:\Users\Michel\AppData\Local\Temp\msvcr120.dll
C:\Users\Michel\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Michel\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Michel\AppData\Local\Temp\nvscpapisvr.exe
C:\Users\Michel\AppData\Local\Temp\nvStInst.exe
C:\Users\Michel\AppData\Local\Temp\sqlite3.dll
C:\Users\Michel\AppData\Local\Temp\YgoUpdater.exe


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-10-27 18:42

==================== Ende von FRST.txt ============================

01.11.2016, 18:27	#12
deeprybka /// TB-Ausbilder /// Anleitungs-Guru	Pc plötzlich langsam und die größe der Icons etc. war plötzlich verstellt Gibt es jetzt noch Probleme mit dem PC? Wenn ja, welche? __________________ Gruß deeprybka Lob, Kritik, Wünsche? Spende fürs trojaner-board? _______________________________________________ „Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer

Pc plötzlich langsam und die größe der Icons etc. war plötzlich verstellt

Plagegeister aller Art und deren Bekämpfung: Pc plötzlich langsam und die größe der Icons etc. war plötzlich verstellt