Verdacht auf schweren Trrojaner | Trojan.FakeMS.ED

yakashi97 · 30.11.2016, 16:19

Liebes Forum
Seit einigen Wochen habe ich das Problem dass mein Malwarebytes nach einem Scan mir immer wieder den gleichen "Virus" anzeigt, obwohl ich den bereits versuchte, zu entfernen.

Nun war ich vor kurzem bei meiner Tante mit meinem Computer und sie bekam nach 2-3 Tagen einen Brief ihres Internetanbieters "Telekom in dem Fall" dass eine sicherheitslücke im Internet besteht. Dieser Brief kam aber nur, sobald ich mein PC bei ihr hatte!.

Hab mal nen Log von Malwarebytes für euch, vielleicht kann mir hier irgendjemand helfen, da ich nicht unbedingt die lust habe, mein PC neu aufzusetzen.

Hier der Log

Code:

ATTFilter

 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlaufdatum: 30.11.2016
Suchlaufzeit: 15:33
Protokolldatei: scan.txt
Administrator: Ja

Version: 2.2.1.1043
Malware-Datenbank: v2016.11.30.06
Rootkit-Datenbank: v2016.11.20.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: yakashi

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 565345
Abgelaufene Zeit: 9 Min., 18 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswerte: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 1
Trojan.FakeMS.ED, C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ilnmnfug.exe, , [7ef022a4b0ea9d996614afbb2dd3cb35], 

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)

Mit freundlichen Grüßen
Maurice

cosinus · 30.11.2016, 16:34

+++ WICHTIGER HINWEIS +++

Während der Analyse und Bereinigung nimmst du KEINERLEI Änderungen auf eigene Faust vor, d.h. du installierst oder deinstallierst keine Software ohne Absprache.
Auch veränderst du keine Systemeinstellungen, solange wir deinen Fall bearbeiten. Änderungen, Installationen oder Deinstallationen machst du AUSSCHLIESSLICH nur auf Anweisung!
Es wird erforderlich sein, deinen Virenscanner zu deaktivieren und in bestimmten Fällen auch zu deinstallieren, damit vernünftig bereinigt werden kann. Dein System ist daher erst wenn wir hier fertig sind wieder für den alltäglichen Gebrauch wie surfen oder mailen von mir freigegeben.

Gelesen und verstanden?

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

yakashi97 · 30.11.2016, 17:00

FRST LOG:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 27-11-2016
durchgeführt von yakashi (Administrator) auf YAKASHI-PC (30-11-2016 16:57:08)
Gestartet von C:\Users\yakashi\Desktop
Geladene Profile: yakashi (Verfügbare Profile: yakashi)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(The Within Network, LLC) C:\Windows\UnsignedThemesSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Razer Inc) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-15] (AVAST Software)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\RunOnce: [ Malwarebytes Anti-Malware  (cleanup)] => C:\ProgramData\Malwarebytes\ Malwarebytes Anti-Malware \mbamdor.exe [55264 2016-03-10] (Malwarebytes)
HKLM-x32\...\Winlogon: [Userinit] userinit.exe,C:\Program Files (x86)\aivadflp\ilnmnfug.exe, [X]
HKU\S-1-5-21-2572264492-182372228-3150790763-1000\...\MountPoints2: {5e3da5ff-827d-11e6-ac6c-4ccc6a61d306} - G:\setup.exe
HKU\S-1-5-21-2572264492-182372228-3150790763-1000\...\Winlogon: [Shell] c:\windows\explorer.exe [2872320 2010-11-20] (Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-18\...\Run: [] => 0
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2016-09-18] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\yakashi\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] ()
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\yakashi\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] ()
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\yakashi\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] ()
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-10-15] (AVAST Software)
Startup: C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ilnmnfug.exe [2016-11-26] ()

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\..\Interfaces\{3A231831-A6A7-4122-82AA-B18E85CAF178}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{6067DDCE-2A82-487F-8C19-7E8CFF1A228C}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_102\bin\ssv.dll [2016-09-18] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-10-24] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_102\bin\jp2ssv.dll [2016-09-18] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_102\bin\ssv.dll [2016-09-18] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-10-24] (AVAST Software)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_102\bin\jp2ssv.dll [2016-09-18] (Oracle Corporation)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-10-15]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-10-15]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Plugin: @java.com/DTPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\dtplugin\npDeployJava1.dll [2016-09-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\plugin2\npjp2.dll [2016-09-18] (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-25] (Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.102.2 -> C:\Program Files (x86)\Java\jre1.8.0_102\bin\dtplugin\npDeployJava1.dll [2016-09-18] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.102.2 -> C:\Program Files (x86)\Java\jre1.8.0_102\bin\plugin2\npjp2.dll [2016-09-18] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-24] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-24] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-18] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-25] (Adobe Systems)

Chrome: 
=======
CHR DefaultProfile: ChromeDefaultData
CHR HomePage: ChromeDefaultData -> hxxp://www.google.de/
CHR StartupUrls: ChromeDefaultData -> "hxxps://www.google.de/"
CHR Profile: C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2016-11-30] <==== ACHTUNG
CHR Extension: (ProxFlow) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aakchaleigkohafkfjfjbblobjifikek [2016-10-15]
CHR Extension: (Google Präsentationen) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-09-18]
CHR Extension: (Google Docs) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2016-09-18]
CHR Extension: (Google Drive) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-18]
CHR Extension: (YouTube) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-18]
CHR Extension: (Adblock Plus) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-26]
CHR Extension: (Avast SafePrice) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-11-15]
CHR Extension: (Google Tabellen) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-09-18]
CHR Extension: (Google Docs Offline) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-18]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-09-18]
CHR Extension: (Google Mail) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-09-18]
CHR Extension: (Chrome Media Router) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-14]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1295376 2016-07-01] (Autodesk Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-25] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-08-05] (Apple Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-10-15] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1456136 2016-10-11] ()
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [392168 2016-08-31] (Digital Wave Ltd.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-08-29] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [229648 2016-10-30] (EasyAntiCheat Ltd)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2627080 2016-11-11] (LogMeIn Inc.)
R2 hshld; C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [2710648 2016-08-24] (AnchorFree Inc.)
S3 HssTrayService; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [103168 2016-08-24] ()
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19440 2015-11-04] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-11-11] (LogMeIn, Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-11-17] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-11-17] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-11-24] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-11-17] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119688 2016-11-22] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2180624 2016-11-22] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1316080 2016-11-23] (Overwolf LTD)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-25] ()
R2 RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [4261344 2016-11-04] (Razer Inc)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)
R2 UnsignedThemes; C:\Windows\UnsignedThemesSvc.exe [24168 2009-07-13] (The Within Network, LLC)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 AFTrafMgr1.1; C:\Program Files (x86)\Hotspot Shield\bin\TrafMgr_1_1_64.sys [54712 2016-08-23] (AnchorFree Inc.)
R0 amdide64; C:\Windows\System32\DRIVERS\amdide64.sys [11944 2016-09-18] (Advanced Micro Devices Inc.)
R0 asstor64; C:\Windows\System32\DRIVERS\asstor64.sys [83792 2016-09-18] (Asmedia Technology)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-10-15] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-10-15] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-10-15] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-10-15] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-10-15] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-10-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-10-15] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-10-15] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-15] (AVAST Software)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-09-25] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-09-25] (Disc Soft Ltd)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-09-18] (REALiX(tm))
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [32224 2016-11-22] (Intel Corporation)
U0 jeeyyox; C:\Windows\System32\drivers\vdkan.sys [79064 2016-11-30] (Malwarebytes)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [181304 2016-03-28] (Intel Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-11-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46016 2016-11-17] (NVIDIA Corporation)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [44144 2016-09-17] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [137840 2016-09-07] (Razer, Inc.)
R3 RZSURROUNDVADService; C:\Windows\System32\drivers\RzSurroundVAD.sys [49176 2016-10-16] (Windows (R) Win 7 DDK provider)
R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
S3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [33960 2016-09-23] (Synaptics Incorporated)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 tap0901_openvpn_accl; C:\Windows\System32\DRIVERS\tap0901_openvpn_accl.sys [37912 2016-11-20] (The OpenVPN Project)
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42064 2016-08-23] (Anchorfree Inc.)
R2 uxpatch; C:\Windows\system32\drivers\uxpatch.sys [30568 2009-07-13] ()
S3 xb1usb; C:\Windows\System32\DRIVERS\xb1usb.sys [42760 2016-02-21] (Microsoft Corporation)
U2 StartMenuReviverService; kein ImagePath
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 X6va063; \??\C:\Windows\SysWOW64\Drivers\X6va063 [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-30 16:57 - 2016-11-30 16:57 - 00021382 _____ C:\Users\yakashi\Desktop\FRST.txt
2016-11-30 16:56 - 2016-11-30 16:57 - 00000000 ____D C:\FRST
2016-11-30 16:56 - 2016-11-30 16:56 - 02411520 _____ (Farbar) C:\Users\yakashi\Desktop\FRST64.exe
2016-11-30 16:13 - 2016-11-30 16:13 - 00079064 _____ (Malwarebytes) C:\Windows\system32\Drivers\vdkan.sys
2016-11-30 15:55 - 2016-11-30 15:55 - 00041537 _____ C:\Users\yakashi\Desktop\Blaffert 10_2016.pdf
2016-11-30 15:55 - 2016-11-30 15:55 - 00039744 _____ C:\Users\yakashi\Desktop\Blaffert 11_2016.pdf
2016-11-30 15:46 - 2016-11-30 15:46 - 00039744 _____ C:\Users\yakashi\Downloads\Blaffert 11_2016.pdf
2016-11-30 15:45 - 2016-11-30 15:45 - 00041537 _____ C:\Users\yakashi\Downloads\Blaffert 10_2016.pdf
2016-11-30 15:44 - 2016-11-30 15:44 - 00001325 _____ C:\Users\yakashi\Desktop\scan.txt
2016-11-30 15:03 - 2016-11-30 15:03 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-11-30 15:03 - 2016-11-24 20:22 - 00134712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-11-30 15:03 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-11-30 15:03 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-11-30 15:03 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-11-30 15:03 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-11-30 15:02 - 2016-11-24 21:54 - 40123840 _____ C:\Windows\system32\nvcompiler.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 35224632 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 34701760 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 28139576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 17440928 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 17373312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 14410120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 14057528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-11-30 15:02 - 2016-11-24 21:54 - 10912744 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 10795312 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 10346208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 09151216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 08913512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 08754344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 03643840 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 03206592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 01951680 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437609.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437609.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 01036736 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00974272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00945208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00895424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00683640 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00572888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00521096 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00439864 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00435904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00407248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00390200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00170872 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00153368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00148200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00131720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-11-28 14:20 - 2016-11-28 14:20 - 01222159 _____ C:\Users\yakashi\Downloads\OptiFine_1.7.10_HD_U_D6.jar
2016-11-28 13:48 - 2016-11-28 14:10 - 00000000 ____D C:\Users\yakashi\Desktop\GTA - San Andreas
2016-11-27 18:23 - 2016-11-27 18:23 - 00000000 ____D C:\Users\yakashi\Desktop\Neuer Ordner
2016-11-27 13:16 - 2016-11-27 13:16 - 00000986 _____ C:\Users\Public\Desktop\SciTE4AutoHotkey.lnk
2016-11-27 13:16 - 2016-11-27 13:16 - 00000000 ____D C:\Users\yakashi\Documents\AutoHotkey
2016-11-27 13:16 - 2016-11-27 13:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SciTE4AutoHotkey
2016-11-27 13:15 - 2016-11-27 13:15 - 01924681 _____ (fincs) C:\Users\yakashi\Downloads\SciTE4AHK300601_Install.exe
2016-11-27 01:29 - 2016-11-27 01:29 - 00010881 _____ C:\Users\yakashi\Desktop\julian adventskalender.pwn
2016-11-27 00:47 - 2016-11-27 00:47 - 00007564 _____ C:\Users\yakashi\Desktop\present.pwn
2016-11-27 00:42 - 2016-11-27 00:42 - 00001139 _____ C:\Users\yakashi\Desktop\autohaus gtarl.pwn
2016-11-27 00:26 - 2016-11-27 00:26 - 00657365 _____ C:\Users\yakashi\Desktop\maps.pwn
2016-11-27 00:10 - 2016-11-27 00:10 - 00837119 _____ C:\Users\yakashi\Downloads\editor.rar
2016-11-26 23:41 - 2016-11-26 23:41 - 16270006 _____ C:\Users\yakashi\Downloads\sa-mp-0.3.7-install.exe
2016-11-26 23:41 - 2016-11-26 23:41 - 02094241 _____ C:\Users\yakashi\Downloads\samp037_svr_R2-1-1_win32.zip
2016-11-26 21:43 - 2016-11-26 21:43 - 02509914 _____ C:\Users\yakashi\Downloads\Message bling sound.rar
2016-11-26 21:23 - 2016-11-26 21:36 - 3979544377 _____ C:\Users\yakashi\Downloads\CrossFire_ARxGaming.zip
2016-11-26 21:18 - 2016-11-26 21:18 - 01847449 _____ C:\Users\yakashi\Downloads\HGWC.rar
2016-11-26 21:12 - 2016-11-28 20:32 - 00000643 _____ C:\Users\yakashi\Desktop\CrossFire ArxGaming.lnk
2016-11-26 13:15 - 2016-10-18 18:21 - 00786815 _____ C:\Users\yakashi\Desktop\Laufscript.exe
2016-11-26 00:08 - 2016-11-27 18:16 - 00000000 ____D C:\Users\yakashi\Desktop\gtarl
2016-11-26 00:07 - 2016-11-26 00:07 - 00001068 _____ C:\Users\yakashi\Desktop\GTA SA.lnk
2016-11-26 00:07 - 2016-11-26 00:07 - 00000000 ____D C:\Users\yakashi\Desktop\WH KEYBINDER
2016-11-25 12:17 - 2016-11-25 12:17 - 02285109 _____ C:\Users\yakashi\Downloads\PRIVATKI DOZZER.rar
2016-11-25 00:23 - 2016-11-25 00:23 - 08108436 _____ C:\Users\yakashi\Downloads\2012 BMW M3 E92 Hamann.zip
2016-11-25 00:22 - 2016-11-25 00:22 - 15637566 _____ C:\Users\yakashi\Downloads\Транспорт - BMW_e30_UDC[SAMODS.RU].rar
2016-11-25 00:15 - 2016-11-25 00:15 - 15640912 _____ C:\Users\yakashi\Downloads\1476393124_E36 SEDAN.zip
2016-11-24 20:18 - 2016-11-24 20:19 - 41599579 _____ C:\Users\yakashi\Documents\Ohne Titel.mp4
2016-11-24 17:39 - 2016-11-24 17:39 - 43086377 _____ C:\Users\yakashi\Downloads\client_21031.zip
2016-11-24 13:35 - 2016-11-24 13:35 - 00000970 _____ C:\Users\yakashi\Downloads\listen.asx
2016-11-24 13:35 - 2016-11-24 13:35 - 00000970 _____ C:\Users\yakashi\Downloads\listen (1).asx
2016-11-24 02:59 - 2016-11-24 02:59 - 05763621 _____ C:\Users\yakashi\Downloads\Sounds (1).rar
2016-11-24 02:59 - 2016-11-24 02:59 - 01091085 _____ C:\Users\yakashi\Downloads\sounds.rar
2016-11-24 02:56 - 2016-11-24 02:56 - 10611225 _____ C:\Users\yakashi\Downloads\71344-bmw-m4-coupe.zip
2016-11-24 02:51 - 2016-11-24 02:51 - 09816325 _____ C:\Users\yakashi\Downloads\71429-bmw-m4-2014-liberty-walk.zip
2016-11-24 01:15 - 2016-11-24 01:15 - 00397091 _____ C:\Users\yakashi\Downloads\Smooth Camera.zip
2016-11-24 01:13 - 2016-11-24 01:13 - 01204711 _____ C:\Windows\unins000.exe
2016-11-24 01:13 - 2016-11-24 01:13 - 00894870 _____ (Seemann, Deji, Alien ) C:\Users\yakashi\Downloads\CLEO4_setup.exe
2016-11-23 20:53 - 2016-11-25 15:23 - 00007515 _____ C:\Users\yakashi\Downloads\WhatsApp Image 2016-11-20 at 17.21.51.jpeg
2016-11-23 18:47 - 2016-11-17 14:45 - 00101824 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-11-23 18:47 - 2016-11-17 14:45 - 00091584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-11-23 18:47 - 2016-11-17 14:45 - 00046016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-11-23 16:39 - 2016-11-23 16:39 - 00008945 _____ C:\Users\yakashi\Downloads\WhatsApp Ptt 2016-11-23 at 16.39.03.ogg; codecs=opus
2016-11-23 16:39 - 2016-11-23 16:39 - 00008572 _____ C:\Users\yakashi\Downloads\WhatsApp Ptt 2016-11-23 at 16.38.58.ogg; codecs=opus
2016-11-22 21:07 - 2016-11-22 21:07 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-11-22 21:07 - 2016-11-22 21:07 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-11-22 21:07 - 2016-11-22 21:07 - 00000000 ____D C:\Windows\system32\DAX2
2016-11-22 21:07 - 2016-11-22 21:07 - 00000000 ____D C:\Program Files\Realtek
2016-11-22 21:01 - 2016-11-22 21:01 - 00795640 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2016-11-22 21:01 - 2016-11-22 21:01 - 00032224 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2016-11-22 21:00 - 2016-11-22 21:00 - 72520720 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2016-11-22 21:00 - 2016-11-22 21:00 - 23505720 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRenderAVX64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 23414272 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRender64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 17378000 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioCapture64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 15202040 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE3.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 14057256 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 13122584 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 12988352 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 10534696 _____ (Intel Corporation) C:\Windows\system32\IntelSSTAPO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 07172912 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 07096184 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 07020920 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-11-22 21:00 - 2016-11-22 21:00 - 06374320 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV3apo.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 06264640 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 05804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
2016-11-22 21:00 - 2016-11-22 21:00 - 05793528 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 05593624 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 05341352 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 05310472 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-11-22 21:00 - 2016-11-22 21:00 - 03299832 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 03291320 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 03283248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 03203592 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 03133856 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02895104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-11-22 21:00 - 2016-11-22 21:00 - 02825104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02775360 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02706872 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02439048 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02203752 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02190992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02110592 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02073088 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02050176 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01965816 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01959608 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01920820 _____ C:\Windows\system32\Drivers\rtkSSTsetting.dat
2016-11-22 21:00 - 2016-11-22 21:00 - 01780624 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01618032 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01591056 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01529136 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64Proxy.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01508928 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01435144 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01422928 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01382240 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01360520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01337648 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaeapo64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01334384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01213664 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01186840 _____ (Intel Corporation) C:\Windows\system32\IntelSstCApoPropPage.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01166168 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01115136 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01041744 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01003864 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01001800 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDHF64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00999856 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00965032 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00962136 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tosasfapo64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00931624 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00923752 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00873472 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00864344 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SEHDHF32.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00858208 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00854040 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00823816 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3xhc.sys
2016-11-22 21:00 - 2016-11-22 21:00 - 00743968 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00727440 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00725944 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00708312 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00689888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00678192 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00677680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00618192 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00601152 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaemaxapo64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00574752 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00571384 _____ (Intel Corporation) C:\Windows\system32\tbb_waves.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00532384 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00514528 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00504312 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00500560 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00498640 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00472312 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00467168 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00447728 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00447184 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\toseaeapo64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00445400 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00441272 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00438696 _____ (Conexant Systems, Inc.) C:\Windows\system32\CAF64APO2.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00428232 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00416512 _____ (Harman) C:\Windows\system32\HMUI.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00387320 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00381416 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00372736 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00366128 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00362056 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00360352 _____ (Harman) C:\Windows\system32\HMClariFi.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00343712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00341160 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00341160 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00330568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00327456 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00310424 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00272712 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00258864 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00253896 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00253872 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00252880 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00231920 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00221976 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00214840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00209544 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00203848 _____ (Harman) C:\Windows\system32\HMHVS.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00192984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00190936 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00190936 _____ (Harman) C:\Windows\system32\HMEQ.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00179600 _____ (Harman) C:\Windows\system32\HMLimiter.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00166208 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00158704 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00154368 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00151792 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00134208 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00122320 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00118600 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00118592 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00112496 _____ (Conexant Systems, Inc.) C:\Windows\system32\Caf64api.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00110992 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00105312 _____ C:\Windows\system32\audioLibVc.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00090920 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00088352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00088328 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00084616 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00083624 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00075544 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00023696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00005604 _____ C:\Windows\system32\cxapo.lncs
2016-11-22 21:00 - 2016-11-22 21:00 - 00000736 _____ C:\Windows\system32\cxapo.prop
2016-11-22 19:18 - 2016-11-22 19:18 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign977265cf2a883c90
2016-11-22 19:18 - 2016-11-22 19:18 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign8d8e6ecb2758a646
2016-11-21 17:01 - 2016-11-21 17:01 - 03336882 _____ C:\Users\yakashi\Downloads\asd.rar
2016-11-21 16:54 - 2016-11-21 16:54 - 00942390 _____ C:\Users\yakashi\Downloads\Keybinder.rar
2016-11-21 01:24 - 2016-11-21 01:24 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\MSIConfig
2016-11-20 23:10 - 2016-11-20 23:10 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\NVIDIA
2016-11-20 23:08 - 2016-11-24 21:54 - 19948848 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-11-20 23:08 - 2016-11-24 21:54 - 00491536 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-11-20 23:08 - 2016-11-24 21:54 - 00041344 _____ C:\Windows\system32\nvinfo.pb
2016-11-20 23:08 - 2016-11-24 20:39 - 06384576 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-11-20 23:08 - 2016-11-24 20:39 - 02477624 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-11-20 23:08 - 2016-11-24 20:39 - 01762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-11-20 23:08 - 2016-11-24 20:39 - 00546752 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-11-20 23:08 - 2016-11-24 20:39 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-11-20 23:08 - 2016-11-24 20:39 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-11-20 23:08 - 2016-11-23 13:58 - 07538847 _____ C:\Windows\system32\nvcoproc.bin
2016-11-20 23:08 - 2016-11-17 03:04 - 01953336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437595.dll
2016-11-20 23:08 - 2016-11-17 03:04 - 01595456 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2016-11-20 23:08 - 2016-11-17 03:04 - 01585088 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437595.dll
2016-11-20 23:08 - 2016-11-17 03:04 - 00213952 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-11-20 23:08 - 2016-11-17 03:04 - 00212936 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-11-20 23:08 - 2016-11-17 03:04 - 00201664 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-11-20 23:08 - 2016-11-17 03:04 - 00046024 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-11-20 23:08 - 2016-11-17 03:04 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-11-20 23:08 - 2016-11-17 03:04 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2016-11-20 22:55 - 2016-11-30 15:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-11-20 22:55 - 2016-11-30 15:14 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-20 22:55 - 2016-11-30 15:04 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-11-20 22:55 - 2016-11-23 18:47 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-11-20 22:55 - 2016-11-23 18:47 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-11-20 22:55 - 2016-11-20 22:56 - 00000000 ____D C:\Users\yakashi\AppData\Local\NVIDIA
2016-11-20 22:55 - 2016-11-17 14:45 - 01755072 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-11-20 22:55 - 2016-11-17 14:45 - 01317312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-11-20 22:55 - 2016-11-17 14:45 - 00120256 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-11-20 22:54 - 2016-11-20 22:55 - 73981120 _____ (NVIDIA Corporation) C:\Users\yakashi\Downloads\GeForce_Experience_v3.1.0.52.exe
2016-11-20 12:53 - 2016-11-24 21:54 - 03941720 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-11-20 12:53 - 2016-11-24 21:54 - 03479744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-11-20 12:53 - 2016-11-24 20:39 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-11-20 12:53 - 2016-11-24 20:39 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2016-11-20 12:22 - 2016-11-17 14:45 - 01854400 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-11-20 12:22 - 2016-11-17 14:45 - 01452480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-11-20 12:15 - 2016-11-20 12:16 - 00095650 _____ C:\Windows\ntbtlog.txt
2016-11-20 10:56 - 2016-11-20 10:56 - 00037912 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tap0901_openvpn_accl.sys
2016-11-20 10:55 - 2016-11-20 10:56 - 00000000 ____D C:\ProgramData\FlyVPN
2016-11-20 10:55 - 2016-11-20 10:55 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FlyVPN
2016-11-20 10:54 - 2016-11-20 10:55 - 02133568 _____ (FlyVPN) C:\Users\yakashi\Downloads\FlyVPNInstaller_3.6.2.2.exe
2016-11-20 03:29 - 2016-11-20 03:29 - 01055510 _____ C:\Users\yakashi\Downloads\maurice.rar
2016-11-20 02:35 - 2016-11-20 02:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3
2016-11-20 02:35 - 2016-11-20 02:35 - 00000000 ____D C:\Program Files\MSI Kombustor 3
2016-11-20 02:34 - 2016-11-20 02:34 - 19819074 _____ (MSI Co., LTD ) C:\Users\yakashi\Downloads\MSI_Kombustor_Setup_3.5.2.1_x64.exe
2016-11-20 02:24 - 2016-11-20 02:24 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\JAM Software
2016-11-20 02:18 - 2016-11-20 02:18 - 09928496 _____ (JAM Software ) C:\Users\yakashi\Downloads\HeavyLoad-x64-Setup.exe
2016-11-20 02:18 - 2016-11-20 02:18 - 00000000 ____D C:\Program Files\JAM Software
2016-11-20 02:17 - 2016-11-20 02:17 - 00000000 ____D C:\Windows\SysWOW64\directx
2016-11-20 02:17 - 2016-11-20 02:17 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2016-11-20 02:17 - 2016-11-20 02:17 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2016-11-20 02:17 - 2016-11-20 02:17 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2016-11-20 02:17 - 2016-11-20 02:17 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2016-11-20 02:11 - 2016-11-20 02:11 - 1127223062 _____ C:\Windows\MEMORY.DMP
2016-11-20 02:11 - 2016-11-20 02:11 - 00872216 _____ C:\Windows\Minidump\112016-12604-01.dmp
2016-11-20 02:11 - 2016-11-20 02:11 - 00000000 ____D C:\Windows\Minidump
2016-11-20 02:04 - 2016-11-24 19:55 - 00000000 ____D C:\Users\yakashi\AppData\Local\NVIDIA Corporation
2016-11-20 01:57 - 2016-11-20 22:53 - 00000000 ____D C:\Users\yakashi\Downloads\settings
2016-11-20 01:57 - 2016-11-20 22:53 - 00000000 ____D C:\Users\yakashi\Downloads\DDU Logs
2016-11-20 01:57 - 2016-11-20 01:57 - 01129418 _____ (Igor Pavlov) C:\Users\yakashi\Downloads\DDU_v17.0.3.0.exe
2016-11-20 01:57 - 2016-11-20 01:57 - 00000000 ____D C:\Users\yakashi\Downloads\x64
2016-11-20 01:57 - 2016-10-25 19:21 - 01434112 _____ C:\Users\yakashi\Downloads\Display Driver Uninstaller.exe
2016-11-20 01:57 - 2016-10-25 19:21 - 00546304 _____ C:\Users\yakashi\Downloads\Display Driver Uninstaller.pdb
2016-11-20 01:57 - 2015-09-06 12:26 - 00000224 _____ C:\Users\yakashi\Downloads\Display Driver Uninstaller.exe.config
2016-11-20 01:35 - 2016-11-20 01:35 - 00032600 _____ C:\Users\yakashi\Downloads\asiloader.zip
2016-11-20 01:12 - 2016-11-20 01:12 - 00000000 ____D C:\NVIDIA
2016-11-20 00:06 - 2016-11-20 00:06 - 00001066 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-11-19 20:08 - 2016-11-19 20:08 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\npm
2016-11-19 20:08 - 2016-11-19 20:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Node.js
2016-11-19 20:08 - 2016-11-19 20:08 - 00000000 ____D C:\Program Files\nodejs
2016-11-19 15:53 - 2016-11-24 22:38 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\RealLifeRPG
2016-11-19 15:53 - 2016-11-19 15:53 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RealLifeRPG
2016-11-19 15:53 - 2016-11-19 15:53 - 00000000 ____D C:\Users\yakashi\AppData\Local\SquirrelTemp
2016-11-19 15:53 - 2016-11-19 15:53 - 00000000 ____D C:\Users\yakashi\AppData\Local\RealLifeRPG
2016-11-18 12:41 - 2016-11-18 12:41 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsigne5ad980403d43f8f
2016-11-18 01:00 - 2016-11-18 01:00 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsigne85634600fc93685
2016-11-17 20:01 - 2016-11-17 20:01 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsigne474e41904f67f97
2016-11-17 19:12 - 2016-11-17 19:12 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsigna001b5586abb9615
2016-11-17 16:07 - 2016-11-17 16:07 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign7374dce4b52fb315
2016-11-17 13:11 - 2016-11-17 13:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign77994062462cd779
2016-11-16 20:08 - 2016-11-16 20:08 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign599d10b1f225e4da
2016-11-16 18:28 - 2016-11-16 18:28 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign90d856c5e2989c09
2016-11-15 11:43 - 2016-11-15 11:43 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign6654733c6298a1d5
2016-11-15 11:31 - 2016-11-15 11:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-11-15 11:31 - 2016-11-15 11:31 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2016-11-13 18:30 - 2016-11-13 18:30 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignbb0e65e07ea8f574
2016-11-13 18:22 - 2016-11-13 18:22 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignf881167ce1563999
2016-11-13 18:22 - 2016-11-13 18:22 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign096e30b9346fd6ca
2016-11-11 22:33 - 2016-11-11 22:33 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Steganos Updates
2016-11-08 18:53 - 2016-11-08 18:53 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignfb9607c0028ace4a
2016-11-08 18:50 - 2016-11-08 18:50 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignde802797b7a02827
2016-11-07 23:35 - 2016-11-07 23:35 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign30bdcf888e87adf0
2016-11-06 23:53 - 2016-11-06 23:53 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignc944d2db450e0a4a
2016-11-06 23:53 - 2016-11-06 23:53 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign10d2cbe3e78c6675
2016-11-06 13:56 - 2016-11-06 13:56 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2016-11-06 03:25 - 2016-11-08 01:51 - 00000000 ____D C:\Users\yakashi\Documents\American Truck Simulator
2016-11-06 03:25 - 2016-11-06 10:59 - 00000000 ____D C:\Users\yakashi\Documents\ATSMP
2016-11-05 17:57 - 2016-11-05 17:57 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign5f74d0cbf2283865
2016-11-05 17:57 - 2016-11-05 17:57 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign095d95b18fe0a50d
2016-11-05 13:07 - 2016-11-05 13:07 - 00000000 ____D C:\Users\yakashi\AppData\Local\TS3index.com_GbR
2016-11-05 12:57 - 2016-11-05 12:59 - 00000000 ____D C:\SinusBot
2016-11-05 12:56 - 2016-11-05 12:56 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2016-11-04 13:28 - 2016-11-30 16:31 - 00000000 _____ C:\Windows\system32\RzSurroundVADAudioDeviceManager_log.txt
2016-11-04 13:28 - 2016-11-25 21:21 - 00000000 _____ C:\Windows\SysWOW64\RzSurroundVADAudioDeviceManager_log.txt
2016-11-04 13:28 - 2016-11-04 13:28 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign6e125d926d59050a
2016-11-04 13:28 - 2016-11-04 13:28 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign6aae28833155f8df
2016-11-04 13:28 - 2016-11-04 13:28 - 00000000 ____D C:\ProgramData\RzSurroundVAD_1.1.62.0
2016-11-04 13:28 - 2016-09-17 02:12 - 00044144 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpmgrk.sys
2016-11-04 13:28 - 2016-09-07 22:27 - 00137840 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpnk.sys
2016-11-04 13:27 - 2016-11-04 13:28 - 00000000 ____D C:\Program Files (x86)\Razer
2016-11-04 13:27 - 2016-11-04 13:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2016-11-04 13:26 - 2016-11-04 13:36 - 00000000 ____D C:\ProgramData\Razer
2016-11-04 13:26 - 2016-11-04 13:26 - 00000000 ____D C:\Users\yakashi\AppData\Local\Razer
2016-11-01 22:46 - 2016-11-01 22:46 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignf059c3968a9369bf
2016-11-01 22:46 - 2016-11-01 22:46 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign1de7aff1cbfe8952
2016-11-01 19:18 - 2016-11-01 19:18 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign64553d4dd4359053
2016-11-01 19:18 - 2016-11-01 19:18 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign18eb9d9a15b73107
2016-11-01 18:13 - 2016-11-01 18:13 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign8216aa8311e6b51b
2016-11-01 18:13 - 2016-11-01 18:13 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign489392c8126b185c
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\PDAppFlex
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignfb39070822f75bd2
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign8d35784f97239c81
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign6a313755e104d229
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign51ca7fb791165a87
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign34f9088922b18f32
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign26bee3c26c1da5b5
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign114b933af41f0553
2016-11-01 17:50 - 2016-11-01 17:50 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignfe107b9aa3c04fa1
2016-11-01 12:29 - 2016-11-01 13:54 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\obs-studio
2016-11-01 12:28 - 2016-11-01 12:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2016-11-01 12:28 - 2016-11-01 12:28 - 00000000 ____D C:\Program Files (x86)\obs-studio

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-30 16:55 - 2016-09-18 20:11 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\TS3Client
2016-11-30 16:47 - 2009-07-14 05:45 - 00016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-30 16:47 - 2009-07-14 05:45 - 00016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-30 16:41 - 2016-09-18 19:36 - 00001112 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-30 16:13 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Resources
2016-11-30 15:33 - 2016-10-18 22:27 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-11-30 15:21 - 2009-07-14 18:58 - 00700614 _____ C:\Windows\system32\perfh007.dat
2016-11-30 15:21 - 2009-07-14 18:58 - 00149962 _____ C:\Windows\system32\perfc007.dat
2016-11-30 15:21 - 2009-07-14 06:13 - 01624324 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-30 15:21 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-11-30 15:17 - 2016-09-18 19:37 - 00002882 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (yakashi)
2016-11-30 15:15 - 2016-09-29 17:52 - 00000000 ____D C:\Users\yakashi\AppData\Local\LogMeIn Hamachi
2016-11-30 15:15 - 2016-09-20 12:49 - 00000000 ___RD C:\Users\yakashi\Creative Cloud Files
2016-11-30 15:15 - 2016-09-20 12:49 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-11-30 15:15 - 2016-09-20 12:45 - 00000000 ____D C:\Users\yakashi\AppData\Local\Adobe
2016-11-30 15:14 - 2016-09-18 19:36 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-30 15:14 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-30 15:07 - 2016-10-06 16:12 - 00000000 ____D C:\Users\Public\Documents\AdobeGC
2016-11-29 16:07 - 2016-09-25 00:59 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Origin
2016-11-29 15:54 - 2016-09-24 13:52 - 00000000 ____D C:\Users\yakashi\AppData\Local\CrashDumps
2016-11-29 14:14 - 2016-10-10 21:01 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\trainer
2016-11-29 14:09 - 2016-09-25 00:57 - 00000000 ____D C:\ProgramData\Origin
2016-11-28 23:09 - 2016-10-01 16:51 - 00000000 ____D C:\Windows\pss
2016-11-28 14:23 - 2016-10-06 23:18 - 00000000 ____D C:\Users\yakashi\AppData\Local\ftblauncher
2016-11-28 14:12 - 2016-10-06 23:18 - 00000000 ____D C:\ftb
2016-11-27 18:39 - 2016-09-18 20:07 - 00000000 ____D C:\Users\yakashi\Documents\GTA San Andreas User Files
2016-11-27 13:16 - 2016-09-18 19:47 - 00000000 ____D C:\Program Files\AutoHotkey
2016-11-25 14:11 - 2016-09-18 20:07 - 00000000 ____D C:\Program Files (x86)\Overwolf
2016-11-25 12:55 - 2016-10-28 12:53 - 00000000 ____D C:\Users\yakashi\Documents\HP-Overlay
2016-11-25 00:12 - 2016-10-11 17:09 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\DVDVideoSoft
2016-11-24 22:38 - 2016-09-25 12:54 - 00000000 ____D C:\Users\yakashi\AppData\Local\Arma 3
2016-11-24 17:41 - 2016-10-30 18:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TruckersMP
2016-11-24 14:11 - 2016-09-18 20:07 - 00000002 _____ C:\END
2016-11-24 13:26 - 2016-09-25 12:53 - 00000000 ____D C:\Users\yakashi\AppData\Local\Arma 3 Launcher
2016-11-24 13:25 - 2016-09-27 13:30 - 00000000 ____D C:\Users\yakashi\Documents\Arma 3 - Other Profiles
2016-11-24 01:13 - 2016-09-19 15:24 - 00014940 _____ C:\Windows\unins000.dat
2016-11-23 18:47 - 2016-09-23 22:12 - 00003602 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-23 18:47 - 2016-09-18 20:30 - 00003840 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-23 18:47 - 2016-09-18 20:30 - 00003840 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-23 18:47 - 2016-09-18 20:30 - 00003790 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-23 18:47 - 2016-09-18 20:30 - 00003778 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-23 18:47 - 2016-09-18 20:30 - 00003542 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-23 17:29 - 2016-09-20 14:17 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Skype
2016-11-23 11:51 - 2016-09-20 14:17 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-11-23 11:51 - 2016-09-20 14:17 - 00000000 ____D C:\ProgramData\Skype
2016-11-22 21:09 - 2016-09-25 00:58 - 00000000 ____D C:\Program Files (x86)\Origin
2016-11-22 20:55 - 2016-09-18 19:38 - 00000000 ____D C:\ProgramData\ProductData
2016-11-20 23:08 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Help
2016-11-20 22:48 - 2016-09-30 17:16 - 00000000 ____D C:\Temp
2016-11-20 00:58 - 2016-09-18 19:35 - 00073256 _____ C:\Users\yakashi\AppData\Local\GDIPFONTCACHEV1.DAT
2016-11-20 00:57 - 2009-07-14 05:45 - 00345744 _____ C:\Windows\system32\FNTCACHE.DAT
2016-11-20 00:06 - 2016-09-25 14:08 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-11-19 22:46 - 2016-09-27 13:01 - 00000000 ____D C:\Users\yakashi\AppData\Local\Battle.net
2016-11-19 00:56 - 2016-09-18 20:06 - 00000000 ____D C:\Users\yakashi\AppData\Local\Overwolf
2016-11-18 13:05 - 2016-10-21 15:13 - 00001456 _____ C:\Users\yakashi\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2016-11-17 20:05 - 2016-10-06 14:21 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Sony
2016-11-17 18:35 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-11-15 13:30 - 2016-09-30 11:33 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2016-11-15 13:30 - 2016-09-30 11:33 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2016-11-15 11:42 - 2016-09-18 19:36 - 00002210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-12 22:55 - 2016-09-23 22:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OkayFreedom
2016-11-12 22:55 - 2016-09-23 22:12 - 00000000 ____D C:\Program Files (x86)\OkayFreedom
2016-11-11 22:40 - 2016-10-15 01:18 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-11 13:47 - 2016-09-30 11:32 - 00034720 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2016-11-06 22:04 - 2016-09-19 12:46 - 00000000 ____D C:\Program Files\Rockstar Games
2016-11-06 22:04 - 2016-09-19 12:46 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2016-11-06 03:14 - 2016-09-22 16:07 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-11-06 02:01 - 2016-10-15 01:18 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-05 19:13 - 2016-10-30 17:45 - 00000000 ____D C:\Users\yakashi\Documents\Euro Truck Simulator 2
2016-11-05 18:01 - 2016-09-25 14:08 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\TeamViewer
2016-11-05 12:56 - 2016-09-18 20:10 - 00000952 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2016-11-03 20:47 - 2016-10-20 00:05 - 00000000 ____D C:\Program Files (x86)\aivadflp
2016-11-03 14:04 - 2016-09-28 14:40 - 00000000 ____D C:\ProgramData\ReviverSoft
2016-11-03 14:04 - 2016-09-28 14:39 - 00000000 ____D C:\Program Files (x86)\UX Pack
2016-11-03 14:04 - 2009-07-14 04:20 - 00000000 __RSD C:\Windows\Media
2016-11-03 14:04 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Cursors
2016-11-03 13:00 - 2016-10-28 23:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCWest
2016-11-03 13:00 - 2016-10-28 23:56 - 00000000 ____D C:\Program Files (x86)\NCWest
2016-11-01 18:11 - 2016-10-24 00:10 - 00000033 _____ C:\Users\yakashi\AppData\Roaming\AdobeWLCMCache.dat

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-10-24 00:10 - 2016-11-01 18:11 - 0000033 _____ () C:\Users\yakashi\AppData\Roaming\AdobeWLCMCache.dat
2016-06-17 07:53 - 2016-06-17 07:53 - 0000244 _____ () C:\Users\yakashi\AppData\Roaming\fnp_registrations.xml
2016-06-17 07:53 - 2016-06-17 07:53 - 0003279 _____ () C:\Users\yakashi\AppData\Roaming\GBpc-EUC-V
2007-05-11 08:00 - 2007-05-11 08:00 - 0059417 _____ () C:\Users\yakashi\AppData\Roaming\Gendarmerie.wee
2016-10-21 15:13 - 2016-11-18 13:05 - 0001456 _____ () C:\Users\yakashi\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2016-11-22 21:07 - 2016-11-22 21:07 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\yakashi\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\yakashi\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\yakashi\AppData\Local\Temp\nvStInst.exe
C:\Users\yakashi\AppData\Local\Temp\SNU_Au1.exe


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-11-24 00:01

==================== Ende von FRST.txt ============================

yakashi97 · 30.11.2016, 17:03

ADDITION LOG:

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 27-11-2016
durchgeführt von yakashi (30-11-2016 16:57:25)
Gestartet von C:\Users\yakashi\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2016-09-18 18:00:09)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2572264492-182372228-3150790763-500 - Administrator - Disabled)
Gast (S-1-5-21-2572264492-182372228-3150790763-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2572264492-182372228-3150790763-1002 - Limited - Enabled)
yakashi (S-1-5-21-2572264492-182372228-3150790763-1000 - Administrator - Enabled) => C:\Users\yakashi

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avast Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

µTorrent (HKU\S-1-5-21-2572264492-182372228-3150790763-1000\...\uTorrent) (Version: 3.4.8.42576 - BitTorrent Inc.)
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.1.335 - Adobe Systems Incorporated)
Adobe Illustrator CC 2015.3 (HKLM-x32\...\ILST_20_1_0) (Version: 20.1.0 - Adobe Systems Incorporated)
Adobe Photoshop CC 2015.5 (HKLM-x32\...\PHSP_17_0_1) (Version: 17.0.1 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-2572264492-182372228-3150790763-1000\...\Akamai) (Version:  - Akamai Technologies, Inc)
AlienFX for IskuFX (HKLM-x32\...\InstallShield_{2C3FC2CC-0A8B-409E-B487-8CD54F4DC1D4}) (Version: 1.02 - Roccat GmbH)
AlienFX for IskuFX (Version: 1.02 - Roccat GmbH) Hidden
American Truck Simulator (HKLM\...\Steam App 270880) (Version:  - SCS Software)
Ansel (Version: 376.09 - NVIDIA Corporation) Hidden
Apple Application Support (32-Bit) (HKLM-x32\...\{29DB9165-5FC1-48F0-9188-26123F526848}) (Version: 5.0.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{5905C8CF-1C88-4478-A48E-4E458AD1BC7E}) (Version: 5.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{D4D86CB2-2370-4691-8272-3869EDED6C64}) (Version: 10.0.0.18 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Arma 3 (HKLM\...\Steam App 107410) (Version:  - Bohemia Interactive)
Assetto Corsa v1.5 (HKLM\...\YXNzZXR0b2NvcnNh_is1) (Version: 1 - )
Autodesk 3ds Max 2017 (HKLM\...\Autodesk 3ds Max 2017) (Version: 19.0.1072.0 - Autodesk)
Autodesk 3ds Max 2017 (Version: 19.0.1072.0 - Autodesk) Hidden
Autodesk 3ds Max 2017 Populate Data (HKLM\...\{2B07E17E-A072-43BD-9DCC-369B56C16698}) (Version: 19.0.0.0 - Autodesk)
Autodesk Advanced Material Library Image Library 2017 (HKLM-x32\...\{8ED2ED41-4455-449D-993C-751C039089B9}) (Version: 15.11.3.0 - Autodesk)
Autodesk Backburner 2017.0 (HKLM-x32\...\{0038F5AA-8482-4BB2-8A28-3FEA1D58D780}) (Version: 17.0.0.0 - Autodesk)
Autodesk Civil View for 3ds Max 2017 64-bit (HKLM\...\{1C4FFAF0-7DBB-4F7A-A386-46747D060826}) (Version: 19.0.0.0 - Autodesk)
Autodesk Desktop-App (HKLM-x32\...\Autodesk Desktop App) (Version: 6.2.0.174 - Autodesk)
Autodesk Inventor Server Engine for 3ds Max 2017 (HKLM\...\{9167CA34-4E68-49E3-8892-3C439739D2D3}) (Version: 19.0 - Autodesk)
Autodesk License Service (x64) - 3.1 (HKLM\...\{EB6FE58F-8576-4272-BB9C-6B47D9EDFA4D}) (Version: 3.1.26.0 - Autodesk)
Autodesk Material Library 2017 (HKLM-x32\...\{8FB9F735-D64C-4991-8D91-4CDDAB1ABDEE}) (Version: 15.11.3.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2017 (HKLM-x32\...\{3FBFBC43-9882-43FA-B979-2D53896747B3}) (Version: 15.11.3.0 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2017 (HKLM-x32\...\{CB6E007E-701D-42CD-AF0E-4BE9C36C7F7C}) (Version: 15.11.3.0 - Autodesk)
Autodesk Revit Interoperability for 3ds Max 2017 (HKLM\...\Autodesk Revit Interoperability for 3ds Max 2017) (Version: 17.0.411.0 - Autodesk)
Autodesk Revit Interoperability for 3ds Max 2017 (Version: 17.0.411.0 - Autodesk) Hidden
AutoHotkey 1.1.24.01 (HKLM-x32\...\AutoHotkey) (Version: 1.1.24.01 - Lexikos)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Blade & Soul (HKLM-x32\...\InstallShield_{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.260 - NC Interactive, LLC)
Blade & Soul (x32 Version: 1.0.63.260 - NC Interactive, LLC) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brawlhalla (HKLM\...\Steam App 291550) (Version:  - Blue Mammoth Games)
Call of Duty: Black Ops - Multiplayer (HKLM\...\Steam App 42710) (Version:  - Treyarch)
Call of Duty: Black Ops (HKLM\...\Steam App 42700) (Version:  - Treyarch)
Cheat Engine 6.6 (HKLM-x32\...\Cheat Engine 6.6_is1) (Version:  - Cheat Engine)
CLEO 4.3 (HKLM-x32\...\{A8F37EB0-C741-41D7-8CAB-5B40ECEEF094}_is1) (Version: 4.3 - Seemann, Deji, Alien)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version:  - Valve)
CPUID CPU-Z 1.77 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0195 - Disc Soft Ltd)
Dead by Daylight (HKLM\...\Steam App 381210) (Version:  - Behaviour Digital Inc.)
DiRT Rally (HKLM\...\ZGlydHJhbGx5_is1) (Version: 1 - )
Driver Booster 3.5 (HKLM-x32\...\Driver Booster_is1) (Version: 3.5 - IObit)
F1 2015 version 1.0 (HKLM-x32\...\{F8180751-C7B2-407F-BD4F-55A6C8FF5F14}_is1) (Version: 1.0 - Codemasters)
FIFA 16 (HKLM-x32\...\{28FA2805-7992-4A28-844B-040C57204718}) (Version: 1.44.20513.9 - Electronic Arts)
FIFA 17 (HKLM-x32\...\{8C0DD062-B659-409C-9AB7-8EBD1D64D2EB}) (Version: 1.0.46.21015 - Electronic Arts)
FileZilla Client 3.22.1 (HKLM-x32\...\FileZilla Client) (Version: 3.22.1 - Tim Kosse)
FlyVPN (HKLM-x32\...\FlyVPN) (Version: 3.6.2.2 - FlyVPN)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Free YouTube Download (HKLM-x32\...\Free YouTube Download_is1) (Version: 4.1.28.831 - Digital Wave Ltd)
GenArts Sapphire Plug-ins 6.10 for OFX (HKLM\...\GenArts Sapphire Plug-ins for OFX_is1) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
H1Z1: King of the Kill (HKLM\...\Steam App 433850) (Version:  - Daybreak Game Company)
HeavyLoad V3.4 (64 bit) (HKLM\...\HeavyLoad_is1) (Version: 3.4 - JAM Software)
Hotspot Shield 5.4.11 (HKLM-x32\...\HotspotShield) (Version: 5.4.11 - AnchorFree Inc.)
Hotspot Shield 5.4.11 Embedded (x32 Version: 5.4.11.9772 - Buildbot) Hidden
HWiNFO64 Version 5.36 (HKLM\...\HWiNFO64_is1) (Version: 5.36 - Martin Malík - REALiX)
IMG Factory - IMG Factory - A program to manage the IMG file format for GTA games. (HKLM-x32\...\IMG Factory IMG Factory) (Version: "1.1.1" - "IMG Factory")
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.0.1042 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.0.36 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{9946A4F7-E0FD-4A33-82D1-06CBFFBBB9F9}) (Version: 12.5.1.21 - Apple Inc.)
Java 8 Update 102 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180102F0}) (Version: 8.0.1020.14 - Oracle Corporation)
Java 8 Update 102 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180102F0}) (Version: 8.0.1020.14 - Oracle Corporation)
K-Lite Mega Codec Pack 12.4.2 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.4.2 - KLCP)
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version:  - )
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
League of Legends (x32 Version: 4.1.2 - Riot Games) Hidden
Left 4 Dead 2 (HKLM\...\Steam App 550) (Version:  - Valve)
Lioncast LM30 Gaming Mouse Version 1.2 (HKLM-x32\...\{7EE2D3D8-7A40-406B-BE38-57DDCCC1B4D4}_is1) (Version: 1.2 - LIONCAST)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.541 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.541 - LogMeIn, Inc.) Hidden
Mafia III (HKLM-x32\...\Mafia III_is1) (Version:  - )
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual Studio Code (HKLM-x32\...\{F8A2A208-72B3-4D61-95FC-8A65D340689B}_is1) (Version: 1.5.2 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSI Afterburner 4.3.0 (HKLM-x32\...\Afterburner) (Version: 4.3.0 - MSI Co., LTD)
MSI Kombustor 3.5.2.1 (64-bit) (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version:  - MSI Co., LTD)
MySQL Connector Net 6.8.3 (HKLM-x32\...\{38157422-F952-42F7-88AA-CC16A63CD109}) (Version: 6.8.3 - Oracle)
Need for Speed™ (HKLM-x32\...\{F8643E83-A868-4EE8-A0B9-389386830453}) (Version: 1.3.0.0 - Electronic Arts)
Node.js (HKLM\...\{672B5547-D20B-4D19-9BFD-B93C32BC77DA}) (Version: 6.9.1 - Node.js Foundation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.2 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 376.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.09 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.1.2.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.2.31 - NVIDIA Corporation)
NVIDIA Grafiktreiber 376.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.09 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA mental ray and IRay feature plugins for 3ds Max 2017 (HKLM\...\{6ABEC32F-B90F-4499-B3A3-FF8A00948178}) (Version: 19.0.0.0 - Autodesk)
NVIDIA mental ray and IRay rendering plugins for 3ds Max 2017 (HKLM\...\{4B889650-52DC-49E0-AB9C-F501B91002E3}) (Version: 19.0.0.0 - Autodesk)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.16.2 - OBS Project)
Origin (HKLM-x32\...\Origin) (Version: 10.3.2.64935 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.100.9.0 - Overwolf Ltd.)
Overwolf.Setup.VC100CRTx64.Dist (HKLM\...\{EC9D5554-6852-4A55-81BB-AC02C7A8CFED}) (Version: 1.0.0 - Overwolf)
Overwolf.Setup.VC100CRTx86.Dist (x32 Version: 1.0.0 - Overwolf) Hidden
Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.26 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.1031 - Razer Inc.)
RealLifeRPG (HKU\S-1-5-21-2572264492-182372228-3150790763-1000\...\RealLifeRPG) (Version: 1.5.0 - RealLifeRPG)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.100.422.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7930 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 6.5.0 (HKLM-x32\...\RTSS) (Version: 6.5.0 - Unwinder)
Roccat Talk (HKLM-x32\...\{605D671E-1D1E-4840-84D9-BFACE17F160D}) (Version: 1.00.0015 - Roccat GmbH)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.0.5 - Rockstar Games)
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
Savu Mouse (HKLM-x32\...\{6F4B8EA6-4546-4160-A05F-0706F7DC1EFF}) (Version: 1.1.9 - ROCCAT GmbH)
SciTE4AutoHotkey v3.0.06.01 (HKLM-x32\...\SciTE4AutoHotkey) (Version: v3.0.06.01 - fincs)
SHIELD Streaming (Version: 7.1.0340 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.66695 - TeamViewer)
TruckersMP 0.2.1.3.1 Alpha (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 0.2.1.3.1 Alpha - TruckersMP Team)
UxStyle Core Beta (HKLM\...\{8E363055-15E5-4D8A-9C69-A0A9DE9A3337}) (Version: 0.2.1.1 - The Within Network, LLC)
VEGAS Pro 14.0 (64-bit) (HKLM\...\{4D5A9B21-79F9-11E6-AAC4-BB95F5A309BD}) (Version: 14.0.161 - VEGAS)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.40 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
XAMPP (HKLM-x32\...\xampp) (Version: 7.0.9-1 - Bitnami)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2572264492-182372228-3150790763-1000_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> D:\3dsmax\3ds Max 2017\Inventor Server\Bin\TestServer.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2572264492-182372228-3150790763-1000_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> D:\3dsmax\3ds Max 2017\Inventor Server\Bin\TestServer.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2572264492-182372228-3150790763-1000_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> D:\3dsmax\3ds Max 2017\Inventor Server\Bin\TestServer.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2572264492-182372228-3150790763-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {130AC94F-3990-4E18-A5E4-18D17440AA72} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2016-07-14] (IObit)
Task: {158958AA-BE6F-49C4-A4B6-633AF4AE7C02} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation)
Task: {1E5ABC8C-46DF-4795-85CD-45772F7687C5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-18] (Google Inc.)
Task: {2E086E28-47C4-4045-A0C3-D1B3AE3774A9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-17] (NVIDIA Corporation)
Task: {3421D1F3-E06D-4DA1-A9C9-CA1CDF9EE864} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-10-15] (AVAST Software)
Task: {594DE6E7-63F3-40F3-BC39-9B50B752EEE4} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-10-04] ()
Task: {5E4E729F-8B25-4A97-AE30-680A2E31246B} - System32\Tasks\SafeZone scheduled Autoupdate 1476531624 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {67F53DD4-A801-4BD6-AA5F-C9E822AA9139} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {6DFBFCC2-2343-42A9-89CF-A0BA6CB1F523} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2016-11-23] (Overwolf LTD)
Task: {8ACA5664-47A1-4D20-8145-6861E6C04ABE} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-10-15] (AVAST Software)
Task: {8ADF4950-8C70-4D35-9D49-4FAF09F292EE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-18] (Google Inc.)
Task: {9350B666-3E9D-410A-A7B3-3F85779FFA9D} - System32\Tasks\AdobeAAMUpdater-1.0-yakashi-PC-yakashi => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {C1C8081D-FF2D-4C52-A1AB-8C702C93196C} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-11-17] (NVIDIA Corporation)
Task: {C99773BA-D28E-4363-9EF5-EC96B75CC008} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-17] (NVIDIA Corporation)
Task: {D2F3A21A-B56B-4758-9D5E-16BAF05054F1} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-17] (NVIDIA Corporation)
Task: {DEC86C38-7222-4C52-905B-4681D89F2B01} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-11-17] (NVIDIA Corporation)
Task: {E9866D08-DA64-4D83-AC4B-DE2D569BC8DE} - System32\Tasks\Driver Booster SkipUAC (yakashi) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2016-07-18] (IObit)
Task: {EF5A9D68-D527-483F-9CEE-877DA1B46024} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {FFEB62DF-D620-495A-AC3A-1F02489A54B4} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-17] (NVIDIA Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\yakashi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-06-30 09:23 - 2016-06-30 09:23 - 00592384 ____N () C:\Users\yakashi\AppData\Local\MEGAsync\ShellExtX64.dll
2016-10-25 08:57 - 2016-10-25 08:57 - 00491184 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-10-03 15:57 - 2016-10-03 15:57 - 00052400 ____N () D:\FileZilla FTP Client\fzshellext_64.dll
2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 ____N () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-09-01 17:12 - 2016-09-01 17:12 - 01353528 ____N () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-11-20 22:55 - 2016-11-17 14:45 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-20 22:55 - 2016-11-17 14:45 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-20 22:55 - 2016-11-17 14:45 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2016-11-20 23:08 - 2016-11-24 20:39 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-09-25 00:20 - 2016-09-25 00:21 - 00189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2016-10-25 08:57 - 2016-10-25 08:57 - 31723696 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2016-11-15 11:42 - 2016-11-08 22:03 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libglesv2.dll
2016-11-15 11:42 - 2016-11-08 22:03 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libegl.dll
2016-11-08 21:40 - 2016-11-08 21:40 - 31067840 ____N () C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\PepperFlash\23.0.0.207\pepflashplayer.dll
2016-07-14 11:25 - 2016-07-14 11:25 - 00174872 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll
2016-07-14 11:25 - 2016-07-14 11:25 - 00103192 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2016-07-14 11:25 - 2016-07-14 11:25 - 00107800 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2016-07-14 11:26 - 2016-07-14 11:26 - 00312088 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2016-11-20 00:11 - 2016-10-07 19:27 - 04029440 ____N () C:\Program Files\TeamSpeak 3 Client\plugins\task_force_radio_win64.dll
2016-07-14 11:26 - 2016-07-14 11:26 - 00485656 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2016-10-15 12:39 - 2016-10-15 12:39 - 00169064 ____N () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-11-30 14:51 - 2016-11-30 14:51 - 03133960 _____ () C:\Program Files\AVAST Software\Avast\defs\16113000\algo.dll
2016-10-15 12:39 - 2016-10-15 12:39 - 00482928 ____N () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-10-06 21:31 - 2016-07-01 07:39 - 00061968 ____N () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_Service-head.dll
2016-10-06 21:31 - 2016-07-01 07:39 - 00110608 ____N () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson0.dll
2016-10-11 17:09 - 2016-08-31 19:04 - 00114664 ____N () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
2016-10-11 17:09 - 2016-08-31 19:04 - 00108008 ____N () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2016-10-11 17:09 - 2016-08-31 19:04 - 00024040 ____N () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2016-10-11 17:09 - 2016-08-31 19:04 - 00048104 ____N () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2016-08-24 00:04 - 2016-08-24 00:04 - 00166520 ____N () C:\Program Files (x86)\Hotspot Shield\bin\CrashRpt1403.dll
2016-11-20 22:55 - 2016-11-17 14:45 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-11-20 22:55 - 2016-11-17 14:45 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-20 22:55 - 2016-11-17 14:45 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-20 22:55 - 2016-11-17 11:20 - 00506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-11-20 22:55 - 2016-11-17 11:20 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-11-20 22:55 - 2016-11-17 11:20 - 02809912 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-11-20 22:55 - 2016-11-17 11:20 - 00245184 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-11-20 22:55 - 2016-11-17 11:20 - 00436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-11-20 22:55 - 2016-11-17 11:20 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-11-20 22:55 - 2016-11-17 11:20 - 00968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-10-15 12:39 - 2016-10-15 12:39 - 48936448 ____N () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-10-03 15:57 - 2016-10-03 15:57 - 00048304 ____N () D:\FileZilla FTP Client\fzshellext.dll
2016-10-12 00:08 - 2016-10-12 00:08 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-10-12 00:08 - 2016-10-12 00:08 - 00223232 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-10-12 00:08 - 2016-10-12 00:08 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-10-12 00:08 - 2016-10-12 00:08 - 00124928 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-10-25 09:49 - 2016-10-25 09:49 - 00109760 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2016-10-12 00:08 - 2016-10-12 00:08 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2016-10-10 22:15 - 2016-10-10 22:15 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-10-10 22:15 - 2016-10-10 22:15 - 00117760 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ref\build\Release\binding.node
2016-10-10 22:15 - 2016-10-10 22:15 - 00125440 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-10-10 22:17 - 2016-10-10 22:17 - 00223232 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-10-25 09:41 - 2016-10-25 09:41 - 00109760 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2016-10-10 22:14 - 2016-10-10 22:14 - 00121856 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\bufferutil\build\Release\bufferutil.node
2016-10-10 22:14 - 2016-10-10 22:14 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\idle-gc\build\Release\idle-gc.node

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PAexec => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UnsignedThemes => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PAexec => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UnsignedThemes => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ==========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2016-10-18 22:18 - 00001006 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1       down.baidu2016.com
127.0.0.1       123.sogou.com
127.0.0.1       www.czzsyzgm.com
127.0.0.1       www.czzsyzxl.com
127.0.0.1       union.baidu2019.com

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2572264492-182372228-3150790763-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Roccat Talk.lnk => C:\Windows\pss\Roccat Talk.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^yakashi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk => C:\Windows\pss\Curse.lnk.Startup
MSCONFIG\startupfolder: C:^Users^yakashi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MEGAsync.lnk => C:\Windows\pss\MEGAsync.lnk.Startup
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\yakashi\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: Autodesk Desktop App => "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
MSCONFIG\startupreg: IAStorIcon => "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
MSCONFIG\startupreg: Ihsoft => C:\Windows\SysWOW64\regsvr32.exe C:\Users\yakashi\AppData\Local\IRTsoft\PtCres.dll
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LCgmmouse20Run => "C:\Program Files (x86)\Lioncast LM30 Gaming Mouse\LCmon.exe" -runauto
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: OKAYFREEDOM Notifier => "C:\Program Files (x86)\OkayFreedom\Notifier.exe"
MSCONFIG\startupreg: OKAYFREEDOM_Agent => "C:\Program Files (x86)\OkayFreedom\OkayFreedomClient.exe" -agent
MSCONFIG\startupreg: OKAYFREEDOM_Update => "C:\Program Files (x86)\OkayFreedom\Updater.exe" --resume --verbosity silent
MSCONFIG\startupreg: Overwolf => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe -overwolfsilent
MSCONFIG\startupreg: Razer Synapse => "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
MSCONFIG\startupreg: ROCCAT Savu Gaming Mouse => "C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe" /Automation 
MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
MSCONFIG\startupreg: ShadowPlay => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Steam => "D:\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
MSCONFIG\startupreg: uTorrent => "C:\Users\yakashi\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
MSCONFIG\startupreg: UX Launcher => C:\Program Files (x86)\UX Pack\uxlaunch.exe

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{C154F0CD-BD0E-49FE-A08B-ADFA3DEB513D}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{D67D0C7A-1EE8-41E7-91FA-6AA3B6DB1557}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{EC280919-019C-4517-B9C7-6750AD836AB7}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{14F4E6EB-C8AA-4A52-B243-2623BAF83044}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{E873D290-8A82-4F57-883C-85DB853C59E7}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{3EE0569A-6554-4438-8CCB-66B4154B4C0F}] => (Allow) LPort=2869
FirewallRules: [{3C7514D5-2EDD-41B7-B4ED-A7FA42AADB48}] => (Allow) LPort=1900
FirewallRules: [{54F77AD7-F533-41B1-A96C-6579A590FACE}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{80D109E2-5C63-4E07-8952-6AC7DB14CC20}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{4243043F-F6CD-4A6A-AAE9-F6F4633BB014}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{48D91D21-944E-42E4-ACD1-DBBA9CC7CE89}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{604F4D52-C11C-4FDA-BE99-26E710336935}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{9898F13F-BABB-4731-9473-EC75C00E7AC6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [TCP Query User{73743B1D-0BD7-4F80-82C9-242F1720082C}D:\steam games\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steam games\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{A2C6B03F-A9DE-4CF3-BB10-3EE96D45297C}D:\steam games\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steam games\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{F3420EC8-EBEC-4FCE-8A22-1D6084F36167}] => (Allow) D:\STEAM GAMES\steamapps\common\YoutubersLife\YoutubersLife.exe
FirewallRules: [{06565DDD-714D-4C7B-84D1-86BD727FA035}] => (Allow) D:\STEAM GAMES\steamapps\common\YoutubersLife\YoutubersLife.exe
FirewallRules: [TCP Query User{47D234EA-066F-4F95-9135-19EE32E9F1A3}D:\steam games\steamapps\common\rocketleague\binaries\win32\rocketleague.exe] => (Allow) D:\steam games\steamapps\common\rocketleague\binaries\win32\rocketleague.exe
FirewallRules: [UDP Query User{248F18FD-8ED7-44DA-B25A-C1ECEE6782EB}D:\steam games\steamapps\common\rocketleague\binaries\win32\rocketleague.exe] => (Allow) D:\steam games\steamapps\common\rocketleague\binaries\win32\rocketleague.exe
FirewallRules: [{9AB60475-2C0C-4D7F-993E-60DA8A303AC8}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{BBDD0042-6295-4692-8798-3884FC3C2A13}] => (Allow) D:\STEAM GAMES\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{6B96A272-145D-408D-AB61-498AD76C087B}] => (Allow) D:\STEAM GAMES\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{B4D9BBA7-D75D-4EAC-A0A5-D66F28F54F2F}] => (Allow) D:\Steam\steamapps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{20A88BDE-1054-447C-ACBC-EE10732C0787}] => (Allow) D:\Steam\steamapps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{76A2046E-627D-49C8-9392-9F7276DB86B4}] => (Allow) D:\Steam\steamapps\common\Call of Duty Black Ops\BlackOpsMP.exe
FirewallRules: [{A046FFAF-523D-4CB6-8EB1-8D2769337E70}] => (Allow) D:\Steam\steamapps\common\Call of Duty Black Ops\BlackOpsMP.exe
FirewallRules: [{DC2A7674-DAB4-42A0-AD32-861617653F3F}] => (Allow) D:\STEAM GAMES\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{B9BA0BCB-1419-40C3-A32D-FEE4BA5BC7B2}] => (Allow) D:\STEAM GAMES\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{A637E113-4FF3-43F3-8072-4DDA7A9E36CF}] => (Allow) D:\STEAM GAMES\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [{224FD3C0-ED78-49DF-8D75-17E7E7D06AEE}] => (Allow) D:\STEAM GAMES\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [TCP Query User{352FCEBE-321F-43BE-B9FC-62414E6E6817}C:\program files (x86)\arxgaming\crossfire\updater.exe] => (Allow) C:\program files (x86)\arxgaming\crossfire\updater.exe
FirewallRules: [UDP Query User{8842CF5D-C92C-4F03-8825-0C94207452EE}C:\program files (x86)\arxgaming\crossfire\updater.exe] => (Allow) C:\program files (x86)\arxgaming\crossfire\updater.exe
FirewallRules: [{E33CF4AC-FA07-47A0-B266-6FD379202B37}] => (Allow) D:\STEAM GAMES\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{D4B913A5-E37D-46CD-A6CD-D09241C3C8D4}] => (Allow) D:\STEAM GAMES\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{1A60A3BC-11F3-4DF0-BDB4-1EB05E1DD9FF}] => (Allow) D:\STEAM GAMES\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{15B8D802-C50C-4053-9F44-DE3911989EAF}] => (Allow) D:\STEAM GAMES\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [TCP Query User{75302D50-2C1C-4899-BDFB-F5F76A5F0D9A}D:\steam games\steamapps\common\call of duty black ops ii\t6mp.exe] => (Allow) D:\steam games\steamapps\common\call of duty black ops ii\t6mp.exe
FirewallRules: [UDP Query User{F1BCE803-48DB-4864-80DE-E3FC93C78B3D}D:\steam games\steamapps\common\call of duty black ops ii\t6mp.exe] => (Allow) D:\steam games\steamapps\common\call of duty black ops ii\t6mp.exe
FirewallRules: [{0463C8D8-B4EB-402C-975A-53FD2C392B62}] => (Allow) D:\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{3111D372-B30C-4FAE-B30C-317B5EF2D85E}] => (Allow) D:\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{092C1376-AC06-434A-96FB-FC3228F5EABB}] => (Allow) D:\Origin\Need for Speed\NFS16.exe
FirewallRules: [{A933518E-0009-4C7C-A88E-9FFF2D5EFF5F}] => (Allow) D:\Origin\Need for Speed\NFS16.exe
FirewallRules: [{E0C4FA1A-17FB-46AE-BF91-FAFEF1EC4F7D}] => (Allow) D:\Origin\Need for Speed\NFS16_trial.exe
FirewallRules: [{BF13EF20-5E2B-4708-B33D-3E75CEB38821}] => (Allow) D:\Origin\Need for Speed\NFS16_trial.exe
FirewallRules: [{6C09C7DA-714E-4031-86AF-0EE6EDFA77E2}] => (Allow) D:\Origin\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [{C87E4FA4-9211-4F21-92EF-42B9CAA8BAA2}] => (Allow) D:\Origin\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [TCP Query User{3F402526-40FD-43B4-A5D9-C08653ABAD82}D:\steam\steamapps\common\arma 3\arma3.exe] => (Allow) D:\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [UDP Query User{D689010C-FA53-4FEC-A7F7-AAC59B7B63FE}D:\steam\steamapps\common\arma 3\arma3.exe] => (Allow) D:\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [{0245273A-4C90-4071-9C35-626A161CB039}] => (Allow) D:\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{A976202E-6A7E-4E43-9790-CD6ADE8693DE}] => (Allow) D:\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{3AAA6858-066E-48E4-8A2E-DA2C7FBB3EF8}] => (Allow) C:\Users\yakashi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{3FE5C8E4-CBAB-47A9-BA8A-5090550B9DCE}] => (Allow) C:\Users\yakashi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A6F93A87-5C22-4594-8B66-DB93A6CA1E05}] => (Allow) C:\Users\yakashi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{DA5F52FC-5760-4A46-BB74-D27B87A0F0FD}] => (Allow) C:\Users\yakashi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A4266F27-D898-4820-BB3D-592F15E6A15F}] => (Allow) C:\Users\yakashi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{EA0A30D8-8A68-4CB4-B64F-3E701DEC6374}] => (Allow) C:\Users\yakashi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{853AB005-0400-42E3-A2F7-90EC6C664786}] => (Allow) D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{AD647B70-1BEA-48EA-93BB-87A6B3AF96EB}] => (Allow) D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [TCP Query User{F0171D46-E230-42B5-B427-9FD8350CC4FF}D:\origin\fifa 16\fifa16.exe] => (Allow) D:\origin\fifa 16\fifa16.exe
FirewallRules: [UDP Query User{B474C108-783C-47E7-9213-A436D3B9B52C}D:\origin\fifa 16\fifa16.exe] => (Allow) D:\origin\fifa 16\fifa16.exe
FirewallRules: [TCP Query User{58A90E93-0CB4-441D-B76E-204F1271DAEC}D:\overwatch\overwatch.exe] => (Allow) D:\overwatch\overwatch.exe
FirewallRules: [UDP Query User{C49A4896-8D01-4659-9EED-558493E89A24}D:\overwatch\overwatch.exe] => (Allow) D:\overwatch\overwatch.exe
FirewallRules: [TCP Query User{3C118DAE-F4D5-4AAF-B8CC-806DB8B7C683}D:\origin\fifa 17\fifa17.exe] => (Allow) D:\origin\fifa 17\fifa17.exe
FirewallRules: [UDP Query User{0191E049-B320-4A66-A755-DCF5694552A6}D:\origin\fifa 17\fifa17.exe] => (Allow) D:\origin\fifa 17\fifa17.exe
FirewallRules: [{6CBB3147-FD41-4480-B0B3-283510667F56}] => (Allow) D:\STEAM GAMES\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{C165C53B-FBB5-443C-B45B-EF119AA382D5}] => (Allow) D:\STEAM GAMES\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [TCP Query User{A4C0C456-087E-4AE2-9341-A06CFFDE5232}C:\users\yakashi\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\yakashi\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{0E824E0E-B1D6-4950-B81F-27847D8FD10F}C:\users\yakashi\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\yakashi\appdata\local\akamai\netsession_win.exe
FirewallRules: [{7BB74303-1648-42C1-A09B-D97485FA28C1}] => (Allow) D:\STEAM GAMES\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{A05C36E7-621B-4277-8968-EB148C93AC4A}] => (Allow) D:\STEAM GAMES\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [TCP Query User{8C19CFB5-B665-4FFE-B59C-6259432F727E}C:\program files\java\jre1.8.0_102\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_102\bin\javaw.exe
FirewallRules: [UDP Query User{79824693-369C-4ADC-A03D-86616519F550}C:\program files\java\jre1.8.0_102\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_102\bin\javaw.exe
FirewallRules: [TCP Query User{982566ED-5024-45D2-BF71-0FF67075C412}C:\users\yakashi\desktop\streets of crime - cops and robbers\samp-server.exe] => (Allow) C:\users\yakashi\desktop\streets of crime - cops and robbers\samp-server.exe
FirewallRules: [UDP Query User{CDE26847-1BA0-4C65-8E9D-C9A1F1D5BF5F}C:\users\yakashi\desktop\streets of crime - cops and robbers\samp-server.exe] => (Allow) C:\users\yakashi\desktop\streets of crime - cops and robbers\samp-server.exe
FirewallRules: [TCP Query User{C6CC5BFB-0105-48EF-BD11-221267D8FE63}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{208AC28E-67B5-4D36-AC4B-46E07085B89E}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{19414C0E-5BB7-4843-8E4D-DC740DC2A8D5}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{00EFAE64-D055-4D6D-97E4-3C39E267F736}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{61A49BE5-1E75-4527-AF8C-1791634014AB}D:\assetto corsa\assetto corsa\acs.exe] => (Block) D:\assetto corsa\assetto corsa\acs.exe
FirewallRules: [UDP Query User{31C55226-954E-479F-9C58-2A90518EF175}D:\assetto corsa\assetto corsa\acs.exe] => (Block) D:\assetto corsa\assetto corsa\acs.exe
FirewallRules: [TCP Query User{B9BD4A55-7605-4385-A5FE-5DA23C079143}C:\users\yakashi\desktop\mapeditor fullpack\server 0.3z r2\samp-server.exe] => (Allow) C:\users\yakashi\desktop\mapeditor fullpack\server 0.3z r2\samp-server.exe
FirewallRules: [UDP Query User{6EA11606-5678-4691-9E59-F46C4690FD09}C:\users\yakashi\desktop\mapeditor fullpack\server 0.3z r2\samp-server.exe] => (Allow) C:\users\yakashi\desktop\mapeditor fullpack\server 0.3z r2\samp-server.exe
FirewallRules: [TCP Query User{8E3B91E4-0826-4486-AE19-04B1F080C879}C:\users\yakashi\desktop\mapeditor fullpack\texture-studio-master\samp-server.exe] => (Allow) C:\users\yakashi\desktop\mapeditor fullpack\texture-studio-master\samp-server.exe
FirewallRules: [UDP Query User{A4742DE1-B21A-4EED-8676-8B3A98FE83EB}C:\users\yakashi\desktop\mapeditor fullpack\texture-studio-master\samp-server.exe] => (Allow) C:\users\yakashi\desktop\mapeditor fullpack\texture-studio-master\samp-server.exe
FirewallRules: [{64D639F4-82CF-4C6E-89AB-D22100570215}] => (Allow) D:\STEAM GAMES\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{96968F29-DB47-43E8-A522-CAE9519DE3A0}] => (Allow) D:\STEAM GAMES\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{BEF4AADA-7649-41C0-A50D-46F25EB86904}] => (Allow) D:\STEAM GAMES\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{9605BBFE-30A1-4785-81E3-E83D5A1CFCBC}] => (Allow) D:\STEAM GAMES\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{17F5492B-D9D4-46CD-92DF-DA4AEE57DCDB}] => (Allow) D:\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [{B2AA3AC1-533A-4032-B740-BDBF5CB2E1F6}] => (Allow) D:\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [TCP Query User{E04608B7-80A4-400F-8AB4-6E354000D0B0}D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [UDP Query User{BF44CA56-9FEE-4CDD-AE20-432702244286}D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [{B2F78E63-0A1E-404F-8120-ED562D638FE4}] => (Allow) C:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{E8C24C47-F5C0-407D-89EB-3FBC50F9A557}] => (Allow) C:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{EB70119F-9788-4950-B1F5-989671C83AE3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{BF3AA2C3-ACFB-4C43-9A22-85E17FF4F755}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{ED8F8BC3-0EDC-4460-8D68-6690BF3EF5C5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{85FC551A-DF3F-455B-99A3-E26ECCB7DB80}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{40DB1672-CF66-4B25-A7FE-32AAD83B5B1D}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{C19F1CB3-86D2-459E-92D9-3096928774BB}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{A804337B-3FC9-4175-BF95-6CB65514522F}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{B4FAEA4F-CD69-48A1-98EA-C1D5D9035CC6}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [UDP Query User{812CC328-2D7B-49E6-BCA2-B389AE8B4564}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [{343367D6-E30F-43E1-A945-F7F86CC7DA99}] => (Allow) C:\WarThunder\run.exe
FirewallRules: [{A1248029-CBF9-40E0-93C2-C8E047571196}] => (Allow) C:\WarThunder\run.exe
FirewallRules: [{313C93BD-71C0-4F2D-9933-B74A1B5FB44D}] => (Allow) LPort=80
FirewallRules: [{CF8102D3-8A93-4348-92DC-23D15B0DC945}] => (Allow) LPort=443
FirewallRules: [{7F9EA741-3353-4B5E-AC6B-3B174092FEC1}] => (Allow) LPort=20010
FirewallRules: [{103CB3F1-CA23-4754-8A51-4C63CEC74D86}] => (Allow) LPort=3478
FirewallRules: [{45747647-D43A-4481-B061-FB86FBEF94C2}] => (Allow) LPort=7850
FirewallRules: [{748C92A9-DD26-4F92-9F3A-D8ABC7D14235}] => (Allow) LPort=7852
FirewallRules: [{16751B4F-DF3A-4E6E-A9EB-55D73E4D1696}] => (Allow) LPort=7853
FirewallRules: [{9CEC824F-AB69-4C31-9C66-8F03FF859D04}] => (Allow) LPort=27022
FirewallRules: [{413A241E-0489-4A66-A0AA-00C5C65EC997}] => (Allow) LPort=6881
FirewallRules: [{0AC93F84-0568-46DA-92C2-9B055F73DB73}] => (Allow) LPort=33333
FirewallRules: [{63246DC3-F7E5-4860-9625-99184C4D21D0}] => (Allow) LPort=20443
FirewallRules: [{CAA0F976-F41E-4D49-BB6F-FF4BE79D90D4}] => (Allow) LPort=8090
FirewallRules: [{18A48DD0-AE08-482B-9DD2-99E08DB9B74A}] => (Allow) D:\STEAM GAMES\steamapps\common\Dead by Daylight\DeadByDaylight.exe
FirewallRules: [{9B4856AD-4962-4E60-9533-0185DA63850A}] => (Allow) D:\STEAM GAMES\steamapps\common\Dead by Daylight\DeadByDaylight.exe
FirewallRules: [TCP Query User{EBED365D-14C9-48AF-8E7D-3C5248BE2C6B}D:\steam games\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) D:\steam games\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe
FirewallRules: [UDP Query User{BB9DD903-B452-4FB0-A7B3-2E35F8F1C127}D:\steam games\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) D:\steam games\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe
FirewallRules: [TCP Query User{960E645C-8A65-45D5-B230-F1B2373CFB23}C:\sinusbot\sinusbot.exe] => (Allow) C:\sinusbot\sinusbot.exe
FirewallRules: [UDP Query User{2BCE5799-BF10-4856-8F70-0FF64A0208A0}C:\sinusbot\sinusbot.exe] => (Allow) C:\sinusbot\sinusbot.exe
FirewallRules: [{37260D11-F556-453B-A92C-C051AAEDE6CA}] => (Allow) D:\STEAM GAMES\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe
FirewallRules: [{D0098E91-9895-4D6D-B056-9515D314B185}] => (Allow) D:\STEAM GAMES\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe
FirewallRules: [{6079BABD-47BD-41E9-A90F-F3F106BE9CEB}] => (Allow) D:\Origin\FIFA 17\FIFASetup\fifaconfig.exe
FirewallRules: [{C3652AFF-1435-4303-BBF8-65ECE241EE30}] => (Allow) D:\Origin\FIFA 17\FIFASetup\fifaconfig.exe
FirewallRules: [{EF4BDED4-4E5D-40DB-A4C4-155548FD6016}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{F2EBF2F1-DFD8-4CB4-B258-28F801B4FB47}D:\crossfirearx\updater.exe] => (Allow) D:\crossfirearx\updater.exe
FirewallRules: [UDP Query User{EE5E6B2C-1A25-4171-AA76-31BC8D58786C}D:\crossfirearx\updater.exe] => (Allow) D:\crossfirearx\updater.exe
FirewallRules: [{9CDF1C5E-6D3E-4B26-B924-7F17B8330BF9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{AD220EF0-B6DC-4E5A-843F-FFFD2A942323}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{0807B64D-ED82-4952-BE5E-24A282B10086}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{A4200EB5-35B4-4541-AE64-B8E3DF62D40C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{70C2845C-8A09-4710-A883-EC84CB286F89}] => (Allow) D:\FlyVPN\FlyVPN.exe
FirewallRules: [{06A1184B-922A-4546-9F22-3C98C2EFF16F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{C0E1C40E-9DBA-4F28-AD73-A7592F997885}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{9F5D2263-57C9-421E-90B9-F4587BF97D4E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{94D9E19A-3494-4BD4-8D45-A1D8B8E62551}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D2303C7A-4BED-4F96-A526-5165BEA68782}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{4BE9F3FC-CA14-4492-8B4E-1BA1B2FC3D08}D:\crossfire\updater.exe] => (Allow) D:\crossfire\updater.exe
FirewallRules: [UDP Query User{5860EEB4-085D-4FC3-BB1A-3C89C96D1F83}D:\crossfire\updater.exe] => (Allow) D:\crossfire\updater.exe

==================== Wiederherstellungspunkte =========================

27-11-2016 15:50:41 Geplanter Prüfpunkt

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Microsoft PS/2-Maus
Description: Microsoft PS/2-Maus
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Standardtastatur (PS/2)
Description: Standardtastatur (PS/2)
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardtastaturen)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (11/30/2016 03:17:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IAStorDataMgrSvc.exe, Version: 14.8.0.1042, Zeitstempel: 0x5639dd97
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x038bc9dd
ID des fehlerhaften Prozesses: 0x1908
Startzeit der fehlerhaften Anwendung: 0x01d24b146fe87c74
Pfad der fehlerhaften Anwendung: C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: b0244d54-b707-11e6-918e-4ccc6a61d306

Error: (11/30/2016 03:17:12 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.NullReferenceException
   bei IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   bei IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   bei System.Threading.ThreadPoolWorkQueue.Dispatch()
   bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (11/30/2016 03:00:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IAStorDataMgrSvc.exe, Version: 14.8.0.1042, Zeitstempel: 0x5639dd97
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0382c9dd
ID des fehlerhaften Prozesses: 0x109c
Startzeit der fehlerhaften Anwendung: 0x01d24b1217273651
Pfad der fehlerhaften Anwendung: C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 57539de1-b705-11e6-82c3-4ccc6a61d306

Error: (11/30/2016 03:00:24 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.NullReferenceException
   bei IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   bei IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   bei System.Threading.ThreadPoolWorkQueue.Dispatch()
   bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (11/30/2016 02:54:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IAStorDataMgrSvc.exe, Version: 14.8.0.1042, Zeitstempel: 0x5639dd97
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x030cc9dd
ID des fehlerhaften Prozesses: 0x169c
Startzeit der fehlerhaften Anwendung: 0x01d24b113433d100
Pfad der fehlerhaften Anwendung: C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 73dc1470-b704-11e6-a7e8-4ccc6a61d306

Error: (11/30/2016 02:54:03 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.NullReferenceException
   bei IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   bei IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   bei System.Threading.ThreadPoolWorkQueue.Dispatch()
   bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (11/29/2016 09:58:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IAStorDataMgrSvc.exe, Version: 14.8.0.1042, Zeitstempel: 0x5639dd97
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00e3c9dd
ID des fehlerhaften Prozesses: 0x19f8
Startzeit der fehlerhaften Anwendung: 0x01d24a834a7403b0
Pfad der fehlerhaften Anwendung: C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 8ad49aa0-b676-11e6-a98c-4ccc6a61d306

Error: (11/29/2016 09:58:12 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.NullReferenceException
   bei IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   bei IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   bei System.Threading.ThreadPoolWorkQueue.Dispatch()
   bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (11/29/2016 03:54:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: csgo.exe, Version: 0.0.0.0, Zeitstempel: 0x582e1b2f
Name des fehlerhaften Moduls: tier0.dll, Version: 0.0.0.0, Zeitstempel: 0x582e1abd
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0001d4a9
ID des fehlerhaften Prozesses: 0x21f8
Startzeit der fehlerhaften Anwendung: 0x01d24a4c730253e4
Pfad der fehlerhaften Anwendung: C:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
Pfad des fehlerhaften Moduls: C:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\bin\tier0.dll
Berichtskennung: ab34a934-b643-11e6-aaa7-4ccc6a61d306

Error: (11/29/2016 02:08:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: csgo.exe, Version: 0.0.0.0, Zeitstempel: 0x582e1b2f
Name des fehlerhaften Moduls: allahu.dll, Version: 0.0.0.0, Zeitstempel: 0x581493fa
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00001b48
ID des fehlerhaften Prozesses: 0x1c64
Startzeit der fehlerhaften Anwendung: 0x01d24a3fb044ed64
Pfad der fehlerhaften Anwendung: C:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
Pfad des fehlerhaften Moduls: C:\Temp\allahu.dll
Berichtskennung: e54a7eb4-b634-11e6-aaa7-4ccc6a61d306


Systemfehler:
=============
Error: (11/30/2016 03:17:16 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Rapid Storage Technology" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (11/30/2016 03:15:09 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
cdrom

Error: (11/30/2016 03:15:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Origin Web Helper Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (11/30/2016 03:15:08 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (60000 ms) wurde beim Verbindungsversuch mit dem Dienst Origin Web Helper Service erreicht.

Error: (11/30/2016 03:14:03 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT-AUTORITÄT)
Description: Die Energieverwaltungsfeatures für Leistung des Prozessors "3" in der Gruppe "0" sind aufgrund eines Firmwareproblems deaktiviert. Erkundigen Sie sich beim Hersteller des Computers nach aktualisierter Firmware.

Error: (11/30/2016 03:14:03 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT-AUTORITÄT)
Description: Die Energieverwaltungsfeatures für Leistung des Prozessors "2" in der Gruppe "0" sind aufgrund eines Firmwareproblems deaktiviert. Erkundigen Sie sich beim Hersteller des Computers nach aktualisierter Firmware.

Error: (11/30/2016 03:14:03 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT-AUTORITÄT)
Description: Die Energieverwaltungsfeatures für Leistung des Prozessors "1" in der Gruppe "0" sind aufgrund eines Firmwareproblems deaktiviert. Erkundigen Sie sich beim Hersteller des Computers nach aktualisierter Firmware.

Error: (11/30/2016 03:14:03 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT-AUTORITÄT)
Description: Die Energieverwaltungsfeatures für Leistung des Prozessors "0" in der Gruppe "0" sind aufgrund eines Firmwareproblems deaktiviert. Erkundigen Sie sich beim Hersteller des Computers nach aktualisierter Firmware.

Error: (11/30/2016 03:00:28 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Rapid Storage Technology" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (11/30/2016 02:58:21 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
cdrom


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Prozentuale Nutzung des RAM: 26%
Installierter physikalischer RAM: 14826.85 MB
Verfügbarer physikalischer RAM: 10953.7 MB
Summe virtueller Speicher: 29651.89 MB
Verfügbarer virtueller Speicher: 25809.29 MB

==================== Laufwerke ================================

Drive b: (Lokaler Fotzenträger) (Fixed) (Total:465.76 GB) (Free:422.14 GB) NTFS
Drive c: (Lokaler Klamottenträger) (Fixed) (Total:236 GB) (Free:18.68 GB) NTFS
Drive d: (Lokaler Nuttenträger) (Fixed) (Total:931.41 GB) (Free:117 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 236 GB) (Disk ID: 11E626FB)
Partition 1: (Active) - (Size=236 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: E159512B)
Partition 1: (Active) - (Size=931.4 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 1956BF5A)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================

cosinus · 30.11.2016, 21:56

Adobe, Autodesk, Vegas Pro, W7 Ultimate - ist das ein gewerblich genutztes System?

yakashi97 · 01.12.2016, 10:04

Zitat:

Zitat von cosinus

Adobe, Autodesk, Vegas Pro, W7 Ultimate - ist das ein gewerblich genutztes System?

Nein, alles Hobby mäßig fürs lernen Usw.
Windows 7 Ultimate ist halt mein standard Betriebssystem.

cosinus · 01.12.2016, 10:57

Hobbymäßig? Du gibst hunderte Euro dafür aus?

yakashi97 · 01.12.2016, 11:23

Zitat:

Zitat von cosinus

Hobbymäßig? Du gibst hunderte Euro dafür aus?

Naja die Adobe Apps sind Testversionen, Sony Vegas hab ich die Schüler Version vom Kollegen und Autodesk ist eine Studentenversion falls ich mich noch erinnern kann. Die Adobe Apps werde ich aber kaufen sobald die abgelaufen sind. Wozu brauchste eigentlich die Informationen bzgl. Dieser Programmen. Kann das etwa sein dass der Virus dadurch gekommen ist?

Mfg

cosinus · 01.12.2016, 11:30

Es geht darum, dass wenn solche Programme installiert sind, die idR gecrackt sind. Fast immer wenn ich ein Vegas sehe isses gecrackt.

yakashi97 · 01.12.2016, 11:37

Mhh. Kann man also nichst gegen diesen Virus machen oder wie? Weil in deiner ersten Antwort steht ich darf nichst mit Emails usw. machen jedoch brauche ich diesen Zugriff da ich auf eine Antwort warte die ich dann gleichzeitig ausdrucken muss. Gruß

cosinus · 01.12.2016, 11:50

Dann halt eben nochmal richtig deutlich:

Lesestoff:
Illegale Software: Cracks, Keygens und Co

Bitte lesen => http://www.trojaner-board.de/95393-c...-software.html

Es geht weiter wenn du alles Illegale entfernt hast.

Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.

yakashi97 · 01.12.2016, 13:00

So neuer Versuch, hab jetzt alles entfernt, was du oben erwähnt hast wo ich mir nicht sicher bin, ob es gecracked war oder nicht.

Hier alle Logs neu.
FRST:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 30-11-2016
durchgeführt von yakashi (Administrator) auf YAKASHI-PC (01-12-2016 12:59:22)
Gestartet von C:\Users\yakashi\Desktop
Geladene Profile: yakashi (Verfügbare Profile: yakashi)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(The Within Network, LLC) C:\Windows\UnsignedThemesSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Razer Inc) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\HSSCP.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\Adobe Installer.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-15] (AVAST Software)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Winlogon: [Userinit] userinit.exe,C:\Program Files (x86)\aivadflp\ilnmnfug.exe, [X]
HKU\S-1-5-21-2572264492-182372228-3150790763-1000\...\MountPoints2: {5e3da5ff-827d-11e6-ac6c-4ccc6a61d306} - G:\setup.exe
HKU\S-1-5-21-2572264492-182372228-3150790763-1000\...\Winlogon: [Shell] c:\windows\explorer.exe [2872320 2010-11-20] (Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-18\...\Run: [] => 0
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2016-09-18] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\yakashi\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] ()
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\yakashi\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] ()
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\yakashi\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] ()
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-10-15] (AVAST Software)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{3A231831-A6A7-4122-82AA-B18E85CAF178}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{6067DDCE-2A82-487F-8C19-7E8CFF1A228C}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_102\bin\ssv.dll [2016-09-18] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-10-24] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_102\bin\jp2ssv.dll [2016-09-18] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_102\bin\ssv.dll [2016-09-18] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-10-24] (AVAST Software)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_102\bin\jp2ssv.dll [2016-09-18] (Oracle Corporation)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-10-15]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-10-15]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Plugin: @java.com/DTPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\dtplugin\npDeployJava1.dll [2016-09-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\plugin2\npjp2.dll [2016-09-18] (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-25] (Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.102.2 -> C:\Program Files (x86)\Java\jre1.8.0_102\bin\dtplugin\npDeployJava1.dll [2016-09-18] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.102.2 -> C:\Program Files (x86)\Java\jre1.8.0_102\bin\plugin2\npjp2.dll [2016-09-18] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-24] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-24] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-18] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-25] (Adobe Systems)

Chrome: 
=======
CHR DefaultProfile: ChromeDefaultData
CHR HomePage: ChromeDefaultData -> hxxp://www.google.de/
CHR StartupUrls: ChromeDefaultData -> "hxxps://www.google.de/"
CHR Profile: C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2016-12-01] <==== ACHTUNG
CHR Extension: (ProxFlow) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aakchaleigkohafkfjfjbblobjifikek [2016-10-15]
CHR Extension: (Google Präsentationen) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-09-18]
CHR Extension: (Google Docs) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2016-09-18]
CHR Extension: (Google Drive) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-18]
CHR Extension: (YouTube) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-18]
CHR Extension: (Adblock Plus) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-26]
CHR Extension: (Avast SafePrice) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-11-15]
CHR Extension: (Google Tabellen) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-09-18]
CHR Extension: (Google Docs Offline) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-18]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-09-18]
CHR Extension: (Google Mail) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-09-18]
CHR Extension: (Chrome Media Router) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-14]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1295376 2016-07-01] (Autodesk Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-25] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-08-05] (Apple Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-10-15] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1456136 2016-10-11] ()
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [392168 2016-08-31] (Digital Wave Ltd.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-08-29] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [229648 2016-10-30] (EasyAntiCheat Ltd)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2627080 2016-11-11] (LogMeIn Inc.)
R2 hshld; C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [2710648 2016-08-24] (AnchorFree Inc.)
S3 HssTrayService; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [103168 2016-08-24] ()
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19440 2015-11-04] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-11-11] (LogMeIn, Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-11-17] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-11-17] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-11-24] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-11-17] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119688 2016-11-22] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2180624 2016-11-22] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1316080 2016-11-23] (Overwolf LTD)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-25] ()
R2 RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [4261344 2016-11-04] (Razer Inc)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)
R2 UnsignedThemes; C:\Windows\UnsignedThemesSvc.exe [24168 2009-07-13] (The Within Network, LLC)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 AFTrafMgr1.1; C:\Program Files (x86)\Hotspot Shield\bin\TrafMgr_1_1_64.sys [54712 2016-08-23] (AnchorFree Inc.)
R0 amdide64; C:\Windows\System32\DRIVERS\amdide64.sys [11944 2016-09-18] (Advanced Micro Devices Inc.)
R0 asstor64; C:\Windows\System32\DRIVERS\asstor64.sys [83792 2016-09-18] (Asmedia Technology)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-10-15] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-10-15] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-10-15] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-10-15] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-10-15] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-10-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-10-15] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-10-15] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-15] (AVAST Software)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-09-25] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-09-25] (Disc Soft Ltd)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-09-18] (REALiX(tm))
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [32224 2016-11-22] (Intel Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [181304 2016-03-28] (Intel Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-11-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46016 2016-11-17] (NVIDIA Corporation)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [44144 2016-09-17] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [137840 2016-09-07] (Razer, Inc.)
R3 RZSURROUNDVADService; C:\Windows\System32\drivers\RzSurroundVAD.sys [49176 2016-10-16] (Windows (R) Win 7 DDK provider)
R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
S3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [33960 2016-09-23] (Synaptics Incorporated)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 tap0901_openvpn_accl; C:\Windows\System32\DRIVERS\tap0901_openvpn_accl.sys [37912 2016-11-20] (The OpenVPN Project)
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42064 2016-08-23] (Anchorfree Inc.)
R2 uxpatch; C:\Windows\system32\drivers\uxpatch.sys [30568 2009-07-13] ()
S3 xb1usb; C:\Windows\System32\DRIVERS\xb1usb.sys [42760 2016-02-21] (Microsoft Corporation)
U2 StartMenuReviverService; kein ImagePath
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 X6va063; \??\C:\Windows\SysWOW64\Drivers\X6va063 [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-12-01 12:59 - 2016-12-01 12:59 - 00000000 ____D C:\Users\yakashi\Desktop\FRST-OlderVersion
2016-11-30 16:57 - 2016-12-01 12:59 - 00021233 _____ C:\Users\yakashi\Desktop\FRST.txt
2016-11-30 16:56 - 2016-12-01 12:59 - 02411520 _____ (Farbar) C:\Users\yakashi\Desktop\FRST64.exe
2016-11-30 16:56 - 2016-12-01 12:59 - 00000000 ____D C:\FRST
2016-11-30 15:55 - 2016-11-30 15:55 - 00041537 _____ C:\Users\yakashi\Desktop\Blaffert 10_2016.pdf
2016-11-30 15:55 - 2016-11-30 15:55 - 00039744 _____ C:\Users\yakashi\Desktop\Blaffert 11_2016.pdf
2016-11-30 15:46 - 2016-11-30 15:46 - 00039744 _____ C:\Users\yakashi\Downloads\Blaffert 11_2016.pdf
2016-11-30 15:45 - 2016-11-30 15:45 - 00041537 _____ C:\Users\yakashi\Downloads\Blaffert 10_2016.pdf
2016-11-30 15:44 - 2016-11-30 15:44 - 00001325 _____ C:\Users\yakashi\Desktop\scan.txt
2016-11-30 15:03 - 2016-11-30 15:03 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-11-30 15:03 - 2016-11-24 20:22 - 00134712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-11-30 15:03 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-11-30 15:03 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-11-30 15:03 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-11-30 15:03 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-11-30 15:02 - 2016-11-24 21:54 - 40123840 _____ C:\Windows\system32\nvcompiler.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 35224632 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 34701760 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 28139576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 17440928 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 17373312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 14410120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 14057528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-11-30 15:02 - 2016-11-24 21:54 - 10912744 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 10795312 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 10346208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 09151216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 08913512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 08754344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 03643840 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 03206592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 01951680 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437609.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437609.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 01036736 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00974272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00945208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00895424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00683640 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00572888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00521096 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00439864 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00435904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00407248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00390200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00170872 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00153368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00148200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00131720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-11-28 14:20 - 2016-11-28 14:20 - 01222159 _____ C:\Users\yakashi\Downloads\OptiFine_1.7.10_HD_U_D6.jar
2016-11-28 13:48 - 2016-11-28 14:10 - 00000000 ____D C:\Users\yakashi\Desktop\GTA - San Andreas
2016-11-27 18:23 - 2016-11-27 18:23 - 00000000 ____D C:\Users\yakashi\Desktop\Neuer Ordner
2016-11-27 13:16 - 2016-11-27 13:16 - 00000986 _____ C:\Users\Public\Desktop\SciTE4AutoHotkey.lnk
2016-11-27 13:16 - 2016-11-27 13:16 - 00000000 ____D C:\Users\yakashi\Documents\AutoHotkey
2016-11-27 13:16 - 2016-11-27 13:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SciTE4AutoHotkey
2016-11-27 13:15 - 2016-11-27 13:15 - 01924681 _____ (fincs) C:\Users\yakashi\Downloads\SciTE4AHK300601_Install.exe
2016-11-27 01:29 - 2016-11-27 01:29 - 00010881 _____ C:\Users\yakashi\Desktop\julian adventskalender.pwn
2016-11-27 00:47 - 2016-11-27 00:47 - 00007564 _____ C:\Users\yakashi\Desktop\present.pwn
2016-11-27 00:42 - 2016-11-27 00:42 - 00001139 _____ C:\Users\yakashi\Desktop\autohaus gtarl.pwn
2016-11-27 00:26 - 2016-11-27 00:26 - 00657365 _____ C:\Users\yakashi\Desktop\maps.pwn
2016-11-27 00:10 - 2016-11-27 00:10 - 00837119 _____ C:\Users\yakashi\Downloads\editor.rar
2016-11-26 23:41 - 2016-11-26 23:41 - 16270006 _____ C:\Users\yakashi\Downloads\sa-mp-0.3.7-install.exe
2016-11-26 23:41 - 2016-11-26 23:41 - 02094241 _____ C:\Users\yakashi\Downloads\samp037_svr_R2-1-1_win32.zip
2016-11-26 21:43 - 2016-11-26 21:43 - 02509914 _____ C:\Users\yakashi\Downloads\Message bling sound.rar
2016-11-26 21:23 - 2016-11-26 21:36 - 3979544377 _____ C:\Users\yakashi\Downloads\CrossFire_ARxGaming.zip
2016-11-26 21:18 - 2016-11-26 21:18 - 01847449 _____ C:\Users\yakashi\Downloads\HGWC.rar
2016-11-26 21:12 - 2016-11-28 20:32 - 00000643 _____ C:\Users\yakashi\Desktop\CrossFire ArxGaming.lnk
2016-11-26 13:15 - 2016-10-18 18:21 - 00786815 _____ C:\Users\yakashi\Desktop\Laufscript.exe
2016-11-26 00:08 - 2016-11-27 18:16 - 00000000 ____D C:\Users\yakashi\Desktop\gtarl
2016-11-26 00:07 - 2016-11-26 00:07 - 00001068 _____ C:\Users\yakashi\Desktop\GTA SA.lnk
2016-11-26 00:07 - 2016-11-26 00:07 - 00000000 ____D C:\Users\yakashi\Desktop\WH KEYBINDER
2016-11-25 12:17 - 2016-11-25 12:17 - 02285109 _____ C:\Users\yakashi\Downloads\PRIVATKI DOZZER.rar
2016-11-25 00:23 - 2016-11-25 00:23 - 08108436 _____ C:\Users\yakashi\Downloads\2012 BMW M3 E92 Hamann.zip
2016-11-25 00:22 - 2016-11-25 00:22 - 15637566 _____ C:\Users\yakashi\Downloads\Транспорт - BMW_e30_UDC[SAMODS.RU].rar
2016-11-25 00:15 - 2016-11-25 00:15 - 15640912 _____ C:\Users\yakashi\Downloads\1476393124_E36 SEDAN.zip
2016-11-24 20:18 - 2016-11-24 20:19 - 41599579 _____ C:\Users\yakashi\Documents\Ohne Titel.mp4
2016-11-24 17:39 - 2016-11-24 17:39 - 43086377 _____ C:\Users\yakashi\Downloads\client_21031.zip
2016-11-24 13:35 - 2016-11-24 13:35 - 00000970 _____ C:\Users\yakashi\Downloads\listen.asx
2016-11-24 13:35 - 2016-11-24 13:35 - 00000970 _____ C:\Users\yakashi\Downloads\listen (1).asx
2016-11-24 02:59 - 2016-11-24 02:59 - 05763621 _____ C:\Users\yakashi\Downloads\Sounds (1).rar
2016-11-24 02:59 - 2016-11-24 02:59 - 01091085 _____ C:\Users\yakashi\Downloads\sounds.rar
2016-11-24 02:56 - 2016-11-24 02:56 - 10611225 _____ C:\Users\yakashi\Downloads\71344-bmw-m4-coupe.zip
2016-11-24 02:51 - 2016-11-24 02:51 - 09816325 _____ C:\Users\yakashi\Downloads\71429-bmw-m4-2014-liberty-walk.zip
2016-11-24 01:15 - 2016-11-24 01:15 - 00397091 _____ C:\Users\yakashi\Downloads\Smooth Camera.zip
2016-11-24 01:13 - 2016-11-24 01:13 - 01204711 _____ C:\Windows\unins000.exe
2016-11-24 01:13 - 2016-11-24 01:13 - 00894870 _____ (Seemann, Deji, Alien ) C:\Users\yakashi\Downloads\CLEO4_setup.exe
2016-11-23 20:53 - 2016-11-25 15:23 - 00007515 _____ C:\Users\yakashi\Downloads\WhatsApp Image 2016-11-20 at 17.21.51.jpeg
2016-11-23 18:47 - 2016-11-17 14:45 - 00101824 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-11-23 18:47 - 2016-11-17 14:45 - 00091584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-11-23 18:47 - 2016-11-17 14:45 - 00046016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-11-23 16:39 - 2016-11-23 16:39 - 00008945 _____ C:\Users\yakashi\Downloads\WhatsApp Ptt 2016-11-23 at 16.39.03.ogg; codecs=opus
2016-11-23 16:39 - 2016-11-23 16:39 - 00008572 _____ C:\Users\yakashi\Downloads\WhatsApp Ptt 2016-11-23 at 16.38.58.ogg; codecs=opus
2016-11-22 21:07 - 2016-11-22 21:07 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-11-22 21:07 - 2016-11-22 21:07 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-11-22 21:07 - 2016-11-22 21:07 - 00000000 ____D C:\Windows\system32\DAX2
2016-11-22 21:07 - 2016-11-22 21:07 - 00000000 ____D C:\Program Files\Realtek
2016-11-22 21:01 - 2016-11-22 21:01 - 00795640 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2016-11-22 21:01 - 2016-11-22 21:01 - 00032224 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2016-11-22 21:00 - 2016-11-22 21:00 - 72520720 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2016-11-22 21:00 - 2016-11-22 21:00 - 23505720 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRenderAVX64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 23414272 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRender64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 17378000 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioCapture64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 15202040 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE3.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 14057256 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 13122584 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 12988352 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 10534696 _____ (Intel Corporation) C:\Windows\system32\IntelSSTAPO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 07172912 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 07096184 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 07020920 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-11-22 21:00 - 2016-11-22 21:00 - 06374320 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV3apo.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 06264640 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 05804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
2016-11-22 21:00 - 2016-11-22 21:00 - 05793528 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 05593624 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 05341352 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 05310472 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-11-22 21:00 - 2016-11-22 21:00 - 03299832 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 03291320 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 03283248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 03203592 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 03133856 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02895104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-11-22 21:00 - 2016-11-22 21:00 - 02825104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02775360 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02706872 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02439048 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02203752 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02190992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02110592 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02073088 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02050176 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01965816 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01959608 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01920820 _____ C:\Windows\system32\Drivers\rtkSSTsetting.dat
2016-11-22 21:00 - 2016-11-22 21:00 - 01780624 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01618032 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01591056 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01529136 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64Proxy.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01508928 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01435144 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01422928 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01382240 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01360520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01337648 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaeapo64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01334384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01213664 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01186840 _____ (Intel Corporation) C:\Windows\system32\IntelSstCApoPropPage.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01166168 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01115136 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01041744 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01003864 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01001800 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDHF64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00999856 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00965032 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00962136 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tosasfapo64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00931624 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00923752 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00873472 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00864344 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SEHDHF32.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00858208 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00854040 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00823816 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3xhc.sys
2016-11-22 21:00 - 2016-11-22 21:00 - 00743968 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00727440 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00725944 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00708312 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00689888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00678192 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00677680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00618192 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00601152 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaemaxapo64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00574752 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00571384 _____ (Intel Corporation) C:\Windows\system32\tbb_waves.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00532384 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00514528 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00504312 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00500560 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00498640 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00472312 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00467168 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00447728 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00447184 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\toseaeapo64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00445400 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00441272 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00438696 _____ (Conexant Systems, Inc.) C:\Windows\system32\CAF64APO2.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00428232 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00416512 _____ (Harman) C:\Windows\system32\HMUI.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00387320 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00381416 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00372736 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00366128 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00362056 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00360352 _____ (Harman) C:\Windows\system32\HMClariFi.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00343712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00341160 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00341160 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00330568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00327456 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00310424 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00272712 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00258864 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00253896 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00253872 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00252880 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00231920 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00221976 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00214840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00209544 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00203848 _____ (Harman) C:\Windows\system32\HMHVS.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00192984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00190936 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00190936 _____ (Harman) C:\Windows\system32\HMEQ.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00179600 _____ (Harman) C:\Windows\system32\HMLimiter.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00166208 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00158704 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00154368 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00151792 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00134208 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00122320 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00118600 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00118592 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00112496 _____ (Conexant Systems, Inc.) C:\Windows\system32\Caf64api.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00110992 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00105312 _____ C:\Windows\system32\audioLibVc.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00090920 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00088352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00088328 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00084616 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00083624 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00075544 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00023696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00005604 _____ C:\Windows\system32\cxapo.lncs
2016-11-22 21:00 - 2016-11-22 21:00 - 00000736 _____ C:\Windows\system32\cxapo.prop
2016-11-22 19:18 - 2016-11-22 19:18 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign977265cf2a883c90
2016-11-22 19:18 - 2016-11-22 19:18 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign8d8e6ecb2758a646
2016-11-21 17:01 - 2016-11-21 17:01 - 03336882 _____ C:\Users\yakashi\Downloads\asd.rar
2016-11-21 16:54 - 2016-11-21 16:54 - 00942390 _____ C:\Users\yakashi\Downloads\Keybinder.rar
2016-11-21 01:24 - 2016-11-21 01:24 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\MSIConfig
2016-11-20 23:10 - 2016-11-20 23:10 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\NVIDIA
2016-11-20 23:08 - 2016-11-24 21:54 - 19948848 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-11-20 23:08 - 2016-11-24 21:54 - 00491536 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-11-20 23:08 - 2016-11-24 21:54 - 00041344 _____ C:\Windows\system32\nvinfo.pb
2016-11-20 23:08 - 2016-11-24 20:39 - 06384576 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-11-20 23:08 - 2016-11-24 20:39 - 02477624 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-11-20 23:08 - 2016-11-24 20:39 - 01762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-11-20 23:08 - 2016-11-24 20:39 - 00546752 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-11-20 23:08 - 2016-11-24 20:39 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-11-20 23:08 - 2016-11-24 20:39 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-11-20 23:08 - 2016-11-23 13:58 - 07538847 _____ C:\Windows\system32\nvcoproc.bin
2016-11-20 23:08 - 2016-11-17 03:04 - 01953336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437595.dll
2016-11-20 23:08 - 2016-11-17 03:04 - 01595456 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2016-11-20 23:08 - 2016-11-17 03:04 - 01585088 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437595.dll
2016-11-20 23:08 - 2016-11-17 03:04 - 00213952 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-11-20 23:08 - 2016-11-17 03:04 - 00212936 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-11-20 23:08 - 2016-11-17 03:04 - 00201664 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-11-20 23:08 - 2016-11-17 03:04 - 00046024 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-11-20 23:08 - 2016-11-17 03:04 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-11-20 23:08 - 2016-11-17 03:04 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2016-11-20 22:55 - 2016-12-01 12:52 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-20 22:55 - 2016-11-30 15:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-11-20 22:55 - 2016-11-30 15:04 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-11-20 22:55 - 2016-11-23 18:47 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-11-20 22:55 - 2016-11-23 18:47 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-11-20 22:55 - 2016-11-20 22:56 - 00000000 ____D C:\Users\yakashi\AppData\Local\NVIDIA
2016-11-20 22:55 - 2016-11-17 14:45 - 01755072 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-11-20 22:55 - 2016-11-17 14:45 - 01317312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-11-20 22:55 - 2016-11-17 14:45 - 00120256 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-11-20 22:54 - 2016-11-20 22:55 - 73981120 _____ (NVIDIA Corporation) C:\Users\yakashi\Downloads\GeForce_Experience_v3.1.0.52.exe
2016-11-20 12:53 - 2016-11-24 21:54 - 03941720 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-11-20 12:53 - 2016-11-24 21:54 - 03479744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-11-20 12:53 - 2016-11-24 20:39 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-11-20 12:53 - 2016-11-24 20:39 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2016-11-20 12:22 - 2016-11-17 14:45 - 01854400 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-11-20 12:22 - 2016-11-17 14:45 - 01452480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-11-20 12:15 - 2016-11-20 12:16 - 00095650 _____ C:\Windows\ntbtlog.txt
2016-11-20 10:56 - 2016-11-20 10:56 - 00037912 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tap0901_openvpn_accl.sys
2016-11-20 10:55 - 2016-11-20 10:56 - 00000000 ____D C:\ProgramData\FlyVPN
2016-11-20 10:55 - 2016-11-20 10:55 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FlyVPN
2016-11-20 10:54 - 2016-11-20 10:55 - 02133568 _____ (FlyVPN) C:\Users\yakashi\Downloads\FlyVPNInstaller_3.6.2.2.exe
2016-11-20 03:29 - 2016-11-20 03:29 - 01055510 _____ C:\Users\yakashi\Downloads\maurice.rar
2016-11-20 02:35 - 2016-11-20 02:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3
2016-11-20 02:35 - 2016-11-20 02:35 - 00000000 ____D C:\Program Files\MSI Kombustor 3
2016-11-20 02:34 - 2016-11-20 02:34 - 19819074 _____ (MSI Co., LTD ) C:\Users\yakashi\Downloads\MSI_Kombustor_Setup_3.5.2.1_x64.exe
2016-11-20 02:24 - 2016-11-20 02:24 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\JAM Software
2016-11-20 02:18 - 2016-11-20 02:18 - 09928496 _____ (JAM Software ) C:\Users\yakashi\Downloads\HeavyLoad-x64-Setup.exe
2016-11-20 02:18 - 2016-11-20 02:18 - 00000000 ____D C:\Program Files\JAM Software
2016-11-20 02:17 - 2016-11-20 02:17 - 00000000 ____D C:\Windows\SysWOW64\directx
2016-11-20 02:17 - 2016-11-20 02:17 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2016-11-20 02:17 - 2016-11-20 02:17 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2016-11-20 02:17 - 2016-11-20 02:17 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2016-11-20 02:17 - 2016-11-20 02:17 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2016-11-20 02:11 - 2016-11-20 02:11 - 1127223062 _____ C:\Windows\MEMORY.DMP
2016-11-20 02:11 - 2016-11-20 02:11 - 00872216 _____ C:\Windows\Minidump\112016-12604-01.dmp
2016-11-20 02:11 - 2016-11-20 02:11 - 00000000 ____D C:\Windows\Minidump
2016-11-20 02:04 - 2016-11-24 19:55 - 00000000 ____D C:\Users\yakashi\AppData\Local\NVIDIA Corporation
2016-11-20 01:57 - 2016-11-20 22:53 - 00000000 ____D C:\Users\yakashi\Downloads\settings
2016-11-20 01:57 - 2016-11-20 22:53 - 00000000 ____D C:\Users\yakashi\Downloads\DDU Logs
2016-11-20 01:57 - 2016-11-20 01:57 - 01129418 _____ (Igor Pavlov) C:\Users\yakashi\Downloads\DDU_v17.0.3.0.exe
2016-11-20 01:57 - 2016-11-20 01:57 - 00000000 ____D C:\Users\yakashi\Downloads\x64
2016-11-20 01:57 - 2016-10-25 19:21 - 01434112 _____ C:\Users\yakashi\Downloads\Display Driver Uninstaller.exe
2016-11-20 01:57 - 2016-10-25 19:21 - 00546304 _____ C:\Users\yakashi\Downloads\Display Driver Uninstaller.pdb
2016-11-20 01:57 - 2015-09-06 12:26 - 00000224 _____ C:\Users\yakashi\Downloads\Display Driver Uninstaller.exe.config
2016-11-20 01:35 - 2016-11-20 01:35 - 00032600 _____ C:\Users\yakashi\Downloads\asiloader.zip
2016-11-20 01:12 - 2016-11-20 01:12 - 00000000 ____D C:\NVIDIA
2016-11-20 00:06 - 2016-11-20 00:06 - 00001066 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-11-19 20:08 - 2016-11-19 20:08 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\npm
2016-11-19 20:08 - 2016-11-19 20:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Node.js
2016-11-19 20:08 - 2016-11-19 20:08 - 00000000 ____D C:\Program Files\nodejs
2016-11-19 15:53 - 2016-11-24 22:38 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\RealLifeRPG
2016-11-19 15:53 - 2016-11-19 15:53 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RealLifeRPG
2016-11-19 15:53 - 2016-11-19 15:53 - 00000000 ____D C:\Users\yakashi\AppData\Local\SquirrelTemp
2016-11-19 15:53 - 2016-11-19 15:53 - 00000000 ____D C:\Users\yakashi\AppData\Local\RealLifeRPG
2016-11-18 12:41 - 2016-11-18 12:41 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsigne5ad980403d43f8f
2016-11-18 01:00 - 2016-11-18 01:00 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsigne85634600fc93685
2016-11-17 20:01 - 2016-11-17 20:01 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsigne474e41904f67f97
2016-11-17 19:12 - 2016-11-17 19:12 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsigna001b5586abb9615
2016-11-17 16:07 - 2016-11-17 16:07 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign7374dce4b52fb315
2016-11-17 13:11 - 2016-11-17 13:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign77994062462cd779
2016-11-16 20:08 - 2016-11-16 20:08 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign599d10b1f225e4da
2016-11-16 18:28 - 2016-11-16 18:28 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign90d856c5e2989c09
2016-11-15 11:43 - 2016-11-15 11:43 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign6654733c6298a1d5
2016-11-15 11:31 - 2016-11-15 11:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-11-15 11:31 - 2016-11-15 11:31 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2016-11-13 18:30 - 2016-11-13 18:30 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignbb0e65e07ea8f574
2016-11-13 18:22 - 2016-11-13 18:22 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignf881167ce1563999
2016-11-13 18:22 - 2016-11-13 18:22 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign096e30b9346fd6ca
2016-11-11 22:33 - 2016-11-11 22:33 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Steganos Updates
2016-11-08 18:53 - 2016-11-08 18:53 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignfb9607c0028ace4a
2016-11-08 18:50 - 2016-11-08 18:50 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignde802797b7a02827
2016-11-07 23:35 - 2016-11-07 23:35 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign30bdcf888e87adf0
2016-11-06 23:53 - 2016-11-06 23:53 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignc944d2db450e0a4a
2016-11-06 23:53 - 2016-11-06 23:53 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign10d2cbe3e78c6675
2016-11-06 13:56 - 2016-11-06 13:56 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2016-11-06 03:25 - 2016-11-08 01:51 - 00000000 ____D C:\Users\yakashi\Documents\American Truck Simulator
2016-11-06 03:25 - 2016-11-06 10:59 - 00000000 ____D C:\Users\yakashi\Documents\ATSMP
2016-11-05 17:57 - 2016-11-05 17:57 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign5f74d0cbf2283865
2016-11-05 17:57 - 2016-11-05 17:57 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign095d95b18fe0a50d
2016-11-05 13:07 - 2016-11-05 13:07 - 00000000 ____D C:\Users\yakashi\AppData\Local\TS3index.com_GbR
2016-11-05 12:57 - 2016-11-05 12:59 - 00000000 ____D C:\SinusBot
2016-11-05 12:56 - 2016-11-05 12:56 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2016-11-04 13:28 - 2016-12-01 12:58 - 00000000 _____ C:\Windows\system32\RzSurroundVADAudioDeviceManager_log.txt
2016-11-04 13:28 - 2016-11-25 21:21 - 00000000 _____ C:\Windows\SysWOW64\RzSurroundVADAudioDeviceManager_log.txt
2016-11-04 13:28 - 2016-11-04 13:28 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign6e125d926d59050a
2016-11-04 13:28 - 2016-11-04 13:28 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign6aae28833155f8df
2016-11-04 13:28 - 2016-11-04 13:28 - 00000000 ____D C:\ProgramData\RzSurroundVAD_1.1.62.0
2016-11-04 13:28 - 2016-09-17 02:12 - 00044144 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpmgrk.sys
2016-11-04 13:28 - 2016-09-07 22:27 - 00137840 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpnk.sys
2016-11-04 13:27 - 2016-11-04 13:28 - 00000000 ____D C:\Program Files (x86)\Razer
2016-11-04 13:27 - 2016-11-04 13:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2016-11-04 13:26 - 2016-11-04 13:36 - 00000000 ____D C:\ProgramData\Razer
2016-11-04 13:26 - 2016-11-04 13:26 - 00000000 ____D C:\Users\yakashi\AppData\Local\Razer
2016-11-01 22:46 - 2016-11-01 22:46 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignf059c3968a9369bf
2016-11-01 22:46 - 2016-11-01 22:46 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign1de7aff1cbfe8952
2016-11-01 19:18 - 2016-11-01 19:18 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign64553d4dd4359053
2016-11-01 19:18 - 2016-11-01 19:18 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign18eb9d9a15b73107
2016-11-01 18:13 - 2016-11-01 18:13 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign8216aa8311e6b51b
2016-11-01 18:13 - 2016-11-01 18:13 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign489392c8126b185c
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\PDAppFlex
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignfb39070822f75bd2
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign8d35784f97239c81
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign6a313755e104d229
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign51ca7fb791165a87
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign34f9088922b18f32
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign26bee3c26c1da5b5
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign114b933af41f0553
2016-11-01 17:50 - 2016-11-01 17:50 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignfe107b9aa3c04fa1
2016-11-01 12:29 - 2016-11-01 13:54 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\obs-studio
2016-11-01 12:28 - 2016-11-01 12:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2016-11-01 12:28 - 2016-11-01 12:28 - 00000000 ____D C:\Program Files (x86)\obs-studio

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-12-01 12:59 - 2009-07-14 18:58 - 00700614 _____ C:\Windows\system32\perfh007.dat
2016-12-01 12:59 - 2009-07-14 18:58 - 00149962 _____ C:\Windows\system32\perfc007.dat
2016-12-01 12:59 - 2009-07-14 06:13 - 01624324 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-01 12:56 - 2016-10-10 11:27 - 00000000 ____D C:\ProgramData\VEGAS
2016-12-01 12:55 - 2016-09-19 07:51 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Adobe
2016-12-01 12:55 - 2016-09-18 19:37 - 00002882 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (yakashi)
2016-12-01 12:54 - 2016-09-20 12:47 - 00000000 ____D C:\ProgramData\Adobe
2016-12-01 12:53 - 2016-09-29 17:52 - 00000000 ____D C:\Users\yakashi\AppData\Local\LogMeIn Hamachi
2016-12-01 12:53 - 2016-09-20 12:49 - 00000000 ___RD C:\Users\yakashi\Creative Cloud Files
2016-12-01 12:53 - 2016-09-20 12:49 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-12-01 12:53 - 2016-09-20 12:45 - 00000000 ____D C:\Users\yakashi\AppData\Local\Adobe
2016-12-01 12:52 - 2016-09-18 19:36 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-12-01 12:52 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-30 23:52 - 2016-09-18 20:11 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\TS3Client
2016-11-30 23:41 - 2016-09-18 19:36 - 00001112 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-30 23:17 - 2009-07-14 05:45 - 00016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-30 23:17 - 2009-07-14 05:45 - 00016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-30 16:13 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Resources
2016-11-30 15:33 - 2016-10-18 22:27 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-11-30 15:21 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-11-30 15:07 - 2016-10-06 16:12 - 00000000 ____D C:\Users\Public\Documents\AdobeGC
2016-11-29 16:07 - 2016-09-25 00:59 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Origin
2016-11-29 15:54 - 2016-09-24 13:52 - 00000000 ____D C:\Users\yakashi\AppData\Local\CrashDumps
2016-11-29 14:14 - 2016-10-10 21:01 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\trainer
2016-11-29 14:09 - 2016-09-25 00:57 - 00000000 ____D C:\ProgramData\Origin
2016-11-28 23:09 - 2016-10-01 16:51 - 00000000 ____D C:\Windows\pss
2016-11-28 14:23 - 2016-10-06 23:18 - 00000000 ____D C:\Users\yakashi\AppData\Local\ftblauncher
2016-11-28 14:12 - 2016-10-06 23:18 - 00000000 ____D C:\ftb
2016-11-27 18:39 - 2016-09-18 20:07 - 00000000 ____D C:\Users\yakashi\Documents\GTA San Andreas User Files
2016-11-27 13:16 - 2016-09-18 19:47 - 00000000 ____D C:\Program Files\AutoHotkey
2016-11-25 14:11 - 2016-09-18 20:07 - 00000000 ____D C:\Program Files (x86)\Overwolf
2016-11-25 12:55 - 2016-10-28 12:53 - 00000000 ____D C:\Users\yakashi\Documents\HP-Overlay
2016-11-25 00:12 - 2016-10-11 17:09 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\DVDVideoSoft
2016-11-24 22:38 - 2016-09-25 12:54 - 00000000 ____D C:\Users\yakashi\AppData\Local\Arma 3
2016-11-24 17:41 - 2016-10-30 18:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TruckersMP
2016-11-24 14:11 - 2016-09-18 20:07 - 00000002 _____ C:\END
2016-11-24 13:26 - 2016-09-25 12:53 - 00000000 ____D C:\Users\yakashi\AppData\Local\Arma 3 Launcher
2016-11-24 13:25 - 2016-09-27 13:30 - 00000000 ____D C:\Users\yakashi\Documents\Arma 3 - Other Profiles
2016-11-24 01:13 - 2016-09-19 15:24 - 00014940 _____ C:\Windows\unins000.dat
2016-11-23 18:47 - 2016-09-23 22:12 - 00003602 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-23 18:47 - 2016-09-18 20:30 - 00003840 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-23 18:47 - 2016-09-18 20:30 - 00003840 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-23 18:47 - 2016-09-18 20:30 - 00003790 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-23 18:47 - 2016-09-18 20:30 - 00003778 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-23 18:47 - 2016-09-18 20:30 - 00003542 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-23 17:29 - 2016-09-20 14:17 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Skype
2016-11-23 11:51 - 2016-09-20 14:17 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-11-23 11:51 - 2016-09-20 14:17 - 00000000 ____D C:\ProgramData\Skype
2016-11-22 21:09 - 2016-09-25 00:58 - 00000000 ____D C:\Program Files (x86)\Origin
2016-11-22 20:55 - 2016-09-18 19:38 - 00000000 ____D C:\ProgramData\ProductData
2016-11-20 23:08 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Help
2016-11-20 22:48 - 2016-09-30 17:16 - 00000000 ____D C:\Temp
2016-11-20 00:58 - 2016-09-18 19:35 - 00073256 _____ C:\Users\yakashi\AppData\Local\GDIPFONTCACHEV1.DAT
2016-11-20 00:57 - 2009-07-14 05:45 - 00345744 _____ C:\Windows\system32\FNTCACHE.DAT
2016-11-20 00:06 - 2016-09-25 14:08 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-11-19 22:46 - 2016-09-27 13:01 - 00000000 ____D C:\Users\yakashi\AppData\Local\Battle.net
2016-11-19 00:56 - 2016-09-18 20:06 - 00000000 ____D C:\Users\yakashi\AppData\Local\Overwolf
2016-11-18 13:05 - 2016-10-21 15:13 - 00001456 _____ C:\Users\yakashi\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2016-11-17 20:05 - 2016-10-06 14:21 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Sony
2016-11-17 18:35 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-11-15 13:30 - 2016-09-30 11:33 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2016-11-15 13:30 - 2016-09-30 11:33 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2016-11-15 11:42 - 2016-09-18 19:36 - 00002210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-12 22:55 - 2016-09-23 22:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OkayFreedom
2016-11-12 22:55 - 2016-09-23 22:12 - 00000000 ____D C:\Program Files (x86)\OkayFreedom
2016-11-11 22:40 - 2016-10-15 01:18 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-11 13:47 - 2016-09-30 11:32 - 00034720 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2016-11-06 22:04 - 2016-09-19 12:46 - 00000000 ____D C:\Program Files\Rockstar Games
2016-11-06 22:04 - 2016-09-19 12:46 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2016-11-06 03:14 - 2016-09-22 16:07 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-11-06 02:01 - 2016-10-15 01:18 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-05 19:13 - 2016-10-30 17:45 - 00000000 ____D C:\Users\yakashi\Documents\Euro Truck Simulator 2
2016-11-05 18:01 - 2016-09-25 14:08 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\TeamViewer
2016-11-05 12:56 - 2016-09-18 20:10 - 00000952 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2016-11-03 20:47 - 2016-10-20 00:05 - 00000000 ____D C:\Program Files (x86)\aivadflp
2016-11-03 14:04 - 2016-09-28 14:40 - 00000000 ____D C:\ProgramData\ReviverSoft
2016-11-03 14:04 - 2016-09-28 14:39 - 00000000 ____D C:\Program Files (x86)\UX Pack
2016-11-03 14:04 - 2009-07-14 04:20 - 00000000 __RSD C:\Windows\Media
2016-11-03 14:04 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Cursors
2016-11-03 13:00 - 2016-10-28 23:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCWest
2016-11-03 13:00 - 2016-10-28 23:56 - 00000000 ____D C:\Program Files (x86)\NCWest
2016-11-01 18:11 - 2016-10-24 00:10 - 00000033 _____ C:\Users\yakashi\AppData\Roaming\AdobeWLCMCache.dat

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-10-24 00:10 - 2016-11-01 18:11 - 0000033 _____ () C:\Users\yakashi\AppData\Roaming\AdobeWLCMCache.dat
2016-06-17 07:53 - 2016-06-17 07:53 - 0000244 _____ () C:\Users\yakashi\AppData\Roaming\fnp_registrations.xml
2016-06-17 07:53 - 2016-06-17 07:53 - 0003279 _____ () C:\Users\yakashi\AppData\Roaming\GBpc-EUC-V
2007-05-11 08:00 - 2007-05-11 08:00 - 0059417 _____ () C:\Users\yakashi\AppData\Roaming\Gendarmerie.wee
2016-10-21 15:13 - 2016-11-18 13:05 - 0001456 _____ () C:\Users\yakashi\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2016-11-22 21:07 - 2016-11-22 21:07 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\yakashi\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\yakashi\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\yakashi\AppData\Local\Temp\nvStInst.exe
C:\Users\yakashi\AppData\Local\Temp\SNU_Au1.exe


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-11-24 00:01

==================== Ende von FRST.txt ============================

yakashi97 · 01.12.2016, 13:01

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 30-11-2016
durchgeführt von yakashi (01-12-2016 12:59:40)
Gestartet von C:\Users\yakashi\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2016-09-18 18:00:09)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2572264492-182372228-3150790763-500 - Administrator - Disabled)
Gast (S-1-5-21-2572264492-182372228-3150790763-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2572264492-182372228-3150790763-1002 - Limited - Enabled)
yakashi (S-1-5-21-2572264492-182372228-3150790763-1000 - Administrator - Enabled) => C:\Users\yakashi

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avast Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

µTorrent (HKU\S-1-5-21-2572264492-182372228-3150790763-1000\...\uTorrent) (Version: 3.4.8.42576 - BitTorrent Inc.)
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.1.335 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-2572264492-182372228-3150790763-1000\...\Akamai) (Version:  - Akamai Technologies, Inc)
AlienFX for IskuFX (HKLM-x32\...\InstallShield_{2C3FC2CC-0A8B-409E-B487-8CD54F4DC1D4}) (Version: 1.02 - Roccat GmbH)
AlienFX for IskuFX (Version: 1.02 - Roccat GmbH) Hidden
American Truck Simulator (HKLM\...\Steam App 270880) (Version:  - SCS Software)
Ansel (Version: 376.09 - NVIDIA Corporation) Hidden
Apple Application Support (32-Bit) (HKLM-x32\...\{29DB9165-5FC1-48F0-9188-26123F526848}) (Version: 5.0.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{5905C8CF-1C88-4478-A48E-4E458AD1BC7E}) (Version: 5.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{D4D86CB2-2370-4691-8272-3869EDED6C64}) (Version: 10.0.0.18 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Arma 3 (HKLM\...\Steam App 107410) (Version:  - Bohemia Interactive)
Assetto Corsa v1.5 (HKLM\...\YXNzZXR0b2NvcnNh_is1) (Version: 1 - )
Autodesk 3ds Max 2017 (HKLM\...\Autodesk 3ds Max 2017) (Version: 19.0.1072.0 - Autodesk)
Autodesk 3ds Max 2017 (Version: 19.0.1072.0 - Autodesk) Hidden
Autodesk 3ds Max 2017 Populate Data (HKLM\...\{2B07E17E-A072-43BD-9DCC-369B56C16698}) (Version: 19.0.0.0 - Autodesk)
Autodesk Advanced Material Library Image Library 2017 (HKLM-x32\...\{8ED2ED41-4455-449D-993C-751C039089B9}) (Version: 15.11.3.0 - Autodesk)
Autodesk Backburner 2017.0 (HKLM-x32\...\{0038F5AA-8482-4BB2-8A28-3FEA1D58D780}) (Version: 17.0.0.0 - Autodesk)
Autodesk Civil View for 3ds Max 2017 64-bit (HKLM\...\{1C4FFAF0-7DBB-4F7A-A386-46747D060826}) (Version: 19.0.0.0 - Autodesk)
Autodesk Desktop-App (HKLM-x32\...\Autodesk Desktop App) (Version: 6.2.0.174 - Autodesk)
Autodesk License Service (x64) - 3.1 (HKLM\...\{EB6FE58F-8576-4272-BB9C-6B47D9EDFA4D}) (Version: 3.1.26.0 - Autodesk)
Autodesk Material Library 2017 (HKLM-x32\...\{8FB9F735-D64C-4991-8D91-4CDDAB1ABDEE}) (Version: 15.11.3.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2017 (HKLM-x32\...\{3FBFBC43-9882-43FA-B979-2D53896747B3}) (Version: 15.11.3.0 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2017 (HKLM-x32\...\{CB6E007E-701D-42CD-AF0E-4BE9C36C7F7C}) (Version: 15.11.3.0 - Autodesk)
Autodesk Revit Interoperability for 3ds Max 2017 (HKLM\...\Autodesk Revit Interoperability for 3ds Max 2017) (Version: 17.0.411.0 - Autodesk)
Autodesk Revit Interoperability for 3ds Max 2017 (Version: 17.0.411.0 - Autodesk) Hidden
AutoHotkey 1.1.24.01 (HKLM-x32\...\AutoHotkey) (Version: 1.1.24.01 - Lexikos)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Blade & Soul (HKLM-x32\...\InstallShield_{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.260 - NC Interactive, LLC)
Blade & Soul (x32 Version: 1.0.63.260 - NC Interactive, LLC) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brawlhalla (HKLM\...\Steam App 291550) (Version:  - Blue Mammoth Games)
Call of Duty: Black Ops - Multiplayer (HKLM\...\Steam App 42710) (Version:  - Treyarch)
Call of Duty: Black Ops (HKLM\...\Steam App 42700) (Version:  - Treyarch)
Cheat Engine 6.6 (HKLM-x32\...\Cheat Engine 6.6_is1) (Version:  - Cheat Engine)
CLEO 4.3 (HKLM-x32\...\{A8F37EB0-C741-41D7-8CAB-5B40ECEEF094}_is1) (Version: 4.3 - Seemann, Deji, Alien)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version:  - Valve)
CPUID CPU-Z 1.77 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0195 - Disc Soft Ltd)
Dead by Daylight (HKLM\...\Steam App 381210) (Version:  - Behaviour Digital Inc.)
DiRT Rally (HKLM\...\ZGlydHJhbGx5_is1) (Version: 1 - )
Driver Booster 3.5 (HKLM-x32\...\Driver Booster_is1) (Version: 3.5 - IObit)
F1 2015 version 1.0 (HKLM-x32\...\{F8180751-C7B2-407F-BD4F-55A6C8FF5F14}_is1) (Version: 1.0 - Codemasters)
FIFA 16 (HKLM-x32\...\{28FA2805-7992-4A28-844B-040C57204718}) (Version: 1.44.20513.9 - Electronic Arts)
FIFA 17 (HKLM-x32\...\{8C0DD062-B659-409C-9AB7-8EBD1D64D2EB}) (Version: 1.0.46.21015 - Electronic Arts)
FileZilla Client 3.22.1 (HKLM-x32\...\FileZilla Client) (Version: 3.22.1 - Tim Kosse)
FlyVPN (HKLM-x32\...\FlyVPN) (Version: 3.6.2.2 - FlyVPN)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Free YouTube Download (HKLM-x32\...\Free YouTube Download_is1) (Version: 4.1.28.831 - Digital Wave Ltd)
GenArts Sapphire Plug-ins 6.10 for OFX (HKLM\...\GenArts Sapphire Plug-ins for OFX_is1) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
H1Z1: King of the Kill (HKLM\...\Steam App 433850) (Version:  - Daybreak Game Company)
HeavyLoad V3.4 (64 bit) (HKLM\...\HeavyLoad_is1) (Version: 3.4 - JAM Software)
Hotspot Shield 5.4.11 (HKLM-x32\...\HotspotShield) (Version: 5.4.11 - AnchorFree Inc.)
Hotspot Shield 5.4.11 Embedded (x32 Version: 5.4.11.9772 - Buildbot) Hidden
HWiNFO64 Version 5.36 (HKLM\...\HWiNFO64_is1) (Version: 5.36 - Martin Malík - REALiX)
IMG Factory - IMG Factory - A program to manage the IMG file format for GTA games. (HKLM-x32\...\IMG Factory IMG Factory) (Version: "1.1.1" - "IMG Factory")
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.0.1042 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.0.36 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{9946A4F7-E0FD-4A33-82D1-06CBFFBBB9F9}) (Version: 12.5.1.21 - Apple Inc.)
Java 8 Update 102 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180102F0}) (Version: 8.0.1020.14 - Oracle Corporation)
Java 8 Update 102 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180102F0}) (Version: 8.0.1020.14 - Oracle Corporation)
K-Lite Mega Codec Pack 12.4.2 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.4.2 - KLCP)
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version:  - )
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
League of Legends (x32 Version: 4.1.2 - Riot Games) Hidden
Left 4 Dead 2 (HKLM\...\Steam App 550) (Version:  - Valve)
Lioncast LM30 Gaming Mouse Version 1.2 (HKLM-x32\...\{7EE2D3D8-7A40-406B-BE38-57DDCCC1B4D4}_is1) (Version: 1.2 - LIONCAST)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.541 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.541 - LogMeIn, Inc.) Hidden
Mafia III (HKLM-x32\...\Mafia III_is1) (Version:  - )
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual Studio Code (HKLM-x32\...\{F8A2A208-72B3-4D61-95FC-8A65D340689B}_is1) (Version: 1.5.2 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSI Afterburner 4.3.0 (HKLM-x32\...\Afterburner) (Version: 4.3.0 - MSI Co., LTD)
MSI Kombustor 3.5.2.1 (64-bit) (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version:  - MSI Co., LTD)
MySQL Connector Net 6.8.3 (HKLM-x32\...\{38157422-F952-42F7-88AA-CC16A63CD109}) (Version: 6.8.3 - Oracle)
Need for Speed™ (HKLM-x32\...\{F8643E83-A868-4EE8-A0B9-389386830453}) (Version: 1.3.0.0 - Electronic Arts)
Node.js (HKLM\...\{672B5547-D20B-4D19-9BFD-B93C32BC77DA}) (Version: 6.9.1 - Node.js Foundation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.2 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 376.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.09 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.1.2.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.2.31 - NVIDIA Corporation)
NVIDIA Grafiktreiber 376.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.09 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA mental ray and IRay feature plugins for 3ds Max 2017 (HKLM\...\{6ABEC32F-B90F-4499-B3A3-FF8A00948178}) (Version: 19.0.0.0 - Autodesk)
NVIDIA mental ray and IRay rendering plugins for 3ds Max 2017 (HKLM\...\{4B889650-52DC-49E0-AB9C-F501B91002E3}) (Version: 19.0.0.0 - Autodesk)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.16.2 - OBS Project)
Origin (HKLM-x32\...\Origin) (Version: 10.3.2.64935 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.100.9.0 - Overwolf Ltd.)
Overwolf.Setup.VC100CRTx64.Dist (HKLM\...\{EC9D5554-6852-4A55-81BB-AC02C7A8CFED}) (Version: 1.0.0 - Overwolf)
Overwolf.Setup.VC100CRTx86.Dist (x32 Version: 1.0.0 - Overwolf) Hidden
Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.26 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.1031 - Razer Inc.)
RealLifeRPG (HKU\S-1-5-21-2572264492-182372228-3150790763-1000\...\RealLifeRPG) (Version: 1.5.0 - RealLifeRPG)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.100.422.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7930 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 6.5.0 (HKLM-x32\...\RTSS) (Version: 6.5.0 - Unwinder)
Roccat Talk (HKLM-x32\...\{605D671E-1D1E-4840-84D9-BFACE17F160D}) (Version: 1.00.0015 - Roccat GmbH)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.0.5 - Rockstar Games)
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
Savu Mouse (HKLM-x32\...\{6F4B8EA6-4546-4160-A05F-0706F7DC1EFF}) (Version: 1.1.9 - ROCCAT GmbH)
SciTE4AutoHotkey v3.0.06.01 (HKLM-x32\...\SciTE4AutoHotkey) (Version: v3.0.06.01 - fincs)
SHIELD Streaming (Version: 7.1.0340 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.66695 - TeamViewer)
TruckersMP 0.2.1.3.1 Alpha (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 0.2.1.3.1 Alpha - TruckersMP Team)
UxStyle Core Beta (HKLM\...\{8E363055-15E5-4D8A-9C69-A0A9DE9A3337}) (Version: 0.2.1.1 - The Within Network, LLC)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.40 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
XAMPP (HKLM-x32\...\xampp) (Version: 7.0.9-1 - Bitnami)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2572264492-182372228-3150790763-1000_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> D:\3dsmax\3ds Max 2017\Inventor Server\Bin\TestServer.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2572264492-182372228-3150790763-1000_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> D:\3dsmax\3ds Max 2017\Inventor Server\Bin\TestServer.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2572264492-182372228-3150790763-1000_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> D:\3dsmax\3ds Max 2017\Inventor Server\Bin\TestServer.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2572264492-182372228-3150790763-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {130AC94F-3990-4E18-A5E4-18D17440AA72} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2016-07-14] (IObit)
Task: {14D143D2-741C-43C5-A3B9-10F3E375AABF} - System32\Tasks\Driver Booster SkipUAC (yakashi) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2016-07-18] (IObit)
Task: {158958AA-BE6F-49C4-A4B6-633AF4AE7C02} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation)
Task: {1E5ABC8C-46DF-4795-85CD-45772F7687C5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-18] (Google Inc.)
Task: {2E086E28-47C4-4045-A0C3-D1B3AE3774A9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-17] (NVIDIA Corporation)
Task: {3421D1F3-E06D-4DA1-A9C9-CA1CDF9EE864} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-10-15] (AVAST Software)
Task: {594DE6E7-63F3-40F3-BC39-9B50B752EEE4} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-10-04] ()
Task: {5E4E729F-8B25-4A97-AE30-680A2E31246B} - System32\Tasks\SafeZone scheduled Autoupdate 1476531624 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {67F53DD4-A801-4BD6-AA5F-C9E822AA9139} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {6DFBFCC2-2343-42A9-89CF-A0BA6CB1F523} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2016-11-23] (Overwolf LTD)
Task: {8ACA5664-47A1-4D20-8145-6861E6C04ABE} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-10-15] (AVAST Software)
Task: {8ADF4950-8C70-4D35-9D49-4FAF09F292EE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-18] (Google Inc.)
Task: {9350B666-3E9D-410A-A7B3-3F85779FFA9D} - System32\Tasks\AdobeAAMUpdater-1.0-yakashi-PC-yakashi => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {C1C8081D-FF2D-4C52-A1AB-8C702C93196C} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-11-17] (NVIDIA Corporation)
Task: {C99773BA-D28E-4363-9EF5-EC96B75CC008} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-17] (NVIDIA Corporation)
Task: {D2F3A21A-B56B-4758-9D5E-16BAF05054F1} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-17] (NVIDIA Corporation)
Task: {DEC86C38-7222-4C52-905B-4681D89F2B01} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-11-17] (NVIDIA Corporation)
Task: {EF5A9D68-D527-483F-9CEE-877DA1B46024} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {FFEB62DF-D620-495A-AC3A-1F02489A54B4} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-17] (NVIDIA Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\yakashi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-06-30 09:23 - 2016-06-30 09:23 - 00592384 ____N () C:\Users\yakashi\AppData\Local\MEGAsync\ShellExtX64.dll
2016-10-25 08:57 - 2016-10-25 08:57 - 00491184 ____N () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-10-03 15:57 - 2016-10-03 15:57 - 00052400 ____N () D:\FileZilla FTP Client\fzshellext_64.dll
2016-05-17 23:42 - 2016-05-17 23:42 - 00230064 ____N () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 ____N () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-09-01 17:12 - 2016-09-01 17:12 - 01353528 ____N () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-11-20 22:55 - 2016-11-17 14:45 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-20 22:55 - 2016-11-17 14:45 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-20 22:55 - 2016-11-17 14:45 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2016-09-25 00:20 - 2016-09-25 00:21 - 00189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2016-10-25 08:57 - 2016-10-25 08:57 - 31723696 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2016-11-15 11:42 - 2016-11-08 22:03 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libglesv2.dll
2016-11-15 11:42 - 2016-11-08 22:03 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libegl.dll
2016-10-15 12:39 - 2016-10-15 12:39 - 00169064 ____N () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-11-30 14:51 - 2016-11-30 14:51 - 03133960 _____ () C:\Program Files\AVAST Software\Avast\defs\16113000\algo.dll
2016-12-01 12:53 - 2016-12-01 12:53 - 03129808 _____ () C:\Program Files\AVAST Software\Avast\defs\16120100\algo.dll
2016-10-15 12:39 - 2016-10-15 12:39 - 00482928 ____N () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-10-06 21:31 - 2016-07-01 07:39 - 00061968 ____N () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_Service-head.dll
2016-10-06 21:31 - 2016-07-01 07:39 - 00110608 ____N () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson0.dll
2016-10-11 17:09 - 2016-08-31 19:04 - 00114664 ____N () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
2016-10-11 17:09 - 2016-08-31 19:04 - 00108008 ____N () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2016-10-11 17:09 - 2016-08-31 19:04 - 00024040 ____N () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2016-10-11 17:09 - 2016-08-31 19:04 - 00048104 ____N () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2016-08-24 00:04 - 2016-08-24 00:04 - 00166520 ____N () C:\Program Files (x86)\Hotspot Shield\bin\CrashRpt1403.dll
2016-11-20 22:55 - 2016-11-17 14:45 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-11-20 22:55 - 2016-11-17 14:45 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-20 22:55 - 2016-11-17 14:45 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-20 22:55 - 2016-11-17 11:20 - 00506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-11-20 22:55 - 2016-11-17 11:20 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-11-20 22:55 - 2016-11-17 11:20 - 02809912 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-11-20 22:55 - 2016-11-17 11:20 - 00245184 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-11-20 22:55 - 2016-11-17 11:20 - 00436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-11-20 22:55 - 2016-11-17 11:20 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-11-20 22:55 - 2016-11-17 11:20 - 00968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-10-15 12:39 - 2016-10-15 12:39 - 48936448 ____N () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-10-25 09:51 - 2016-10-25 09:51 - 40523456 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2016-10-03 15:57 - 2016-10-03 15:57 - 00048304 ____N () D:\FileZilla FTP Client\fzshellext.dll
2016-10-12 00:08 - 2016-10-12 00:08 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-10-12 00:08 - 2016-10-12 00:08 - 00223232 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-10-12 00:08 - 2016-10-12 00:08 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-10-12 00:08 - 2016-10-12 00:08 - 00124928 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-10-25 09:49 - 2016-10-25 09:49 - 00109760 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2016-10-12 00:08 - 2016-10-12 00:08 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2016-10-10 22:15 - 2016-10-10 22:15 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-10-10 22:15 - 2016-10-10 22:15 - 00117760 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ref\build\Release\binding.node
2016-10-10 22:15 - 2016-10-10 22:15 - 00125440 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-10-10 22:17 - 2016-10-10 22:17 - 00223232 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-10-25 09:41 - 2016-10-25 09:41 - 00109760 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2016-10-10 22:14 - 2016-10-10 22:14 - 00121856 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\bufferutil\build\Release\bufferutil.node
2016-10-10 22:14 - 2016-10-10 22:14 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\idle-gc\build\Release\idle-gc.node

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PAexec => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UnsignedThemes => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PAexec => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UnsignedThemes => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ==========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2016-10-18 22:18 - 00001006 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1       down.baidu2016.com
127.0.0.1       123.sogou.com
127.0.0.1       www.czzsyzgm.com
127.0.0.1       www.czzsyzxl.com
127.0.0.1       union.baidu2019.com

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2572264492-182372228-3150790763-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Roccat Talk.lnk => C:\Windows\pss\Roccat Talk.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^yakashi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse.lnk => C:\Windows\pss\Curse.lnk.Startup
MSCONFIG\startupfolder: C:^Users^yakashi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MEGAsync.lnk => C:\Windows\pss\MEGAsync.lnk.Startup
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\yakashi\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: Autodesk Desktop App => "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
MSCONFIG\startupreg: IAStorIcon => "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
MSCONFIG\startupreg: Ihsoft => C:\Windows\SysWOW64\regsvr32.exe C:\Users\yakashi\AppData\Local\IRTsoft\PtCres.dll
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LCgmmouse20Run => "C:\Program Files (x86)\Lioncast LM30 Gaming Mouse\LCmon.exe" -runauto
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: OKAYFREEDOM Notifier => "C:\Program Files (x86)\OkayFreedom\Notifier.exe"
MSCONFIG\startupreg: OKAYFREEDOM_Agent => "C:\Program Files (x86)\OkayFreedom\OkayFreedomClient.exe" -agent
MSCONFIG\startupreg: OKAYFREEDOM_Update => "C:\Program Files (x86)\OkayFreedom\Updater.exe" --resume --verbosity silent
MSCONFIG\startupreg: Overwolf => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe -overwolfsilent
MSCONFIG\startupreg: Razer Synapse => "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
MSCONFIG\startupreg: ROCCAT Savu Gaming Mouse => "C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe" /Automation 
MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
MSCONFIG\startupreg: ShadowPlay => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Steam => "D:\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
MSCONFIG\startupreg: uTorrent => "C:\Users\yakashi\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
MSCONFIG\startupreg: UX Launcher => C:\Program Files (x86)\UX Pack\uxlaunch.exe

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{C154F0CD-BD0E-49FE-A08B-ADFA3DEB513D}] => D:\Steam\Steam.exe
FirewallRules: [{D67D0C7A-1EE8-41E7-91FA-6AA3B6DB1557}] => D:\Steam\Steam.exe
FirewallRules: [{EC280919-019C-4517-B9C7-6750AD836AB7}] => D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{14F4E6EB-C8AA-4A52-B243-2623BAF83044}] => D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{E873D290-8A82-4F57-883C-85DB853C59E7}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{3EE0569A-6554-4438-8CCB-66B4154B4C0F}] => LPort=2869
FirewallRules: [{3C7514D5-2EDD-41B7-B4ED-A7FA42AADB48}] => LPort=1900
FirewallRules: [{54F77AD7-F533-41B1-A96C-6579A590FACE}] => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{80D109E2-5C63-4E07-8952-6AC7DB14CC20}] => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{4243043F-F6CD-4A6A-AAE9-F6F4633BB014}] => C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{48D91D21-944E-42E4-ACD1-DBBA9CC7CE89}] => C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{604F4D52-C11C-4FDA-BE99-26E710336935}] => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{9898F13F-BABB-4731-9473-EC75C00E7AC6}] => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [TCP Query User{73743B1D-0BD7-4F80-82C9-242F1720082C}D:\steam games\steamapps\common\grand theft auto v\gta5.exe] => D:\steam games\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{A2C6B03F-A9DE-4CF3-BB10-3EE96D45297C}D:\steam games\steamapps\common\grand theft auto v\gta5.exe] => D:\steam games\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{F3420EC8-EBEC-4FCE-8A22-1D6084F36167}] => D:\STEAM GAMES\steamapps\common\YoutubersLife\YoutubersLife.exe
FirewallRules: [{06565DDD-714D-4C7B-84D1-86BD727FA035}] => D:\STEAM GAMES\steamapps\common\YoutubersLife\YoutubersLife.exe
FirewallRules: [TCP Query User{47D234EA-066F-4F95-9135-19EE32E9F1A3}D:\steam games\steamapps\common\rocketleague\binaries\win32\rocketleague.exe] => D:\steam games\steamapps\common\rocketleague\binaries\win32\rocketleague.exe
FirewallRules: [UDP Query User{248F18FD-8ED7-44DA-B25A-C1ECEE6782EB}D:\steam games\steamapps\common\rocketleague\binaries\win32\rocketleague.exe] => D:\steam games\steamapps\common\rocketleague\binaries\win32\rocketleague.exe
FirewallRules: [{9AB60475-2C0C-4D7F-993E-60DA8A303AC8}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{BBDD0042-6295-4692-8798-3884FC3C2A13}] => D:\STEAM GAMES\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{6B96A272-145D-408D-AB61-498AD76C087B}] => D:\STEAM GAMES\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{B4D9BBA7-D75D-4EAC-A0A5-D66F28F54F2F}] => D:\Steam\steamapps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{20A88BDE-1054-447C-ACBC-EE10732C0787}] => D:\Steam\steamapps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{76A2046E-627D-49C8-9392-9F7276DB86B4}] => D:\Steam\steamapps\common\Call of Duty Black Ops\BlackOpsMP.exe
FirewallRules: [{A046FFAF-523D-4CB6-8EB1-8D2769337E70}] => D:\Steam\steamapps\common\Call of Duty Black Ops\BlackOpsMP.exe
FirewallRules: [{DC2A7674-DAB4-42A0-AD32-861617653F3F}] => D:\STEAM GAMES\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{B9BA0BCB-1419-40C3-A32D-FEE4BA5BC7B2}] => D:\STEAM GAMES\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{A637E113-4FF3-43F3-8072-4DDA7A9E36CF}] => D:\STEAM GAMES\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [{224FD3C0-ED78-49DF-8D75-17E7E7D06AEE}] => D:\STEAM GAMES\steamapps\common\Call of Duty Black Ops II\t6sp.exe
FirewallRules: [TCP Query User{352FCEBE-321F-43BE-B9FC-62414E6E6817}C:\program files (x86)\arxgaming\crossfire\updater.exe] => C:\program files (x86)\arxgaming\crossfire\updater.exe
FirewallRules: [UDP Query User{8842CF5D-C92C-4F03-8825-0C94207452EE}C:\program files (x86)\arxgaming\crossfire\updater.exe] => C:\program files (x86)\arxgaming\crossfire\updater.exe
FirewallRules: [{E33CF4AC-FA07-47A0-B266-6FD379202B37}] => D:\STEAM GAMES\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{D4B913A5-E37D-46CD-A6CD-D09241C3C8D4}] => D:\STEAM GAMES\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{1A60A3BC-11F3-4DF0-BDB4-1EB05E1DD9FF}] => D:\STEAM GAMES\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{15B8D802-C50C-4053-9F44-DE3911989EAF}] => D:\STEAM GAMES\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [TCP Query User{75302D50-2C1C-4899-BDFB-F5F76A5F0D9A}D:\steam games\steamapps\common\call of duty black ops ii\t6mp.exe] => D:\steam games\steamapps\common\call of duty black ops ii\t6mp.exe
FirewallRules: [UDP Query User{F1BCE803-48DB-4864-80DE-E3FC93C78B3D}D:\steam games\steamapps\common\call of duty black ops ii\t6mp.exe] => D:\steam games\steamapps\common\call of duty black ops ii\t6mp.exe
FirewallRules: [{0463C8D8-B4EB-402C-975A-53FD2C392B62}] => D:\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{3111D372-B30C-4FAE-B30C-317B5EF2D85E}] => D:\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{092C1376-AC06-434A-96FB-FC3228F5EABB}] => D:\Origin\Need for Speed\NFS16.exe
FirewallRules: [{A933518E-0009-4C7C-A88E-9FFF2D5EFF5F}] => D:\Origin\Need for Speed\NFS16.exe
FirewallRules: [{E0C4FA1A-17FB-46AE-BF91-FAFEF1EC4F7D}] => D:\Origin\Need for Speed\NFS16_trial.exe
FirewallRules: [{BF13EF20-5E2B-4708-B33D-3E75CEB38821}] => D:\Origin\Need for Speed\NFS16_trial.exe
FirewallRules: [{6C09C7DA-714E-4031-86AF-0EE6EDFA77E2}] => D:\Origin\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [{C87E4FA4-9211-4F21-92EF-42B9CAA8BAA2}] => D:\Origin\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [TCP Query User{3F402526-40FD-43B4-A5D9-C08653ABAD82}D:\steam\steamapps\common\arma 3\arma3.exe] => D:\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [UDP Query User{D689010C-FA53-4FEC-A7F7-AAC59B7B63FE}D:\steam\steamapps\common\arma 3\arma3.exe] => D:\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [{0245273A-4C90-4071-9C35-626A161CB039}] => D:\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{A976202E-6A7E-4E43-9790-CD6ADE8693DE}] => D:\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{3AAA6858-066E-48E4-8A2E-DA2C7FBB3EF8}] => C:\Users\yakashi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{3FE5C8E4-CBAB-47A9-BA8A-5090550B9DCE}] => C:\Users\yakashi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A6F93A87-5C22-4594-8B66-DB93A6CA1E05}] => C:\Users\yakashi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{DA5F52FC-5760-4A46-BB74-D27B87A0F0FD}] => C:\Users\yakashi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A4266F27-D898-4820-BB3D-592F15E6A15F}] => C:\Users\yakashi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{EA0A30D8-8A68-4CB4-B64F-3E701DEC6374}] => C:\Users\yakashi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{853AB005-0400-42E3-A2F7-90EC6C664786}] => D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{AD647B70-1BEA-48EA-93BB-87A6B3AF96EB}] => D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [TCP Query User{F0171D46-E230-42B5-B427-9FD8350CC4FF}D:\origin\fifa 16\fifa16.exe] => D:\origin\fifa 16\fifa16.exe
FirewallRules: [UDP Query User{B474C108-783C-47E7-9213-A436D3B9B52C}D:\origin\fifa 16\fifa16.exe] => D:\origin\fifa 16\fifa16.exe
FirewallRules: [TCP Query User{58A90E93-0CB4-441D-B76E-204F1271DAEC}D:\overwatch\overwatch.exe] => D:\overwatch\overwatch.exe
FirewallRules: [UDP Query User{C49A4896-8D01-4659-9EED-558493E89A24}D:\overwatch\overwatch.exe] => D:\overwatch\overwatch.exe
FirewallRules: [TCP Query User{3C118DAE-F4D5-4AAF-B8CC-806DB8B7C683}D:\origin\fifa 17\fifa17.exe] => D:\origin\fifa 17\fifa17.exe
FirewallRules: [UDP Query User{0191E049-B320-4A66-A755-DCF5694552A6}D:\origin\fifa 17\fifa17.exe] => D:\origin\fifa 17\fifa17.exe
FirewallRules: [{6CBB3147-FD41-4480-B0B3-283510667F56}] => D:\STEAM GAMES\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{C165C53B-FBB5-443C-B45B-EF119AA382D5}] => D:\STEAM GAMES\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [TCP Query User{A4C0C456-087E-4AE2-9341-A06CFFDE5232}C:\users\yakashi\appdata\local\akamai\netsession_win.exe] => C:\users\yakashi\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{0E824E0E-B1D6-4950-B81F-27847D8FD10F}C:\users\yakashi\appdata\local\akamai\netsession_win.exe] => C:\users\yakashi\appdata\local\akamai\netsession_win.exe
FirewallRules: [{7BB74303-1648-42C1-A09B-D97485FA28C1}] => D:\STEAM GAMES\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{A05C36E7-621B-4277-8968-EB148C93AC4A}] => D:\STEAM GAMES\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [TCP Query User{8C19CFB5-B665-4FFE-B59C-6259432F727E}C:\program files\java\jre1.8.0_102\bin\javaw.exe] => C:\program files\java\jre1.8.0_102\bin\javaw.exe
FirewallRules: [UDP Query User{79824693-369C-4ADC-A03D-86616519F550}C:\program files\java\jre1.8.0_102\bin\javaw.exe] => C:\program files\java\jre1.8.0_102\bin\javaw.exe
FirewallRules: [TCP Query User{982566ED-5024-45D2-BF71-0FF67075C412}C:\users\yakashi\desktop\streets of crime - cops and robbers\samp-server.exe] => C:\users\yakashi\desktop\streets of crime - cops and robbers\samp-server.exe
FirewallRules: [UDP Query User{CDE26847-1BA0-4C65-8E9D-C9A1F1D5BF5F}C:\users\yakashi\desktop\streets of crime - cops and robbers\samp-server.exe] => C:\users\yakashi\desktop\streets of crime - cops and robbers\samp-server.exe
FirewallRules: [TCP Query User{C6CC5BFB-0105-48EF-BD11-221267D8FE63}C:\xampp\apache\bin\httpd.exe] => C:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{208AC28E-67B5-4D36-AC4B-46E07085B89E}C:\xampp\apache\bin\httpd.exe] => C:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{19414C0E-5BB7-4843-8E4D-DC740DC2A8D5}C:\xampp\mysql\bin\mysqld.exe] => C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{00EFAE64-D055-4D6D-97E4-3C39E267F736}C:\xampp\mysql\bin\mysqld.exe] => C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{61A49BE5-1E75-4527-AF8C-1791634014AB}D:\assetto corsa\assetto corsa\acs.exe] => D:\assetto corsa\assetto corsa\acs.exe
FirewallRules: [UDP Query User{31C55226-954E-479F-9C58-2A90518EF175}D:\assetto corsa\assetto corsa\acs.exe] => D:\assetto corsa\assetto corsa\acs.exe
FirewallRules: [TCP Query User{B9BD4A55-7605-4385-A5FE-5DA23C079143}C:\users\yakashi\desktop\mapeditor fullpack\server 0.3z r2\samp-server.exe] => C:\users\yakashi\desktop\mapeditor fullpack\server 0.3z r2\samp-server.exe
FirewallRules: [UDP Query User{6EA11606-5678-4691-9E59-F46C4690FD09}C:\users\yakashi\desktop\mapeditor fullpack\server 0.3z r2\samp-server.exe] => C:\users\yakashi\desktop\mapeditor fullpack\server 0.3z r2\samp-server.exe
FirewallRules: [TCP Query User{8E3B91E4-0826-4486-AE19-04B1F080C879}C:\users\yakashi\desktop\mapeditor fullpack\texture-studio-master\samp-server.exe] => C:\users\yakashi\desktop\mapeditor fullpack\texture-studio-master\samp-server.exe
FirewallRules: [UDP Query User{A4742DE1-B21A-4EED-8676-8B3A98FE83EB}C:\users\yakashi\desktop\mapeditor fullpack\texture-studio-master\samp-server.exe] => C:\users\yakashi\desktop\mapeditor fullpack\texture-studio-master\samp-server.exe
FirewallRules: [{64D639F4-82CF-4C6E-89AB-D22100570215}] => D:\STEAM GAMES\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{96968F29-DB47-43E8-A522-CAE9519DE3A0}] => D:\STEAM GAMES\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{BEF4AADA-7649-41C0-A50D-46F25EB86904}] => D:\STEAM GAMES\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{9605BBFE-30A1-4785-81E3-E83D5A1CFCBC}] => D:\STEAM GAMES\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{17F5492B-D9D4-46CD-92DF-DA4AEE57DCDB}] => D:\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [{B2AA3AC1-533A-4032-B740-BDBF5CB2E1F6}] => D:\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [TCP Query User{E04608B7-80A4-400F-8AB4-6E354000D0B0}D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [UDP Query User{BF44CA56-9FEE-4CDD-AE20-432702244286}D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [{B2F78E63-0A1E-404F-8120-ED562D638FE4}] => C:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{E8C24C47-F5C0-407D-89EB-3FBC50F9A557}] => C:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{EB70119F-9788-4950-B1F5-989671C83AE3}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{BF3AA2C3-ACFB-4C43-9A22-85E17FF4F755}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{ED8F8BC3-0EDC-4460-8D68-6690BF3EF5C5}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{85FC551A-DF3F-455B-99A3-E26ECCB7DB80}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{40DB1672-CF66-4B25-A7FE-32AAD83B5B1D}] => C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{C19F1CB3-86D2-459E-92D9-3096928774BB}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{A804337B-3FC9-4175-BF95-6CB65514522F}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{B4FAEA4F-CD69-48A1-98EA-C1D5D9035CC6}C:\games\world_of_warships\wowslauncher.exe] => C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [UDP Query User{812CC328-2D7B-49E6-BCA2-B389AE8B4564}C:\games\world_of_warships\wowslauncher.exe] => C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [{343367D6-E30F-43E1-A945-F7F86CC7DA99}] => C:\WarThunder\run.exe
FirewallRules: [{A1248029-CBF9-40E0-93C2-C8E047571196}] => C:\WarThunder\run.exe
FirewallRules: [{313C93BD-71C0-4F2D-9933-B74A1B5FB44D}] => LPort=80
FirewallRules: [{CF8102D3-8A93-4348-92DC-23D15B0DC945}] => LPort=443
FirewallRules: [{7F9EA741-3353-4B5E-AC6B-3B174092FEC1}] => LPort=20010
FirewallRules: [{103CB3F1-CA23-4754-8A51-4C63CEC74D86}] => LPort=3478
FirewallRules: [{45747647-D43A-4481-B061-FB86FBEF94C2}] => LPort=7850
FirewallRules: [{748C92A9-DD26-4F92-9F3A-D8ABC7D14235}] => LPort=7852
FirewallRules: [{16751B4F-DF3A-4E6E-A9EB-55D73E4D1696}] => LPort=7853
FirewallRules: [{9CEC824F-AB69-4C31-9C66-8F03FF859D04}] => LPort=27022
FirewallRules: [{413A241E-0489-4A66-A0AA-00C5C65EC997}] => LPort=6881
FirewallRules: [{0AC93F84-0568-46DA-92C2-9B055F73DB73}] => LPort=33333
FirewallRules: [{63246DC3-F7E5-4860-9625-99184C4D21D0}] => LPort=20443
FirewallRules: [{CAA0F976-F41E-4D49-BB6F-FF4BE79D90D4}] => LPort=8090
FirewallRules: [{18A48DD0-AE08-482B-9DD2-99E08DB9B74A}] => D:\STEAM GAMES\steamapps\common\Dead by Daylight\DeadByDaylight.exe
FirewallRules: [{9B4856AD-4962-4E60-9533-0185DA63850A}] => D:\STEAM GAMES\steamapps\common\Dead by Daylight\DeadByDaylight.exe
FirewallRules: [TCP Query User{EBED365D-14C9-48AF-8E7D-3C5248BE2C6B}D:\steam games\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => D:\steam games\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe
FirewallRules: [UDP Query User{BB9DD903-B452-4FB0-A7B3-2E35F8F1C127}D:\steam games\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => D:\steam games\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe
FirewallRules: [TCP Query User{960E645C-8A65-45D5-B230-F1B2373CFB23}C:\sinusbot\sinusbot.exe] => C:\sinusbot\sinusbot.exe
FirewallRules: [UDP Query User{2BCE5799-BF10-4856-8F70-0FF64A0208A0}C:\sinusbot\sinusbot.exe] => C:\sinusbot\sinusbot.exe
FirewallRules: [{37260D11-F556-453B-A92C-C051AAEDE6CA}] => D:\STEAM GAMES\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe
FirewallRules: [{D0098E91-9895-4D6D-B056-9515D314B185}] => D:\STEAM GAMES\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe
FirewallRules: [{6079BABD-47BD-41E9-A90F-F3F106BE9CEB}] => D:\Origin\FIFA 17\FIFASetup\fifaconfig.exe
FirewallRules: [{C3652AFF-1435-4303-BBF8-65ECE241EE30}] => D:\Origin\FIFA 17\FIFASetup\fifaconfig.exe
FirewallRules: [{EF4BDED4-4E5D-40DB-A4C4-155548FD6016}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{F2EBF2F1-DFD8-4CB4-B258-28F801B4FB47}D:\crossfirearx\updater.exe] => D:\crossfirearx\updater.exe
FirewallRules: [UDP Query User{EE5E6B2C-1A25-4171-AA76-31BC8D58786C}D:\crossfirearx\updater.exe] => D:\crossfirearx\updater.exe
FirewallRules: [{9CDF1C5E-6D3E-4B26-B924-7F17B8330BF9}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{AD220EF0-B6DC-4E5A-843F-FFFD2A942323}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{0807B64D-ED82-4952-BE5E-24A282B10086}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{A4200EB5-35B4-4541-AE64-B8E3DF62D40C}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{70C2845C-8A09-4710-A883-EC84CB286F89}] => D:\FlyVPN\FlyVPN.exe
FirewallRules: [{06A1184B-922A-4546-9F22-3C98C2EFF16F}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{C0E1C40E-9DBA-4F28-AD73-A7592F997885}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{9F5D2263-57C9-421E-90B9-F4587BF97D4E}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{94D9E19A-3494-4BD4-8D45-A1D8B8E62551}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D2303C7A-4BED-4F96-A526-5165BEA68782}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{4BE9F3FC-CA14-4492-8B4E-1BA1B2FC3D08}D:\crossfire\updater.exe] => D:\crossfire\updater.exe
FirewallRules: [UDP Query User{5860EEB4-085D-4FC3-BB1A-3C89C96D1F83}D:\crossfire\updater.exe] => D:\crossfire\updater.exe

==================== Wiederherstellungspunkte =========================

01-12-2016 12:55:53 Removed Autodesk Inventor Server Engine for 3ds Max 2017.
01-12-2016 12:56:14 Removed VEGAS Pro 14.0 (64-bit)
01-12-2016 12:56:37 Removed Autodesk 3ds Max 2017 Populate Data.

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Microsoft PS/2-Maus
Description: Microsoft PS/2-Maus
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Standardtastatur (PS/2)
Description: Standardtastatur (PS/2)
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardtastaturen)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (12/01/2016 12:55:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IAStorDataMgrSvc.exe, Version: 14.8.0.1042, Zeitstempel: 0x5639dd97
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0334c9dd
ID des fehlerhaften Prozesses: 0x1f70
Startzeit der fehlerhaften Anwendung: 0x01d24bc9d7ee2584
Pfad der fehlerhaften Anwendung: C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 18813e24-b7bd-11e6-8202-4ccc6a61d306

Error: (12/01/2016 12:55:46 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.NullReferenceException
   bei IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   bei IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   bei System.Threading.ThreadPoolWorkQueue.Dispatch()
   bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (11/30/2016 03:17:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IAStorDataMgrSvc.exe, Version: 14.8.0.1042, Zeitstempel: 0x5639dd97
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x038bc9dd
ID des fehlerhaften Prozesses: 0x1908
Startzeit der fehlerhaften Anwendung: 0x01d24b146fe87c74
Pfad der fehlerhaften Anwendung: C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: b0244d54-b707-11e6-918e-4ccc6a61d306

Error: (11/30/2016 03:17:12 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.NullReferenceException
   bei IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   bei IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   bei System.Threading.ThreadPoolWorkQueue.Dispatch()
   bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (11/30/2016 03:00:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IAStorDataMgrSvc.exe, Version: 14.8.0.1042, Zeitstempel: 0x5639dd97
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0382c9dd
ID des fehlerhaften Prozesses: 0x109c
Startzeit der fehlerhaften Anwendung: 0x01d24b1217273651
Pfad der fehlerhaften Anwendung: C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 57539de1-b705-11e6-82c3-4ccc6a61d306

Error: (11/30/2016 03:00:24 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.NullReferenceException
   bei IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   bei IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   bei System.Threading.ThreadPoolWorkQueue.Dispatch()
   bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (11/30/2016 02:54:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IAStorDataMgrSvc.exe, Version: 14.8.0.1042, Zeitstempel: 0x5639dd97
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x030cc9dd
ID des fehlerhaften Prozesses: 0x169c
Startzeit der fehlerhaften Anwendung: 0x01d24b113433d100
Pfad der fehlerhaften Anwendung: C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 73dc1470-b704-11e6-a7e8-4ccc6a61d306

Error: (11/30/2016 02:54:03 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.NullReferenceException
   bei IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   bei IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   bei System.Threading.ThreadPoolWorkQueue.Dispatch()
   bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (11/29/2016 09:58:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IAStorDataMgrSvc.exe, Version: 14.8.0.1042, Zeitstempel: 0x5639dd97
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00e3c9dd
ID des fehlerhaften Prozesses: 0x19f8
Startzeit der fehlerhaften Anwendung: 0x01d24a834a7403b0
Pfad der fehlerhaften Anwendung: C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 8ad49aa0-b676-11e6-a98c-4ccc6a61d306

Error: (11/29/2016 09:58:12 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.NullReferenceException
   bei IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   bei IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   bei System.Threading.ThreadPoolWorkQueue.Dispatch()
   bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()


Systemfehler:
=============
Error: (12/01/2016 12:55:50 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Rapid Storage Technology" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (12/01/2016 12:53:42 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
cdrom

Error: (12/01/2016 12:53:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Origin Web Helper Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (12/01/2016 12:53:41 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (60000 ms) wurde beim Verbindungsversuch mit dem Dienst Origin Web Helper Service erreicht.

Error: (12/01/2016 12:52:35 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT-AUTORITÄT)
Description: Die Energieverwaltungsfeatures für Leistung des Prozessors "3" in der Gruppe "0" sind aufgrund eines Firmwareproblems deaktiviert. Erkundigen Sie sich beim Hersteller des Computers nach aktualisierter Firmware.

Error: (12/01/2016 12:52:35 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT-AUTORITÄT)
Description: Die Energieverwaltungsfeatures für Leistung des Prozessors "2" in der Gruppe "0" sind aufgrund eines Firmwareproblems deaktiviert. Erkundigen Sie sich beim Hersteller des Computers nach aktualisierter Firmware.

Error: (12/01/2016 12:52:35 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT-AUTORITÄT)
Description: Die Energieverwaltungsfeatures für Leistung des Prozessors "1" in der Gruppe "0" sind aufgrund eines Firmwareproblems deaktiviert. Erkundigen Sie sich beim Hersteller des Computers nach aktualisierter Firmware.

Error: (12/01/2016 12:52:35 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 35) (User: NT-AUTORITÄT)
Description: Die Energieverwaltungsfeatures für Leistung des Prozessors "0" in der Gruppe "0" sind aufgrund eines Firmwareproblems deaktiviert. Erkundigen Sie sich beim Hersteller des Computers nach aktualisierter Firmware.

Error: (12/01/2016 12:52:39 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎30.‎11.‎2016 um 23:52:06 unerwartet heruntergefahren.

Error: (11/30/2016 03:17:16 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Rapid Storage Technology" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Prozentuale Nutzung des RAM: 21%
Installierter physikalischer RAM: 14826.85 MB
Verfügbarer physikalischer RAM: 11659.46 MB
Summe virtueller Speicher: 29651.89 MB
Verfügbarer virtueller Speicher: 26615.32 MB

==================== Laufwerke ================================

Drive b: (Lokaler Fotzenträger) (Fixed) (Total:465.76 GB) (Free:422.14 GB) NTFS
Drive c: (Lokaler Klamottenträger) (Fixed) (Total:236 GB) (Free:24.63 GB) NTFS
Drive d: (Lokaler Nuttenträger) (Fixed) (Total:931.41 GB) (Free:114.98 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 236 GB) (Disk ID: 11E626FB)
Partition 1: (Active) - (Size=236 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: E159512B)
Partition 1: (Active) - (Size=931.4 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 1956BF5A)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================

cosinus · 01.12.2016, 13:03

Bitte Avast deinstallieren. Das Teil können wir einfach nicht mehr guten Gewissens empfehlen. => Antivirensoftware: Schutz Für Ihre Dateien, Aber Auf Kosten Ihrer Privatsphäre? | Emsisoft Blog

Auch andere Freewareanbieter wie Avira, AVG oder Panda springen auf diesen oder ähnlichen Zügen rauf, basteln Junkware in die Setups, arbeiten mit ASK zusammen etc; so was ist bei Sicherheitssoftware einfach inakzeptabel.

Gib Bescheid wenn Avast weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren!

yakashi97 · 01.12.2016, 13:09

Hab Avast deinstalliert und auch den Computer neugestartet.
FRST LOG:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 30-11-2016
durchgeführt von yakashi (Administrator) auf YAKASHI-PC (01-12-2016 13:08:46)
Gestartet von C:\Users\yakashi\Desktop
Geladene Profile: yakashi (Verfügbare Profile: yakashi)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(The Within Network, LLC) C:\Windows\UnsignedThemesSvc.exe
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(IObit) C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Razer Inc) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Updater\Updater.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\HSSCP.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Winlogon: [Userinit] userinit.exe,C:\Program Files (x86)\aivadflp\ilnmnfug.exe, [X]
HKU\S-1-5-21-2572264492-182372228-3150790763-1000\...\MountPoints2: {5e3da5ff-827d-11e6-ac6c-4ccc6a61d306} - G:\setup.exe
HKU\S-1-5-21-2572264492-182372228-3150790763-1000\...\Winlogon: [Shell] c:\windows\explorer.exe [2872320 2010-11-20] (Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-18\...\Run: [] => 0
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2016-09-18] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\yakashi\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] ()
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\yakashi\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] ()
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\yakashi\AppData\Local\MEGAsync\ShellExtX64.dll [2016-06-30] ()
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  Keine Datei

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\..\Interfaces\{3A231831-A6A7-4122-82AA-B18E85CAF178}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{6067DDCE-2A82-487F-8C19-7E8CFF1A228C}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_102\bin\ssv.dll [2016-09-18] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll => Keine Datei
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_102\bin\jp2ssv.dll [2016-09-18] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_102\bin\ssv.dll [2016-09-18] (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_102\bin\jp2ssv.dll [2016-09-18] (Oracle Corporation)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\dtplugin\npDeployJava1.dll [2016-09-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.102.2 -> C:\Program Files\Java\jre1.8.0_102\bin\plugin2\npjp2.dll [2016-09-18] (Oracle Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-25] (Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.102.2 -> C:\Program Files (x86)\Java\jre1.8.0_102\bin\dtplugin\npDeployJava1.dll [2016-09-18] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.102.2 -> C:\Program Files (x86)\Java\jre1.8.0_102\bin\plugin2\npjp2.dll [2016-09-18] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-24] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-24] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-09-18] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-25] (Adobe Systems)

Chrome: 
=======
CHR DefaultProfile: ChromeDefaultData
CHR HomePage: ChromeDefaultData -> hxxp://www.google.de/
CHR StartupUrls: ChromeDefaultData -> "hxxps://www.google.de/"
CHR Profile: C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2016-12-01] <==== ACHTUNG
CHR Extension: (ProxFlow) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aakchaleigkohafkfjfjbblobjifikek [2016-10-15]
CHR Extension: (Google Präsentationen) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-09-18]
CHR Extension: (Google Docs) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2016-09-18]
CHR Extension: (Google Drive) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-18]
CHR Extension: (YouTube) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-09-18]
CHR Extension: (Adblock Plus) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-26]
CHR Extension: (Google Tabellen) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-09-18]
CHR Extension: (Google Docs Offline) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-18]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-09-18]
CHR Extension: (Google Mail) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-09-18]
CHR Extension: (Chrome Media Router) - C:\Users\yakashi\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-14]

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1295376 2016-07-01] (Autodesk Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-25] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-08-05] (Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1456136 2016-10-11] ()
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [392168 2016-08-31] (Digital Wave Ltd.)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-08-29] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [229648 2016-10-30] (EasyAntiCheat Ltd)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2627080 2016-11-11] (LogMeIn Inc.)
R2 hshld; C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [2710648 2016-08-24] (AnchorFree Inc.)
S3 HssTrayService; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [103168 2016-08-24] ()
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19440 2015-11-04] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-11-11] (LogMeIn, Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-11-17] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-11-17] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-11-24] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-11-17] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119688 2016-11-22] (Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2180624 2016-11-22] (Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1316080 2016-11-23] (Overwolf LTD)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-25] ()
R2 RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [4261344 2016-11-04] (Razer Inc)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)
R2 UnsignedThemes; C:\Windows\UnsignedThemesSvc.exe [24168 2009-07-13] (The Within Network, LLC)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 AFTrafMgr1.1; C:\Program Files (x86)\Hotspot Shield\bin\TrafMgr_1_1_64.sys [54712 2016-08-23] (AnchorFree Inc.)
R0 amdide64; C:\Windows\System32\DRIVERS\amdide64.sys [11944 2016-09-18] (Advanced Micro Devices Inc.)
R0 asstor64; C:\Windows\System32\DRIVERS\asstor64.sys [83792 2016-09-18] (Asmedia Technology)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-09-25] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-09-25] (Disc Soft Ltd)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-09-18] (REALiX(tm))
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [32224 2016-11-22] (Intel Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [181304 2016-03-28] (Intel Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-11-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46016 2016-11-17] (NVIDIA Corporation)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [44144 2016-09-17] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [137840 2016-09-07] (Razer, Inc.)
R3 RZSURROUNDVADService; C:\Windows\System32\drivers\RzSurroundVAD.sys [49176 2016-10-16] (Windows (R) Win 7 DDK provider)
R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
S3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [33960 2016-09-23] (Synaptics Incorporated)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 tap0901_openvpn_accl; C:\Windows\System32\DRIVERS\tap0901_openvpn_accl.sys [37912 2016-11-20] (The OpenVPN Project)
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42064 2016-08-23] (Anchorfree Inc.)
R2 uxpatch; C:\Windows\system32\drivers\uxpatch.sys [30568 2009-07-13] ()
S3 xb1usb; C:\Windows\System32\DRIVERS\xb1usb.sys [42760 2016-02-21] (Microsoft Corporation)
U0 aswVmm; kein ImagePath
U2 StartMenuReviverService; kein ImagePath
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 X6va063; \??\C:\Windows\SysWOW64\Drivers\X6va063 [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-12-01 13:08 - 2016-12-01 13:08 - 00018386 _____ C:\Users\yakashi\Desktop\FRST.txt
2016-12-01 12:59 - 2016-12-01 12:59 - 00000000 ____D C:\Users\yakashi\Desktop\FRST-OlderVersion
2016-11-30 16:56 - 2016-12-01 13:08 - 00000000 ____D C:\FRST
2016-11-30 16:56 - 2016-12-01 12:59 - 02411520 _____ (Farbar) C:\Users\yakashi\Desktop\FRST64.exe
2016-11-30 15:55 - 2016-11-30 15:55 - 00041537 _____ C:\Users\yakashi\Desktop\Blaffert 10_2016.pdf
2016-11-30 15:55 - 2016-11-30 15:55 - 00039744 _____ C:\Users\yakashi\Desktop\Blaffert 11_2016.pdf
2016-11-30 15:46 - 2016-11-30 15:46 - 00039744 _____ C:\Users\yakashi\Downloads\Blaffert 11_2016.pdf
2016-11-30 15:45 - 2016-11-30 15:45 - 00041537 _____ C:\Users\yakashi\Downloads\Blaffert 10_2016.pdf
2016-11-30 15:44 - 2016-11-30 15:44 - 00001325 _____ C:\Users\yakashi\Desktop\scan.txt
2016-11-30 15:03 - 2016-11-30 15:03 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-11-30 15:03 - 2016-11-24 20:22 - 00134712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-11-30 15:03 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-11-30 15:03 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-11-30 15:03 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-11-30 15:03 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-11-30 15:02 - 2016-11-24 21:54 - 40123840 _____ C:\Windows\system32\nvcompiler.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 35224632 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 34701760 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 28139576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 17440928 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 17373312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 14410120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 14057528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-11-30 15:02 - 2016-11-24 21:54 - 10912744 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 10795312 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 10346208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 09151216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 08913512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 08754344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 03643840 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 03206592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 01951680 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437609.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437609.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 01036736 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00974272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00945208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00895424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00683640 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00572888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00521096 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00439864 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00435904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00407248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00390200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00170872 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00153368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00148200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-11-30 15:02 - 2016-11-24 21:54 - 00131720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-11-28 14:20 - 2016-11-28 14:20 - 01222159 _____ C:\Users\yakashi\Downloads\OptiFine_1.7.10_HD_U_D6.jar
2016-11-28 13:48 - 2016-11-28 14:10 - 00000000 ____D C:\Users\yakashi\Desktop\GTA - San Andreas
2016-11-27 18:23 - 2016-11-27 18:23 - 00000000 ____D C:\Users\yakashi\Desktop\Neuer Ordner
2016-11-27 13:16 - 2016-11-27 13:16 - 00000986 _____ C:\Users\Public\Desktop\SciTE4AutoHotkey.lnk
2016-11-27 13:16 - 2016-11-27 13:16 - 00000000 ____D C:\Users\yakashi\Documents\AutoHotkey
2016-11-27 13:16 - 2016-11-27 13:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SciTE4AutoHotkey
2016-11-27 13:15 - 2016-11-27 13:15 - 01924681 _____ (fincs) C:\Users\yakashi\Downloads\SciTE4AHK300601_Install.exe
2016-11-27 01:29 - 2016-11-27 01:29 - 00010881 _____ C:\Users\yakashi\Desktop\julian adventskalender.pwn
2016-11-27 00:47 - 2016-11-27 00:47 - 00007564 _____ C:\Users\yakashi\Desktop\present.pwn
2016-11-27 00:42 - 2016-11-27 00:42 - 00001139 _____ C:\Users\yakashi\Desktop\autohaus gtarl.pwn
2016-11-27 00:26 - 2016-11-27 00:26 - 00657365 _____ C:\Users\yakashi\Desktop\maps.pwn
2016-11-27 00:10 - 2016-11-27 00:10 - 00837119 _____ C:\Users\yakashi\Downloads\editor.rar
2016-11-26 23:41 - 2016-11-26 23:41 - 16270006 _____ C:\Users\yakashi\Downloads\sa-mp-0.3.7-install.exe
2016-11-26 23:41 - 2016-11-26 23:41 - 02094241 _____ C:\Users\yakashi\Downloads\samp037_svr_R2-1-1_win32.zip
2016-11-26 21:43 - 2016-11-26 21:43 - 02509914 _____ C:\Users\yakashi\Downloads\Message bling sound.rar
2016-11-26 21:23 - 2016-11-26 21:36 - 3979544377 _____ C:\Users\yakashi\Downloads\CrossFire_ARxGaming.zip
2016-11-26 21:18 - 2016-11-26 21:18 - 01847449 _____ C:\Users\yakashi\Downloads\HGWC.rar
2016-11-26 21:12 - 2016-11-28 20:32 - 00000643 _____ C:\Users\yakashi\Desktop\CrossFire ArxGaming.lnk
2016-11-26 13:15 - 2016-10-18 18:21 - 00786815 _____ C:\Users\yakashi\Desktop\Laufscript.exe
2016-11-26 00:08 - 2016-11-27 18:16 - 00000000 ____D C:\Users\yakashi\Desktop\gtarl
2016-11-26 00:07 - 2016-11-26 00:07 - 00001068 _____ C:\Users\yakashi\Desktop\GTA SA.lnk
2016-11-26 00:07 - 2016-11-26 00:07 - 00000000 ____D C:\Users\yakashi\Desktop\WH KEYBINDER
2016-11-25 12:17 - 2016-11-25 12:17 - 02285109 _____ C:\Users\yakashi\Downloads\PRIVATKI DOZZER.rar
2016-11-25 00:23 - 2016-11-25 00:23 - 08108436 _____ C:\Users\yakashi\Downloads\2012 BMW M3 E92 Hamann.zip
2016-11-25 00:22 - 2016-11-25 00:22 - 15637566 _____ C:\Users\yakashi\Downloads\Транспорт - BMW_e30_UDC[SAMODS.RU].rar
2016-11-25 00:15 - 2016-11-25 00:15 - 15640912 _____ C:\Users\yakashi\Downloads\1476393124_E36 SEDAN.zip
2016-11-24 20:18 - 2016-11-24 20:19 - 41599579 _____ C:\Users\yakashi\Documents\Ohne Titel.mp4
2016-11-24 17:39 - 2016-11-24 17:39 - 43086377 _____ C:\Users\yakashi\Downloads\client_21031.zip
2016-11-24 13:35 - 2016-11-24 13:35 - 00000970 _____ C:\Users\yakashi\Downloads\listen.asx
2016-11-24 13:35 - 2016-11-24 13:35 - 00000970 _____ C:\Users\yakashi\Downloads\listen (1).asx
2016-11-24 02:59 - 2016-11-24 02:59 - 05763621 _____ C:\Users\yakashi\Downloads\Sounds (1).rar
2016-11-24 02:59 - 2016-11-24 02:59 - 01091085 _____ C:\Users\yakashi\Downloads\sounds.rar
2016-11-24 02:56 - 2016-11-24 02:56 - 10611225 _____ C:\Users\yakashi\Downloads\71344-bmw-m4-coupe.zip
2016-11-24 02:51 - 2016-11-24 02:51 - 09816325 _____ C:\Users\yakashi\Downloads\71429-bmw-m4-2014-liberty-walk.zip
2016-11-24 01:15 - 2016-11-24 01:15 - 00397091 _____ C:\Users\yakashi\Downloads\Smooth Camera.zip
2016-11-24 01:13 - 2016-11-24 01:13 - 01204711 _____ C:\Windows\unins000.exe
2016-11-24 01:13 - 2016-11-24 01:13 - 00894870 _____ (Seemann, Deji, Alien ) C:\Users\yakashi\Downloads\CLEO4_setup.exe
2016-11-23 20:53 - 2016-11-25 15:23 - 00007515 _____ C:\Users\yakashi\Downloads\WhatsApp Image 2016-11-20 at 17.21.51.jpeg
2016-11-23 18:47 - 2016-11-17 14:45 - 00101824 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-11-23 18:47 - 2016-11-17 14:45 - 00091584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-11-23 18:47 - 2016-11-17 14:45 - 00046016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-11-23 16:39 - 2016-11-23 16:39 - 00008945 _____ C:\Users\yakashi\Downloads\WhatsApp Ptt 2016-11-23 at 16.39.03.ogg; codecs=opus
2016-11-23 16:39 - 2016-11-23 16:39 - 00008572 _____ C:\Users\yakashi\Downloads\WhatsApp Ptt 2016-11-23 at 16.38.58.ogg; codecs=opus
2016-11-22 21:07 - 2016-11-22 21:07 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-11-22 21:07 - 2016-11-22 21:07 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-11-22 21:07 - 2016-11-22 21:07 - 00000000 ____D C:\Windows\system32\DAX2
2016-11-22 21:07 - 2016-11-22 21:07 - 00000000 ____D C:\Program Files\Realtek
2016-11-22 21:01 - 2016-11-22 21:01 - 00795640 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2016-11-22 21:01 - 2016-11-22 21:01 - 00032224 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2016-11-22 21:00 - 2016-11-22 21:00 - 72520720 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2016-11-22 21:00 - 2016-11-22 21:00 - 23505720 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRenderAVX64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 23414272 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRender64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 17378000 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioCapture64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 15202040 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE3.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 14057256 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 13122584 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 12988352 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 10534696 _____ (Intel Corporation) C:\Windows\system32\IntelSSTAPO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 07172912 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 07096184 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 07020920 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-11-22 21:00 - 2016-11-22 21:00 - 06374320 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV3apo.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 06264640 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 05804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
2016-11-22 21:00 - 2016-11-22 21:00 - 05793528 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 05593624 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 05341352 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 05310472 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2016-11-22 21:00 - 2016-11-22 21:00 - 03299832 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 03291320 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 03283248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 03203592 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 03133856 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02895104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2016-11-22 21:00 - 2016-11-22 21:00 - 02825104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02775360 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02706872 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02439048 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02203752 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02190992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02110592 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02073088 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 02050176 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01965816 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01959608 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01920820 _____ C:\Windows\system32\Drivers\rtkSSTsetting.dat
2016-11-22 21:00 - 2016-11-22 21:00 - 01780624 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01618032 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01591056 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01529136 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64Proxy.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01508928 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01435144 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01422928 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01382240 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01360520 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01337648 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaeapo64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01334384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01213664 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01186840 _____ (Intel Corporation) C:\Windows\system32\IntelSstCApoPropPage.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01166168 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01115136 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01041744 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01003864 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 01001800 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDHF64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00999856 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00965032 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00962136 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tosasfapo64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00931624 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00923752 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00873472 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00864344 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SEHDHF32.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00858208 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00854040 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00823816 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3xhc.sys
2016-11-22 21:00 - 2016-11-22 21:00 - 00743968 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00727440 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00725944 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00708312 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00689888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00678192 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00677680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00618192 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00601152 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaemaxapo64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00574752 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00571384 _____ (Intel Corporation) C:\Windows\system32\tbb_waves.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00532384 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00514528 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00504312 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00500560 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00498640 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00472312 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00467168 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00447728 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00447184 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\toseaeapo64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00445400 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00441272 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00438696 _____ (Conexant Systems, Inc.) C:\Windows\system32\CAF64APO2.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00428232 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00416512 _____ (Harman) C:\Windows\system32\HMUI.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00387320 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00381416 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00372736 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00366128 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00362056 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00360352 _____ (Harman) C:\Windows\system32\HMClariFi.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00343712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00341160 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00341160 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00330568 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00327456 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00321720 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00310424 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00272712 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00258864 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00253896 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00253872 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00252880 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00231920 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00221976 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00214840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00209544 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00203848 _____ (Harman) C:\Windows\system32\HMHVS.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00192984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00190936 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00190936 _____ (Harman) C:\Windows\system32\HMEQ.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00179600 _____ (Harman) C:\Windows\system32\HMLimiter.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00166208 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00158704 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00154368 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00151792 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00134208 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00122320 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00118600 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00118592 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00112496 _____ (Conexant Systems, Inc.) C:\Windows\system32\Caf64api.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00110992 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00105312 _____ C:\Windows\system32\audioLibVc.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00090920 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00088352 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00088328 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00084616 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00083624 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00075544 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00023696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2016-11-22 21:00 - 2016-11-22 21:00 - 00005604 _____ C:\Windows\system32\cxapo.lncs
2016-11-22 21:00 - 2016-11-22 21:00 - 00000736 _____ C:\Windows\system32\cxapo.prop
2016-11-22 19:18 - 2016-11-22 19:18 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign977265cf2a883c90
2016-11-22 19:18 - 2016-11-22 19:18 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign8d8e6ecb2758a646
2016-11-21 17:01 - 2016-11-21 17:01 - 03336882 _____ C:\Users\yakashi\Downloads\asd.rar
2016-11-21 16:54 - 2016-11-21 16:54 - 00942390 _____ C:\Users\yakashi\Downloads\Keybinder.rar
2016-11-21 01:24 - 2016-11-21 01:24 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\MSIConfig
2016-11-20 23:10 - 2016-11-20 23:10 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\NVIDIA
2016-11-20 23:08 - 2016-11-24 21:54 - 19948848 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-11-20 23:08 - 2016-11-24 21:54 - 00491536 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-11-20 23:08 - 2016-11-24 21:54 - 00041344 _____ C:\Windows\system32\nvinfo.pb
2016-11-20 23:08 - 2016-11-24 20:39 - 06384576 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-11-20 23:08 - 2016-11-24 20:39 - 02477624 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-11-20 23:08 - 2016-11-24 20:39 - 01762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-11-20 23:08 - 2016-11-24 20:39 - 00546752 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-11-20 23:08 - 2016-11-24 20:39 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-11-20 23:08 - 2016-11-24 20:39 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-11-20 23:08 - 2016-11-23 13:58 - 07538847 _____ C:\Windows\system32\nvcoproc.bin
2016-11-20 23:08 - 2016-11-17 03:04 - 01953336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437595.dll
2016-11-20 23:08 - 2016-11-17 03:04 - 01595456 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2016-11-20 23:08 - 2016-11-17 03:04 - 01585088 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437595.dll
2016-11-20 23:08 - 2016-11-17 03:04 - 00213952 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-11-20 23:08 - 2016-11-17 03:04 - 00212936 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-11-20 23:08 - 2016-11-17 03:04 - 00201664 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-11-20 23:08 - 2016-11-17 03:04 - 00046024 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-11-20 23:08 - 2016-11-17 03:04 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-11-20 23:08 - 2016-11-17 03:04 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2016-11-20 22:55 - 2016-12-01 13:07 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-20 22:55 - 2016-11-30 15:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-11-20 22:55 - 2016-11-30 15:04 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-11-20 22:55 - 2016-11-23 18:47 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-11-20 22:55 - 2016-11-23 18:47 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-11-20 22:55 - 2016-11-20 22:56 - 00000000 ____D C:\Users\yakashi\AppData\Local\NVIDIA
2016-11-20 22:55 - 2016-11-17 14:45 - 01755072 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-11-20 22:55 - 2016-11-17 14:45 - 01317312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-11-20 22:55 - 2016-11-17 14:45 - 00120256 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-11-20 22:54 - 2016-11-20 22:55 - 73981120 _____ (NVIDIA Corporation) C:\Users\yakashi\Downloads\GeForce_Experience_v3.1.0.52.exe
2016-11-20 12:53 - 2016-11-24 21:54 - 03941720 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-11-20 12:53 - 2016-11-24 21:54 - 03479744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-11-20 12:53 - 2016-11-24 20:39 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-11-20 12:53 - 2016-11-24 20:39 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2016-11-20 12:22 - 2016-11-17 14:45 - 01854400 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-11-20 12:22 - 2016-11-17 14:45 - 01452480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-11-20 12:15 - 2016-11-20 12:16 - 00095650 _____ C:\Windows\ntbtlog.txt
2016-11-20 10:56 - 2016-11-20 10:56 - 00037912 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tap0901_openvpn_accl.sys
2016-11-20 10:55 - 2016-11-20 10:56 - 00000000 ____D C:\ProgramData\FlyVPN
2016-11-20 10:55 - 2016-11-20 10:55 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FlyVPN
2016-11-20 10:54 - 2016-11-20 10:55 - 02133568 _____ (FlyVPN) C:\Users\yakashi\Downloads\FlyVPNInstaller_3.6.2.2.exe
2016-11-20 03:29 - 2016-11-20 03:29 - 01055510 _____ C:\Users\yakashi\Downloads\maurice.rar
2016-11-20 02:35 - 2016-11-20 02:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3
2016-11-20 02:35 - 2016-11-20 02:35 - 00000000 ____D C:\Program Files\MSI Kombustor 3
2016-11-20 02:34 - 2016-11-20 02:34 - 19819074 _____ (MSI Co., LTD ) C:\Users\yakashi\Downloads\MSI_Kombustor_Setup_3.5.2.1_x64.exe
2016-11-20 02:24 - 2016-11-20 02:24 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\JAM Software
2016-11-20 02:18 - 2016-11-20 02:18 - 09928496 _____ (JAM Software ) C:\Users\yakashi\Downloads\HeavyLoad-x64-Setup.exe
2016-11-20 02:18 - 2016-11-20 02:18 - 00000000 ____D C:\Program Files\JAM Software
2016-11-20 02:17 - 2016-11-20 02:17 - 00000000 ____D C:\Windows\SysWOW64\directx
2016-11-20 02:17 - 2016-11-20 02:17 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2016-11-20 02:17 - 2016-11-20 02:17 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2016-11-20 02:17 - 2016-11-20 02:17 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2016-11-20 02:17 - 2016-11-20 02:17 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2016-11-20 02:11 - 2016-11-20 02:11 - 1127223062 _____ C:\Windows\MEMORY.DMP
2016-11-20 02:11 - 2016-11-20 02:11 - 00872216 _____ C:\Windows\Minidump\112016-12604-01.dmp
2016-11-20 02:11 - 2016-11-20 02:11 - 00000000 ____D C:\Windows\Minidump
2016-11-20 02:04 - 2016-11-24 19:55 - 00000000 ____D C:\Users\yakashi\AppData\Local\NVIDIA Corporation
2016-11-20 01:57 - 2016-11-20 22:53 - 00000000 ____D C:\Users\yakashi\Downloads\settings
2016-11-20 01:57 - 2016-11-20 22:53 - 00000000 ____D C:\Users\yakashi\Downloads\DDU Logs
2016-11-20 01:57 - 2016-11-20 01:57 - 01129418 _____ (Igor Pavlov) C:\Users\yakashi\Downloads\DDU_v17.0.3.0.exe
2016-11-20 01:57 - 2016-11-20 01:57 - 00000000 ____D C:\Users\yakashi\Downloads\x64
2016-11-20 01:57 - 2016-10-25 19:21 - 01434112 _____ C:\Users\yakashi\Downloads\Display Driver Uninstaller.exe
2016-11-20 01:57 - 2016-10-25 19:21 - 00546304 _____ C:\Users\yakashi\Downloads\Display Driver Uninstaller.pdb
2016-11-20 01:57 - 2015-09-06 12:26 - 00000224 _____ C:\Users\yakashi\Downloads\Display Driver Uninstaller.exe.config
2016-11-20 01:35 - 2016-11-20 01:35 - 00032600 _____ C:\Users\yakashi\Downloads\asiloader.zip
2016-11-20 01:12 - 2016-11-20 01:12 - 00000000 ____D C:\NVIDIA
2016-11-20 00:06 - 2016-11-20 00:06 - 00001066 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-11-19 20:08 - 2016-11-19 20:08 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\npm
2016-11-19 20:08 - 2016-11-19 20:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Node.js
2016-11-19 20:08 - 2016-11-19 20:08 - 00000000 ____D C:\Program Files\nodejs
2016-11-19 15:53 - 2016-11-24 22:38 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\RealLifeRPG
2016-11-19 15:53 - 2016-11-19 15:53 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RealLifeRPG
2016-11-19 15:53 - 2016-11-19 15:53 - 00000000 ____D C:\Users\yakashi\AppData\Local\SquirrelTemp
2016-11-19 15:53 - 2016-11-19 15:53 - 00000000 ____D C:\Users\yakashi\AppData\Local\RealLifeRPG
2016-11-18 12:41 - 2016-11-18 12:41 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsigne5ad980403d43f8f
2016-11-18 01:00 - 2016-11-18 01:00 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsigne85634600fc93685
2016-11-17 20:01 - 2016-11-17 20:01 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsigne474e41904f67f97
2016-11-17 19:12 - 2016-11-17 19:12 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsigna001b5586abb9615
2016-11-17 16:07 - 2016-11-17 16:07 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign7374dce4b52fb315
2016-11-17 13:11 - 2016-11-17 13:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign77994062462cd779
2016-11-16 20:08 - 2016-11-16 20:08 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign599d10b1f225e4da
2016-11-16 18:28 - 2016-11-16 18:28 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign90d856c5e2989c09
2016-11-15 11:43 - 2016-11-15 11:43 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign6654733c6298a1d5
2016-11-15 11:31 - 2016-11-15 11:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-11-15 11:31 - 2016-11-15 11:31 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2016-11-13 18:30 - 2016-11-13 18:30 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignbb0e65e07ea8f574
2016-11-13 18:22 - 2016-11-13 18:22 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignf881167ce1563999
2016-11-13 18:22 - 2016-11-13 18:22 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign096e30b9346fd6ca
2016-11-11 22:33 - 2016-11-11 22:33 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Steganos Updates
2016-11-08 18:53 - 2016-11-08 18:53 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignfb9607c0028ace4a
2016-11-08 18:50 - 2016-11-08 18:50 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignde802797b7a02827
2016-11-07 23:35 - 2016-11-07 23:35 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign30bdcf888e87adf0
2016-11-06 23:53 - 2016-11-06 23:53 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignc944d2db450e0a4a
2016-11-06 23:53 - 2016-11-06 23:53 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign10d2cbe3e78c6675
2016-11-06 13:56 - 2016-11-06 13:56 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2016-11-06 03:25 - 2016-11-08 01:51 - 00000000 ____D C:\Users\yakashi\Documents\American Truck Simulator
2016-11-06 03:25 - 2016-11-06 10:59 - 00000000 ____D C:\Users\yakashi\Documents\ATSMP
2016-11-05 17:57 - 2016-11-05 17:57 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign5f74d0cbf2283865
2016-11-05 17:57 - 2016-11-05 17:57 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign095d95b18fe0a50d
2016-11-05 13:07 - 2016-11-05 13:07 - 00000000 ____D C:\Users\yakashi\AppData\Local\TS3index.com_GbR
2016-11-05 12:57 - 2016-11-05 12:59 - 00000000 ____D C:\SinusBot
2016-11-05 12:56 - 2016-11-05 12:56 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2016-11-04 13:28 - 2016-12-01 13:08 - 00000000 _____ C:\Windows\system32\RzSurroundVADAudioDeviceManager_log.txt
2016-11-04 13:28 - 2016-11-25 21:21 - 00000000 _____ C:\Windows\SysWOW64\RzSurroundVADAudioDeviceManager_log.txt
2016-11-04 13:28 - 2016-11-04 13:28 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign6e125d926d59050a
2016-11-04 13:28 - 2016-11-04 13:28 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign6aae28833155f8df
2016-11-04 13:28 - 2016-11-04 13:28 - 00000000 ____D C:\ProgramData\RzSurroundVAD_1.1.62.0
2016-11-04 13:28 - 2016-09-17 02:12 - 00044144 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpmgrk.sys
2016-11-04 13:28 - 2016-09-07 22:27 - 00137840 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpnk.sys
2016-11-04 13:27 - 2016-11-04 13:28 - 00000000 ____D C:\Program Files (x86)\Razer
2016-11-04 13:27 - 2016-11-04 13:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2016-11-04 13:26 - 2016-11-04 13:36 - 00000000 ____D C:\ProgramData\Razer
2016-11-04 13:26 - 2016-11-04 13:26 - 00000000 ____D C:\Users\yakashi\AppData\Local\Razer
2016-11-01 22:46 - 2016-11-01 22:46 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignf059c3968a9369bf
2016-11-01 22:46 - 2016-11-01 22:46 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign1de7aff1cbfe8952
2016-11-01 19:18 - 2016-11-01 19:18 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign64553d4dd4359053
2016-11-01 19:18 - 2016-11-01 19:18 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign18eb9d9a15b73107
2016-11-01 18:13 - 2016-11-01 18:13 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign8216aa8311e6b51b
2016-11-01 18:13 - 2016-11-01 18:13 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign489392c8126b185c
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\PDAppFlex
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignfb39070822f75bd2
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign8d35784f97239c81
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign6a313755e104d229
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign51ca7fb791165a87
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign34f9088922b18f32
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign26bee3c26c1da5b5
2016-11-01 18:11 - 2016-11-01 18:11 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsign114b933af41f0553
2016-11-01 17:50 - 2016-11-01 17:50 - 00000000 ____D C:\Users\yakashi\AppData\Local\Tempzxpsignfe107b9aa3c04fa1
2016-11-01 12:29 - 2016-11-01 13:54 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\obs-studio
2016-11-01 12:28 - 2016-11-01 12:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2016-11-01 12:28 - 2016-11-01 12:28 - 00000000 ____D C:\Program Files (x86)\obs-studio

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-12-01 13:08 - 2016-09-29 17:52 - 00000000 ____D C:\Users\yakashi\AppData\Local\LogMeIn Hamachi
2016-12-01 13:08 - 2016-09-20 12:49 - 00000000 ___RD C:\Users\yakashi\Creative Cloud Files
2016-12-01 13:08 - 2016-09-20 12:49 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-12-01 13:08 - 2016-09-20 12:45 - 00000000 ____D C:\Users\yakashi\AppData\Local\Adobe
2016-12-01 13:07 - 2016-10-15 12:34 - 00000000 ____D C:\ProgramData\AVAST Software
2016-12-01 13:07 - 2016-09-18 19:36 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-12-01 13:07 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-01 13:06 - 2009-07-14 05:45 - 00016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-01 13:06 - 2009-07-14 05:45 - 00016640 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-01 13:02 - 2016-10-06 16:12 - 00000000 ____D C:\Users\Public\Documents\AdobeGC
2016-12-01 12:59 - 2009-07-14 18:58 - 00700614 _____ C:\Windows\system32\perfh007.dat
2016-12-01 12:59 - 2009-07-14 18:58 - 00149962 _____ C:\Windows\system32\perfc007.dat
2016-12-01 12:59 - 2009-07-14 06:13 - 01624324 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-01 12:59 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-12-01 12:56 - 2016-10-10 11:27 - 00000000 ____D C:\ProgramData\VEGAS
2016-12-01 12:55 - 2016-09-19 07:51 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Adobe
2016-12-01 12:55 - 2016-09-18 19:37 - 00002882 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (yakashi)
2016-12-01 12:54 - 2016-09-20 12:47 - 00000000 ____D C:\ProgramData\Adobe
2016-11-30 23:52 - 2016-09-18 20:11 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\TS3Client
2016-11-30 23:41 - 2016-09-18 19:36 - 00001112 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-30 16:13 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Resources
2016-11-30 15:33 - 2016-10-18 22:27 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-11-29 16:07 - 2016-09-25 00:59 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Origin
2016-11-29 15:54 - 2016-09-24 13:52 - 00000000 ____D C:\Users\yakashi\AppData\Local\CrashDumps
2016-11-29 14:14 - 2016-10-10 21:01 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\trainer
2016-11-29 14:09 - 2016-09-25 00:57 - 00000000 ____D C:\ProgramData\Origin
2016-11-28 23:09 - 2016-10-01 16:51 - 00000000 ____D C:\Windows\pss
2016-11-28 14:23 - 2016-10-06 23:18 - 00000000 ____D C:\Users\yakashi\AppData\Local\ftblauncher
2016-11-28 14:12 - 2016-10-06 23:18 - 00000000 ____D C:\ftb
2016-11-27 18:39 - 2016-09-18 20:07 - 00000000 ____D C:\Users\yakashi\Documents\GTA San Andreas User Files
2016-11-27 13:16 - 2016-09-18 19:47 - 00000000 ____D C:\Program Files\AutoHotkey
2016-11-25 14:11 - 2016-09-18 20:07 - 00000000 ____D C:\Program Files (x86)\Overwolf
2016-11-25 12:55 - 2016-10-28 12:53 - 00000000 ____D C:\Users\yakashi\Documents\HP-Overlay
2016-11-25 00:12 - 2016-10-11 17:09 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\DVDVideoSoft
2016-11-24 22:38 - 2016-09-25 12:54 - 00000000 ____D C:\Users\yakashi\AppData\Local\Arma 3
2016-11-24 17:41 - 2016-10-30 18:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TruckersMP
2016-11-24 14:11 - 2016-09-18 20:07 - 00000002 _____ C:\END
2016-11-24 13:26 - 2016-09-25 12:53 - 00000000 ____D C:\Users\yakashi\AppData\Local\Arma 3 Launcher
2016-11-24 13:25 - 2016-09-27 13:30 - 00000000 ____D C:\Users\yakashi\Documents\Arma 3 - Other Profiles
2016-11-24 01:13 - 2016-09-19 15:24 - 00014940 _____ C:\Windows\unins000.dat
2016-11-23 18:47 - 2016-09-23 22:12 - 00003602 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-23 18:47 - 2016-09-18 20:30 - 00003840 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-23 18:47 - 2016-09-18 20:30 - 00003840 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-23 18:47 - 2016-09-18 20:30 - 00003790 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-23 18:47 - 2016-09-18 20:30 - 00003778 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-23 18:47 - 2016-09-18 20:30 - 00003542 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-23 17:29 - 2016-09-20 14:17 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Skype
2016-11-23 11:51 - 2016-09-20 14:17 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-11-23 11:51 - 2016-09-20 14:17 - 00000000 ____D C:\ProgramData\Skype
2016-11-22 21:09 - 2016-09-25 00:58 - 00000000 ____D C:\Program Files (x86)\Origin
2016-11-22 20:55 - 2016-09-18 19:38 - 00000000 ____D C:\ProgramData\ProductData
2016-11-20 23:08 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Help
2016-11-20 22:48 - 2016-09-30 17:16 - 00000000 ____D C:\Temp
2016-11-20 00:58 - 2016-09-18 19:35 - 00073256 _____ C:\Users\yakashi\AppData\Local\GDIPFONTCACHEV1.DAT
2016-11-20 00:57 - 2009-07-14 05:45 - 00345744 _____ C:\Windows\system32\FNTCACHE.DAT
2016-11-20 00:06 - 2016-09-25 14:08 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-11-19 22:46 - 2016-09-27 13:01 - 00000000 ____D C:\Users\yakashi\AppData\Local\Battle.net
2016-11-19 00:56 - 2016-09-18 20:06 - 00000000 ____D C:\Users\yakashi\AppData\Local\Overwolf
2016-11-18 13:05 - 2016-10-21 15:13 - 00001456 _____ C:\Users\yakashi\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2016-11-17 20:05 - 2016-10-06 14:21 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Sony
2016-11-17 18:35 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-11-15 13:30 - 2016-09-30 11:33 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2016-11-15 13:30 - 2016-09-30 11:33 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2016-11-15 11:42 - 2016-09-18 19:36 - 00002210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-12 22:55 - 2016-09-23 22:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OkayFreedom
2016-11-12 22:55 - 2016-09-23 22:12 - 00000000 ____D C:\Program Files (x86)\OkayFreedom
2016-11-11 22:40 - 2016-10-15 01:18 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-11 13:47 - 2016-09-30 11:32 - 00034720 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2016-11-06 22:04 - 2016-09-19 12:46 - 00000000 ____D C:\Program Files\Rockstar Games
2016-11-06 22:04 - 2016-09-19 12:46 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2016-11-06 03:14 - 2016-09-22 16:07 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-11-06 02:01 - 2016-10-15 01:18 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-05 19:13 - 2016-10-30 17:45 - 00000000 ____D C:\Users\yakashi\Documents\Euro Truck Simulator 2
2016-11-05 18:01 - 2016-09-25 14:08 - 00000000 ____D C:\Users\yakashi\AppData\Roaming\TeamViewer
2016-11-05 12:56 - 2016-09-18 20:10 - 00000952 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2016-11-03 20:47 - 2016-10-20 00:05 - 00000000 ____D C:\Program Files (x86)\aivadflp
2016-11-03 14:04 - 2016-09-28 14:40 - 00000000 ____D C:\ProgramData\ReviverSoft
2016-11-03 14:04 - 2016-09-28 14:39 - 00000000 ____D C:\Program Files (x86)\UX Pack
2016-11-03 14:04 - 2009-07-14 04:20 - 00000000 __RSD C:\Windows\Media
2016-11-03 14:04 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Cursors
2016-11-03 13:00 - 2016-10-28 23:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCWest
2016-11-03 13:00 - 2016-10-28 23:56 - 00000000 ____D C:\Program Files (x86)\NCWest
2016-11-01 18:11 - 2016-10-24 00:10 - 00000033 _____ C:\Users\yakashi\AppData\Roaming\AdobeWLCMCache.dat

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-10-24 00:10 - 2016-11-01 18:11 - 0000033 _____ () C:\Users\yakashi\AppData\Roaming\AdobeWLCMCache.dat
2016-06-17 07:53 - 2016-06-17 07:53 - 0000244 _____ () C:\Users\yakashi\AppData\Roaming\fnp_registrations.xml
2016-06-17 07:53 - 2016-06-17 07:53 - 0003279 _____ () C:\Users\yakashi\AppData\Roaming\GBpc-EUC-V
2007-05-11 08:00 - 2007-05-11 08:00 - 0059417 _____ () C:\Users\yakashi\AppData\Roaming\Gendarmerie.wee
2016-10-21 15:13 - 2016-11-18 13:05 - 0001456 _____ () C:\Users\yakashi\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2016-11-22 21:07 - 2016-11-22 21:07 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\yakashi\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\yakashi\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\yakashi\AppData\Local\Temp\nvStInst.exe
C:\Users\yakashi\AppData\Local\Temp\SNU_Au1.exe


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-11-24 00:01

==================== Ende von FRST.txt ============================

30.11.2016, 21:56	#5
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Verdacht auf schweren Trrojaner \| Trojan.FakeMS.ED Adobe, Autodesk, Vegas Pro, W7 Ultimate - ist das ein gewerblich genutztes System? __________________ Logfiles bitte immer in CODE-Tags posten

01.12.2016, 10:57	#7
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Verdacht auf schweren Trrojaner \| Trojan.FakeMS.ED Hobbymäßig? Du gibst hunderte Euro dafür aus? __________________ Logfiles bitte immer in CODE-Tags posten

01.12.2016, 11:30	#9
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Verdacht auf schweren Trrojaner \| Trojan.FakeMS.ED Es geht darum, dass wenn solche Programme installiert sind, die idR gecrackt sind. Fast immer wenn ich ein Vegas sehe isses gecrackt. __________________ Logfiles bitte immer in CODE-Tags posten

Verdacht auf schweren Trrojaner | Trojan.FakeMS.ED

Log-Analyse und Auswertung: Verdacht auf schweren Trrojaner | Trojan.FakeMS.ED