|
Plagegeister aller Art und deren Bekämpfung: Pop-up "There is a recommended update for your PC"Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
17.01.2017, 16:11 | #16 |
| Pop-up "There is a recommended update for your PC" FRST Additions Logfile: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 15-01-2017 durchgeführt von Knight Rider (17-01-2017 16:04:54) Gestartet von C:\Users\Knight Rider\Desktop Windows 10 Home Version 1607 (X64) (2016-09-23 13:51:31) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-2325661282-3962446805-3529202158-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2325661282-3962446805-3529202158-503 - Limited - Disabled) Gast (S-1-5-21-2325661282-3962446805-3529202158-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2325661282-3962446805-3529202158-1003 - Limited - Enabled) Knight Rider (S-1-5-21-2325661282-3962446805-3529202158-1001 - Administrator - Enabled) => C:\Users\Knight Rider ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Bitdefender Virenschutz (Enabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371} AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) 3DMark (HKLM-x32\...\{88c385a4-b4e7-4028-9754-a5007023d630}) (Version: 2.0.2530.0 - Futuremark) 3DMark (Version: 2.0.2530.0 - Futuremark) Hidden 3DMark 11 (HKLM-x32\...\{f9e83b9c-ab7e-4005-8f32-4ea69703a5e4}) (Version: 1.0.132.0 - Futuremark) 3DMark 11 (Version: 1.0.132.0 - Futuremark) Hidden 3DMark Demo (HKLM\...\Steam App 231350) (Version: - Futuremark) Active Directory Authentication Library für SQL Server (Version: 13.0.1100.286 - Microsoft Corporation) Hidden Active Directory Authentication Library für SQL Server (x86) (x32 Version: 13.0.1100.286 - Microsoft Corporation) Hidden Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.7.0.272 - Adobe Systems Incorporated) Adobe Flash Player 23 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated) Adobe Illustrator CC 2015.3 (HKLM-x32\...\ILST_20_0_0) (Version: 20.0.0 - Adobe Systems Incorporated) Adobe Media Encoder CC 2015.3 (HKLM-x32\...\AME_10_3_0) (Version: 10.3.0 - Adobe Systems Incorporated) Adobe Premiere Pro CC 2015.3 (HKLM-x32\...\PPRO_10_3_0) (Version: 10.3.0 - Adobe Systems Incorporated) AIDA64 Extreme v5.80 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.80 - FinalWire Ltd.) Ansel (Version: 376.09 - NVIDIA Corporation) Hidden Apple Application Support (32-bit) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{981F324E-98F4-4784-B76F-04E92039F3F6}) (Version: 5.2.60328.3 - Microsoft Corporation) Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.28.1 - Asmedia Technology) AudioFXSetup (Version: 1.2.1201 - Nahimic) Hidden Azure AD Authentication Connected Service (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden Behaviors SDK (Windows Phone) for Visual Studio 2013 (x32 Version: 12.0.51210.80 - Microsoft Corporation) Hidden Behaviors SDK (Windows) for Visual Studio 2013 (x32 Version: 12.0.51210.80 - Microsoft Corporation) Hidden Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 20.0.26.1436 - Bitdefender) Bitdefender Antivirus Plus 2016 (HKLM\...\Bitdefender) (Version: 20.0.28.1478 - Bitdefender) Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden Blend for Visual Studio SDK for Silverlight 5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden Blend for Visual Studio SDK for Windows Phone 8.0 (x32 Version: 3.0.30924.0 - Microsoft Corporation) Hidden Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Build Tools - amd64 (Version: 12.0.31010 - Microsoft Corporation) Hidden Build Tools - x86 (x32 Version: 12.0.31010 - Microsoft Corporation) Hidden Build Tools for Windows 10 - ENU (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden Build Tools for Windows 10 (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden Build Tools Language Resources - amd64 (Version: 12.0.31010 - Microsoft Corporation) Hidden Build Tools Language Resources - x86 (x32 Version: 12.0.31010 - Microsoft Corporation) Hidden CAM (HKLM-x32\...\{2C41679C-9D89-4580-BEB0-45DFCEA51288}) (Version: 3.2.37 - NZXT) CheckDevicesConfigurator (Version: 1.2.1201 - Nahimic) Hidden chip 1-click download service (HKLM-x32\...\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}) (Version: 3.6.9.0 - Chip Digital GmbH) Clang with Microsoft CodeGen (x32 Version: 14.0.25317 - Microsoft Corporation) Hidden Clang with Microsoft CodeGen for Microsoft Visual Studio 2015 (HKLM-x32\...\{8669ea54-1978-465e-a789-a48935c24a95}) (Version: 14.0.25317.0 - Microsoft Corporation) CodedUITest81 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden CodedUITestUAP (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve) Counter-Strike: Source (HKLM\...\Steam App 240) (Version: - Valve) CPUID CPU-Z MSI 1.77 (HKLM\...\CPUID CPU-Z MSI_is1) (Version: 1.77 - CPUID, Inc.) Devenv-Ressourcen für Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.3.1.0 - devolo AG) Discord (HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.) doPDF (Version: 8.6.942 - Softland) Hidden doPDF 8 (HKLM-x32\...\{413fb852-4e7d-4e52-bcaa-6270ff9a9347}) (Version: 8.6.942 - Softland) Dota 2 (HKLM\...\Steam App 570) (Version: - Valve) Dotfuscator and Analytics Community Edition 5.19.1 (x32 Version: 5.19.1.3091 - PreEmptive Solutions) Hidden Dotfuscator and Analytics Community Edition Language Pack 5.19.1 de-DE (x32 Version: 5.19.1.3091 - PreEmptive Solutions) Hidden Entity Framework 6.1.3 Tools for Visual Studio 2015 Update 1 (HKLM-x32\...\{2A56910C-69C8-495D-8ED8-9080F0A14E58}) (Version: 14.0.41103.0 - Microsoft Corporation) Erforderliche Komponenten für SSDT (HKLM-x32\...\{2466E484-9D86-416B-9C88-AA533F15AF1C}) (Version: 12.0.2000.8 - Microsoft Corporation) Erforderliche Komponenten für SSDT RC0 (HKLM-x32\...\{837FF5F6-F0CB-4C80-B003-65B14F1490FE}) (Version: 13.0.1100.286 - Microsoft Corporation) EVGA PrecisionX 16 (HKLM\...\Steam App 268850) (Version: - EVGA) Far Cry 3 Blood Dragon (HKLM-x32\...\Uplay Install 205) (Version: - Ubisoft) Farming Simulator 15 (HKLM\...\Steam App 313160) (Version: - Giants Software) FluidRay RT Demo (64 Bit) (HKLM-x32\...\FluidRay RT Demo (64 Bit)) (Version: 1.2.4 - Fluid Interactive) FluidSIM 5 Home Use (HKLM-x32\...\{1DE939D0-B5BB-48AC-A820-A2D353AE6186}) (Version: 5.2.2.1 - Festo Didactic SE) Futuremark SystemInfo (HKLM-x32\...\{E540B871-3230-4C5B-AAD5-A30F64398275}) (Version: 4.48.599.0 - Futuremark) Garry's Mod (HKLM\...\Steam App 4000) (Version: - Facepunch Studios) Gemeinsam genutzte Microsoft Azure-Komponenten für Visual Studio 2015 Sprachpaket (DEU) - v1.7 (x32 Version: 1.7.40113.5 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.) Google Earth (HKLM-x32\...\{A0C18B96-AB79-46BD-8321-6FA83E6D25B9}) (Version: 7.1.7.2606 - Google) Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden GoPro (Version: 0.1.2733 - GoPro, Inc.) Hidden GoPro for Desktop (HKLM-x32\...\{88734dc7-c200-4ad3-b29f-bb5e436cb30f}) (Version: 1.4.0.2733 - GoPro, Inc.) GoPro Studio (x32 Version: 5.9.2733 - GoPro, Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games) Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.) HeavyLoad V3.4 (64 bit) (HKLM\...\HeavyLoad_is1) (Version: 3.4 - JAM Software) HP ENVY 5530 series - Grundlegende Software für das Gerät (HKLM\...\{08CB8BF7-0CCE-4FC2-A475-A985EB11B159}) (Version: 32.3.198.49673 - Hewlett-Packard Co.) HP ENVY 5530 series Hilfe (HKLM-x32\...\{272E06A0-7B74-481F-BD50-C632D9CA81A3}) (Version: 30.0.0 - Hewlett Packard) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) iCloud (HKLM\...\{4BB313CE-D3D1-424C-8823-15CF85B00B05}) (Version: 6.1.0.30 - Apple Inc.) IDE Tools for Windows 10 - ENU (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden IDE Tools for Windows 10 (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden IIS 10.0 Express (HKLM\...\{7A28A2B0-458B-4A58-84AC-C90D2D4B79FB}) (Version: 10.0.1735 - Microsoft Corporation) IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version: - ) IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version: - ) Intel Extreme Tuning Utility (HKLM-x32\...\{fde8aa07-3912-4bdf-ad35-ff1231bfd00d}) (Version: 6.2.0.17 - Intel Corporation) Intel Extreme Tuning Utility (x32 Version: 6.2.0.17 - Intel Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1173 - Intel Corporation) Intel(R) Network Connections 20.4.307.0 (HKLM\...\PROSetDX) (Version: 20.4.307.0 - Intel) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4331 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.63.1519.7 - Intel Corporation) Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation) Intellisense Lang Pack Mobile Extension SDK 10.0.10586.0 (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.) Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation) Java SE Development Kit 7 Update 55 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0170550}) (Version: 1.7.0.550 - Oracle) Kits Configuration Installer (x32 Version: 10.0.26624 - Microsoft) Hidden LauncherSetup (Version: 1.2.1201 - Nahimic) Hidden LocalESPC (x32 Version: 8.59.29989 - Microsoft Corporation) Hidden LocalESPCui for de-de (x32 Version: 8.59.29989 - Microsoft) Hidden MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{422D3F30-7446-46C9-9FFE-F4F1645A3A41}) (Version: 7.0.2.6 - MAGIX Software GmbH) MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden MAGIX Video deluxe 2016 Premium (HKLM\...\MX.{36DD63B6-B6C0-4B56-AA23-22A652A77EC1}) (Version: 15.0.0.62 - MAGIX Software GmbH) MAGIX Video deluxe 2016 Premium (Version: 15.0.0.62 - MAGIX Software GmbH) Hidden Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 SDK (Deutsch) (HKLM-x32\...\{CBD7095F-7211-43FD-9FE7-FB08D753AF79}) (Version: 4.5.51641 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation) Microsoft .NET Framework 4.6 SDK (Deutsch) (HKLM-x32\...\{EE8BD24B-75E1-4BBF-86B9-91FE16ADE71C}) (Version: 4.6.00081 - Microsoft Corporation) Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation) Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 SDK (Deutsch) (HKLM-x32\...\{529EFF09-750D-48B9-A47A-34A3B6248C3F}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Version Manager (x64) 1.0.0-beta5 (HKLM\...\{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}) (Version: 1.0.10609.0 - Microsoft Corporation) Microsoft Flight Simulator SimConnect Client v10.0.61259.0 (HKLM-x32\...\{D61CA184-3F6D-4A50-B2CC-7A18447D6A8D}) (Version: 10.0.61259.0 - Microsoft Corporation) Microsoft Flight Simulator SimConnect Client v10.0.62615.0 (HKLM-x32\...\{33D89314-361A-4495-A1E1-0ACBCE08F78D}) (Version: 10.0.62615.0 - Microsoft Corporation) Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.25123 - Microsoft Corporation) Microsoft Help Viewer 2.2 Sprachpaket - DEU (HKLM-x32\...\Microsoft Help Viewer 2.2 Sprachpaket - DEU) (Version: 2.2.25123 - Microsoft Corporation) Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{BF5ABBDB-D3AA-4BCB-8D10-FCD4A4BB7F93}) (Version: 12.1.4100.1 - Microsoft Corporation) Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.7571.2109 - Microsoft Corporation) Microsoft Office 365 - es-es (HKLM\...\O365HomePremRetail - es-es) (Version: 16.0.7571.2109 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation) Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation) Microsoft Silverlight 5 SDK - DEU (HKLM-x32\...\{F351AA2C-723C-4CFE-A7CB-8E43AB164F7F}) (Version: 5.0.61118.0 - Microsoft Corporation) Microsoft SQL Server 2008 Native Client (HKLM\...\{C79A7EAB-9D6F-4072-8A6D-F8F54957CD93}) (Version: 10.0.1600.22 - Microsoft Corporation) Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation) Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{F09DEB00-9F41-4BC9-BA81-9F131B12B3D5}) (Version: 11.1.3000.0 - Microsoft Corporation) Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation) Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation) Microsoft SQL Server 2014 Setup (English) (HKLM\...\{C7E2483C-10A4-41E3-A2F6-240186FE3E41}) (Version: 12.1.4100.1 - Microsoft Corporation) Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{FF7DDA05-6EA7-4C01-B44A-3E57F8B9B97B}) (Version: 12.1.4100.1 - Microsoft Corporation) Microsoft SQL Server 2016 LocalDB RC0 (HKLM\...\{BDEC3091-D84B-4F70-B1AB-6487354160F4}) (Version: 13.0.1100.286 - Microsoft Corporation) Microsoft SQL Server 2016 Management Objects RC0 (x64) (HKLM\...\{8C76566F-6B51-43FD-A99E-AAA2E9A96918}) (Version: 13.0.1100.286 - Microsoft Corporation) Microsoft SQL Server 2016 T-SQL ScriptDom RC0 (HKLM\...\{F5E316A6-F894-4DCF-9088-F07E06A1ABFA}) (Version: 13.0.1100.286 - Microsoft Corporation) Microsoft SQL Server 2016 T-SQL-Sprachdienst RC0 (HKLM-x32\...\{F5AF6F7A-E0DC-480C-94E3-B5596C9A239F}) (Version: 13.0.12000.52 - Microsoft Corporation) Microsoft SQL Server Compact 4.0 SP1 x64 DEU (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation) Microsoft SQL Server Data Tools - DEU (14.0.60311.1) (HKLM-x32\...\{FE4AF448-6FF2-4996-889F-8F07BA88DB59}) (Version: 14.0.60311.1 - Microsoft Corporation) Microsoft SQL Server*2014 Express LocalDB (HKLM\...\{CA191120-4CB1-4E3D-89B8-79FDB9017A2E}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server*2014 Management Objects (HKLM-x32\...\{4F4CB3E2-9D2F-465A-854B-8276B02F4E7D}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server*2014 Management Objects (x64) (HKLM\...\{03CB711D-679E-46ED-851B-C568418CF914}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server*2014 T-SQL Language Service (HKLM-x32\...\{06BE8B71-46C6-434B-869E-85C58EF3120A}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server*2016 Management Objects RC0 (HKLM-x32\...\{029A7000-E652-4D44-88C2-483C9FD345A7}) (Version: 13.0.1100.286 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation) Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version: - Microsoft Corporation) Microsoft Visual Studio Community 2015 mit Update 2 (HKLM-x32\...\{f2892dc5-7ac2-4ae4-a296-b5b159f61255}) (Version: 14.0.25123.0 - Microsoft Corporation) Microsoft Visual Studio Tools for Apache Cordova (HKLM-x32\...\{dc279ca1-cef6-4b84-acaa-2e68e26f2b9e}) (Version: 14.0.60428.1 - Microsoft Corporation) Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.1.4100.1 - Microsoft Corporation) Microsoft Web Deploy 3.6 (HKLM\...\{94E1227C-08A9-4962-B388-1F05D89AEA75}) (Version: 3.1238.1962 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) Microsoft-System-CLR-Typen für SQL Server*2016 RC0 (HKLM\...\{71F2875A-58DC-432F-B959-67B6D928E08F}) (Version: 13.0.1100.286 - Microsoft Corporation) Microsoft-System-CLR-Typen für SQL Server*2016 RC0 (HKLM-x32\...\{D2C7A7B6-719A-4F6A-881A-555B999F82AC}) (Version: 13.0.1100.286 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Mit C# erstellte geräteübergreifende Hybrid-Apps - Vorlagen - DEU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com) MSBuild/NuGet Integration 14.0 (x86) (x32 Version: 14.0.25123 - Microsoft Corporation) Hidden MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD) MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 2.0.0.41 - MSI) MSI Kombustor 3.5.1 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD) MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.02 - MSI) MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation) Nahimic for MSI (HKLM-x32\...\{0c311339-9de4-4dd7-b21d-3dcfa3a2946f}) (Version: 1.2.12 - Nahimic) NahimicSettingsConfigurator (Version: 1.2.1201 - Nahimic) Hidden Node.js (HKLM-x32\...\{69735668-F8BC-4E9A-839A-4006FDFDD5AC}) (Version: 0.12.2 - Joyent, Inc. and other Node contributors) novaPDF 8 add-in for Microsoft Office (x64) (HKLM\...\{A53F3DB0-ECBA-4CA0-A4AC-518FA7347A02}) (Version: 8.6.942 - Softland) novaPDF 8 add-in for Microsoft Office (x86) (HKLM-x32\...\{A0B71772-5AC4-47D5-A175-99238C057B37}) (Version: 8.6.942 - Softland) novaPDF 8 Printer Driver (HKLM\...\{1A9E9E77-B29B-47C6-ADEB-9E7D6F7A08CE}) (Version: 8.6.942 - Softland) NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NVIDIA 3D Vision Driver 376.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.09 - NVIDIA Corporation) NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10 - NVIDIA Corporation) NVIDIA GeForce Experience 3.1.2.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.2.31 - NVIDIA Corporation) NVIDIA Graphics Driver 376.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.09 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation) NVIDIA Performance (HKLM-x32\...\InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}) (Version: 6.5 - NVIDIA Corporation) NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA System Monitor (HKLM-x32\...\InstallShield_{E9CFBE78-ED91-4FCF-9E6F-210E477E527D}) (Version: 6.5 - NVIDIA Corporation) NvNodejs (Version: 3.1.2.31 - NVIDIA Corporation) Hidden NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7571.2109 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7571.2075 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (Version: 16.0.7571.2075 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7571.2075 - Microsoft Corporation) Hidden OnScreen Control (HKLM-x32\...\{E5C1B339-0E4E-49A5-859E-5E1DE1938706}) (Version: 1.33 - LG Electronics Inc) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) OpenIV (HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\OpenIV) (Version: 2.8.703 - .black/OpenIV Team) Overwolf (HKLM-x32\...\Overwolf) (Version: 0.101.213.0 - Overwolf Ltd.) Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM-x32\...\{D5409B11-EF28-37A1-AE7A-6051A5BAD923}) (Version: 4.5.50932 - Microsoft Corporation) Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 RC für Windows Store-Apps (Deutsch) (x32 Version: 4.5.21005 - Microsoft Corporation) Hidden Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM-x32\...\{3F514FDC-F0F2-3B99-86D6-F7B3A2679B39}) (Version: 4.5.51209 - Microsoft Corporation) Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.6 (Deutsch) (HKLM-x32\...\{FACF2669-E25A-428A-9167-5EEDE741F3B9}) (Version: 4.6.00127 - Microsoft Corporation) Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM-x32\...\{4860C1E5-CE58-4D32-89DE-37951333B4C9}) (Version: 4.6.01055 - Microsoft Corporation) PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.2 - pdfforge) Portal 2 (HKLM\...\Steam App 620) (Version: - Valve) PreEmptive Analytics Client German Language Pack (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden ProductDaemonSetup (Version: 1.2.1201 - Nahimic) Hidden Project and Item Templates for Visual Studio Express 2015 for Windows 10 - ENU (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden Project and Item Templates for Visual Studio Professionald 2015 - ENU (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden Projekt- und Elementvorlagen für Visual Studio Community 2015 – DEU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden Python Tools 2.2.3 for Visual Studio 2015 (HKLM-x32\...\{FDCEC41C-35DA-421C-A520-53D185BC43FA}) (Version: 2.2.40315.00 - Microsoft Corporation) Rapoo -Tastatur- und Maustreiber v1.6 (HKLM-x32\...\{2E569492-CB19-4510-AB49-1C6A36C6F525}_is1) (Version: - Rapoo Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7687 - Realtek Semiconductor Corp.) Rhinoceros 5 (64-bit) (HKLM\...\{346FB873-336D-400B-9834-82121F8F93DF}) (Version: 5.13.60523.20140 - Robert McNeel & Associates) Rhinoceros 5 (HKLM-x32\...\{7C1981A8-1B77-401B-8D1B-59BF1BBE0CB8}) (Version: 5.13.60523.20140 - Robert McNeel & Associates) Rhinoceros 5 Help Media (HKLM-x32\...\{629FC074-5532-45F9-81F1-24060D0AB998}) (Version: 5.6.31022.16390 - Robert McNeel & Associates) Rhinoceros 5 Language Pack Installer (de-DE) (HKLM-x32\...\{1E827500-6DC9-47C1-8E18-E83664667729}) (Version: 5.6.31022.16390 - Robert McNeel & Associates) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.0 - Rockstar Games) RollerCoaster Tycoon 3: Platinum! (HKLM\...\Steam App 2700) (Version: - Frontier) Roslyn Language Services - x86 (x32 Version: 14.0.25123 - Microsoft Corporation) Hidden Roslyn Language Services - x86 (x32 Version: 14.0.25132 - Microsoft Corporation) Hidden Service Pack 1 for SQL Server 2014 (KB3058865) (64-bit) (HKLM\...\KB3058865) (Version: 12.1.4100.1 - Microsoft Corporation) SHIELD Streaming (Version: 7.1.0340 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 3.1.2.31 - NVIDIA Corporation) Hidden SNOW (HKLM\...\Steam App 244930) (Version: - Poppermost Productions) SOLIDWORKS 2016 x64 Edition SP02 (HKLM-x32\...\SolidWorks Installation Manager 20160-40200-1100-100) (Version: 24.2.0.50 - SolidWorks Corporation) SOLIDWORKS 2016 x64 Edition SP02 (Version: 24.120.50 - Dassault Systemes SolidWorks Corp) Hidden SOLIDWORKS Composer Player 2016 SP02 x64 Edition (Version: 24.20.50 - Dassault Systemes SolidWorks Corp) Hidden SOLIDWORKS eDrawings 2016 x64 Edition SP02 (Version: 16.2.0030 - Dassault Systèmes SolidWorks Corp) Hidden SOLIDWORKS Electrical 2016 SP02 x64 Edition (Version: 24.20.50 - Dassault Systemes SolidWorks Corp) Hidden SOLIDWORKS Flow Simulation 2016 SP02 x64 Edition (Version: 24.20.51 - Dassault Systemes SolidWorks Corp) Hidden SOLIDWORKS Plastics 2016 SP02 x64 Edition (Version: 24.20.50 - Dassault Systemes SolidWorks Corp) Hidden SQL Server 2014 Common Files (Version: 12.1.4100.1 - Microsoft Corporation) Hidden SQL Server 2014 Database Engine Services (Version: 12.1.4100.1 - Microsoft Corporation) Hidden SQL Server 2014 Database Engine Shared (Version: 12.1.4100.1 - Microsoft Corporation) Hidden SQL Server Browser for SQL Server 2014 (HKLM-x32\...\{3204DE95-97D2-4261-A286-98A262E171D4}) (Version: 12.1.4100.1 - Microsoft Corporation) Sql Server Customer Experience Improvement Program (Version: 12.1.4100.1 - Microsoft Corporation) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SteamVR Performance Test (HKLM\...\Steam App 323910) (Version: - Valve) Steep Open Beta (HKLM\...\Steam App 550040) (Version: - Ubisoft Annecy) Team Explorer for Microsoft Visual Studio 2015 Update 2 (x32 Version: 14.95.25118 - Microsoft) Hidden Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH) TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.72365 - TeamViewer) Terraria (HKLM\...\Steam App 105600) (Version: - Re-Logic) Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version: - Ubisoft) TI-Nspire™ CX Student Software (HKLM-x32\...\{603D81E7-2DC0-45A7-96BD-3B7B6D5AFBA8}) (Version: 4.3.0.702 - Texas Instruments Inc.) TypeScript Power Tool (x32 Version: 1.8.9.0 - Microsoft Corporation) Hidden TypeScript Tools for Microsoft Visual Studio 2015 (x32 Version: 1.8.31.0 - Microsoft Corporation) Hidden UIInstallUpgrade (Version: 1.2.1201 - Nahimic) Hidden Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.) <==== ACHTUNG Universal CRT Extension SDK (x32 Version: 10.0.10150 - Microsoft Corporation) Hidden Universal CRT Extension SDK (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden Universal CRT Extension SDK (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (x32 Version: 10.0.10150 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden Universal CRT Redistributable (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden Universal CRT Tools x64 (Version: 10.1.10586.212 - Microsoft Corporation) Hidden Universal CRT Tools x86 (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden Universal General MIDI DLS Extension SDK (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden Universal General MIDI DLS Extension SDK (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation) Uplay (HKLM-x32\...\Uplay) (Version: 22.2 - Ubisoft) VFW_Codec32 (x32 Version: 0.1.160.0 - GoPro, Inc.) Hidden VFW_Codec64 (Version: 0.1.160.0 - GoPro, Inc.) Hidden VidCoder 1.5.34 (x64) (HKLM\...\VidCoder-x64_is1) (Version: 1.5.34 - RandomEngy) Visual C++ für Mobile-Entwicklung (Android-Unterstützung) (HKLM-x32\...\{5adea0f4-9265-4e0c-9a83-2cd4f11b9dbe}) (Version: 14.0.25116.0 - Microsoft Corporation) Visual C++ für Mobile-Entwicklung (iOS-Unterstützung) (HKLM-x32\...\{2572cf90-87f2-4a62-b566-0a3c79c873d9}) (Version: 14.0.25116.0 - Microsoft Corporation) Visual Studio 2015 Update 2 (KB3022398) (HKLM-x32\...\{78c1b501-a6eb-4f29-88c5-84189564827e}) (Version: 14.0.25123 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN) VLC Updater (HKLM-x32\...\VLC Updater) (Version: 1.1 - VLC Updater) VS Update core components (x32 Version: 14.0.25123 - Microsoft Corporation) Hidden vs_update2notification (x32 Version: 14.0.25132 - Microsoft Corporation) Hidden Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) WCF Data Services 5.6.4 DEU Language Pack (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden WCF Data Services Tools for Microsoft Visual Studio 2015 DEU Language Pack (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden WCF RIA Services V1.0 SP2 (HKLM-x32\...\{5D8DD6A8-C4D7-4554-93F9-F1CC28C72600}) (Version: 4.1.62812.0 - Microsoft Corporation) WD Drive Utilities (HKLM-x32\...\{eab1fb93-61fb-48de-b815-b4e9b68d2ef1}) (Version: 1.3.2.2 - Western Digital Technologies, Inc.) WD Drive Utilities (x32 Version: 1.3.2.2 - Western Digital Technologies, Inc.) Hidden WD My Cloud (HKLM\...\{4B86F896-11DC-4711-BB60-81104832FA44}) (Version: 1.0.7.17 - Western Digital Technologies, Inc.) WhatsApp (HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\WhatsApp) (Version: 0.2.2732 - WhatsApp) WinAppDeploy (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden Windows Phone 8.1 Emulators - ENU (HKLM-x32\...\{166a69f6-6512-47ea-a342-17d954fc059a}) (Version: 12.0.31010.0 - Microsoft Corporation) Windows SDK AddOn (HKLM-x32\...\{75C39BA6-1D02-4BEA-844F-0EA6C4B7FA1B}) (Version: 10.1.0.0 - Microsoft Corporation) Windows Software Development Kit - Windows 10.0.10586.212 (HKLM-x32\...\{43d9f43d-c90b-4fdf-9dfe-ecf9990bfa2a}) (Version: 10.1.10586.212 - Microsoft Corporation) Windows Software Development Kit - Windows 10.0.26624 (HKLM-x32\...\{e7a0c8b6-b0e9-41e2-8a0a-a6784f88d1d4}) (Version: 10.0.26624 - Microsoft Corporation) WinRAR 5.31 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) WinRT Intellisense Desktop - en-us (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WinRT Intellisense Desktop - Other Languages (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WinRT Intellisense IoT - en-us (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WinRT Intellisense IoT - Other Languages (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WinRT Intellisense PPI - en-us (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WinRT Intellisense PPI - Other Languages (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WinRT Intellisense UAP - en-us (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WinRT Intellisense UAP - Other Languages (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WinRT Intellisense Xbox Live Extension SDK - en-us (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WinRT Intellisense Xbox Live Extension SDK - Other Languages (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WPTx64 (HKLM-x32\...\{0B2C58EB-67A2-225B-60B2-D1990E55DD33}) (Version: 8.100.26866 - Microsoft) Yahoo! Powered (HKLM-x32\...\{7BED932D-2B6D-42AD-9AED-322D4A6DE1AD}) (Version: - ) <==== ACHTUNG ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-2325661282-3962446805-3529202158-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-B91C3A30094C}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-2325661282-3962446805-3529202158-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {0004E1A7-C02A-4ADC-9FA1-9D4227DFA0A2} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => E:\Programme\Common7\IDE\VSIXAutoUpdate.exe [2016-05-15] (Microsoft Corporation) Task: {049E3741-6DDE-4070-9A14-D70A8B5F523A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28] (Google Inc.) Task: {1779A7B0-F929-407C-9F21-B3B9703C0834} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-28] (Microsoft Corporation) Task: {24D6F860-DCFA-4B7A-BD04-9482074512BD} - System32\Tasks\Toolbox.exe_{CC190389-354D-41F9-8C9A-177035D621B0} => C:\Program Files\HP\HP ENVY 5530 series\Bin\Toolbox.exe [2014-07-21] (Hewlett-Packard Development Company, LP) Task: {276A1F45-E1B8-4B87-A883-7AE0E40C1026} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-28] (Microsoft Corporation) Task: {2F29B1AC-30CB-457F-8690-7D0AFF8861B8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-17] (NVIDIA Corporation) Task: {2FF16328-0CFC-4A23-B003-56118A071A3E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-11-17] (NVIDIA Corporation) Task: {3E3F1851-07EE-40B0-801B-3893F6E692C3} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-11-17] (NVIDIA Corporation) Task: {417E05DA-7F0F-4900-B5E2-99735C6942C7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-17] (NVIDIA Corporation) Task: {44462DF0-ECD2-4CCC-B9FA-AF9AC80CC5AC} - System32\Tasks\CAM => C:\Program Files (x86)\NZXT\CAM\CAM_V3.exe [2017-01-12] () Task: {57605B42-1D08-41F5-9A44-D97D5255D091} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2016-10-21] (Bitdefender) Task: {5996B9BA-0AB1-4F0D-81D2-DC1199BA8CAD} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2016-11-17] (Apple Inc.) Task: {649AF233-11D0-47DC-9B7D-4DE9F19F2C5A} - System32\Tasks\NahimicMSIsvc32Run => C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIsvc32.exe [2015-12-04] () Task: {72D7125D-6834-4C31-9B42-B53C5098097F} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2015-11-20] (Intel Corporation) Task: {914ECF4C-A2ED-4DC5-8917-F4EA21DD0B0D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28] (Google Inc.) Task: {9216DDDA-0D78-4BC9-843A-A6E34F56C709} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.) Task: {9DF26E80-0A90-45C4-9983-8E0CD802B033} - System32\Tasks\ScanToPCActivationApp.exe_{0547F200-02A0-45D6-A1E0-363AD02DBFEB} => C:\Program Files\HP\HP ENVY 5530 series\Bin\ScanToPCActivationApp.exe [2014-07-21] (Hewlett-Packard Development Company, LP) Task: {AC1E0B1B-B4BF-4E88-8D15-DFE162388554} - System32\Tasks\NahimicMSIUILauncherRun => C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe [2015-12-04] () Task: {AE2F5653-F69C-4AE5-AC15-8D6FEDC70F66} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Knight Rider\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe Task: {B8D0B871-8A11-44F6-AF0F-602FE08A16AD} - System32\Tasks\{18B1376D-06ED-545E-2B12-4A0CF6A2E511} => C:\Users\Knight Rider\AppData\Roaming\UpdateTask\SynHelper.exe [2013-04-22] () Task: {C94AA91A-66F4-428D-9673-540F219CD2E3} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-17] (NVIDIA Corporation) Task: {CB113A93-2D62-45EA-9738-889299BE76A3} - System32\Tasks\NahimicMSIsvc64Run => C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIsvc64.exe [2015-12-04] () Task: {DE066516-0C7F-4FCC-A437-1533E01AD46E} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-12-29] (Microsoft Corporation) Task: {E8C962FC-8FE0-4BCF-9E99-65F8A328AA7D} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-17] (NVIDIA Corporation) Task: {F34F1F4F-7315-4892-8F5C-7E316EFEB4C7} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-01-04] (Overwolf LTD) Task: {F9205A60-C050-45BE-83B7-F175A7F247C8} - System32\Tasks\doPDF Update => C:\Program Files\Softland\novaPDF 8\Driver\UpdateApplication.exe [2016-06-17] () Task: {FC670DB5-50A6-41F8-B719-CEEF7A4AF299} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-marvin.meurer1@web.de => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-05-05] (Adobe Systems Incorporated) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\WINDOWS\Tasks\{18B1376D-06ED-545E-2B12-4A0CF6A2E511}.job => C:\Users\KNIGHT~1\AppData\Roaming\UPDATE~1\SYNHEL~1.EXE <==== ACHTUNG ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) ShortcutWithArgument: C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Node.js\Node.js command prompt.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files (x86)\nodejs\nodevars.bat" ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2016-05-28 22:47 - 2013-09-03 13:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\bdmetrics.dll 2016-11-14 19:34 - 2016-11-14 19:34 - 01008448 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_02351_002\ashttpbr.mdl 2016-11-14 19:34 - 2016-11-14 19:34 - 00541952 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_02351_002\ashttpdsp.mdl 2016-11-14 19:34 - 2016-11-14 19:34 - 03202816 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_02351_002\ashttpph.mdl 2016-11-14 19:34 - 2016-11-14 19:34 - 01542976 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_02351_002\ashttprbl.mdl 2017-01-03 11:58 - 2017-01-03 11:58 - 00027760 _____ () C:\Program Files (x86)\NZXT\CAM\Service\CAMService.exe 2016-06-17 11:43 - 2016-06-17 11:43 - 00145696 _____ () C:\Program Files\Softland\novaPDF 8\Server\AgileDotNetRT64.dll 2016-02-10 15:37 - 2016-02-10 15:37 - 00179208 _____ () C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe 2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2016-11-17 01:28 - 2016-11-17 01:28 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2016-05-11 23:39 - 2016-05-11 23:39 - 00037808 _____ () C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe 2016-10-17 20:45 - 2016-11-17 14:45 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-10-17 20:45 - 2016-11-17 14:45 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll 2016-10-17 20:45 - 2016-11-17 14:45 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll 2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-12-14 17:27 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-09-23 14:36 - 2016-11-24 20:39 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-12-14 17:27 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-12-14 17:27 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll 2016-05-22 18:33 - 2016-05-22 18:33 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll 2015-12-04 08:36 - 2015-12-04 08:36 - 00207840 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIDevProps.dll 2015-12-04 08:36 - 2015-12-04 08:36 - 00285152 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIOSD.dll 2016-09-23 15:33 - 2016-09-23 15:33 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2017-01-10 21:42 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2017-01-10 21:42 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-01-10 21:42 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-01-10 21:42 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2017-01-10 21:42 - 2016-12-21 07:48 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll 2017-01-10 21:42 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2017-01-10 21:42 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-12-14 17:42 - 2016-12-14 17:42 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2016-12-14 17:42 - 2016-12-14 17:42 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2016-12-14 17:42 - 2016-12-14 17:42 - 42130432 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2016-12-14 17:42 - 2016-12-14 17:42 - 02216448 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\roottools.dll 2017-01-10 21:42 - 2016-12-21 07:47 - 00114176 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Dss.BackgroundTask.dll 2016-12-17 23:13 - 2016-12-08 09:03 - 02412888 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll 2016-12-17 23:13 - 2016-12-08 09:03 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll 2015-12-04 08:31 - 2015-12-04 08:31 - 00740320 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe 2016-05-11 23:39 - 2016-05-11 23:39 - 01088944 _____ () C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe 2015-12-04 08:31 - 2015-12-04 08:31 - 00826880 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIsvc32.exe 2015-12-04 08:37 - 2015-12-04 08:37 - 00275456 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIsvc64.exe 2016-02-10 21:27 - 2016-02-10 21:27 - 00267672 _____ () C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\sldBodyDiffu.dll 2016-05-28 22:02 - 2013-01-05 09:05 - 01709736 _____ () C:\Program Files (x86)\Rapoo\RpWireless\LedStatus.exe 2017-01-12 09:48 - 2017-01-12 09:48 - 07820400 _____ () C:\Program Files (x86)\NZXT\CAM\CAM_V3.exe 2016-05-22 18:32 - 2016-05-22 18:32 - 31680176 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe 2016-12-14 10:56 - 2016-12-14 10:56 - 00202352 _____ () C:\Program Files (x86)\NZXT\CAM\FPS\CAMFPS.exe 2015-10-16 05:14 - 2015-10-16 05:14 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2016-06-01 16:04 - 2016-11-17 14:45 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-10-17 20:45 - 2016-11-17 14:45 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll 2016-10-17 20:45 - 2016-11-17 14:45 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2015-12-04 08:30 - 2015-12-04 08:30 - 00177632 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIDevProps.dll 2015-12-04 08:30 - 2015-12-04 08:30 - 00252384 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIOSD.dll 2016-10-17 20:45 - 2016-11-17 11:20 - 00506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node 2016-10-17 20:45 - 2016-11-17 11:20 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node 2016-10-17 20:45 - 2016-11-17 11:20 - 02809912 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node 2016-10-17 20:45 - 2016-11-17 11:20 - 00245184 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node 2016-10-17 20:45 - 2016-11-17 11:20 - 00436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node 2016-10-17 20:45 - 2016-11-17 11:20 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node 2016-10-17 20:45 - 2016-11-17 11:20 - 00968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node 2017-01-15 19:21 - 2017-01-04 14:28 - 01958912 _____ () C:\Users\Knight Rider\AppData\Local\Discord\app-0.0.297\ffmpeg.dll 2017-01-15 19:21 - 2017-01-15 19:21 - 01082880 _____ () \\?\C:\Users\Knight Rider\AppData\Roaming\discord\0.0.297\modules\discord_voice\discord_voice.node 2017-01-15 19:21 - 2017-01-15 19:21 - 03750400 _____ () \\?\C:\Users\Knight Rider\AppData\Roaming\discord\0.0.297\modules\discord_voice\libdiscord.dll 2017-01-15 19:21 - 2017-01-15 19:21 - 00914432 _____ () \\?\C:\Users\Knight Rider\AppData\Roaming\discord\0.0.297\modules\discord_utils\discord_utils.node 2017-01-15 19:21 - 2017-01-15 19:21 - 01127424 _____ () \\?\C:\Users\Knight Rider\AppData\Roaming\discord\0.0.297\modules\discord_toaster\discord_toaster.node 2017-01-15 19:21 - 2017-01-04 14:28 - 02278912 _____ () C:\Users\Knight Rider\AppData\Local\Discord\app-0.0.297\libglesv2.dll 2017-01-15 19:21 - 2017-01-04 14:28 - 00096768 _____ () C:\Users\Knight Rider\AppData\Local\Discord\app-0.0.297\libegl.dll 2016-11-17 01:29 - 2016-11-17 01:29 - 01041720 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2016-09-01 17:13 - 2016-09-01 17:13 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2016-11-17 01:28 - 2016-11-17 01:28 - 00189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll 2017-01-17 16:03 - 2017-01-17 16:03 - 00148992 _____ () \\?\C:\Users\Knight Rider\AppData\Local\Temp\3587.tmp.node 2017-01-15 19:21 - 2017-01-15 19:21 - 02658304 _____ () \\?\C:\Users\Knight Rider\AppData\Roaming\discord\0.0.297\modules\discord_rpc\discord_rpc.node 2017-01-15 19:22 - 2017-01-15 19:22 - 02130432 _____ () \\?\C:\Users\Knight Rider\AppData\Roaming\discord\0.0.297\modules\discord_contact_import\discord_contact_import.node 2016-08-10 10:14 - 2016-08-10 10:14 - 40523480 _____ () C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\libcef.dll 2016-12-13 13:39 - 2016-12-08 16:13 - 00656160 _____ () E:\Steam\SDL2.dll 2016-10-15 19:04 - 2016-09-01 02:02 - 04969248 _____ () E:\Steam\v8.dll 2016-12-21 20:27 - 2016-12-20 03:25 - 02322720 _____ () E:\Steam\video.dll 2016-10-15 19:04 - 2016-01-27 08:49 - 02549760 _____ () E:\Steam\libavcodec-56.dll 2016-10-15 19:04 - 2016-01-27 08:49 - 00491008 _____ () E:\Steam\libavformat-56.dll 2016-10-15 19:04 - 2016-01-27 08:49 - 00332800 _____ () E:\Steam\libavresample-2.dll 2016-10-15 19:04 - 2016-01-27 08:49 - 00442880 _____ () E:\Steam\libavutil-54.dll 2016-10-15 19:04 - 2016-01-27 08:49 - 00485888 _____ () E:\Steam\libswscale-3.dll 2016-10-15 19:04 - 2016-09-01 02:02 - 01563936 _____ () E:\Steam\icui18n.dll 2016-10-15 19:04 - 2016-09-01 02:02 - 01195296 _____ () E:\Steam\icuuc.dll 2016-12-21 20:27 - 2016-12-20 03:25 - 00838944 _____ () E:\Steam\bin\chromehtml.DLL 2016-10-15 19:04 - 2016-07-04 23:17 - 00266560 _____ () E:\Steam\openvr_api.dll 2016-10-17 20:45 - 2016-11-17 14:44 - 60817344 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll 2016-12-13 13:39 - 2016-12-05 17:21 - 67304736 _____ () E:\Steam\bin\cef\cef.win7\libcef.dll 2016-10-15 19:04 - 2015-09-25 00:52 - 00119208 _____ () E:\Steam\winh264.dll 2017-01-04 13:45 - 2017-01-04 13:45 - 67297280 _____ () C:\Program Files (x86)\Overwolf\0.101.213.0\libcef.DLL 2016-05-28 22:02 - 2012-02-17 14:45 - 00042496 _____ () C:\Program Files (x86)\Rapoo\RpWireless\LedStatus.dll 2016-12-07 18:28 - 2016-12-07 18:28 - 00282112 _____ () C:\Program Files (x86)\NZXT\CAM\GSyncLib.dll 2016-06-01 16:15 - 2017-01-17 16:04 - 00308736 _____ () C:\Program Files (x86)\NZXT\CAM\NVAPIHelper.dll 2016-05-28 22:02 - 2013-08-10 10:45 - 00294912 _____ () C:\Program Files (x86)\Rapoo\RpWireless\Swap.dll 2016-06-03 02:36 - 2016-06-03 02:36 - 40523456 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll 2016-06-07 23:10 - 2016-06-07 23:10 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node 2016-06-07 23:10 - 2016-06-07 23:10 - 00205824 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node 2016-06-07 23:10 - 2016-06-07 23:10 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node 2016-06-07 23:10 - 2016-06-07 23:10 - 00125440 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node 2016-06-07 23:41 - 2016-06-07 23:41 - 00098496 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll 2016-06-07 23:10 - 2016-06-07 23:10 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node 2016-12-07 18:28 - 2016-12-07 18:28 - 00070656 _____ () C:\Program Files (x86)\NZXT\CAM\FPS\KeyHookDLL_x86.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) ==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2015-10-30 08:24 - 2017-01-17 15:59 - 00000002 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\Control Panel\Desktop\\Wallpaper -> c:\users\Knight Rider\desktop\mt 07 background.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [vm-monitoring-nb-session] => LPort=139 FirewallRules: [{DC20F389-0673-443C-B9B7-605290B8D0A6}] => E:\UPlay\The Crew (Worldwide)\TheCrew.exe FirewallRules: [{B55A0228-00BD-46C3-B27F-60E5554325BC}] => E:\UPlay\The Crew (Worldwide)\TheCrew.exe FirewallRules: [{2F1F1BFF-109D-4624-A348-B9F771766160}] => C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe FirewallRules: [{25806314-9BD4-4887-BEFF-AF54D46C9E48}] => C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe FirewallRules: [{1064A5F3-135F-425A-A8FD-D82130B1B1F5}] => C:\Program Files\MAGIX\Video deluxe 2016 Premium\Videodeluxe.exe FirewallRules: [{04E9B176-EF63-4E38-A7ED-AF4A04DB79F3}] => LPort=8501 FirewallRules: [{53BB82C0-D4D2-4AE5-AF2D-38F6799916C7}] => LPort=8501 FirewallRules: [UDP Query User{582D84F6-CE9C-47D1-9D51-7640140C69F1}E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{29BD0947-9C8B-438D-A3F0-C695FB0CEDC5}E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{AA2F4FF8-E17F-4DD5-BF6D-398CEC1F15E6}] => C:\Program Files\GoPro\GoPro Desktop App\GoProLauncher.exe FirewallRules: [{FDF133C5-2BF9-4529-B63C-1EC1E18F89C6}] => C:\Program Files\GoPro\GoPro Desktop App\GoProIDService.exe FirewallRules: [{91A4F597-B628-4A95-9777-B6DEBFF934BB}] => C:\Program Files\GoPro\GoPro Desktop App\GoProMsgBus.exe FirewallRules: [{0A72B478-531D-4A6A-B47A-B27B440B36D2}] => C:\Program Files\GoPro\GoPro Desktop App\GoPro.exe FirewallRules: [{446F86A3-3AF9-44CD-931A-A148B19FA98A}] => C:\Users\Knight Rider\AppData\Local\Temp\7zS46D1\HPDiagnosticCoreUI.exe FirewallRules: [{73FB3B8A-710F-49D0-8AF9-5B89A633C09E}] => C:\Users\Knight Rider\AppData\Local\Temp\7zS46D1\HPDiagnosticCoreUI.exe FirewallRules: [{6E0A6CDC-F378-4902-901D-14914749F14B}] => E:\Steam\steamapps\common\3DMark\3DMarkLauncher.exe FirewallRules: [{3959E762-27C0-4EAD-AC3E-C2B6E18E8C66}] => E:\Steam\steamapps\common\3DMark\3DMarkLauncher.exe FirewallRules: [{BA8CBCF9-6376-4FD2-B721-96F8A6380479}] => C:\Users\Knight Rider\AppData\Local\Temp\7zS2FE1\HPDiagnosticCoreUI.exe FirewallRules: [{23D58E1C-B6C9-4EF6-87D1-902BC7C76885}] => C:\Users\Knight Rider\AppData\Local\Temp\7zS2FE1\HPDiagnosticCoreUI.exe FirewallRules: [{5F7D483C-28BE-4079-AAA0-65DA8E28BDC1}] => E:\Steam\steamapps\common\EVGA PrecisionX\Skins\UxfTool.exe FirewallRules: [{BDCF2A81-FD78-481A-9921-321724FFF7B2}] => E:\Steam\steamapps\common\EVGA PrecisionX\Skins\UxfTool.exe FirewallRules: [{A35EB4EC-85A9-4714-B7EB-74059BC90D24}] => E:\Steam\steamapps\common\EVGA PrecisionX\PrecisionX_x64.exe FirewallRules: [{38B90A6C-61D6-40F1-8F10-29DC028D6CC6}] => E:\Steam\steamapps\common\EVGA PrecisionX\PrecisionX_x64.exe FirewallRules: [{6128DC0F-333F-44DC-93B7-FD59D61E8C7D}] => E:\GTA5.exe FirewallRules: [{C9CC7850-9C3C-4803-8034-E04F523FA091}] => E:\GTA5.exe FirewallRules: [{97FBDC53-B7E2-4690-9B54-B2A3C39D6E64}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{1A69A998-B3DE-4027-A4B8-6C87379F8F4E}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{F8BF0CC2-B046-4542-8620-D5F3686A22A7}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{D7AAE08E-BE2F-4305-ADEB-412192D1EB40}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{970C729C-8B32-45EA-BCFE-C7CA5D1872CB}] => C:\Program Files\HP\HP ENVY 5530 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{248CD8AC-AFBC-4C81-A164-A27C81899A63}] => LPort=5357 FirewallRules: [{D6E447B1-1BB7-449B-830F-E60DA33D4D1C}] => C:\Program Files\HP\HP ENVY 5530 series\Bin\DeviceSetup.exe FirewallRules: [{740A973B-C4BC-4F49-B355-1FEFFE302DD1}] => C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{89F3408B-222F-4C27-A8AE-E3CBE589B257}] => E:\Programme\Common7\IDE\devenv.exe FirewallRules: [{95899C5B-BC21-4597-8DD6-74605921232F}] => E:\Steam\steamapps\common\Rollercoaster Tycoon 3 Gold\RCT3plus.exe FirewallRules: [{1A0025E6-719C-4178-AC08-5BE5502AC899}] => E:\Steam\steamapps\common\Rollercoaster Tycoon 3 Gold\RCT3plus.exe FirewallRules: [{E0D847BA-DC22-4FB4-A5EF-64BE0AA5B61D}] => E:\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{69EB1B01-3311-47CD-97B1-E82B0F04475B}] => E:\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{46A16798-ACCC-4EBF-AF5E-DFA34BE12CFF}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{B8F48BE4-2234-463C-BEE8-E02737598E43}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{B9DB27DF-5F0F-484B-92E4-082B77C48AD6}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{6AD65B56-0BE8-46F8-903F-E6D24AF2531A}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{45FC92BA-BBA7-46B4-853C-E8D5DC193696}] => E:\Steam\steamapps\common\Team Fortress 2\hl2.exe FirewallRules: [{95B7EC49-5B97-43D9-B51B-5BFF6652756A}] => E:\Steam\steamapps\common\Team Fortress 2\hl2.exe FirewallRules: [{B2E3446A-263B-4B4C-B3B5-337E6CDF2800}] => E:\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{4C2A959C-C7EC-484C-B2F2-A38AB05B0A39}] => E:\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{CD836E44-E83F-4D70-833F-D5768B307025}] => E:\Steam\steamapps\common\Farming Simulator 15\x64\FarmingSimulator2015Game.exe FirewallRules: [{A4CFB29E-408A-4A85-A84E-C3D156E629F0}] => E:\Steam\steamapps\common\Farming Simulator 15\x64\FarmingSimulator2015Game.exe FirewallRules: [{82FB6EB6-9E4A-443B-9FE9-122C8BD12F27}] => E:\Steam\steamapps\common\Counter-Strike Source\hl2.exe FirewallRules: [{FE07C331-321C-4465-B12D-CEA32796B9FB}] => E:\Steam\steamapps\common\Counter-Strike Source\hl2.exe FirewallRules: [{C8058183-EA6B-4E41-8CE7-856A0E61FCC2}] => E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{8EE8DA43-7627-48C6-AD88-4C997A1323CE}] => E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{29312822-A300-4C40-A885-CBE298632F59}] => E:\Steam\bin\steamwebhelper.exe FirewallRules: [{44D345B7-3BF1-4939-B480-2F31141CEEE8}] => E:\Steam\bin\steamwebhelper.exe FirewallRules: [{32A9C915-48D5-4345-B36A-8BE8E5B54D30}] => E:\Steam\Steam.exe FirewallRules: [{AE1A2968-6EBB-460E-BF76-2B092CDEC94A}] => E:\Steam\Steam.exe FirewallRules: [{255D5DD0-759B-4977-A61A-53117078049C}] => LPort=2333 FirewallRules: [{B20859F5-2160-4466-992D-ED3326E1E393}] => LPort=9143 FirewallRules: [{D7944283-3883-4C5F-9446-0F13E0A4947C}] => C:\Program Files (x86)\Didactic\FluidSIM5-Homeuse\bin\CodeMeter.exe FirewallRules: [{41620DFB-C774-4D26-9B65-C9DA125845E6}] => C:\Program Files (x86)\Didactic\FluidSIM5-Homeuse\bin\CodeMeter.exe FirewallRules: [TCP Query User{A48B2411-88B0-4E8F-A57F-ED6802DEA9A6}E:\ti-nspire cx student software\ti-nspire cx student software.exe] => E:\ti-nspire cx student software\ti-nspire cx student software.exe FirewallRules: [UDP Query User{7221E92E-A653-4933-A912-937C5B5579C4}E:\ti-nspire cx student software\ti-nspire cx student software.exe] => E:\ti-nspire cx student software\ti-nspire cx student software.exe FirewallRules: [TCP Query User{E3ED49B1-4B31-4563-9349-3BC9C2380D7B}E:\ti-nspire cx student software\jre\bin\java.exe] => E:\ti-nspire cx student software\jre\bin\java.exe FirewallRules: [UDP Query User{86C87F86-0498-4777-9760-241871CA568F}E:\ti-nspire cx student software\jre\bin\java.exe] => E:\ti-nspire cx student software\jre\bin\java.exe FirewallRules: [{3D7B8288-E8C7-4CF3-9817-07BAF394629E}] => E:\Steam\steamapps\common\SteamVRPerformanceTest\bin\win64\vr.exe FirewallRules: [{6B2464F0-4C77-47C3-8AE4-C5666B2BEAE1}] => E:\Steam\steamapps\common\SteamVRPerformanceTest\bin\win64\vr.exe FirewallRules: [{DCADC9AF-1424-4173-9208-53B41366F7BF}] => E:\Steam\steamapps\common\PCMark 8\bin\PCMark8.exe FirewallRules: [{279AD4DC-3BC6-48E3-91F5-687B06CE97DD}] => E:\Steam\steamapps\common\PCMark 8\bin\PCMark8.exe FirewallRules: [{B2CA8270-D6E7-4EA6-95C9-B01DA03B362A}] => E:\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [{3CA29EF8-2324-48CD-B24C-883127A04045}] => E:\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [{D6DA50AD-A6C5-49F2-BF12-AEA3F4D6211A}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{A4BC4E5E-5D11-45F6-93AB-952235A1D0A0}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{7C9B1CC5-5E50-4331-B435-A2917B3654ED}] => C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe FirewallRules: [{1FE8D93D-E02D-4D80-A8A6-D4DFDFE10836}] => C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe FirewallRules: [TCP Query User{80DBD5F7-28C6-4024-AD54-99EB8BEE659D}E:\gta5.exe] => E:\gta5.exe FirewallRules: [UDP Query User{D49B37A4-8A24-4E86-9538-5D113037301F}E:\gta5.exe] => E:\gta5.exe FirewallRules: [{DFA1A6B2-9DA2-44B4-A34A-A7C2BAFC5374}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe FirewallRules: [{0F19AF09-DFB8-48C5-980A-E2321BADFE3C}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe FirewallRules: [{C3A96544-D42D-4897-BE4D-74673F07A360}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{C44277F5-3F84-40DF-B868-4C887894C8EC}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{9F6182DB-CC3E-4F52-8D94-3A71C11A00C7}] => E:\Steam\steamapps\common\SNOW\Bin64\playSNOW.exe FirewallRules: [{F8F6AD73-CE71-4249-A67F-8ED645995DE3}] => E:\Steam\steamapps\common\SNOW\Bin64\playSNOW.exe FirewallRules: [{6EBC8C84-122E-4729-933E-C48A1B92C0E8}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{5E2380FC-13DF-4C5C-A667-6E1BB442BA18}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [TCP Query User{27829CBD-693C-47DE-938C-E916A399569E}E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{00621EC1-D524-44D6-BD9F-BE62EF278689}E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{415DAEDE-EDBE-4ECD-B2DF-04AE70AE8346}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{8D5ECBCA-E874-42FF-8918-4BD6EC84BF29}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{46768423-3AC7-41BD-8918-EBC344E04B49}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{11AB8EBD-91B5-457D-B7C6-7E0420928CED}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{19A9D408-D902-4D4D-B5DB-F3A694BB3C0A}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{FDEFED6B-DEE4-4336-B11B-9EFD986B3705}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{18850649-80E9-44DB-9579-EDB7EA821978}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{0AAE3A14-89A6-412F-8B47-3AE92BE8C5F6}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{0E7322FF-36F1-49BA-B62D-4190E8E8FA8D}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{92FB5956-69F2-46DB-973E-E7B1AD576569}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{9B08E6A9-E252-4C45-88BE-FC402F6E05C9}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{C0B5D76D-84D0-4625-9F80-7E6299475806}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{42239AB1-94C4-4EBF-B6D0-42FFF4779DE2}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{DEC5EFB7-6288-4561-BE09-9BA056C96D06}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{3EC3297B-593A-4FAC-AB00-4458C7AD6767}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{7B204C37-73DC-4F57-87B9-85CA064CFD70}] => E:\Steam\steamapps\common\Steep Open Beta\steep.exe FirewallRules: [{3AFD1DB9-C37C-42DD-8E3D-0056FDC206C9}] => E:\Steam\steamapps\common\Steep Open Beta\steep.exe FirewallRules: [{7299C231-8AFE-4790-879B-B41D3897A597}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{47CD93EE-DCB3-49CF-BF6B-0BA0599EE34A}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{61ED91C2-137E-45D6-BF88-7D40018E9893}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{E45E15CF-F87E-4217-9F84-194135FDB580}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{1C38B42C-8106-48D9-B765-CC14544D913B}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{8B4CA0E1-F02D-4957-8199-ACDA938E02A2}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{CE8D74F3-A1C2-48EB-9CCD-A91D159AC65A}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{17733A66-6EA4-48A8-9C13-46AF393EAC30}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{2184456A-0C9D-48B9-8832-EC86994AACDE}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{20E82D63-DADB-44E8-819B-27A4E04F8B53}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{C8F6D304-0A67-4A48-A742-68942457273D}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{E4621CC3-134F-4792-B47B-938835242FD9}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{02D5DE69-7294-4EF9-9AFD-5AA131A25227}] => E:\GTA V\GTA5.exe FirewallRules: [{55445BB4-8AF7-4D42-ABA6-19A64F6096B0}] => E:\GTA V\GTA5.exe FirewallRules: [{A1AA779B-1280-486F-93C0-4FF2BD993E25}] => E:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{938F25F6-CEBF-431A-9A7F-8DBE1ED70C20}] => E:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{E779C8B5-32BC-453E-91CD-BEBD7AE9A7A7}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{8DE65A3C-0537-49AA-80C1-F77F10114A8E}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{5C4C70D3-F144-469A-AC22-B1E0E2342A97}] => E:\Steam\steamapps\common\SNOW\Bin64\playSNOW.exe FirewallRules: [{3960D1C8-1D6A-47DE-806B-B9A5D831B02D}] => E:\Steam\steamapps\common\SNOW\Bin64\playSNOW.exe FirewallRules: [{6D304267-F395-4DB4-BF92-F79751D26037}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{A04BB9B7-F9D8-4CF0-BFD3-87387FC9EB02}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{DE3C3E5E-91DA-4697-B5B1-D570DCB684ED}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{C7AD4DAC-930B-44DE-BAC0-4E2B64E322BD}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{DC8AA6C0-E6F7-4E78-996B-D5FD56710896}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{1505F4B2-8F0E-4268-9309-6588F501B14B}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{4331CB91-BA6D-4289-8D1D-DBCCA017FEFF}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{FE034258-8A91-45E6-B6D2-16EFC0B99FDB}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{85810EE0-A6D7-4AA0-8FE0-80A9D255DB6C}] => E:\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe FirewallRules: [{9400D5D3-10F8-4B4F-9E31-B935D69221B9}] => E:\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe FirewallRules: [{DB5ACF1E-6792-487F-B0B1-8FBA4313E204}] => E:\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe FirewallRules: [{B1D16D26-C7A6-4055-B570-0EA8B3263DFD}] => E:\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe FirewallRules: [{CC9BB5AB-6A06-40A8-BEE1-92FA5E1B2D86}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{F6D38622-B7B8-47A0-985B-EC64A09A99D8}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{054E8E0F-07BF-40D6-820D-DF74EF9DEF06}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{689B2347-DA33-4F35-8DEE-7A1BC4598ECE}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{3C4BA918-6816-47CE-9560-173DE2B3C981}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{CDD5F5FB-91FD-4290-B3D6-CACA6BA9C117}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{3DC612E5-63B0-4F61-A0C7-6CBFC15380D0}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{8B68BD82-8AE7-4F34-9758-FE4D98D72E86}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{34F83D29-2AB6-4140-B97B-FF36ACDEE761}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{650D6441-C73A-4546-B707-D369FFD82098}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{379BE4B4-EB8C-4304-ADFB-C6EB48F7CB63}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{B8A43B27-F1A9-4C39-A49F-2011745376C7}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{BA1226FF-76FD-4506-B7C7-CB2AB5159DDB}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{DFA1806B-5C5B-493A-A939-6E33811FBC58}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{F1D2F795-15AB-4DBD-90DA-847878CC7C69}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{1D9BE7CE-4420-488D-8DCC-B7E2DF7BD3A6}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{7A1B1166-4A91-43FA-840D-254B83C40F17}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{14B4E5A0-53D7-4F6D-94B4-E97E4532E2CD}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{3D76EF32-DB7E-46E7-A4D7-B34E30C2AAF7}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{7405F89C-B4FA-4584-8188-6B78C0313611}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{DCC0C234-9DA5-4F95-A3F8-DBDB080C4942}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{CFB84E45-93FD-4970-9213-7D9BC60EDF09}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{E1D0D8C6-7823-46F6-9337-62845C355D7E}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{A5665D02-AD8F-42E1-B790-965AE5D7AB65}] => E:\Programme\iTunes.exe FirewallRules: [{D4088670-D200-439A-8EB2-CDDC4142D407}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{94466409-25C9-4186-B117-FFAA03AC1BF7}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{4F833480-9F2B-46E6-9614-E86530039C8C}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{A0B3685D-06F2-4B72-A860-B0F232EAADDD}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{32AE8B65-A863-40C0-B815-2F5CBAF7B38B}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{E70E1073-1B5E-4639-A121-BCB8E200BD03}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{3B90A165-ACEF-4894-9B2F-1ACF0CD28D30}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{7D57A74D-240D-49CE-968C-9DED34F3035C}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{03118F20-A1C6-42AE-97F2-4ED5D80C744C}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{373EAC15-37DD-451B-AFF3-BF031405EC85}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{17621C42-EF18-4A6E-96B6-46D38D25A014}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{2DD3A9A1-F505-40E8-BF5B-D6E3002D751D}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{F6B0FD4C-D8A7-4C97-8A4E-B46F79A69D44}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{2EC8010E-1AB7-43C7-9DB0-5C9E9F221F39}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{FA2DE05E-57F9-40A4-8922-7E5593833B68}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{9B5A3CEE-9836-465D-A717-726B5F5DECE7}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{E660A8B8-89DE-41B1-8FA9-C63983DB4DA3}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{CA253B06-D3D5-4208-9430-5D2A1B46E11C}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{7F61E5DB-7A41-42FF-A200-9F82E741F77D}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{60E4AA5A-4089-4908-ADE9-939561F59CAC}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe ==================== Wiederherstellungspunkte ========================= 10-01-2017 21:58:35 Windows Update 10-01-2017 21:58:44 Windows Update 12-01-2017 19:36:35 Installed CAM 15-01-2017 19:38:39 JRT Pre-Junkware Removal ==================== Fehlerhafte Geräte im Gerätemanager ============= Name: Standard PS/2 Keyboard Description: Standard PS/2 Keyboard Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard keyboards) Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Microsoft PS/2 Mouse Description: Microsoft PS/2 Mouse Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (01/17/2017 04:04:44 PM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code. Error: (01/17/2017 04:04:44 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: The Open Procedure for service "MSDTC" in DLL "C:\WINDOWS\system32\msdtcuiu.DLL" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Error: (01/17/2017 04:04:44 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: The Open Procedure for service "Lsa" in DLL "C:\Windows\System32\Secur32.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Error: (01/17/2017 04:04:16 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: The Open Procedure for service "WmiApRpl" in DLL "C:\WINDOWS\system32\wbem\wmiaprpl.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Error: (01/17/2017 04:04:16 PM) (Source: Perflib) (EventID: 1023) (User: ) Description: Windows cannot load the extensible counter DLL rdyboost. The first four bytes (DWORD) of the Data section contains the Windows error code. Error: (01/17/2017 04:04:12 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Error: (01/17/2017 04:03:30 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: The Open Procedure for service "WmiApRpl" in DLL "C:\WINDOWS\system32\wbem\wmiaprpl.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Error: (01/17/2017 04:03:30 PM) (Source: Perflib) (EventID: 1023) (User: ) Description: Windows cannot load the extensible counter DLL rdyboost. The first four bytes (DWORD) of the Data section contains the Windows error code. Error: (01/17/2017 04:03:30 PM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code. Error: (01/17/2017 04:03:30 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: The Open Procedure for service "MSDTC" in DLL "C:\WINDOWS\system32\msdtcuiu.DLL" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Systemfehler: ============= Error: (01/17/2017 04:03:27 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-RK4M43L) Description: Unable to start a DCOM Server: {14286318-B6CF-49A1-81FC-D74AD94902F9}. The error: "2" Happened while starting this command: "C:\Program Files (x86)\Microsoft Office\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE" -Embedding Error: (01/17/2017 04:03:06 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: The Anwendungsspezifisch permission settings do not grant Lokal Aktivierung permission for the COM Server application with CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} and APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} to the user NT-AUTORITÄT\SYSTEM SID (S-1-5-18) from address LocalHost (unter Verwendung von LRPC) running in the application container Nicht verfügbar SID (Nicht verfügbar). This security permission can be modified using the Component Services administrative tool. Error: (01/16/2017 10:18:56 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-RK4M43L) Description: The server {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474} did not register with DCOM within the required timeout. Error: (01/16/2017 10:18:54 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: The Anwendungsspezifisch permission settings do not grant Lokal Aktivierung permission for the COM Server application with CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} and APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} to the user NT-AUTORITÄT\SYSTEM SID (S-1-5-18) from address LocalHost (unter Verwendung von LRPC) running in the application container Nicht verfügbar SID (Nicht verfügbar). This security permission can be modified using the Component Services administrative tool. Error: (01/16/2017 06:24:59 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-RK4M43L) Description: Unable to start a DCOM Server: {14286318-B6CF-49A1-81FC-D74AD94902F9}. The error: "2" Happened while starting this command: "C:\Program Files (x86)\Microsoft Office\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE" -Embedding Error: (01/16/2017 06:24:38 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: The Anwendungsspezifisch permission settings do not grant Lokal Aktivierung permission for the COM Server application with CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} and APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} to the user NT-AUTORITÄT\SYSTEM SID (S-1-5-18) from address LocalHost (unter Verwendung von LRPC) running in the application container Nicht verfügbar SID (Nicht verfügbar). This security permission can be modified using the Component Services administrative tool. Error: (01/15/2017 11:11:42 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: The Anwendungsspezifisch permission settings do not grant Lokal Aktivierung permission for the COM Server application with CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} and APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} to the user NT-AUTORITÄT\SYSTEM SID (S-1-5-18) from address LocalHost (unter Verwendung von LRPC) running in the application container Nicht verfügbar SID (Nicht verfügbar). This security permission can be modified using the Component Services administrative tool. Error: (01/15/2017 07:38:47 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The NVIDIA LocalSystem Container service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 1000 milliseconds: Neustart des Diensts. Error: (01/15/2017 07:34:51 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-RK4M43L) Description: Unable to start a DCOM Server: {14286318-B6CF-49A1-81FC-D74AD94902F9}. The error: "2" Happened while starting this command: "C:\Program Files (x86)\Microsoft Office\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE" -Embedding Error: (01/15/2017 07:34:30 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: The Anwendungsspezifisch permission settings do not grant Lokal Aktivierung permission for the COM Server application with CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} and APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} to the user NT-AUTORITÄT\SYSTEM SID (S-1-5-18) from address LocalHost (unter Verwendung von LRPC) running in the application container Nicht verfügbar SID (Nicht verfügbar). This security permission can be modified using the Component Services administrative tool. CodeIntegrity: =================================== Date: 2017-01-01 20:16:18.923 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIDevProps.dll that did not meet the Store signing level requirements. Date: 2017-01-01 20:16:18.882 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIOSD.dll that did not meet the Store signing level requirements. Date: 2017-01-01 20:16:18.878 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Overwolf\0.100.227.0\x64\OWExplorer.dll that did not meet the Store signing level requirements. Date: 2017-01-01 20:16:18.839 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIDevProps.dll that did not meet the Store signing level requirements. Date: 2017-01-01 20:16:18.837 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIOSD.dll that did not meet the Store signing level requirements. Date: 2017-01-01 20:16:18.811 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. Date: 2017-01-01 20:16:18.738 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Overwolf\0.100.227.0\x64\OWExplorer.dll that did not meet the Store signing level requirements. Date: 2016-12-22 23:11:26.349 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIDevProps.dll that did not meet the Store signing level requirements. Date: 2016-12-22 23:11:26.347 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. Date: 2016-12-22 23:11:26.330 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIOSD.dll that did not meet the Store signing level requirements. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM) i7-6700K CPU @ 4.00GHz Prozentuale Nutzung des RAM: 31% Installierter physikalischer RAM: 16343.7 MB Verfügbarer physikalischer RAM: 11215.14 MB Summe virtueller Speicher: 18775.7 MB Verfügbarer virtueller Speicher: 12966.02 MB ==================== Laufwerke ================================ Drive c: () (Fixed) (Total:237.98 GB) (Free:79.39 GB) NTFS Drive e: (Volume) (Fixed) (Total:931.51 GB) (Free:532.72 GB) NTFS ==================== MBR & Partitionstabelle ================== ==================== Ende von Addition.txt ============================ |
18.01.2017, 08:52 | #17 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Pop-up "There is a recommended update for your PC" Lade Dir bitte von hier Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
__________________
__________________ |
18.01.2017, 22:12 | #18 |
| Pop-up "There is a recommended update for your PC" Alles klar! Habe ich gemacht, müsste alles weg sein!
__________________ |
18.01.2017, 22:16 | #19 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Pop-up "There is a recommended update for your PC" dann wieder frische FRST Logs bitte
__________________ Logfiles bitte immer in CODE-Tags posten |
19.01.2017, 21:28 | #20 |
| Pop-up "There is a recommended update for your PC"FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 18-01-2017 durchgeführt von Knight Rider (Administrator) auf DESKTOP-RK4M43L (19-01-2017 21:25:35) Gestartet von C:\Users\Knight Rider\Desktop Geladene Profile: Knight Rider (Verfügbare Profile: Knight Rider) Platform: Windows 10 Home Version 1607 (X64) Sprache: German (Germany) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe (Robert McNeel & Associates) C:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe (Microsoft) C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe (MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe (NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (MSI) E:\Programme\Command Center\DDR\MSIDDRService.exe (MSI) E:\Programme\Command Center\MSIControlService.exe (Microsoft Corporation) C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe () C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe (Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\dispatcher.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe () C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneCmd.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe () C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSISvc32.exe () C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSISvc64.exe (Apple Inc.) E:\Programme\iTunesHelper.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe (Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe (Hammer & Chisel, Inc.) C:\Users\Knight Rider\AppData\Local\Discord\app-0.0.297\Discord.exe (Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe (Overwolf LTD) C:\Program Files (x86)\Overwolf\0.101.213.0\OverwolfTSHelper.exe (Hammer & Chisel, Inc.) C:\Users\Knight Rider\AppData\Local\Discord\app-0.0.297\Discord.exe (Dassault Systèmes SolidWorks Corp.) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\sldworks_fs.exe (MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe () C:\Program Files (x86)\Rapoo\RpWireless\LedStatus.exe (Hammer & Chisel, Inc.) C:\Users\Knight Rider\AppData\Local\Discord\app-0.0.297\Discord.exe (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (RAPOO) C:\Program Files (x86)\Rapoo\RpWireless\RPConfig.exe (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe (Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe (Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.101.213.0\OverwolfHelper.exe (Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.101.213.0\OverwolfHelper64.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe (Valve Corporation) E:\Steam\Steam.exe (Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\bdagent.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe () C:\Program Files (x86)\NZXT\CAM\Service\CAMService.exe () C:\Program Files (x86)\NZXT\CAM\CAM_V3.exe () C:\Program Files (x86)\NZXT\CAM\FPS\CAMFPS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\cmd.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleChromeDAV.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8783616 2015-12-11] (Realtek Semiconductor) HKLM\...\Run: [NahimicMSIUILauncher] => C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe [740320 2015-12-04] () HKLM\...\Run: [GoPro Tray App] => C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe [1088944 2016-05-11] () HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-05-05] (Adobe Systems Incorporated) HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [iTunesHelper] => E:\Programme\iTunesHelper.exe [176440 2016-12-06] (Apple Inc.) HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1027024 2015-09-09] (MSI) HKLM-x32\...\Run: [CAM] => C:\Program Files (x86)\NZXT\CAM\CAMLauncher.exe [47216 2017-01-17] () HKLM-x32\...\Run: [OnScreen Control] => C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\OnScreenStartUpApp.exe [1785328 2015-12-14] (TODO: <Company name>) HKLM-x32\...\Run: [LedStatus] => C:\Program Files (x86)\Rapoo\RpWireless\LedStatus.exe [1709736 2013-01-05] () HKLM-x32\...\Run: [Launch] => C:\Program Files (x86)\Rapoo\RpWireless\Launch.exe [411664 2013-08-21] () HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [1890664 2016-01-14] (Western Digital Technologies, Inc.) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2380480 2016-06-08] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation) HKLM-x32\...\Run: [Command Center] => E:\Programme\Command Center\StartCommandCenter.exe [831584 2016-09-22] (MSI) HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [Steam] => E:\Steam\steam.exe [2881824 2017-01-19] (Valve Corporation) HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-11-17] (Apple Inc.) HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-11-17] (Apple Inc.) HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-11-17] (Apple Inc.) HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1046064 2017-01-04] () HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [VLC Updater] => C:\Program Files (x86)\VLC Updater\vlc-updater.exe [360776 2016-12-17] () HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Run: [Discord] => C:\Users\Knight Rider\AppData\Local\Discord\app-0.0.297\Discord.exe [64290304 2017-01-04] (Hammer & Chisel, Inc.) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2016 Fast Start.lnk [2016-09-12] ShortcutTarget: SOLIDWORKS 2016 Fast Start.lnk -> C:\Windows\Installer\{768F3B65-1695-47B7-9002-B11400CB111D}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera Software LLC) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{70af2310-3f54-4b00-a522-51aef7773f6d}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\Software\Microsoft\Internet Explorer\Main,Start Page = SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-12-28] (Microsoft Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-12-28] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-10-21] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-21] (Oracle Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext [2016-05-12] [ist nicht signiert] FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-06-08] (Adobe Systems) FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2016-10-06] (Google) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-21] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-21] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll [2013-05-13] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-12-28] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-24] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-24] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-06-08] (Adobe Systems) Chrome: ======= CHR DefaultSearchURL: Default -> hxxps://www.ecosia.org/search?q={searchTerms}&addon=opensearch CHR DefaultSearchKeyword: Default -> ecosia.org CHR DefaultSuggestURL: Default -> hxxps://ac.ecosia.org/autocomplete?q={searchTerms}&type=list CHR Profile: C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default [2017-01-19] CHR Extension: (Google Slides) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-05-28] CHR Extension: (Google Docs) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-05-28] CHR Extension: (Google Drive) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-28] CHR Extension: (YouTube) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-28] CHR Extension: (GeoGebra Math Apps) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnbaboaihhkjoaolfnfoablhllahjnee [2016-05-30] CHR Extension: (Adblock Plus) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-27] CHR Extension: (Google Search) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-05-28] CHR Extension: (Google Sheets) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-05-28] CHR Extension: (iCloud Bookmarks) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2016-05-29] CHR Extension: (Google Docs Offline) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-28] CHR Extension: (Night Time In New York City) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnimonidkipnhnpgkhgliocfnnpgkhek [2016-05-29] CHR Extension: (Chrome Web Store Payments) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19] CHR Extension: (Gmail) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-05-28] CHR Extension: (Chrome Media Router) - C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-20] ==================== Dienste (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 acCAMService; C:\Program Files (x86)\NZXT\CAM\Service\CAMService.exe [27760 2017-01-03] () R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [737984 2016-06-03] (Adobe Systems Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3699904 2016-12-28] (Microsoft Corporation) R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3755976 2015-07-01] (devolo AG) R2 ewserver; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe [179208 2016-02-10] () S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2016-08-11] (Futuremark) R2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [37808 2016-05-11] () S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation) R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Datei ist nicht signiert] R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21184 2016-03-29] (Microsoft Corporation) S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Datei ist nicht signiert] R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-10-16] (Intel Corporation) R2 McNeelUpdate; c:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe [66968 2016-05-23] (Robert McNeel & Associates) S3 MSIClock_CC; E:\Programme\Command Center\ClockGen\MSIClockService.exe [2169440 2016-10-21] (MSI) S3 MSICOMM_CC; E:\Programme\Command Center\MSICommService.exe [2204768 2016-09-29] (MSI) S3 MSICPU_CC; E:\Programme\Command Center\CPU\MSICPUService.exe [4162656 2016-09-29] (MSI) R2 MSICTL_CC; E:\Programme\Command Center\MSIControlService.exe [2015328 2016-10-06] (MSI) R2 MSIDDR_CC; E:\Programme\Command Center\DDR\MSIDDRService.exe [2327648 2016-09-29] (MSI) S3 MSISMB_CC; E:\Programme\Command Center\SMBus\MSISMBService.exe [2076768 2016-09-29] (MSI) S3 MSISuperIO_CC; E:\Programme\Command Center\SuperIO\MSISuperIOService.exe [607160 2016-09-29] (MSI) R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [163280 2015-05-18] (MSI) R2 MSSQL$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe [372416 2015-04-20] (Microsoft Corporation) R2 NovaPdfServer; C:\Program Files\Softland\novaPDF 8\Server\novapdfs.exe [51112 2016-06-17] (Microsoft) R2 nTuneService; C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe [278336 2011-09-19] (NVIDIA) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-11-17] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-11-17] (NVIDIA Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-11-24] (NVIDIA Corporation) R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-11-17] (NVIDIA Corporation) S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1317104 2017-01-04] (Overwolf LTD) R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1100392 2016-10-28] (Bitdefender) R2 RemoteSolverDispatcher; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe [238848 2016-02-10] (Mentor Graphics Corporation) S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2016-09-12] (SolidWorks) [Datei ist nicht signiert] S4 SQLAgent$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [613056 2015-04-20] (Microsoft Corporation) S3 Te.Service; C:\Program Files (x86)\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [137216 2016-03-28] (Microsoft Corporation) [Datei ist nicht signiert] R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10351856 2016-12-15] (TeamViewer GmbH) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe [156016 2016-11-24] (Bitdefender) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe [1695720 2016-11-24] (Bitdefender) S3 VSStandardCollectorService140; E:\Programme\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [56552 2016-03-22] (Microsoft Corporation) R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [308088 2016-01-14] (Western Digital Technologies, Inc.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation) R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [18232 2016-10-20] (Intel(R) Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ====================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 AIDA64Driver; C:\Program Files (x86)\FinalWire\AIDA64 Extreme\kerneld.x64 [45728 2016-10-24] () R0 avc3; C:\WINDOWS\System32\DRIVERS\avc3.sys [1605376 2016-11-01] (BitDefender) S3 avckf; C:\WINDOWS\System32\DRIVERS\avckf.sys [878072 2016-11-01] (BitDefender) S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender) R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [128400 2016-06-28] (BitDefender LLC) S4 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender) R3 CMUSBDAC; C:\WINDOWS\system32\DRIVERS\CMUSBDAC.sys [3778592 2015-11-25] (C-MEDIA) S3 cpuz139; C:\Users\Knight Rider\AppData\Local\Temp\cpuz139\cpuz139_x64.sys [43328 2017-01-11] (CPUID) R3 cpuz141; C:\Users\Knight Rider\AppData\Local\Temp\cpuz141\cpuz141_x64.sys [46400 2017-01-15] (CPUID) S3 ewusbnet; C:\WINDOWS\System32\drivers\ewusbnet.sys [132608 2009-06-29] (Huawei Technologies Co., Ltd.) R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [182944 2016-11-24] (BitDefender LLC) R3 iaLPSS2_UART2; C:\WINDOWS\System32\drivers\iaLPSS2_UART2.sys [281896 2015-07-20] (Intel Corporation) R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [37064 2016-08-24] (Intel Corporation) R3 ipadtst; C:\Program Files (x86)\MSI\Super Charger\ipadtst_64.sys [20464 2013-11-11] (Windows (R) Win 7 DDK provider) S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2015-11-05] (Apple Inc.) [Datei ist nicht signiert] S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () R2 NPF_devolo; C:\WINDOWS\sysWOW64\drivers\npf_devolo.sys [34048 2013-03-04] (CACE Technologies) R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI) S3 NTIOLib_ACTIVE_X; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\NTIOLib_X64.sys [13776 2016-04-12] (MSI) R3 NTIOLib_MSIDDR_CC; E:\Programme\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MSI) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3696fe4b96482e60\nvlddmkm.sys [14182960 2016-11-25] (NVIDIA Corporation) R3 nvoclk64; C:\WINDOWS\system32\DRIVERS\nvoclk64.sys [42088 2009-09-15] (NVIDIA Corp.) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-11-17] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2016-11-17] (NVIDIA Corporation) R3 rpkmdrv; C:\WINDOWS\system32\drivers\rpkmdrv.sys [21248 2012-08-16] () S4 RsFx0310; C:\WINDOWS\System32\DRIVERS\RsFx0310.sys [249024 2015-04-20] (Microsoft Corporation) R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [216064 2016-07-16] (Microsoft Corporation) R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [520032 2016-06-28] (BitDefender S.R.L.) S3 USBTINSP; C:\WINDOWS\System32\drivers\tinspusb.sys [142848 2010-03-29] (Texas Instruments) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) R3 WinRing0_1_2_0; C:\Program Files (x86)\NZXT\CAM\CAM_V3.sys [14544 2017-01-19] (OpenLibSys.org) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2017-01-19 20:49 - 2017-01-19 20:49 - 00002009 _____ C:\Users\Knight Rider\Desktop\CAM.lnk 2017-01-19 20:49 - 2017-01-19 20:49 - 00001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CAM.lnk 2017-01-19 20:49 - 2017-01-19 20:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CAM 2017-01-18 22:08 - 2017-01-18 22:08 - 07097928 _____ (VS Revo Group ) C:\Users\Knight Rider\Desktop\revo202setup.exe 2017-01-18 22:08 - 2017-01-18 22:08 - 00001079 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk 2017-01-18 22:08 - 2017-01-18 22:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2017-01-18 22:08 - 2017-01-18 22:08 - 00000000 ____D C:\Program Files\VS Revo Group 2017-01-18 22:07 - 2017-01-18 22:08 - 07097928 _____ (VS Revo Group ) C:\Users\Knight Rider\Downloads\revo202setup.exe 2017-01-17 23:23 - 2017-01-17 23:24 - 00290282 _____ C:\TDSSKiller.3.1.0.12_17.01.2017_23.23.53_log.txt 2017-01-17 16:04 - 2017-01-19 21:25 - 00031958 _____ C:\Users\Knight Rider\Desktop\FRST.txt 2017-01-17 16:04 - 2017-01-19 21:25 - 00000000 ____D C:\Users\Knight Rider\Desktop\FRST-OlderVersion 2017-01-17 16:04 - 2017-01-17 16:11 - 00093304 _____ C:\Users\Knight Rider\Desktop\Addition.txt 2017-01-15 20:23 - 2017-01-15 20:23 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\TeamSpeak 3 2017-01-15 20:23 - 2017-01-15 20:23 - 00000000 ____D C:\Users\Knight Rider\.TeamSpeak 3 2017-01-15 20:23 - 2017-01-15 20:23 - 00000000 ____D C:\Users\Knight Rider\.QtWebEngineProcess 2017-01-15 19:49 - 2017-01-15 19:49 - 00028121 _____ C:\ProgramData\agent.1484506173.bdinstall.bin 2017-01-15 19:39 - 2017-01-15 19:39 - 00001052 _____ C:\Users\Knight Rider\Desktop\JRT.txt 2017-01-15 19:38 - 2017-01-15 19:38 - 01663040 _____ (Malwarebytes) C:\Users\Knight Rider\Downloads\JRT.exe 2017-01-15 19:33 - 2017-01-15 19:33 - 00024965 _____ C:\ProgramData\agent.1484505187.7236.bin 2017-01-15 19:33 - 2017-01-15 19:33 - 00001115 _____ C:\ProgramData\agent.1484505187.232.bin 2017-01-15 19:28 - 2017-01-16 18:26 - 00000000 ____D C:\AdwCleaner 2017-01-15 19:27 - 2017-01-15 19:28 - 03988944 _____ C:\Users\Knight Rider\Desktop\AdwCleaner_6.042.exe 2017-01-15 19:27 - 2017-01-15 19:27 - 03988944 _____ C:\Users\Knight Rider\Downloads\AdwCleaner_6.042.exe 2017-01-15 19:21 - 2017-01-15 19:28 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\discord 2017-01-15 19:21 - 2017-01-15 19:21 - 52553728 _____ (Hammer & Chisel, Inc.) C:\Users\Knight Rider\Downloads\DiscordSetup.exe 2017-01-15 19:21 - 2017-01-15 19:21 - 00002322 _____ C:\Users\Knight Rider\Desktop\Discord.lnk 2017-01-15 19:21 - 2017-01-15 19:21 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc 2017-01-15 19:21 - 2017-01-15 19:21 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\Discord 2017-01-14 00:00 - 2017-01-14 00:00 - 00000000 _____ C:\Users\Knight Rider\Desktop\New Text Document (2).txt 2017-01-13 23:54 - 2017-01-13 23:54 - 00000000 _____ C:\Users\Knight Rider\Desktop\New Text Document.txt 2017-01-13 23:49 - 2017-01-13 23:54 - 00293700 _____ C:\TDSSKiller.3.1.0.12_13.01.2017_23.49.00_log.txt 2017-01-13 23:48 - 2017-01-13 23:48 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Knight Rider\Downloads\mbar-1.09.3.1001 (1).exe 2017-01-13 23:48 - 2017-01-13 23:48 - 04747704 _____ (AO Kaspersky Lab) C:\Users\Knight Rider\Downloads\tdsskiller.exe 2017-01-13 23:48 - 2017-01-13 23:48 - 04747704 _____ (AO Kaspersky Lab) C:\Users\Knight Rider\Desktop\tdsskiller.exe 2017-01-13 23:47 - 2017-01-14 00:01 - 00000000 ____D C:\Users\Knight Rider\Desktop\mbar 2017-01-13 23:47 - 2017-01-14 00:01 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2017-01-13 23:47 - 2017-01-13 23:47 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2017-01-13 23:47 - 2017-01-13 23:47 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2017-01-13 23:47 - 2017-01-13 23:47 - 00000000 ____D C:\ProgramData\Malwarebytes 2017-01-13 23:46 - 2017-01-13 23:46 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Knight Rider\Downloads\mbar-1.09.3.1001.exe 2017-01-13 23:46 - 2017-01-13 23:46 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Knight Rider\Desktop\mbar-1.09.3.1001.exe 2017-01-13 22:18 - 2017-01-19 21:25 - 00000000 ____D C:\FRST 2017-01-13 22:18 - 2017-01-13 22:49 - 00094172 _____ C:\Users\Knight Rider\Downloads\Addition.txt 2017-01-13 22:18 - 2017-01-13 22:49 - 00082684 _____ C:\Users\Knight Rider\Downloads\FRST.txt 2017-01-13 22:17 - 2017-01-19 21:25 - 02419712 _____ (Farbar) C:\Users\Knight Rider\Desktop\FRST64.exe 2017-01-12 19:28 - 2017-01-12 19:29 - 00262019 _____ C:\Users\Knight Rider\Desktop\3.jpeg 2017-01-12 19:27 - 2017-01-12 19:27 - 00274619 _____ C:\Users\Knight Rider\Desktop\WhatsApp Image 2017-01-11 at 09.57.43.jpeg 2017-01-12 19:27 - 2017-01-12 19:27 - 00262019 _____ C:\Users\Knight Rider\Desktop\2 2017-01-10 21:42 - 2016-12-21 09:08 - 00245600 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll 2017-01-10 21:42 - 2016-12-21 09:08 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll 2017-01-10 21:42 - 2016-12-21 09:04 - 07816032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2017-01-10 21:42 - 2016-12-21 08:49 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll 2017-01-10 21:42 - 2016-12-21 08:46 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2017-01-10 21:42 - 2016-12-21 08:43 - 04130440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2017-01-10 21:42 - 2016-12-21 08:43 - 01454504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll 2017-01-10 21:42 - 2016-12-21 08:43 - 01071736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll 2017-01-10 21:42 - 2016-12-21 08:43 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2017-01-10 21:42 - 2016-12-21 08:42 - 22224480 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2017-01-10 21:42 - 2016-12-21 08:42 - 01988560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2017-01-10 21:42 - 2016-12-21 08:42 - 01702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll 2017-01-10 21:42 - 2016-12-21 08:42 - 01300600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2017-01-10 21:42 - 2016-12-21 08:42 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll 2017-01-10 21:42 - 2016-12-21 08:41 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2017-01-10 21:42 - 2016-12-21 08:37 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2017-01-10 21:42 - 2016-12-21 08:15 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2017-01-10 21:42 - 2016-12-21 08:14 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2017-01-10 21:42 - 2016-12-21 08:13 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll 2017-01-10 21:42 - 2016-12-21 08:12 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll 2017-01-10 21:42 - 2016-12-21 08:10 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll 2017-01-10 21:42 - 2016-12-21 08:09 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll 2017-01-10 21:42 - 2016-12-21 08:09 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll 2017-01-10 21:42 - 2016-12-21 08:08 - 01292288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll 2017-01-10 21:42 - 2016-12-21 08:08 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll 2017-01-10 21:42 - 2016-12-21 08:08 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll 2017-01-10 21:42 - 2016-12-21 08:08 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2017-01-10 21:42 - 2016-12-21 08:08 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll 2017-01-10 21:42 - 2016-12-21 08:08 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe 2017-01-10 21:42 - 2016-12-21 08:07 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll 2017-01-10 21:42 - 2016-12-21 08:06 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2017-01-10 21:42 - 2016-12-21 08:06 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll 2017-01-10 21:42 - 2016-12-21 08:06 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe 2017-01-10 21:42 - 2016-12-21 08:06 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll 2017-01-10 21:42 - 2016-12-21 08:05 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll 2017-01-10 21:42 - 2016-12-21 08:05 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll 2017-01-10 21:42 - 2016-12-21 08:05 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll 2017-01-10 21:42 - 2016-12-21 08:01 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2017-01-10 21:42 - 2016-12-21 08:00 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll 2017-01-10 21:42 - 2016-12-21 07:59 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll 2017-01-10 21:42 - 2016-12-21 07:59 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll 2017-01-10 21:42 - 2016-12-21 07:58 - 23678464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2017-01-10 21:42 - 2016-12-21 07:57 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll 2017-01-10 21:42 - 2016-12-21 07:56 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll 2017-01-10 21:42 - 2016-12-21 07:56 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll 2017-01-10 21:42 - 2016-12-21 07:55 - 08129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2017-01-10 21:42 - 2016-12-21 07:55 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2017-01-10 21:42 - 2016-12-21 07:54 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll 2017-01-10 21:42 - 2016-12-21 07:53 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe 2017-01-10 21:42 - 2016-12-21 07:53 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll 2017-01-10 21:42 - 2016-12-21 07:53 - 01692672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2017-01-10 21:42 - 2016-12-21 07:51 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2017-01-10 21:42 - 2016-12-21 07:51 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll 2017-01-10 21:42 - 2016-12-21 07:51 - 02275840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2017-01-10 21:42 - 2016-12-21 07:50 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2017-01-10 21:42 - 2016-12-21 07:49 - 04149248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2017-01-10 21:42 - 2016-12-21 07:49 - 02691072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2017-01-10 21:42 - 2016-12-21 07:49 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll 2017-01-10 21:42 - 2016-12-21 07:47 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll 2017-01-10 21:42 - 2016-12-21 06:59 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll 2017-01-10 21:42 - 2016-12-21 06:09 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll 2017-01-10 21:42 - 2016-12-21 06:02 - 03892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2017-01-10 21:42 - 2016-12-21 06:02 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2017-01-10 21:42 - 2016-12-21 06:02 - 01360464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll 2017-01-10 21:42 - 2016-12-21 06:02 - 01277344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll 2017-01-10 21:42 - 2016-12-21 06:02 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2017-01-10 21:42 - 2016-12-21 06:02 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll 2017-01-10 21:42 - 2016-12-21 06:01 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2017-01-10 21:42 - 2016-12-21 05:46 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2017-01-10 21:42 - 2016-12-21 05:43 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll 2017-01-10 21:42 - 2016-12-21 05:41 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll 2017-01-10 21:42 - 2016-12-21 05:41 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll 2017-01-10 21:42 - 2016-12-21 05:40 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll 2017-01-10 21:42 - 2016-12-21 05:40 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll 2017-01-10 21:42 - 2016-12-21 05:40 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll 2017-01-10 21:42 - 2016-12-21 05:40 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe 2017-01-10 21:42 - 2016-12-21 05:39 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll 2017-01-10 21:42 - 2016-12-21 05:39 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe 2017-01-10 21:42 - 2016-12-21 05:38 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll 2017-01-10 21:42 - 2016-12-21 05:35 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2017-01-10 21:42 - 2016-12-21 05:35 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll 2017-01-10 21:42 - 2016-12-21 05:34 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2017-01-10 21:42 - 2016-12-21 05:33 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2017-01-10 21:42 - 2016-12-21 05:32 - 19417600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2017-01-10 21:42 - 2016-12-21 05:30 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll 2017-01-10 21:42 - 2016-12-21 05:30 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll 2017-01-10 21:42 - 2016-12-21 05:27 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll 2017-01-10 21:42 - 2016-12-21 05:26 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll 2017-01-10 21:42 - 2016-12-21 05:25 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2017-01-10 21:42 - 2016-12-21 05:25 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe 2017-01-10 21:42 - 2016-12-21 05:24 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2017-01-10 21:42 - 2016-12-21 05:24 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll 2017-01-10 21:42 - 2016-12-21 05:24 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll 2017-01-10 21:42 - 2016-12-21 05:24 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll 2017-01-10 21:42 - 2016-12-21 05:22 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll 2017-01-10 21:42 - 2016-12-21 05:22 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll 2017-01-10 21:42 - 2016-12-14 06:41 - 01235296 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2017-01-10 21:42 - 2016-12-14 06:41 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2017-01-10 21:42 - 2016-12-14 06:34 - 02482280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2017-01-10 21:42 - 2016-12-14 06:33 - 01356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2017-01-10 21:42 - 2016-12-14 06:23 - 00404832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2017-01-10 21:42 - 2016-12-14 06:21 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2017-01-10 21:42 - 2016-12-14 06:19 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe 2017-01-10 21:42 - 2016-12-14 06:18 - 00715104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys 2017-01-10 21:42 - 2016-12-14 06:18 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys 2017-01-10 21:42 - 2016-12-14 06:17 - 00319288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll 2017-01-10 21:42 - 2016-12-14 06:14 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2017-01-10 21:42 - 2016-12-14 06:14 - 00418952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2017-01-10 21:42 - 2016-12-14 06:14 - 00089416 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll 2017-01-10 21:42 - 2016-12-14 06:08 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2017-01-10 21:42 - 2016-12-14 06:06 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2017-01-10 21:42 - 2016-12-14 06:01 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll 2017-01-10 21:42 - 2016-12-14 06:01 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll 2017-01-10 21:42 - 2016-12-14 06:01 - 00076984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll 2017-01-10 21:42 - 2016-12-14 05:48 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll 2017-01-10 21:42 - 2016-12-14 05:46 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll 2017-01-10 21:42 - 2016-12-14 05:46 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2017-01-10 21:42 - 2016-12-14 05:45 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2017-01-10 21:42 - 2016-12-14 05:43 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll 2017-01-10 21:42 - 2016-12-14 05:42 - 00384000 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe 2017-01-10 21:42 - 2016-12-14 05:42 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll 2017-01-10 21:42 - 2016-12-14 05:42 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll 2017-01-10 21:42 - 2016-12-14 05:42 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll 2017-01-10 21:42 - 2016-12-14 05:42 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll 2017-01-10 21:42 - 2016-12-14 05:41 - 00362496 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe 2017-01-10 21:42 - 2016-12-14 05:41 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2017-01-10 21:42 - 2016-12-14 05:40 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll 2017-01-10 21:42 - 2016-12-14 05:40 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll 2017-01-10 21:42 - 2016-12-14 05:40 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll 2017-01-10 21:42 - 2016-12-14 05:40 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll 2017-01-10 21:42 - 2016-12-14 05:40 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll 2017-01-10 21:42 - 2016-12-14 05:39 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll 2017-01-10 21:42 - 2016-12-14 05:39 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll 2017-01-10 21:42 - 2016-12-14 05:39 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll 2017-01-10 21:42 - 2016-12-14 05:38 - 17188864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2017-01-10 21:42 - 2016-12-14 05:38 - 13869056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2017-01-10 21:42 - 2016-12-14 05:38 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll 2017-01-10 21:42 - 2016-12-14 05:38 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll 2017-01-10 21:42 - 2016-12-14 05:37 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll 2017-01-10 21:42 - 2016-12-14 05:36 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll 2017-01-10 21:42 - 2016-12-14 05:36 - 00539648 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll 2017-01-10 21:42 - 2016-12-14 05:36 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll 2017-01-10 21:42 - 2016-12-14 05:35 - 02220032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll 2017-01-10 21:42 - 2016-12-14 05:35 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2017-01-10 21:42 - 2016-12-14 05:35 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2017-01-10 21:42 - 2016-12-14 05:35 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll 2017-01-10 21:42 - 2016-12-14 05:35 - 00553984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll 2017-01-10 21:42 - 2016-12-14 05:32 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll 2017-01-10 21:42 - 2016-12-14 05:32 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll 2017-01-10 21:42 - 2016-12-14 05:26 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2017-01-10 21:42 - 2016-12-14 05:26 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2017-01-10 21:42 - 2016-12-14 05:25 - 02795520 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll 2017-01-10 21:42 - 2016-12-14 05:25 - 02009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll 2017-01-10 21:42 - 2016-12-14 05:24 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll 2017-01-10 21:42 - 2016-12-14 05:24 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2017-01-10 21:42 - 2016-12-14 05:23 - 03134976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll 2017-01-10 21:42 - 2016-12-14 05:23 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll 2017-01-10 21:42 - 2016-12-14 05:22 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2017-01-10 21:42 - 2016-12-14 05:22 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll 2017-01-10 21:42 - 2016-12-14 05:22 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2017-01-10 21:42 - 2016-12-14 05:22 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2017-01-10 21:42 - 2016-12-14 05:22 - 00707584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2017-01-10 21:42 - 2016-12-14 05:22 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2017-01-10 21:42 - 2016-12-14 05:21 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2017-01-10 21:42 - 2016-11-02 13:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2017-01-10 21:42 - 2016-11-02 12:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2017-01-10 21:42 - 2016-11-02 11:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll 2017-01-10 21:42 - 2016-11-02 11:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2017-01-10 21:42 - 2016-11-02 11:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2017-01-10 21:42 - 2016-08-02 05:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2017-01-03 13:49 - 2017-01-03 13:49 - 00001494 _____ C:\Users\Public\Desktop\iTunes.lnk 2017-01-03 13:49 - 2017-01-03 13:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2017-01-03 13:49 - 2017-01-03 13:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud 2017-01-03 13:49 - 2017-01-03 13:49 - 00000000 ____D C:\Program Files\iPod 2017-01-02 21:46 - 2017-01-02 21:46 - 00224821 _____ C:\Users\Knight Rider\Desktop\Hyundai i20 Sport.html 2017-01-02 21:46 - 2017-01-02 21:46 - 00000000 ____D C:\Users\Knight Rider\Desktop\Hyundai i20 Sport_files 2016-12-31 00:49 - 2016-12-31 01:15 - 00785384 _____ C:\Users\Knight Rider\Desktop\handling.meta 2016-12-30 19:15 - 2016-12-30 19:15 - 00004189 _____ C:\Users\Knight Rider\Desktop\extratitleupdatedata.meta 2016-12-30 19:13 - 2016-12-30 23:55 - 00001872 _____ C:\Users\Knight Rider\Desktop\dlclist.xml 2016-12-30 01:02 - 2016-12-30 13:06 - 00059805 _____ C:\Users\Knight Rider\Desktop\gameconfig.xml 2016-12-29 22:52 - 2016-09-15 05:03 - 3146774492 _____ C:\Users\Knight Rider\Desktop\REDUX_INSTALLER.oiv 2016-12-29 22:44 - 2016-12-29 23:03 - 00001357 _____ C:\Users\Knight Rider\Desktop\OpenIV.lnk 2016-12-29 22:44 - 2016-12-29 22:44 - 00001359 _____ C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\OpenIV.lnk 2016-12-29 22:37 - 2016-12-29 22:44 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\New Technology Studio 2016-12-29 22:37 - 2016-12-29 22:37 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\New Technology Studio 2016-12-28 22:30 - 2016-12-28 22:30 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\speech 2016-12-23 00:13 - 2017-01-16 18:25 - 00000311 _____ C:\Users\Knight Rider\AppData\Roaming\WB.CFG 2016-12-23 00:12 - 2016-12-23 00:12 - 00000000 ____D C:\Users\Knight Rider\Desktop\OMA OPA FESTPLATTE 2016-12-22 22:09 - 2016-12-23 01:01 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\VidCoder 2016-12-22 22:09 - 2016-12-22 22:09 - 00000865 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VidCoder.lnk 2016-12-22 22:09 - 2016-12-22 22:09 - 00000000 ____D C:\Program Files\VidCoder 2016-12-22 21:23 - 2016-12-22 21:23 - 00000000 ____D C:\Users\Knight Rider\.fontconfig 2016-12-22 21:22 - 2016-12-22 21:22 - 00005054 _____ C:\ProgramData\mudtcpaz.vzs 2016-12-22 21:22 - 2016-12-22 21:22 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\Movavi 2016-12-22 21:22 - 2016-12-22 21:22 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\converter 2016-12-22 21:22 - 2016-12-22 21:22 - 00000000 ____D C:\ProgramData\Movavi Video Converter 17 2016-12-22 21:22 - 2016-12-22 21:22 - 00000000 ____D C:\ProgramData\Movavi 2016-12-22 18:54 - 2016-12-22 19:47 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\dvdcss 2016-12-22 15:12 - 2017-01-15 19:32 - 00000008 __RSH C:\ProgramData\ntuser.pol 2016-12-22 15:12 - 2016-12-22 15:12 - 00000000 ____D C:\ProgramData\{A63A6359-2C78-E99F-AABE-77DD30FCFC13} 2016-12-22 15:09 - 2016-12-23 00:05 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\vlc 2016-12-22 15:09 - 2016-12-22 15:09 - 00000916 _____ C:\Users\Public\Desktop\VLC media player.lnk 2016-12-22 15:09 - 2016-12-22 15:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2016-12-22 15:09 - 2016-12-22 15:09 - 00000000 ____D C:\Program Files\VideoLAN 2016-12-22 15:08 - 2016-12-22 15:08 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\Mozilla 2016-12-22 15:08 - 2016-12-22 15:08 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VLC Updater 2016-12-22 15:08 - 2016-12-22 15:08 - 00000000 ____D C:\Program Files (x86)\VLC Updater 2016-12-21 20:28 - 2016-12-21 20:28 - 00001040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2017-01-19 21:25 - 2016-05-28 22:51 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\TS3Client 2017-01-19 21:01 - 2016-07-09 13:13 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\CrashDumps 2017-01-19 20:51 - 2016-09-23 14:37 - 00000000 ____D C:\Users\Knight Rider 2017-01-19 20:49 - 2016-09-23 14:50 - 00003262 _____ C:\WINDOWS\System32\Tasks\CAM 2017-01-19 20:38 - 2016-10-07 19:35 - 00000000 ____D C:\Users\Public\Documents\AdobeGC 2017-01-19 20:38 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps 2017-01-19 20:38 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness 2017-01-19 20:32 - 2016-09-23 14:36 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2017-01-19 20:32 - 2016-09-23 14:36 - 00000000 ____D C:\ProgramData\NVIDIA 2017-01-19 20:32 - 2016-06-01 20:10 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\Overwolf 2017-01-19 20:32 - 2016-05-29 14:55 - 00000000 ___RD C:\Users\Knight Rider\iCloudDrive 2017-01-18 22:10 - 2016-11-21 20:40 - 00000000 ____D C:\Users\Knight Rider\Valley 2017-01-18 21:08 - 2016-07-19 22:33 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\Adobe 2017-01-17 16:05 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2017-01-17 16:04 - 2016-05-29 19:11 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2017-01-15 23:11 - 2016-09-07 17:59 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\WhatsApp 2017-01-15 20:23 - 2016-05-28 22:51 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client 2017-01-15 19:49 - 2016-05-28 22:38 - 00000000 ____D C:\Program Files\Bitdefender Agent 2017-01-15 19:39 - 2016-09-23 14:37 - 03537342 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-01-15 19:39 - 2016-07-16 23:51 - 01520768 _____ C:\WINDOWS\system32\perfh007.dat 2017-01-15 19:39 - 2016-07-16 23:51 - 00406250 _____ C:\WINDOWS\system32\perfc007.dat 2017-01-15 19:33 - 2016-09-23 14:50 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-01-15 19:33 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI 2017-01-15 19:33 - 2016-05-28 22:47 - 00031506 _____ C:\bdlog.txt 2017-01-15 19:21 - 2016-09-07 17:59 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\SquirrelTemp 2017-01-12 20:12 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache 2017-01-12 19:23 - 2016-09-07 17:59 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp 2017-01-12 19:23 - 2016-09-07 17:59 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\WhatsApp 2017-01-12 19:10 - 2016-06-01 20:11 - 00000000 ____D C:\Program Files (x86)\Overwolf 2017-01-12 19:09 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports 2017-01-12 19:09 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF 2017-01-11 19:22 - 2016-07-16 07:04 - 00065536 _____ C:\WINDOWS\system32\config\ELAM 2017-01-11 19:17 - 2016-09-23 14:36 - 05338424 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2017-01-11 00:06 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2017-01-11 00:06 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2017-01-11 00:06 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe 2017-01-11 00:06 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences 2017-01-11 00:06 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Provisioning 2017-01-10 22:02 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp 2017-01-10 22:01 - 2016-05-28 23:31 - 00000000 ____D C:\WINDOWS\system32\MRT 2017-01-10 21:58 - 2016-05-28 23:31 - 135657872 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2017-01-10 21:51 - 2016-12-06 21:44 - 00003306 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2 2017-01-10 21:51 - 2016-05-29 03:31 - 00002436 _____ C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2017-01-08 22:04 - 2016-09-12 19:45 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\SolidWorks 2017-01-08 21:59 - 2016-09-12 18:11 - 00000000 ____D C:\SOLIDWORKS Data 2017-01-06 22:39 - 2016-05-30 18:05 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\ElevatedDiagnostics 2017-01-03 13:49 - 2016-05-29 13:24 - 00000000 ____D C:\Program Files\Common Files\Apple 2017-01-01 23:05 - 2016-09-12 19:51 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\TempSWBackupDirectory 2016-12-30 22:12 - 2016-06-12 13:23 - 00000500 _____ C:\WINDOWS\SysWOW64\Drivers\ibyfyu_482.set 2016-12-30 22:12 - 2016-06-12 13:23 - 00000500 _____ C:\WINDOWS\SysWOW64\Drivers\ddpnqch216.dat 2016-12-30 22:12 - 2016-06-12 13:23 - 00000500 _____ C:\WINDOWS\d_jdmjol189.ini 2016-12-30 20:41 - 2016-05-29 03:29 - 00000000 ____D C:\Users\Knight Rider\AppData\Local\Packages 2016-12-30 12:59 - 2016-06-01 20:11 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf 2016-12-28 22:30 - 2016-09-23 14:37 - 00000000 ___SD C:\Users\Knight Rider\AppData\Roaming\Microsoft 2016-12-23 00:13 - 2016-07-16 12:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2016-12-23 00:13 - 2016-07-16 12:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2016-12-22 15:17 - 2016-10-19 21:22 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2016-12-22 15:17 - 2016-09-23 15:29 - 00000000 ____D C:\Program Files (x86)\MSBuild 2016-12-22 15:17 - 2016-05-29 03:29 - 00000000 ___RD C:\Users\Knight Rider\Favorites 2016-12-22 15:13 - 2016-08-08 22:38 - 00000000 ____D C:\Users\Knight Rider\AppData\Roaming\DVDVideoSoft 2016-12-21 20:28 - 2016-10-23 11:08 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2016-12-21 20:28 - 2016-07-16 12:47 - 00000000 __RSD C:\WINDOWS\Fonts 2016-12-20 21:34 - 2016-07-16 12:47 - 00000000 __RSD C:\WINDOWS\assembly ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2016-07-27 22:56 - 2016-11-03 22:11 - 0000033 _____ () C:\Users\Knight Rider\AppData\Roaming\AdobeWLCMCache.dat 2016-12-23 00:13 - 2017-01-16 18:25 - 0000311 _____ () C:\Users\Knight Rider\AppData\Roaming\WB.CFG 2016-05-29 12:24 - 2016-11-29 19:58 - 2612224 _____ () C:\Users\Knight Rider\AppData\Local\file__0.localstorage 2016-07-24 22:53 - 2016-07-24 22:53 - 0007597 _____ () C:\Users\Knight Rider\AppData\Local\Resmon.ResmonCfg 2016-09-20 16:53 - 2016-09-20 16:53 - 0026851 _____ () C:\ProgramData\agent.1474386831.bdinstall.bin 2016-11-01 12:59 - 2016-11-01 12:59 - 0028772 _____ () C:\ProgramData\agent.1478001575.bdinstall.bin 2017-01-15 19:33 - 2017-01-15 19:33 - 0001115 _____ () C:\ProgramData\agent.1484505187.232.bin 2017-01-15 19:33 - 2017-01-15 19:33 - 0024965 _____ () C:\ProgramData\agent.1484505187.7236.bin 2017-01-15 19:49 - 2017-01-15 19:49 - 0028121 _____ () C:\ProgramData\agent.1484506173.bdinstall.bin 2016-05-29 21:28 - 2016-05-29 21:28 - 0000057 _____ () C:\ProgramData\Ament.ini 2016-09-23 14:36 - 2016-09-23 14:36 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2016-12-22 21:22 - 2016-12-22 21:22 - 0005054 _____ () C:\ProgramData\mudtcpaz.vzs Einige Dateien in TEMP: ==================== C:\Users\Knight Rider\AppData\Local\Temp\Command Center.exe C:\Users\Knight Rider\AppData\Local\Temp\jansi-64-8419322462143325029.dll C:\Users\Knight Rider\AppData\Local\Temp\jna5729792694410647721.dll C:\Users\Knight Rider\AppData\Local\Temp\jre-8u111-windows-au.exe C:\Users\Knight Rider\AppData\Local\Temp\nvSCPAPI.dll C:\Users\Knight Rider\AppData\Local\Temp\nvSCPAPI64.dll C:\Users\Knight Rider\AppData\Local\Temp\nvStInst.exe C:\Users\Knight Rider\AppData\Local\Temp\ovi-uninstall.exe ==================== Bamital & volsnap ====================== (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert C:\WINDOWS\explorer.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert C:\WINDOWS\system32\services.exe => Datei ist digital signiert C:\WINDOWS\system32\User32.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2017-01-15 19:07 ==================== Ende von FRST.txt ============================ |
19.01.2017, 21:30 | #21 |
| Pop-up "There is a recommended update for your PC"Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 18-01-2017 durchgeführt von Knight Rider (19-01-2017 21:25:57) Gestartet von C:\Users\Knight Rider\Desktop Windows 10 Home Version 1607 (X64) (2016-09-23 13:51:31) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-2325661282-3962446805-3529202158-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2325661282-3962446805-3529202158-503 - Limited - Disabled) Gast (S-1-5-21-2325661282-3962446805-3529202158-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2325661282-3962446805-3529202158-1003 - Limited - Enabled) Knight Rider (S-1-5-21-2325661282-3962446805-3529202158-1001 - Administrator - Enabled) => C:\Users\Knight Rider ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Bitdefender Virenschutz (Enabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371} AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) 3DMark (HKLM-x32\...\{88c385a4-b4e7-4028-9754-a5007023d630}) (Version: 2.0.2530.0 - Futuremark) 3DMark (Version: 2.0.2530.0 - Futuremark) Hidden 3DMark 11 (HKLM-x32\...\{f9e83b9c-ab7e-4005-8f32-4ea69703a5e4}) (Version: 1.0.132.0 - Futuremark) 3DMark 11 (Version: 1.0.132.0 - Futuremark) Hidden 3DMark Demo (HKLM\...\Steam App 231350) (Version: - Futuremark) Active Directory Authentication Library für SQL Server (Version: 13.0.1100.286 - Microsoft Corporation) Hidden Active Directory Authentication Library für SQL Server (x86) (x32 Version: 13.0.1100.286 - Microsoft Corporation) Hidden Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.7.0.272 - Adobe Systems Incorporated) Adobe Flash Player 23 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated) Adobe Illustrator CC 2015.3 (HKLM-x32\...\ILST_20_0_0) (Version: 20.0.0 - Adobe Systems Incorporated) Adobe Media Encoder CC 2015.3 (HKLM-x32\...\AME_10_3_0) (Version: 10.3.0 - Adobe Systems Incorporated) Adobe Premiere Pro CC 2015.3 (HKLM-x32\...\PPRO_10_3_0) (Version: 10.3.0 - Adobe Systems Incorporated) AIDA64 Extreme v5.80 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.80 - FinalWire Ltd.) Ansel (Version: 376.09 - NVIDIA Corporation) Hidden Apple Application Support (32-bit) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{981F324E-98F4-4784-B76F-04E92039F3F6}) (Version: 5.2.60328.3 - Microsoft Corporation) Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.28.1 - Asmedia Technology) AudioFXSetup (Version: 1.2.1201 - Nahimic) Hidden Azure AD Authentication Connected Service (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden Behaviors SDK (Windows Phone) for Visual Studio 2013 (x32 Version: 12.0.51210.80 - Microsoft Corporation) Hidden Behaviors SDK (Windows) for Visual Studio 2013 (x32 Version: 12.0.51210.80 - Microsoft Corporation) Hidden Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 20.0.26.1436 - Bitdefender) Bitdefender Antivirus Plus 2016 (HKLM\...\Bitdefender) (Version: 20.0.28.1478 - Bitdefender) Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden Blend for Visual Studio SDK for Silverlight 5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden Blend for Visual Studio SDK for Windows Phone 8.0 (x32 Version: 3.0.30924.0 - Microsoft Corporation) Hidden Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Build Tools - amd64 (Version: 12.0.31010 - Microsoft Corporation) Hidden Build Tools - x86 (x32 Version: 12.0.31010 - Microsoft Corporation) Hidden Build Tools for Windows 10 - ENU (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden Build Tools for Windows 10 (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden Build Tools Language Resources - amd64 (Version: 12.0.31010 - Microsoft Corporation) Hidden Build Tools Language Resources - x86 (x32 Version: 12.0.31010 - Microsoft Corporation) Hidden CAM (HKLM-x32\...\{901BE06B-D6EA-42BD-9345-3E51BEEAD9CF}) (Version: 3.3.0 - NZXT) CheckDevicesConfigurator (Version: 1.2.1201 - Nahimic) Hidden Clang with Microsoft CodeGen (x32 Version: 14.0.25317 - Microsoft Corporation) Hidden Clang with Microsoft CodeGen for Microsoft Visual Studio 2015 (HKLM-x32\...\{8669ea54-1978-465e-a789-a48935c24a95}) (Version: 14.0.25317.0 - Microsoft Corporation) CodedUITest81 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden CodedUITestUAP (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve) Counter-Strike: Source (HKLM\...\Steam App 240) (Version: - Valve) CPUID CPU-Z MSI 1.77 (HKLM\...\CPUID CPU-Z MSI_is1) (Version: 1.77 - CPUID, Inc.) Devenv-Ressourcen für Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.3.1.0 - devolo AG) Discord (HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.) doPDF (Version: 8.6.942 - Softland) Hidden doPDF 8 (HKLM-x32\...\{413fb852-4e7d-4e52-bcaa-6270ff9a9347}) (Version: 8.6.942 - Softland) Dota 2 (HKLM\...\Steam App 570) (Version: - Valve) Dotfuscator and Analytics Community Edition 5.19.1 (x32 Version: 5.19.1.3091 - PreEmptive Solutions) Hidden Dotfuscator and Analytics Community Edition Language Pack 5.19.1 de-DE (x32 Version: 5.19.1.3091 - PreEmptive Solutions) Hidden Entity Framework 6.1.3 Tools for Visual Studio 2015 Update 1 (HKLM-x32\...\{2A56910C-69C8-495D-8ED8-9080F0A14E58}) (Version: 14.0.41103.0 - Microsoft Corporation) Erforderliche Komponenten für SSDT (HKLM-x32\...\{2466E484-9D86-416B-9C88-AA533F15AF1C}) (Version: 12.0.2000.8 - Microsoft Corporation) Erforderliche Komponenten für SSDT RC0 (HKLM-x32\...\{837FF5F6-F0CB-4C80-B003-65B14F1490FE}) (Version: 13.0.1100.286 - Microsoft Corporation) EVGA PrecisionX 16 (HKLM\...\Steam App 268850) (Version: - EVGA) Far Cry 3 Blood Dragon (HKLM-x32\...\Uplay Install 205) (Version: - Ubisoft) Farming Simulator 15 (HKLM\...\Steam App 313160) (Version: - Giants Software) FluidRay RT Demo (64 Bit) (HKLM-x32\...\FluidRay RT Demo (64 Bit)) (Version: 1.2.4 - Fluid Interactive) FluidSIM 5 Home Use (HKLM-x32\...\{1DE939D0-B5BB-48AC-A820-A2D353AE6186}) (Version: 5.2.2.1 - Festo Didactic SE) Futuremark SystemInfo (HKLM-x32\...\{E540B871-3230-4C5B-AAD5-A30F64398275}) (Version: 4.48.599.0 - Futuremark) Garry's Mod (HKLM\...\Steam App 4000) (Version: - Facepunch Studios) Gemeinsam genutzte Microsoft Azure-Komponenten für Visual Studio 2015 Sprachpaket (DEU) - v1.7 (x32 Version: 1.7.40113.5 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.) Google Earth (HKLM-x32\...\{A0C18B96-AB79-46BD-8321-6FA83E6D25B9}) (Version: 7.1.7.2606 - Google) Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden GoPro (Version: 0.1.2733 - GoPro, Inc.) Hidden GoPro for Desktop (HKLM-x32\...\{88734dc7-c200-4ad3-b29f-bb5e436cb30f}) (Version: 1.4.0.2733 - GoPro, Inc.) GoPro Studio (x32 Version: 5.9.2733 - GoPro, Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games) Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.) HeavyLoad V3.4 (64 bit) (HKLM\...\HeavyLoad_is1) (Version: 3.4 - JAM Software) HP ENVY 5530 series - Grundlegende Software für das Gerät (HKLM\...\{08CB8BF7-0CCE-4FC2-A475-A985EB11B159}) (Version: 32.3.198.49673 - Hewlett-Packard Co.) HP ENVY 5530 series Hilfe (HKLM-x32\...\{272E06A0-7B74-481F-BD50-C632D9CA81A3}) (Version: 30.0.0 - Hewlett Packard) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) iCloud (HKLM\...\{4BB313CE-D3D1-424C-8823-15CF85B00B05}) (Version: 6.1.0.30 - Apple Inc.) IDE Tools for Windows 10 - ENU (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden IDE Tools for Windows 10 (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden IIS 10.0 Express (HKLM\...\{7A28A2B0-458B-4A58-84AC-C90D2D4B79FB}) (Version: 10.0.1735 - Microsoft Corporation) IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version: - ) IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version: - ) Intel Extreme Tuning Utility (HKLM-x32\...\{fde8aa07-3912-4bdf-ad35-ff1231bfd00d}) (Version: 6.2.0.17 - Intel Corporation) Intel Extreme Tuning Utility (x32 Version: 6.2.0.17 - Intel Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1173 - Intel Corporation) Intel(R) Network Connections 20.4.307.0 (HKLM\...\PROSetDX) (Version: 20.4.307.0 - Intel) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4331 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.63.1519.7 - Intel Corporation) Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation) Intellisense Lang Pack Mobile Extension SDK 10.0.10586.0 (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.) Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation) Java SE Development Kit 7 Update 55 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0170550}) (Version: 1.7.0.550 - Oracle) Kits Configuration Installer (x32 Version: 10.0.26624 - Microsoft) Hidden LauncherSetup (Version: 1.2.1201 - Nahimic) Hidden LocalESPC (x32 Version: 8.59.29989 - Microsoft Corporation) Hidden LocalESPCui for de-de (x32 Version: 8.59.29989 - Microsoft) Hidden MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{422D3F30-7446-46C9-9FFE-F4F1645A3A41}) (Version: 7.0.2.6 - MAGIX Software GmbH) MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden MAGIX Video deluxe 2016 Premium (HKLM\...\MX.{36DD63B6-B6C0-4B56-AA23-22A652A77EC1}) (Version: 15.0.0.62 - MAGIX Software GmbH) MAGIX Video deluxe 2016 Premium (Version: 15.0.0.62 - MAGIX Software GmbH) Hidden Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 SDK (Deutsch) (HKLM-x32\...\{CBD7095F-7211-43FD-9FE7-FB08D753AF79}) (Version: 4.5.51641 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation) Microsoft .NET Framework 4.6 SDK (Deutsch) (HKLM-x32\...\{EE8BD24B-75E1-4BBF-86B9-91FE16ADE71C}) (Version: 4.6.00081 - Microsoft Corporation) Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation) Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 SDK (Deutsch) (HKLM-x32\...\{529EFF09-750D-48B9-A47A-34A3B6248C3F}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Version Manager (x64) 1.0.0-beta5 (HKLM\...\{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}) (Version: 1.0.10609.0 - Microsoft Corporation) Microsoft Flight Simulator SimConnect Client v10.0.61259.0 (HKLM-x32\...\{D61CA184-3F6D-4A50-B2CC-7A18447D6A8D}) (Version: 10.0.61259.0 - Microsoft Corporation) Microsoft Flight Simulator SimConnect Client v10.0.62615.0 (HKLM-x32\...\{33D89314-361A-4495-A1E1-0ACBCE08F78D}) (Version: 10.0.62615.0 - Microsoft Corporation) Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.25123 - Microsoft Corporation) Microsoft Help Viewer 2.2 Sprachpaket - DEU (HKLM-x32\...\Microsoft Help Viewer 2.2 Sprachpaket - DEU) (Version: 2.2.25123 - Microsoft Corporation) Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{BF5ABBDB-D3AA-4BCB-8D10-FCD4A4BB7F93}) (Version: 12.1.4100.1 - Microsoft Corporation) Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.7571.2109 - Microsoft Corporation) Microsoft Office 365 - es-es (HKLM\...\O365HomePremRetail - es-es) (Version: 16.0.7571.2109 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation) Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation) Microsoft Silverlight 5 SDK - DEU (HKLM-x32\...\{F351AA2C-723C-4CFE-A7CB-8E43AB164F7F}) (Version: 5.0.61118.0 - Microsoft Corporation) Microsoft SQL Server 2008 Native Client (HKLM\...\{C79A7EAB-9D6F-4072-8A6D-F8F54957CD93}) (Version: 10.0.1600.22 - Microsoft Corporation) Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation) Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{F09DEB00-9F41-4BC9-BA81-9F131B12B3D5}) (Version: 11.1.3000.0 - Microsoft Corporation) Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation) Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation) Microsoft SQL Server 2014 Setup (English) (HKLM\...\{C7E2483C-10A4-41E3-A2F6-240186FE3E41}) (Version: 12.1.4100.1 - Microsoft Corporation) Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{FF7DDA05-6EA7-4C01-B44A-3E57F8B9B97B}) (Version: 12.1.4100.1 - Microsoft Corporation) Microsoft SQL Server 2016 LocalDB RC0 (HKLM\...\{BDEC3091-D84B-4F70-B1AB-6487354160F4}) (Version: 13.0.1100.286 - Microsoft Corporation) Microsoft SQL Server 2016 Management Objects RC0 (x64) (HKLM\...\{8C76566F-6B51-43FD-A99E-AAA2E9A96918}) (Version: 13.0.1100.286 - Microsoft Corporation) Microsoft SQL Server 2016 T-SQL ScriptDom RC0 (HKLM\...\{F5E316A6-F894-4DCF-9088-F07E06A1ABFA}) (Version: 13.0.1100.286 - Microsoft Corporation) Microsoft SQL Server 2016 T-SQL-Sprachdienst RC0 (HKLM-x32\...\{F5AF6F7A-E0DC-480C-94E3-B5596C9A239F}) (Version: 13.0.12000.52 - Microsoft Corporation) Microsoft SQL Server Compact 4.0 SP1 x64 DEU (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation) Microsoft SQL Server Data Tools - DEU (14.0.60311.1) (HKLM-x32\...\{FE4AF448-6FF2-4996-889F-8F07BA88DB59}) (Version: 14.0.60311.1 - Microsoft Corporation) Microsoft SQL Server*2014 Express LocalDB (HKLM\...\{CA191120-4CB1-4E3D-89B8-79FDB9017A2E}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server*2014 Management Objects (HKLM-x32\...\{4F4CB3E2-9D2F-465A-854B-8276B02F4E7D}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server*2014 Management Objects (x64) (HKLM\...\{03CB711D-679E-46ED-851B-C568418CF914}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server*2014 T-SQL Language Service (HKLM-x32\...\{06BE8B71-46C6-434B-869E-85C58EF3120A}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server*2016 Management Objects RC0 (HKLM-x32\...\{029A7000-E652-4D44-88C2-483C9FD345A7}) (Version: 13.0.1100.286 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation) Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version: - Microsoft Corporation) Microsoft Visual Studio Community 2015 mit Update 2 (HKLM-x32\...\{f2892dc5-7ac2-4ae4-a296-b5b159f61255}) (Version: 14.0.25123.0 - Microsoft Corporation) Microsoft Visual Studio Tools for Apache Cordova (HKLM-x32\...\{dc279ca1-cef6-4b84-acaa-2e68e26f2b9e}) (Version: 14.0.60428.1 - Microsoft Corporation) Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.1.4100.1 - Microsoft Corporation) Microsoft Web Deploy 3.6 (HKLM\...\{94E1227C-08A9-4962-B388-1F05D89AEA75}) (Version: 3.1238.1962 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) Microsoft-System-CLR-Typen für SQL Server*2016 RC0 (HKLM\...\{71F2875A-58DC-432F-B959-67B6D928E08F}) (Version: 13.0.1100.286 - Microsoft Corporation) Microsoft-System-CLR-Typen für SQL Server*2016 RC0 (HKLM-x32\...\{D2C7A7B6-719A-4F6A-881A-555B999F82AC}) (Version: 13.0.1100.286 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Mit C# erstellte geräteübergreifende Hybrid-Apps - Vorlagen - DEU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com) MSBuild/NuGet Integration 14.0 (x86) (x32 Version: 14.0.25123 - Microsoft Corporation) Hidden MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD) MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 2.0.0.41 - MSI) MSI Kombustor 3.5.1 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD) MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.02 - MSI) MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation) Nahimic for MSI (HKLM-x32\...\{0c311339-9de4-4dd7-b21d-3dcfa3a2946f}) (Version: 1.2.12 - Nahimic) NahimicSettingsConfigurator (Version: 1.2.1201 - Nahimic) Hidden Node.js (HKLM-x32\...\{69735668-F8BC-4E9A-839A-4006FDFDD5AC}) (Version: 0.12.2 - Joyent, Inc. and other Node contributors) novaPDF 8 add-in for Microsoft Office (x64) (HKLM\...\{A53F3DB0-ECBA-4CA0-A4AC-518FA7347A02}) (Version: 8.6.942 - Softland) novaPDF 8 add-in for Microsoft Office (x86) (HKLM-x32\...\{A0B71772-5AC4-47D5-A175-99238C057B37}) (Version: 8.6.942 - Softland) novaPDF 8 Printer Driver (HKLM\...\{1A9E9E77-B29B-47C6-ADEB-9E7D6F7A08CE}) (Version: 8.6.942 - Softland) NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NVIDIA 3D Vision Driver 376.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.09 - NVIDIA Corporation) NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10 - NVIDIA Corporation) NVIDIA GeForce Experience 3.1.2.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.2.31 - NVIDIA Corporation) NVIDIA Graphics Driver 376.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.09 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation) NVIDIA Performance (HKLM-x32\...\InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}) (Version: 6.5 - NVIDIA Corporation) NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA System Monitor (HKLM-x32\...\InstallShield_{E9CFBE78-ED91-4FCF-9E6F-210E477E527D}) (Version: 6.5 - NVIDIA Corporation) NvNodejs (Version: 3.1.2.31 - NVIDIA Corporation) Hidden NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7571.2109 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7571.2109 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (Version: 16.0.7571.2109 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7571.2109 - Microsoft Corporation) Hidden OnScreen Control (HKLM-x32\...\{E5C1B339-0E4E-49A5-859E-5E1DE1938706}) (Version: 1.33 - LG Electronics Inc) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) OpenIV (HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\OpenIV) (Version: 2.8.703 - .black/OpenIV Team) Overwolf (HKLM-x32\...\Overwolf) (Version: 0.101.213.0 - Overwolf Ltd.) Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM-x32\...\{D5409B11-EF28-37A1-AE7A-6051A5BAD923}) (Version: 4.5.50932 - Microsoft Corporation) Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 RC für Windows Store-Apps (Deutsch) (x32 Version: 4.5.21005 - Microsoft Corporation) Hidden Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM-x32\...\{3F514FDC-F0F2-3B99-86D6-F7B3A2679B39}) (Version: 4.5.51209 - Microsoft Corporation) Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.6 (Deutsch) (HKLM-x32\...\{FACF2669-E25A-428A-9167-5EEDE741F3B9}) (Version: 4.6.00127 - Microsoft Corporation) Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM-x32\...\{4860C1E5-CE58-4D32-89DE-37951333B4C9}) (Version: 4.6.01055 - Microsoft Corporation) PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.2 - pdfforge) Portal 2 (HKLM\...\Steam App 620) (Version: - Valve) PreEmptive Analytics Client German Language Pack (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden ProductDaemonSetup (Version: 1.2.1201 - Nahimic) Hidden Project and Item Templates for Visual Studio Express 2015 for Windows 10 - ENU (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden Project and Item Templates for Visual Studio Professionald 2015 - ENU (x32 Version: 14.0.25219 - Microsoft Corporation) Hidden Projekt- und Elementvorlagen für Visual Studio Community 2015 – DEU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden Python Tools 2.2.3 for Visual Studio 2015 (HKLM-x32\...\{FDCEC41C-35DA-421C-A520-53D185BC43FA}) (Version: 2.2.40315.00 - Microsoft Corporation) Rapoo -Tastatur- und Maustreiber v1.6 (HKLM-x32\...\{2E569492-CB19-4510-AB49-1C6A36C6F525}_is1) (Version: - Rapoo Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7687 - Realtek Semiconductor Corp.) Revo Uninstaller 2.0.2 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.2 - VS Revo Group, Ltd.) Rhinoceros 5 (64-bit) (HKLM\...\{346FB873-336D-400B-9834-82121F8F93DF}) (Version: 5.13.60523.20140 - Robert McNeel & Associates) Rhinoceros 5 (HKLM-x32\...\{7C1981A8-1B77-401B-8D1B-59BF1BBE0CB8}) (Version: 5.13.60523.20140 - Robert McNeel & Associates) Rhinoceros 5 Help Media (HKLM-x32\...\{629FC074-5532-45F9-81F1-24060D0AB998}) (Version: 5.6.31022.16390 - Robert McNeel & Associates) Rhinoceros 5 Language Pack Installer (de-DE) (HKLM-x32\...\{1E827500-6DC9-47C1-8E18-E83664667729}) (Version: 5.6.31022.16390 - Robert McNeel & Associates) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.0 - Rockstar Games) RollerCoaster Tycoon 3: Platinum! (HKLM\...\Steam App 2700) (Version: - Frontier) Roslyn Language Services - x86 (x32 Version: 14.0.25123 - Microsoft Corporation) Hidden Roslyn Language Services - x86 (x32 Version: 14.0.25132 - Microsoft Corporation) Hidden Service Pack 1 for SQL Server 2014 (KB3058865) (64-bit) (HKLM\...\KB3058865) (Version: 12.1.4100.1 - Microsoft Corporation) SHIELD Streaming (Version: 7.1.0340 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 3.1.2.31 - NVIDIA Corporation) Hidden SNOW (HKLM\...\Steam App 244930) (Version: - Poppermost Productions) SOLIDWORKS 2016 x64 Edition SP02 (HKLM-x32\...\SolidWorks Installation Manager 20160-40200-1100-100) (Version: 24.2.0.50 - SolidWorks Corporation) SOLIDWORKS 2016 x64 Edition SP02 (Version: 24.120.50 - Dassault Systemes SolidWorks Corp) Hidden SOLIDWORKS Composer Player 2016 SP02 x64 Edition (Version: 24.20.50 - Dassault Systemes SolidWorks Corp) Hidden SOLIDWORKS eDrawings 2016 x64 Edition SP02 (Version: 16.2.0030 - Dassault Systèmes SolidWorks Corp) Hidden SOLIDWORKS Electrical 2016 SP02 x64 Edition (Version: 24.20.50 - Dassault Systemes SolidWorks Corp) Hidden SOLIDWORKS Flow Simulation 2016 SP02 x64 Edition (Version: 24.20.51 - Dassault Systemes SolidWorks Corp) Hidden SOLIDWORKS Plastics 2016 SP02 x64 Edition (Version: 24.20.50 - Dassault Systemes SolidWorks Corp) Hidden SQL Server 2014 Common Files (Version: 12.1.4100.1 - Microsoft Corporation) Hidden SQL Server 2014 Database Engine Services (Version: 12.1.4100.1 - Microsoft Corporation) Hidden SQL Server 2014 Database Engine Shared (Version: 12.1.4100.1 - Microsoft Corporation) Hidden SQL Server Browser for SQL Server 2014 (HKLM-x32\...\{3204DE95-97D2-4261-A286-98A262E171D4}) (Version: 12.1.4100.1 - Microsoft Corporation) Sql Server Customer Experience Improvement Program (Version: 12.1.4100.1 - Microsoft Corporation) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SteamVR Performance Test (HKLM\...\Steam App 323910) (Version: - Valve) Steep Open Beta (HKLM\...\Steam App 550040) (Version: - Ubisoft Annecy) Team Explorer for Microsoft Visual Studio 2015 Update 2 (x32 Version: 14.95.25118 - Microsoft) Hidden Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH) TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.72365 - TeamViewer) Terraria (HKLM\...\Steam App 105600) (Version: - Re-Logic) Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version: - Ubisoft) TI-Nspire™ CX Student Software (HKLM-x32\...\{603D81E7-2DC0-45A7-96BD-3B7B6D5AFBA8}) (Version: 4.3.0.702 - Texas Instruments Inc.) TypeScript Power Tool (x32 Version: 1.8.9.0 - Microsoft Corporation) Hidden TypeScript Tools for Microsoft Visual Studio 2015 (x32 Version: 1.8.31.0 - Microsoft Corporation) Hidden UIInstallUpgrade (Version: 1.2.1201 - Nahimic) Hidden Universal CRT Extension SDK (x32 Version: 10.0.10150 - Microsoft Corporation) Hidden Universal CRT Extension SDK (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden Universal CRT Extension SDK (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (x32 Version: 10.0.10150 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden Universal CRT Headers Libraries and Sources (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden Universal CRT Redistributable (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden Universal CRT Tools x64 (Version: 10.1.10586.212 - Microsoft Corporation) Hidden Universal CRT Tools x86 (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden Universal General MIDI DLS Extension SDK (x32 Version: 10.0.26624 - Microsoft Corporation) Hidden Universal General MIDI DLS Extension SDK (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation) Uplay (HKLM-x32\...\Uplay) (Version: 22.2 - Ubisoft) VFW_Codec32 (x32 Version: 0.1.160.0 - GoPro, Inc.) Hidden VFW_Codec64 (Version: 0.1.160.0 - GoPro, Inc.) Hidden VidCoder 1.5.34 (x64) (HKLM\...\VidCoder-x64_is1) (Version: 1.5.34 - RandomEngy) Visual C++ für Mobile-Entwicklung (Android-Unterstützung) (HKLM-x32\...\{5adea0f4-9265-4e0c-9a83-2cd4f11b9dbe}) (Version: 14.0.25116.0 - Microsoft Corporation) Visual C++ für Mobile-Entwicklung (iOS-Unterstützung) (HKLM-x32\...\{2572cf90-87f2-4a62-b566-0a3c79c873d9}) (Version: 14.0.25116.0 - Microsoft Corporation) Visual Studio 2015 Update 2 (KB3022398) (HKLM-x32\...\{78c1b501-a6eb-4f29-88c5-84189564827e}) (Version: 14.0.25123 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN) VLC Updater (HKLM-x32\...\VLC Updater) (Version: 1.1 - VLC Updater) VS Update core components (x32 Version: 14.0.25123 - Microsoft Corporation) Hidden vs_update2notification (x32 Version: 14.0.25132 - Microsoft Corporation) Hidden Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) WCF Data Services 5.6.4 DEU Language Pack (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden WCF Data Services Tools for Microsoft Visual Studio 2015 DEU Language Pack (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden WCF RIA Services V1.0 SP2 (HKLM-x32\...\{5D8DD6A8-C4D7-4554-93F9-F1CC28C72600}) (Version: 4.1.62812.0 - Microsoft Corporation) WD Drive Utilities (HKLM-x32\...\{eab1fb93-61fb-48de-b815-b4e9b68d2ef1}) (Version: 1.3.2.2 - Western Digital Technologies, Inc.) WD Drive Utilities (x32 Version: 1.3.2.2 - Western Digital Technologies, Inc.) Hidden WD My Cloud (HKLM\...\{4B86F896-11DC-4711-BB60-81104832FA44}) (Version: 1.0.7.17 - Western Digital Technologies, Inc.) WhatsApp (HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\...\WhatsApp) (Version: 0.2.2732 - WhatsApp) WinAppDeploy (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden Windows Phone 8.1 Emulators - ENU (HKLM-x32\...\{166a69f6-6512-47ea-a342-17d954fc059a}) (Version: 12.0.31010.0 - Microsoft Corporation) Windows SDK AddOn (HKLM-x32\...\{75C39BA6-1D02-4BEA-844F-0EA6C4B7FA1B}) (Version: 10.1.0.0 - Microsoft Corporation) Windows Software Development Kit - Windows 10.0.10586.212 (HKLM-x32\...\{43d9f43d-c90b-4fdf-9dfe-ecf9990bfa2a}) (Version: 10.1.10586.212 - Microsoft Corporation) Windows Software Development Kit - Windows 10.0.26624 (HKLM-x32\...\{e7a0c8b6-b0e9-41e2-8a0a-a6784f88d1d4}) (Version: 10.0.26624 - Microsoft Corporation) WinRAR 5.31 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) WinRT Intellisense Desktop - en-us (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WinRT Intellisense Desktop - Other Languages (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WinRT Intellisense IoT - en-us (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WinRT Intellisense IoT - Other Languages (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WinRT Intellisense PPI - en-us (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WinRT Intellisense PPI - Other Languages (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WinRT Intellisense UAP - en-us (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WinRT Intellisense UAP - Other Languages (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WinRT Intellisense Xbox Live Extension SDK - en-us (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WinRT Intellisense Xbox Live Extension SDK - Other Languages (x32 Version: 10.1.10586.212 - Microsoft Corporation) Hidden WPTx64 (HKLM-x32\...\{0B2C58EB-67A2-225B-60B2-D1990E55DD33}) (Version: 8.100.26866 - Microsoft) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-2325661282-3962446805-3529202158-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-B91C3A30094C}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Keine Datei CustomCLSID: HKU\S-1-5-21-2325661282-3962446805-3529202158-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {0004E1A7-C02A-4ADC-9FA1-9D4227DFA0A2} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => E:\Programme\Common7\IDE\VSIXAutoUpdate.exe [2016-05-15] (Microsoft Corporation) Task: {049E3741-6DDE-4070-9A14-D70A8B5F523A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28] (Google Inc.) Task: {1779A7B0-F929-407C-9F21-B3B9703C0834} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-28] (Microsoft Corporation) Task: {24D6F860-DCFA-4B7A-BD04-9482074512BD} - System32\Tasks\Toolbox.exe_{CC190389-354D-41F9-8C9A-177035D621B0} => C:\Program Files\HP\HP ENVY 5530 series\Bin\Toolbox.exe [2014-07-21] (Hewlett-Packard Development Company, LP) Task: {276A1F45-E1B8-4B87-A883-7AE0E40C1026} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-12-28] (Microsoft Corporation) Task: {2F29B1AC-30CB-457F-8690-7D0AFF8861B8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-17] (NVIDIA Corporation) Task: {2FF16328-0CFC-4A23-B003-56118A071A3E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-11-17] (NVIDIA Corporation) Task: {3E3F1851-07EE-40B0-801B-3893F6E692C3} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-11-17] (NVIDIA Corporation) Task: {417E05DA-7F0F-4900-B5E2-99735C6942C7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-17] (NVIDIA Corporation) Task: {44462DF0-ECD2-4CCC-B9FA-AF9AC80CC5AC} - System32\Tasks\CAM => C:\Program Files (x86)\NZXT\CAM\CAM_V3.exe [2017-01-17] () Task: {57605B42-1D08-41F5-9A44-D97D5255D091} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2016-10-21] (Bitdefender) Task: {5996B9BA-0AB1-4F0D-81D2-DC1199BA8CAD} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2016-11-17] (Apple Inc.) Task: {649AF233-11D0-47DC-9B7D-4DE9F19F2C5A} - System32\Tasks\NahimicMSIsvc32Run => C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIsvc32.exe [2015-12-04] () Task: {72D7125D-6834-4C31-9B42-B53C5098097F} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2015-11-20] (Intel Corporation) Task: {914ECF4C-A2ED-4DC5-8917-F4EA21DD0B0D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-28] (Google Inc.) Task: {9216DDDA-0D78-4BC9-843A-A6E34F56C709} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.) Task: {9DF26E80-0A90-45C4-9983-8E0CD802B033} - System32\Tasks\ScanToPCActivationApp.exe_{0547F200-02A0-45D6-A1E0-363AD02DBFEB} => C:\Program Files\HP\HP ENVY 5530 series\Bin\ScanToPCActivationApp.exe [2014-07-21] (Hewlett-Packard Development Company, LP) Task: {AC1E0B1B-B4BF-4E88-8D15-DFE162388554} - System32\Tasks\NahimicMSIUILauncherRun => C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe [2015-12-04] () Task: {AE2F5653-F69C-4AE5-AC15-8D6FEDC70F66} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Knight Rider\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe Task: {C94AA91A-66F4-428D-9673-540F219CD2E3} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-17] (NVIDIA Corporation) Task: {CB113A93-2D62-45EA-9738-889299BE76A3} - System32\Tasks\NahimicMSIsvc64Run => C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIsvc64.exe [2015-12-04] () Task: {DE066516-0C7F-4FCC-A437-1533E01AD46E} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-12-29] (Microsoft Corporation) Task: {E8C962FC-8FE0-4BCF-9E99-65F8A328AA7D} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-17] (NVIDIA Corporation) Task: {F34F1F4F-7315-4892-8F5C-7E316EFEB4C7} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-01-04] (Overwolf LTD) Task: {F9205A60-C050-45BE-83B7-F175A7F247C8} - System32\Tasks\doPDF Update => C:\Program Files\Softland\novaPDF 8\Driver\UpdateApplication.exe [2016-06-17] () Task: {FC670DB5-50A6-41F8-B719-CEEF7A4AF299} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-marvin.meurer1@web.de => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-05-05] (Adobe Systems Incorporated) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) ShortcutWithArgument: C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Node.js\Node.js command prompt.lnk -> C:\Windows\SysWOW64\cmd.exe (Microsoft Corporation) -> /k "C:\Program Files (x86)\nodejs\nodevars.bat" ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2016-05-28 22:47 - 2013-09-03 13:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\bdmetrics.dll 2016-11-14 19:34 - 2016-11-14 19:34 - 01008448 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_02351_002\ashttpbr.mdl 2016-11-14 19:34 - 2016-11-14 19:34 - 00541952 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_02351_002\ashttpdsp.mdl 2016-11-14 19:34 - 2016-11-14 19:34 - 03202816 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_02351_002\ashttpph.mdl 2016-11-14 19:34 - 2016-11-14 19:34 - 01542976 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_02351_002\ashttprbl.mdl 2016-06-17 11:43 - 2016-06-17 11:43 - 00145696 _____ () C:\Program Files\Softland\novaPDF 8\Server\AgileDotNetRT64.dll 2016-02-10 15:37 - 2016-02-10 15:37 - 00179208 _____ () C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe 2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2016-11-17 01:28 - 2016-11-17 01:28 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2016-05-11 23:39 - 2016-05-11 23:39 - 00037808 _____ () C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe 2016-10-17 20:45 - 2016-11-17 14:45 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-10-17 20:45 - 2016-11-17 14:45 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll 2016-10-17 20:45 - 2016-11-17 14:45 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll 2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-12-14 17:27 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-09-23 14:36 - 2016-11-24 20:39 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-12-14 17:27 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-12-14 17:27 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll 2016-05-22 18:33 - 2016-05-22 18:33 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll 2015-12-04 08:36 - 2015-12-04 08:36 - 00207840 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIDevProps.dll 2015-12-04 08:36 - 2015-12-04 08:36 - 00285152 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIOSD.dll 2016-09-23 15:33 - 2016-09-23 15:33 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2017-01-10 21:42 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2017-01-10 21:42 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-01-10 21:42 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-01-10 21:42 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2017-01-10 21:42 - 2016-12-21 07:48 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll 2017-01-10 21:42 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2017-01-10 21:42 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-12-14 17:42 - 2016-12-14 17:42 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2016-12-14 17:42 - 2016-12-14 17:42 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2016-12-14 17:42 - 2016-12-14 17:42 - 42130432 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2016-12-14 17:42 - 2016-12-14 17:42 - 02216448 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\roottools.dll 2016-04-25 14:12 - 2017-01-15 20:23 - 00176408 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll 2016-04-25 14:12 - 2017-01-15 20:23 - 00107288 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll 2016-04-25 14:12 - 2017-01-15 20:23 - 00118040 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll 2016-04-25 14:13 - 2017-01-15 20:23 - 00319768 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll 2016-04-25 14:13 - 2017-01-15 20:23 - 00486680 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll 2015-12-04 08:31 - 2015-12-04 08:31 - 00740320 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe 2016-05-11 23:39 - 2016-05-11 23:39 - 01088944 _____ () C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe 2015-12-04 08:31 - 2015-12-04 08:31 - 00826880 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIsvc32.exe 2015-12-04 08:37 - 2015-12-04 08:37 - 00275456 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIsvc64.exe 2016-02-10 21:27 - 2016-02-10 21:27 - 00267672 _____ () C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\sldBodyDiffu.dll 2016-05-28 22:02 - 2013-01-05 09:05 - 01709736 _____ () C:\Program Files (x86)\Rapoo\RpWireless\LedStatus.exe 2016-05-22 18:32 - 2016-05-22 18:32 - 31680176 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe 2017-01-03 11:58 - 2017-01-03 11:58 - 00027760 _____ () C:\Program Files (x86)\NZXT\CAM\Service\CAMService.exe 2017-01-17 17:49 - 2017-01-17 17:49 - 07818864 _____ () C:\Program Files (x86)\NZXT\CAM\CAM_V3.exe 2016-12-14 10:56 - 2016-12-14 10:56 - 00202352 _____ () C:\Program Files (x86)\NZXT\CAM\FPS\CAMFPS.exe 2016-12-17 23:13 - 2016-12-08 09:03 - 02412888 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll 2016-12-17 23:13 - 2016-12-08 09:03 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll 2017-01-11 19:27 - 2017-01-11 19:27 - 31167576 _____ () C:\Users\Knight Rider\AppData\Local\Google\Chrome\User Data\PepperFlash\24.0.0.194\pepflashplayer.dll 2015-10-16 05:14 - 2015-10-16 05:14 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2016-06-01 16:04 - 2016-11-17 14:45 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-10-17 20:45 - 2016-11-17 14:45 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll 2016-10-17 20:45 - 2016-11-17 14:45 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2015-12-04 08:30 - 2015-12-04 08:30 - 00177632 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIDevProps.dll 2015-12-04 08:30 - 2015-12-04 08:30 - 00252384 _____ () C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIOSD.dll 2016-10-17 20:45 - 2016-11-17 11:20 - 00506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node 2016-10-17 20:45 - 2016-11-17 11:20 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node 2016-10-17 20:45 - 2016-11-17 11:20 - 02809912 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node 2016-10-17 20:45 - 2016-11-17 11:20 - 00245184 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node 2016-10-17 20:45 - 2016-11-17 11:20 - 00436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node 2016-10-17 20:45 - 2016-11-17 11:20 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node 2016-10-17 20:45 - 2016-11-17 11:20 - 00968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node 2016-11-17 01:29 - 2016-11-17 01:29 - 01041720 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2016-09-01 17:13 - 2016-09-01 17:13 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2016-11-17 01:28 - 2016-11-17 01:28 - 00189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll 2016-10-17 20:45 - 2016-11-17 14:44 - 60817344 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll 2017-01-15 19:21 - 2017-01-04 14:28 - 01958912 _____ () C:\Users\Knight Rider\AppData\Local\Discord\app-0.0.297\ffmpeg.dll 2017-01-15 19:21 - 2017-01-15 19:21 - 01082880 _____ () \\?\C:\Users\Knight Rider\AppData\Roaming\discord\0.0.297\modules\discord_voice\discord_voice.node 2017-01-15 19:21 - 2017-01-15 19:21 - 03750400 _____ () \\?\C:\Users\Knight Rider\AppData\Roaming\discord\0.0.297\modules\discord_voice\libdiscord.dll 2017-01-15 19:21 - 2017-01-15 19:21 - 00914432 _____ () \\?\C:\Users\Knight Rider\AppData\Roaming\discord\0.0.297\modules\discord_utils\discord_utils.node 2017-01-15 19:21 - 2017-01-15 19:21 - 01127424 _____ () \\?\C:\Users\Knight Rider\AppData\Roaming\discord\0.0.297\modules\discord_toaster\discord_toaster.node 2017-01-04 13:45 - 2017-01-04 13:45 - 67297280 _____ () C:\Program Files (x86)\Overwolf\0.101.213.0\libcef.DLL 2017-01-04 13:46 - 2017-01-04 13:46 - 01565128 _____ () C:\Program Files (x86)\Overwolf\0.101.213.0\teamspeak_control_win32.dll 2017-01-15 19:21 - 2017-01-04 14:28 - 02278912 _____ () C:\Users\Knight Rider\AppData\Local\Discord\app-0.0.297\libglesv2.dll 2017-01-15 19:21 - 2017-01-04 14:28 - 00096768 _____ () C:\Users\Knight Rider\AppData\Local\Discord\app-0.0.297\libegl.dll 2016-05-28 22:02 - 2012-02-17 14:45 - 00042496 _____ () C:\Program Files (x86)\Rapoo\RpWireless\LedStatus.dll 2017-01-19 20:33 - 2017-01-19 20:33 - 00148992 _____ () \\?\C:\Users\Knight Rider\AppData\Local\Temp\F110.tmp.node 2017-01-15 19:21 - 2017-01-15 19:21 - 02658304 _____ () \\?\C:\Users\Knight Rider\AppData\Roaming\discord\0.0.297\modules\discord_rpc\discord_rpc.node 2017-01-15 19:22 - 2017-01-15 19:22 - 02130432 _____ () \\?\C:\Users\Knight Rider\AppData\Roaming\discord\0.0.297\modules\discord_contact_import\discord_contact_import.node 2016-05-28 22:02 - 2013-08-10 10:45 - 00294912 _____ () C:\Program Files (x86)\Rapoo\RpWireless\Swap.dll 2016-06-03 02:36 - 2016-06-03 02:36 - 40523456 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll 2016-06-07 23:10 - 2016-06-07 23:10 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node 2016-06-07 23:10 - 2016-06-07 23:10 - 00205824 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node 2016-06-07 23:10 - 2016-06-07 23:10 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node 2016-06-07 23:10 - 2016-06-07 23:10 - 00125440 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node 2016-06-07 23:41 - 2016-06-07 23:41 - 00098496 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll 2016-06-07 23:10 - 2016-06-07 23:10 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node 2017-01-19 20:33 - 2016-12-23 19:28 - 00657184 _____ () E:\Steam\SDL2.dll 2016-10-15 19:04 - 2016-09-01 02:02 - 04969248 _____ () E:\Steam\v8.dll 2017-01-19 20:33 - 2017-01-19 02:30 - 02327840 _____ () E:\Steam\video.dll 2016-10-15 19:04 - 2016-01-27 08:49 - 02549760 _____ () E:\Steam\libavcodec-56.dll 2016-10-15 19:04 - 2016-01-27 08:49 - 00491008 _____ () E:\Steam\libavformat-56.dll 2016-10-15 19:04 - 2016-01-27 08:49 - 00332800 _____ () E:\Steam\libavresample-2.dll 2016-10-15 19:04 - 2016-01-27 08:49 - 00442880 _____ () E:\Steam\libavutil-54.dll 2016-10-15 19:04 - 2016-01-27 08:49 - 00485888 _____ () E:\Steam\libswscale-3.dll 2016-10-15 19:04 - 2016-09-01 02:02 - 01563936 _____ () E:\Steam\icui18n.dll 2016-10-15 19:04 - 2016-09-01 02:02 - 01195296 _____ () E:\Steam\icuuc.dll 2017-01-19 20:33 - 2017-01-19 02:30 - 00838432 _____ () E:\Steam\bin\chromehtml.DLL 2016-10-15 19:04 - 2016-07-04 23:17 - 00266560 _____ () E:\Steam\openvr_api.dll 2017-01-19 20:33 - 2017-01-05 04:12 - 68813088 _____ () E:\Steam\bin\cef\cef.win7\libcef.dll 2017-01-19 20:33 - 2017-01-19 02:30 - 00383776 _____ () E:\Steam\steam.dll 2016-12-07 18:28 - 2016-12-07 18:28 - 00282112 _____ () C:\Program Files (x86)\NZXT\CAM\GSyncLib.dll 2016-06-01 16:15 - 2017-01-19 20:49 - 00308736 _____ () C:\Program Files (x86)\NZXT\CAM\NVAPIHelper.dll 2016-12-07 18:28 - 2016-12-07 18:28 - 00070656 _____ () C:\Program Files (x86)\NZXT\CAM\FPS\KeyHookDLL_x86.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) ==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2015-10-30 08:24 - 2017-01-19 21:09 - 00000002 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\Control Panel\Desktop\\Wallpaper -> c:\users\Knight Rider\desktop\mt 07 background.jpg DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [vm-monitoring-nb-session] => LPort=139 FirewallRules: [{DC20F389-0673-443C-B9B7-605290B8D0A6}] => E:\UPlay\The Crew (Worldwide)\TheCrew.exe FirewallRules: [{B55A0228-00BD-46C3-B27F-60E5554325BC}] => E:\UPlay\The Crew (Worldwide)\TheCrew.exe FirewallRules: [{2F1F1BFF-109D-4624-A348-B9F771766160}] => C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe FirewallRules: [{25806314-9BD4-4887-BEFF-AF54D46C9E48}] => C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe FirewallRules: [{1064A5F3-135F-425A-A8FD-D82130B1B1F5}] => C:\Program Files\MAGIX\Video deluxe 2016 Premium\Videodeluxe.exe FirewallRules: [{04E9B176-EF63-4E38-A7ED-AF4A04DB79F3}] => LPort=8501 FirewallRules: [{53BB82C0-D4D2-4AE5-AF2D-38F6799916C7}] => LPort=8501 FirewallRules: [UDP Query User{582D84F6-CE9C-47D1-9D51-7640140C69F1}E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{29BD0947-9C8B-438D-A3F0-C695FB0CEDC5}E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{AA2F4FF8-E17F-4DD5-BF6D-398CEC1F15E6}] => C:\Program Files\GoPro\GoPro Desktop App\GoProLauncher.exe FirewallRules: [{FDF133C5-2BF9-4529-B63C-1EC1E18F89C6}] => C:\Program Files\GoPro\GoPro Desktop App\GoProIDService.exe FirewallRules: [{91A4F597-B628-4A95-9777-B6DEBFF934BB}] => C:\Program Files\GoPro\GoPro Desktop App\GoProMsgBus.exe FirewallRules: [{0A72B478-531D-4A6A-B47A-B27B440B36D2}] => C:\Program Files\GoPro\GoPro Desktop App\GoPro.exe FirewallRules: [{446F86A3-3AF9-44CD-931A-A148B19FA98A}] => C:\Users\Knight Rider\AppData\Local\Temp\7zS46D1\HPDiagnosticCoreUI.exe FirewallRules: [{73FB3B8A-710F-49D0-8AF9-5B89A633C09E}] => C:\Users\Knight Rider\AppData\Local\Temp\7zS46D1\HPDiagnosticCoreUI.exe FirewallRules: [{6E0A6CDC-F378-4902-901D-14914749F14B}] => E:\Steam\steamapps\common\3DMark\3DMarkLauncher.exe FirewallRules: [{3959E762-27C0-4EAD-AC3E-C2B6E18E8C66}] => E:\Steam\steamapps\common\3DMark\3DMarkLauncher.exe FirewallRules: [{BA8CBCF9-6376-4FD2-B721-96F8A6380479}] => C:\Users\Knight Rider\AppData\Local\Temp\7zS2FE1\HPDiagnosticCoreUI.exe FirewallRules: [{23D58E1C-B6C9-4EF6-87D1-902BC7C76885}] => C:\Users\Knight Rider\AppData\Local\Temp\7zS2FE1\HPDiagnosticCoreUI.exe FirewallRules: [{5F7D483C-28BE-4079-AAA0-65DA8E28BDC1}] => E:\Steam\steamapps\common\EVGA PrecisionX\Skins\UxfTool.exe FirewallRules: [{BDCF2A81-FD78-481A-9921-321724FFF7B2}] => E:\Steam\steamapps\common\EVGA PrecisionX\Skins\UxfTool.exe FirewallRules: [{A35EB4EC-85A9-4714-B7EB-74059BC90D24}] => E:\Steam\steamapps\common\EVGA PrecisionX\PrecisionX_x64.exe FirewallRules: [{38B90A6C-61D6-40F1-8F10-29DC028D6CC6}] => E:\Steam\steamapps\common\EVGA PrecisionX\PrecisionX_x64.exe FirewallRules: [{6128DC0F-333F-44DC-93B7-FD59D61E8C7D}] => E:\GTA5.exe FirewallRules: [{C9CC7850-9C3C-4803-8034-E04F523FA091}] => E:\GTA5.exe FirewallRules: [{97FBDC53-B7E2-4690-9B54-B2A3C39D6E64}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{1A69A998-B3DE-4027-A4B8-6C87379F8F4E}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{F8BF0CC2-B046-4542-8620-D5F3686A22A7}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{D7AAE08E-BE2F-4305-ADEB-412192D1EB40}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{970C729C-8B32-45EA-BCFE-C7CA5D1872CB}] => C:\Program Files\HP\HP ENVY 5530 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{248CD8AC-AFBC-4C81-A164-A27C81899A63}] => LPort=5357 FirewallRules: [{D6E447B1-1BB7-449B-830F-E60DA33D4D1C}] => C:\Program Files\HP\HP ENVY 5530 series\Bin\DeviceSetup.exe FirewallRules: [{740A973B-C4BC-4F49-B355-1FEFFE302DD1}] => C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{89F3408B-222F-4C27-A8AE-E3CBE589B257}] => E:\Programme\Common7\IDE\devenv.exe FirewallRules: [{95899C5B-BC21-4597-8DD6-74605921232F}] => E:\Steam\steamapps\common\Rollercoaster Tycoon 3 Gold\RCT3plus.exe FirewallRules: [{1A0025E6-719C-4178-AC08-5BE5502AC899}] => E:\Steam\steamapps\common\Rollercoaster Tycoon 3 Gold\RCT3plus.exe FirewallRules: [{E0D847BA-DC22-4FB4-A5EF-64BE0AA5B61D}] => E:\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{69EB1B01-3311-47CD-97B1-E82B0F04475B}] => E:\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{46A16798-ACCC-4EBF-AF5E-DFA34BE12CFF}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{B8F48BE4-2234-463C-BEE8-E02737598E43}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{B9DB27DF-5F0F-484B-92E4-082B77C48AD6}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{6AD65B56-0BE8-46F8-903F-E6D24AF2531A}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{45FC92BA-BBA7-46B4-853C-E8D5DC193696}] => E:\Steam\steamapps\common\Team Fortress 2\hl2.exe FirewallRules: [{95B7EC49-5B97-43D9-B51B-5BFF6652756A}] => E:\Steam\steamapps\common\Team Fortress 2\hl2.exe FirewallRules: [{B2E3446A-263B-4B4C-B3B5-337E6CDF2800}] => E:\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{4C2A959C-C7EC-484C-B2F2-A38AB05B0A39}] => E:\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{CD836E44-E83F-4D70-833F-D5768B307025}] => E:\Steam\steamapps\common\Farming Simulator 15\x64\FarmingSimulator2015Game.exe FirewallRules: [{A4CFB29E-408A-4A85-A84E-C3D156E629F0}] => E:\Steam\steamapps\common\Farming Simulator 15\x64\FarmingSimulator2015Game.exe FirewallRules: [{82FB6EB6-9E4A-443B-9FE9-122C8BD12F27}] => E:\Steam\steamapps\common\Counter-Strike Source\hl2.exe FirewallRules: [{FE07C331-321C-4465-B12D-CEA32796B9FB}] => E:\Steam\steamapps\common\Counter-Strike Source\hl2.exe FirewallRules: [{C8058183-EA6B-4E41-8CE7-856A0E61FCC2}] => E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{8EE8DA43-7627-48C6-AD88-4C997A1323CE}] => E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{29312822-A300-4C40-A885-CBE298632F59}] => E:\Steam\bin\steamwebhelper.exe FirewallRules: [{44D345B7-3BF1-4939-B480-2F31141CEEE8}] => E:\Steam\bin\steamwebhelper.exe FirewallRules: [{32A9C915-48D5-4345-B36A-8BE8E5B54D30}] => E:\Steam\Steam.exe FirewallRules: [{AE1A2968-6EBB-460E-BF76-2B092CDEC94A}] => E:\Steam\Steam.exe FirewallRules: [{255D5DD0-759B-4977-A61A-53117078049C}] => LPort=2333 FirewallRules: [{B20859F5-2160-4466-992D-ED3326E1E393}] => LPort=9143 FirewallRules: [{D7944283-3883-4C5F-9446-0F13E0A4947C}] => C:\Program Files (x86)\Didactic\FluidSIM5-Homeuse\bin\CodeMeter.exe FirewallRules: [{41620DFB-C774-4D26-9B65-C9DA125845E6}] => C:\Program Files (x86)\Didactic\FluidSIM5-Homeuse\bin\CodeMeter.exe FirewallRules: [TCP Query User{A48B2411-88B0-4E8F-A57F-ED6802DEA9A6}E:\ti-nspire cx student software\ti-nspire cx student software.exe] => E:\ti-nspire cx student software\ti-nspire cx student software.exe FirewallRules: [UDP Query User{7221E92E-A653-4933-A912-937C5B5579C4}E:\ti-nspire cx student software\ti-nspire cx student software.exe] => E:\ti-nspire cx student software\ti-nspire cx student software.exe FirewallRules: [TCP Query User{E3ED49B1-4B31-4563-9349-3BC9C2380D7B}E:\ti-nspire cx student software\jre\bin\java.exe] => E:\ti-nspire cx student software\jre\bin\java.exe FirewallRules: [UDP Query User{86C87F86-0498-4777-9760-241871CA568F}E:\ti-nspire cx student software\jre\bin\java.exe] => E:\ti-nspire cx student software\jre\bin\java.exe FirewallRules: [{3D7B8288-E8C7-4CF3-9817-07BAF394629E}] => E:\Steam\steamapps\common\SteamVRPerformanceTest\bin\win64\vr.exe FirewallRules: [{6B2464F0-4C77-47C3-8AE4-C5666B2BEAE1}] => E:\Steam\steamapps\common\SteamVRPerformanceTest\bin\win64\vr.exe FirewallRules: [{DCADC9AF-1424-4173-9208-53B41366F7BF}] => E:\Steam\steamapps\common\PCMark 8\bin\PCMark8.exe FirewallRules: [{279AD4DC-3BC6-48E3-91F5-687B06CE97DD}] => E:\Steam\steamapps\common\PCMark 8\bin\PCMark8.exe FirewallRules: [{B2CA8270-D6E7-4EA6-95C9-B01DA03B362A}] => E:\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [{3CA29EF8-2324-48CD-B24C-883127A04045}] => E:\Steam\steamapps\common\Terraria\Terraria.exe FirewallRules: [{D6DA50AD-A6C5-49F2-BF12-AEA3F4D6211A}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{A4BC4E5E-5D11-45F6-93AB-952235A1D0A0}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{7C9B1CC5-5E50-4331-B435-A2917B3654ED}] => C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe FirewallRules: [{1FE8D93D-E02D-4D80-A8A6-D4DFDFE10836}] => C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe FirewallRules: [TCP Query User{80DBD5F7-28C6-4024-AD54-99EB8BEE659D}E:\gta5.exe] => E:\gta5.exe FirewallRules: [UDP Query User{D49B37A4-8A24-4E86-9538-5D113037301F}E:\gta5.exe] => E:\gta5.exe FirewallRules: [{DFA1A6B2-9DA2-44B4-A34A-A7C2BAFC5374}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe FirewallRules: [{0F19AF09-DFB8-48C5-980A-E2321BADFE3C}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe FirewallRules: [{C3A96544-D42D-4897-BE4D-74673F07A360}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{C44277F5-3F84-40DF-B868-4C887894C8EC}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{9F6182DB-CC3E-4F52-8D94-3A71C11A00C7}] => E:\Steam\steamapps\common\SNOW\Bin64\playSNOW.exe FirewallRules: [{F8F6AD73-CE71-4249-A67F-8ED645995DE3}] => E:\Steam\steamapps\common\SNOW\Bin64\playSNOW.exe FirewallRules: [{6EBC8C84-122E-4729-933E-C48A1B92C0E8}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{5E2380FC-13DF-4C5C-A667-6E1BB442BA18}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [TCP Query User{27829CBD-693C-47DE-938C-E916A399569E}E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{00621EC1-D524-44D6-BD9F-BE62EF278689}E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => E:\games\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{415DAEDE-EDBE-4ECD-B2DF-04AE70AE8346}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{8D5ECBCA-E874-42FF-8918-4BD6EC84BF29}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{46768423-3AC7-41BD-8918-EBC344E04B49}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{11AB8EBD-91B5-457D-B7C6-7E0420928CED}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{19A9D408-D902-4D4D-B5DB-F3A694BB3C0A}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{FDEFED6B-DEE4-4336-B11B-9EFD986B3705}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{18850649-80E9-44DB-9579-EDB7EA821978}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{0AAE3A14-89A6-412F-8B47-3AE92BE8C5F6}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{0E7322FF-36F1-49BA-B62D-4190E8E8FA8D}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{92FB5956-69F2-46DB-973E-E7B1AD576569}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{9B08E6A9-E252-4C45-88BE-FC402F6E05C9}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{C0B5D76D-84D0-4625-9F80-7E6299475806}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{42239AB1-94C4-4EBF-B6D0-42FFF4779DE2}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{DEC5EFB7-6288-4561-BE09-9BA056C96D06}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{3EC3297B-593A-4FAC-AB00-4458C7AD6767}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{7B204C37-73DC-4F57-87B9-85CA064CFD70}] => E:\Steam\steamapps\common\Steep Open Beta\steep.exe FirewallRules: [{3AFD1DB9-C37C-42DD-8E3D-0056FDC206C9}] => E:\Steam\steamapps\common\Steep Open Beta\steep.exe FirewallRules: [{7299C231-8AFE-4790-879B-B41D3897A597}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{47CD93EE-DCB3-49CF-BF6B-0BA0599EE34A}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{61ED91C2-137E-45D6-BF88-7D40018E9893}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{E45E15CF-F87E-4217-9F84-194135FDB580}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{1C38B42C-8106-48D9-B765-CC14544D913B}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{8B4CA0E1-F02D-4957-8199-ACDA938E02A2}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{CE8D74F3-A1C2-48EB-9CCD-A91D159AC65A}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{17733A66-6EA4-48A8-9C13-46AF393EAC30}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{2184456A-0C9D-48B9-8832-EC86994AACDE}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{20E82D63-DADB-44E8-819B-27A4E04F8B53}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{C8F6D304-0A67-4A48-A742-68942457273D}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{E4621CC3-134F-4792-B47B-938835242FD9}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{02D5DE69-7294-4EF9-9AFD-5AA131A25227}] => E:\GTA V\GTA5.exe FirewallRules: [{55445BB4-8AF7-4D42-ABA6-19A64F6096B0}] => E:\GTA V\GTA5.exe FirewallRules: [{A1AA779B-1280-486F-93C0-4FF2BD993E25}] => E:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{938F25F6-CEBF-431A-9A7F-8DBE1ED70C20}] => E:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{E779C8B5-32BC-453E-91CD-BEBD7AE9A7A7}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{8DE65A3C-0537-49AA-80C1-F77F10114A8E}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{5C4C70D3-F144-469A-AC22-B1E0E2342A97}] => E:\Steam\steamapps\common\SNOW\Bin64\playSNOW.exe FirewallRules: [{3960D1C8-1D6A-47DE-806B-B9A5D831B02D}] => E:\Steam\steamapps\common\SNOW\Bin64\playSNOW.exe FirewallRules: [{6D304267-F395-4DB4-BF92-F79751D26037}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{A04BB9B7-F9D8-4CF0-BFD3-87387FC9EB02}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{DE3C3E5E-91DA-4697-B5B1-D570DCB684ED}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{C7AD4DAC-930B-44DE-BAC0-4E2B64E322BD}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{DC8AA6C0-E6F7-4E78-996B-D5FD56710896}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{1505F4B2-8F0E-4268-9309-6588F501B14B}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{4331CB91-BA6D-4289-8D1D-DBCCA017FEFF}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{FE034258-8A91-45E6-B6D2-16EFC0B99FDB}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{85810EE0-A6D7-4AA0-8FE0-80A9D255DB6C}] => E:\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe FirewallRules: [{9400D5D3-10F8-4B4F-9E31-B935D69221B9}] => E:\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe FirewallRules: [{DB5ACF1E-6792-487F-B0B1-8FBA4313E204}] => E:\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe FirewallRules: [{B1D16D26-C7A6-4055-B570-0EA8B3263DFD}] => E:\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe FirewallRules: [{CC9BB5AB-6A06-40A8-BEE1-92FA5E1B2D86}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{F6D38622-B7B8-47A0-985B-EC64A09A99D8}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{054E8E0F-07BF-40D6-820D-DF74EF9DEF06}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{689B2347-DA33-4F35-8DEE-7A1BC4598ECE}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{3C4BA918-6816-47CE-9560-173DE2B3C981}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{CDD5F5FB-91FD-4290-B3D6-CACA6BA9C117}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{3DC612E5-63B0-4F61-A0C7-6CBFC15380D0}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{8B68BD82-8AE7-4F34-9758-FE4D98D72E86}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{34F83D29-2AB6-4140-B97B-FF36ACDEE761}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{650D6441-C73A-4546-B707-D369FFD82098}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{379BE4B4-EB8C-4304-ADFB-C6EB48F7CB63}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{B8A43B27-F1A9-4C39-A49F-2011745376C7}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{BA1226FF-76FD-4506-B7C7-CB2AB5159DDB}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{DFA1806B-5C5B-493A-A939-6E33811FBC58}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{F1D2F795-15AB-4DBD-90DA-847878CC7C69}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{1D9BE7CE-4420-488D-8DCC-B7E2DF7BD3A6}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{7A1B1166-4A91-43FA-840D-254B83C40F17}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{14B4E5A0-53D7-4F6D-94B4-E97E4532E2CD}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{3D76EF32-DB7E-46E7-A4D7-B34E30C2AAF7}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{7405F89C-B4FA-4584-8188-6B78C0313611}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{DCC0C234-9DA5-4F95-A3F8-DBDB080C4942}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{CFB84E45-93FD-4970-9213-7D9BC60EDF09}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{E1D0D8C6-7823-46F6-9337-62845C355D7E}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{A5665D02-AD8F-42E1-B790-965AE5D7AB65}] => E:\Programme\iTunes.exe FirewallRules: [{D4088670-D200-439A-8EB2-CDDC4142D407}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{94466409-25C9-4186-B117-FFAA03AC1BF7}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{4F833480-9F2B-46E6-9614-E86530039C8C}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{A0B3685D-06F2-4B72-A860-B0F232EAADDD}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{32AE8B65-A863-40C0-B815-2F5CBAF7B38B}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{E70E1073-1B5E-4639-A121-BCB8E200BD03}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{3B90A165-ACEF-4894-9B2F-1ACF0CD28D30}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{7D57A74D-240D-49CE-968C-9DED34F3035C}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{03118F20-A1C6-42AE-97F2-4ED5D80C744C}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{373EAC15-37DD-451B-AFF3-BF031405EC85}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{17621C42-EF18-4A6E-96B6-46D38D25A014}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{2DD3A9A1-F505-40E8-BF5B-D6E3002D751D}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{F6B0FD4C-D8A7-4C97-8A4E-B46F79A69D44}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{2EC8010E-1AB7-43C7-9DB0-5C9E9F221F39}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{FA2DE05E-57F9-40A4-8922-7E5593833B68}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{9B5A3CEE-9836-465D-A717-726B5F5DECE7}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{E660A8B8-89DE-41B1-8FA9-C63983DB4DA3}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{CA253B06-D3D5-4208-9430-5D2A1B46E11C}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{7F61E5DB-7A41-42FF-A200-9F82E741F77D}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{60E4AA5A-4089-4908-ADE9-939561F59CAC}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{4421AC01-DDFC-4CFD-B103-BD2EA6E6E242}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{B4EE3F85-37F1-42DB-8DB9-94EA1089FDC8}] => E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe ==================== Wiederherstellungspunkte ========================= 10-01-2017 21:58:35 Windows Update 10-01-2017 21:58:44 Windows Update 12-01-2017 19:36:35 Installed CAM 15-01-2017 19:38:39 JRT Pre-Junkware Removal 18-01-2017 22:09:11 Revo Uninstaller's restore point - chip 1-click download service 18-01-2017 22:09:19 chip 1-click download service wurde entfernt. 18-01-2017 22:10:32 Revo Uninstaller's restore point - Unigine Valley Benchmark version 1.0 18-01-2017 22:11:06 Revo Uninstaller's restore point - Yahoo! Powered 19-01-2017 20:49:22 Installed CAM ==================== Fehlerhafte Geräte im Gerätemanager ============= Name: Standard PS/2 Keyboard Description: Standard PS/2 Keyboard Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard keyboards) Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Microsoft PS/2 Mouse Description: Microsoft PS/2 Mouse Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (01/19/2017 09:25:35 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: The Open Procedure for service "WmiApRpl" in DLL "C:\WINDOWS\system32\wbem\wmiaprpl.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Error: (01/19/2017 09:25:35 PM) (Source: Perflib) (EventID: 1023) (User: ) Description: Windows cannot load the extensible counter DLL rdyboost. The first four bytes (DWORD) of the Data section contains the Windows error code. Error: (01/19/2017 09:25:34 PM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code. Error: (01/19/2017 09:25:34 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: The Open Procedure for service "MSDTC" in DLL "C:\WINDOWS\system32\msdtcuiu.DLL" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Error: (01/19/2017 09:25:34 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: The Open Procedure for service "Lsa" in DLL "C:\Windows\System32\Secur32.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Error: (01/19/2017 09:25:34 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Error: (01/19/2017 09:25:08 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: The Open Procedure for service "WmiApRpl" in DLL "C:\WINDOWS\system32\wbem\wmiaprpl.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Error: (01/19/2017 09:25:08 PM) (Source: Perflib) (EventID: 1023) (User: ) Description: Windows cannot load the extensible counter DLL rdyboost. The first four bytes (DWORD) of the Data section contains the Windows error code. Error: (01/19/2017 09:25:08 PM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code. Error: (01/19/2017 09:25:07 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: The Open Procedure for service "MSDTC" in DLL "C:\WINDOWS\system32\msdtcuiu.DLL" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Systemfehler: ============= Error: (01/19/2017 08:33:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Steam Client Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. Error: (01/19/2017 08:33:09 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect. Error: (01/19/2017 08:32:53 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-RK4M43L) Description: Unable to start a DCOM Server: {14286318-B6CF-49A1-81FC-D74AD94902F9}. The error: "2" Happened while starting this command: "C:\Program Files (x86)\Microsoft Office\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE" -Embedding Error: (01/19/2017 08:32:31 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: The Anwendungsspezifisch permission settings do not grant Lokal Aktivierung permission for the COM Server application with CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} and APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} to the user NT-AUTORITÄT\SYSTEM SID (S-1-5-18) from address LocalHost (unter Verwendung von LRPC) running in the application container Nicht verfügbar SID (Nicht verfügbar). This security permission can be modified using the Component Services administrative tool. Error: (01/18/2017 10:12:59 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-RK4M43L) Description: The server {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474} did not register with DCOM within the required timeout. Error: (01/18/2017 10:12:57 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-RK4M43L) Description: The server {B0957D9C-810B-4DE0-9C5E-48DB09C5B413} did not register with DCOM within the required timeout. Error: (01/18/2017 10:12:56 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: The Anwendungsspezifisch permission settings do not grant Lokal Aktivierung permission for the COM Server application with CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} and APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} to the user NT-AUTORITÄT\SYSTEM SID (S-1-5-18) from address LocalHost (unter Verwendung von LRPC) running in the application container Nicht verfügbar SID (Nicht verfügbar). This security permission can be modified using the Component Services administrative tool. Error: (01/18/2017 09:08:58 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-RK4M43L) Description: Unable to start a DCOM Server: {14286318-B6CF-49A1-81FC-D74AD94902F9}. The error: "2" Happened while starting this command: "C:\Program Files (x86)\Microsoft Office\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE" -Embedding Error: (01/18/2017 09:08:31 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: The Anwendungsspezifisch permission settings do not grant Lokal Aktivierung permission for the COM Server application with CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} and APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} to the user NT-AUTORITÄT\SYSTEM SID (S-1-5-18) from address LocalHost (unter Verwendung von LRPC) running in the application container Nicht verfügbar SID (Nicht verfügbar). This security permission can be modified using the Component Services administrative tool. Error: (01/17/2017 11:31:38 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-RK4M43L) Description: The server {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474} did not register with DCOM within the required timeout. CodeIntegrity: =================================== Date: 2017-01-01 20:16:18.923 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIDevProps.dll that did not meet the Store signing level requirements. Date: 2017-01-01 20:16:18.882 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIOSD.dll that did not meet the Store signing level requirements. Date: 2017-01-01 20:16:18.878 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Overwolf\0.100.227.0\x64\OWExplorer.dll that did not meet the Store signing level requirements. Date: 2017-01-01 20:16:18.839 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIDevProps.dll that did not meet the Store signing level requirements. Date: 2017-01-01 20:16:18.837 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIOSD.dll that did not meet the Store signing level requirements. Date: 2017-01-01 20:16:18.811 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. Date: 2017-01-01 20:16:18.738 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Overwolf\0.100.227.0\x64\OWExplorer.dll that did not meet the Store signing level requirements. Date: 2016-12-22 23:11:26.349 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIDevProps.dll that did not meet the Store signing level requirements. Date: 2016-12-22 23:11:26.347 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. Date: 2016-12-22 23:11:26.330 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIOSD.dll that did not meet the Store signing level requirements. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM) i7-6700K CPU @ 4.00GHz Prozentuale Nutzung des RAM: 37% Installierter physikalischer RAM: 16343.7 MB Verfügbarer physikalischer RAM: 10246.19 MB Summe virtueller Speicher: 18775.7 MB Verfügbarer virtueller Speicher: 11223.64 MB ==================== Laufwerke ================================ Drive c: () (Fixed) (Total:237.98 GB) (Free:77.69 GB) NTFS Drive e: (Volume) (Fixed) (Total:931.51 GB) (Free:533.1 GB) NTFS ==================== MBR & Partitionstabelle ================== ==================== Ende von Addition.txt ============================ |
20.01.2017, 10:18 | #22 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Pop-up "There is a recommended update for your PC" Kontrollscans mit (1) MBAM, (2) ESET und (3) SecurityCheck bitte: 1. Schritt: MBAM Downloade Dir bitte Malwarebytes Anti-Malware
2. Schritt: ESET ESET Online Scanner
3. Schritt: SecurityCheck Downloade Dir bitte SecurityCheck und:
__________________ Logfiles bitte immer in CODE-Tags posten |
22.01.2017, 22:46 | #23 |
| Pop-up "There is a recommended update for your PC"Code:
ATTFilter ESETSmartInstaller@High as downloader log: all ok # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # EOSSerial=eb74739647f6914f9b4ade0bf020d809 # end=init # utc_time=2017-01-22 07:14:02 # local_time=2017-01-22 08:14:02 (+0100, W. Europe Standard Time) # country="United States" # osver=6.2.9200 NT Update Init Update Download Update Finalize Updated modules version: 32150 # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # EOSSerial=eb74739647f6914f9b4ade0bf020d809 # end=updated # utc_time=2017-01-22 07:18:07 # local_time=2017-01-22 08:18:07 (+0100, W. Europe Standard Time) # country="United States" # osver=6.2.9200 NT # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.7777 # api_version=3.1.1 # EOSSerial=eb74739647f6914f9b4ade0bf020d809 # engine=32150 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2017-01-22 09:14:50 # local_time=2017-01-22 10:14:50 (+0100, W. Europe Standard Time) # country="United States" # lang=1031 # osver=6.2.9200 NT # compatibility_mode_1='Bitdefender Antivirus' # compatibility_mode=2073 16777213 100 99 7555 182432355 0 0 # compatibility_mode_1='' # compatibility_mode=5893 16776574 100 94 10478426 16450306 0 0 # scanned=853168 # found=3 # cleaned=0 # scan_time=7003 sh=2FC4E5FBFDAD3F2E68253645EC3B0F2FA31FFD80 ft=1 fh=58d8cdf04867bd19 vn="Win32/InstallMonetizer.AQ eventuell unerwünschte Anwendung" ac=I fn="C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\Redist\pdfcreator-2_1_2_setup.exe" sh=9516BE8DF910FF582FE5B967C7C38BE2AD334C2B ft=1 fh=d3d62eb55e18ca8c vn="Variante von Win32/DownloadSponsor.C eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Knight Rider\AppData\Local\Temp\DMR\dmr_72.exe" sh=A9728B2B4CF71A88F324558568D55E4CD5604039 ft=0 fh=0000000000000000 vn="Win32/InstallMonetizer.AQ eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Knight Rider\Documents\SOLIDWORKS Downloads\SOLIDWORKS 2016 x64 SP02\swelectric\PDFCre~1.cab" Code:
ATTFilter Results of screen317's Security Check version 1.009 x64 (UAC is enabled) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Enabled! Windows Defender Bitdefender Virenschutz Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Visual Studio Extensions for Windows Library for JavaScript Java 8 Update 111 Java SE Development Kit 7 Update 55 Microsoft VisualStudio JavaScript Language Service Microsoft VisualStudio JavaScript Project System Java version 32-bit out of Date! Google Chrome (55.0.2883.87) Google Chrome (SetupMetrics...) ````````Process Check: objlist.exe by Laurent```````` Bitdefender Bitdefender 2016 vsserv.exe Bitdefender Bitdefender 2016 updatesrv.exe Bitdefender Agent ProductAgentService.exe Bitdefender Bitdefender 2016 bdagent.exe Bitdefender Bitdefender 2016 seccenter.exe Bitdefender Bitdefender 2016 bdwtxag.exe Bitdefender Agent ProductAgentService.exe Bitdefender Agent ProductAgentUI.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: % ````````````````````End of Log`````````````````````` Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001 www.malwarebytes.org Database version: main: v2017.01.20.08 rootkit: v2016.11.20.01 Windows 10 x64 NTFS Internet Explorer 11.576.14393.0 Knight Rider :: DESKTOP-RK4M43L [administrator] 1/22/2017 10:07:07 PM mbar-log-2017-01-20 (22-07-07).txt Scan type: Quick scan Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken Scan options disabled: Objects scanned: 492490 Time elapsed: 11 minute(s), 59 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) Physical Sectors Detected: 0 (No malicious items detected) (end) |
23.01.2017, 10:53 | #24 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Pop-up "There is a recommended update for your PC" Anleitung bitte richtig lesen. Der Kontrollscan sollte mit MBAM gemacht werden und nicht mit MBAR.
__________________ Logfiles bitte immer in CODE-Tags posten |
24.01.2017, 20:25 | #25 |
| Pop-up "There is a recommended update for your PC" Oh sorry hab ich nicht gesehen Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 1/24/2017 Scan Time: 6:29 PM Logfile: mbam.txt Administrator: Yes Version: 2.2.1.1043 Malware Database: v2017.01.24.05 Rootkit Database: v2016.11.20.01 License: Free Malware Protection: Disabled Malicious Website Protection: Disabled Self-protection: Disabled OS: Windows 10 CPU: x64 File System: NTFS User: Knight Rider Scan Type: Threat Scan Result: Completed Objects Scanned: 491418 Time Elapsed: 9 min, 37 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Enabled PUM: Enabled Processes: 0 (No malicious items detected) Modules: 0 (No malicious items detected) Registry Keys: 1 PUP.Optional.VLCUpdaterDE, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\VLC Updater, Quarantined, [d5e08df2bdeb45f17c93ddcaf10f51af], Registry Values: 2 PUP.Optional.VLCUpdaterDE, HKU\S-1-5-21-2325661282-3962446805-3529202158-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|VLC Updater, C:\Program Files (x86)\VLC Updater\vlc-updater.exe , Quarantined, [9520a5da357361d5bbee3c6ab74930d0] PUP.Optional.VLCUpdaterDE, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\VLC UPDATER|URLInfoAbout, hxxp://www.vlc-updater.de/?from=about, Quarantined, [ebcabdc2169238feae51485e6f91a060] Registry Data: 0 (No malicious items detected) Folders: 4 PUP.Optional.WinYahoo.Generic, C:\ProgramData\{A63A6359-2C78-E99F-AABE-77DD30FCFC13}, Quarantined, [862fb3cc6e3afd39e6a7c2d28b75a060], PUP.Optional.VLCUpdaterDE, C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VLC Updater, Quarantined, [4471d3acedbb88ae31a03a6ae7199d63], PUP.Optional.VLCUpdaterDE, C:\Program Files (x86)\VLC Updater, Quarantined, [d5e08df2bdeb45f17c93ddcaf10f51af], PUP.Optional.StartFenster, C:\Users\Knight Rider\AppData\Local\Temp\BrowserAddOn, Quarantined, [b1042d52cddb39fdcccce9dbd62a03fd], Files: 11 PUP.Optional.VLCUpdaterDE, C:\Program Files (x86)\VLC Updater\vlc-updater.exe, Quarantined, [9520a5da357361d5bbee3c6ab74930d0], PUP.Optional.VLCUpdaterDE, C:\Users\Knight Rider\AppData\Local\Temp\VLC Player\updater.exe, Quarantined, [5b5a1b641a8e92a46b3e7036ec14f010], PUP.Optional.WinYahoo.Generic, C:\ProgramData\{A63A6359-2C78-E99F-AABE-77DD30FCFC13}\cade, Quarantined, [862fb3cc6e3afd39e6a7c2d28b75a060], PUP.Optional.WinYahoo.Generic, C:\ProgramData\{A63A6359-2C78-E99F-AABE-77DD30FCFC13}\caceri, Quarantined, [862fb3cc6e3afd39e6a7c2d28b75a060], PUP.Optional.WinYahoo.Generic, C:\ProgramData\{A63A6359-2C78-E99F-AABE-77DD30FCFC13}\hdat1, Quarantined, [862fb3cc6e3afd39e6a7c2d28b75a060], PUP.Optional.WinYahoo.Generic, C:\ProgramData\{A63A6359-2C78-E99F-AABE-77DD30FCFC13}\hdat2, Quarantined, [862fb3cc6e3afd39e6a7c2d28b75a060], PUP.Optional.VLCUpdaterDE, C:\Users\Knight Rider\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VLC Updater\Software deinstallieren.lnk, Quarantined, [4471d3acedbb88ae31a03a6ae7199d63], PUP.Optional.VLCUpdaterDE, C:\Program Files (x86)\VLC Updater\setup.ico, Quarantined, [d5e08df2bdeb45f17c93ddcaf10f51af], PUP.Optional.VLCUpdaterDE, C:\Program Files (x86)\VLC Updater\uninstall.exe, Quarantined, [d5e08df2bdeb45f17c93ddcaf10f51af], PUP.Optional.StartFenster, C:\Users\Knight Rider\AppData\Roaming\Mozilla\Extensions\startfensterde-0.0.1-an+fx-linux.xpi, Quarantined, [f4c13b447533bc7a8246b4017e820df3], PUP.Optional.StartFenster, C:\Users\Knight Rider\AppData\Local\Temp\BrowserAddOn\startfensterde-0.0.1-an+fx-linux.xpi, Quarantined, [b1042d52cddb39fdcccce9dbd62a03fd], Physical Sectors: 0 (No malicious items detected) (end) |
24.01.2017, 22:07 | #26 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Pop-up "There is a recommended update for your PC" FRST-Fix Virenscanner jetzt bitte komplett deaktivieren, damit sichergestellt ist, dass der Fix sauber durchläuft! Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\Redist\pdfcreator-2_1_2_setup.exe C:\Users\Knight Rider\AppData\Local\Temp\DMR\dmr_72.exe C:\Users\Knight Rider\Documents\SOLIDWORKS Downloads\SOLIDWORKS 2016 x64 SP02\swelectric\PDFCre~1.cab emptytemp: Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
__________________ Logfiles bitte immer in CODE-Tags posten |
24.01.2017, 22:07 | #27 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Pop-up "There is a recommended update for your PC" FRST-Fix Virenscanner jetzt bitte komplett deaktivieren, damit sichergestellt ist, dass der Fix sauber durchläuft! Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\Redist\pdfcreator-2_1_2_setup.exe C:\Users\Knight Rider\AppData\Local\Temp\DMR\dmr_72.exe C:\Users\Knight Rider\Documents\SOLIDWORKS Downloads\SOLIDWORKS 2016 x64 SP02\swelectric\PDFCre~1.cab emptytemp: Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
__________________ Logfiles bitte immer in CODE-Tags posten |
24.01.2017, 22:16 | #28 |
| Pop-up "There is a recommended update for your PC" Ok, habe ich gemacht! Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 22-01-2017 durchgeführt von Knight Rider (24-01-2017 22:11:48) Run:1 Gestartet von C:\Users\Knight Rider\Desktop Geladene Profile: Knight Rider (Verfügbare Profile: Knight Rider) Start-Modus: Normal ============================================== fixlist Inhalt: ***************** C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\Redist\pdfcreator-2_1_2_setup.exe C:\Users\Knight Rider\AppData\Local\Temp\DMR\dmr_72.exe C:\Users\Knight Rider\Documents\SOLIDWORKS Downloads\SOLIDWORKS 2016 x64 SP02\swelectric\PDFCre~1.cab emptytemp: ***************** C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\Redist\pdfcreator-2_1_2_setup.exe => erfolgreich verschoben C:\Users\Knight Rider\AppData\Local\Temp\DMR\dmr_72.exe => erfolgreich verschoben Konnte nicht verschoben werden "C:\Users\Knight Rider\Documents\SOLIDWORKS Downloads\SOLIDWORKS 2016 x64 SP02\swelectric\PDFCre~1.cab" => ist geplant bei Neustart verschoben zu werden. =========== EmptyTemp: ========== BITS transfer queue => 301647 B DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 147726232 B Java, Flash, Steam htmlcache => 409296376 B Windows/system/drivers => 101903930 B Edge => 7319813 B Chrome => 753103017 B Firefox => 0 B Opera => 0 B Temp, IE cache, history, cookies, recent: Default => 0 B Users => 0 B ProgramData => 0 B Public => 0 B systemprofile => 0 B systemprofile32 => 0 B LocalService => 107474 B NetworkService => 0 B Knight Rider => 2332778224 B RecycleBin => 41863442 B EmptyTemp: => 3.5 GB temporäre Dateien entfernt. ================================ Ergebnis der geplanten Datei-Verschiebungen (Start-Modus: Normal) (Datum&Uhrzeit: 24-01-2017 22:13:32) "C:\Users\Knight Rider\Documents\SOLIDWORKS Downloads\SOLIDWORKS 2016 x64 SP02\swelectric\PDFCre~1.cab" => Konnte nicht verschoben werden ==== Ende vom Fixlog 22:13:32 ==== |
24.01.2017, 22:24 | #29 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Pop-up "There is a recommended update for your PC" Gut. Was ist jetzt noch an Problemen offen?
__________________ Logfiles bitte immer in CODE-Tags posten |
24.01.2017, 22:42 | #30 |
| Pop-up "There is a recommended update for your PC" Ich glaube das wars, das POP-UP kam nicht mehr Vielen Dank für die Hilfe! |
Themen zu Pop-up "There is a recommended update for your PC" |
a.exe, ausgeführt, benutzung, bitdefender, computer, datei, defender, ebenfalls, einzige, gen, gescannt, guten, heute, hoffe, klicke, klicken, natürlich, nichts, schließe, schließen, task-manager, titel, update, upgrade, vordergrund |