| |
| |||||||
Mülltonne: TR/Generic, vorhandene Reste?Windows 7 Beiträge, die gegen unsere Regeln verstoßen haben, solche, die die Welt nicht braucht oder sonstiger Müll landet hier in der Mülltonne... |
22.03.2017, 14:35
| #1 |
 |  TR/Generic, vorhandene Reste? Hallo, habe durch Dummheit eine .exe eines "Kumpels" mit gutem Gewissen geöffnet, hatte sich im nachhinein herausgestellt, dass das ding auf Virustotal bei 30/60 Scannern anschlägt, nur nicht beim MBAM. Bin mir nun unsicher, ob da im Hintergrund noch was läuft, hatte in der Registry bei den "Run/RunOnce" Ordnern mal reingeguckt, ob der sich in den Autostart gesetzt hat. War allerdings nix drin. FRST Log wäre hier: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 15-03-2017
durchgeführt von MuF (Administrator) auf MUF-PC (22-03-2017 06:31:25)
Gestartet von D:\Benutzer\MuF\Desktop
Geladene Profile: MuF (Verfügbare Profile: MuF)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Foxit Software Inc.) D:\Program Files (x86)\FOXIT SOFTWARE\FOXIT READER\FoxitConnectedPDFService.exe
(Hi-Rez Studios) D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Apple Inc.) D:\Program Files\iTunes\iTunesHelper.exe
(juvlarN) D:\Program Files (x86)\vibranceGUI\vibrance.GUI.exe
(Cristi) D:\Program Files (x86)\Dual Monitor\DualMonitor.exe
() C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Loud Technologies, Inc.) D:\Program Files\Mackie Audio\MackieUSB_Driver\MackieCpl.exe
(VMware, Inc.) D:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) D:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Guillemot Corporation) C:\Program Files (x86)\Thrustmaster\TARGET\TmService.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(VMware, Inc.) D:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [MBCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8843520 2016-02-04] (Realtek Semiconductor)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [ISCT Tray] => C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [5860656 2014-06-18] (Intel Corporation)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15642744 2016-03-30] (Logitech Inc.)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [iTunesHelper] => D:\Program Files\iTunes\iTunesHelper.exe [176440 2017-01-19] (Apple Inc.)
HKLM-x32\...\Run: [Sound Blaster Cinema] => C:\Program Files (x86)\Creative\Sound Blaster Cinema\Sound Blaster Cinema\SBCinema.exe [711680 2013-08-16] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-06-27] (Intel Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [vmware-tray.exe] => D:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [112200 2016-10-21] (VMware, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => D:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5883912 2017-03-02] (LogMeIn Inc.)
HKU\S-1-5-21-1215549160-4155092653-3139280633-1000\...\Run: [vibranceGUI] => D:\Program Files (x86)\vibranceGUI\vibrance.GUI.exe [1072128 2015-05-26] (juvlarN)
HKU\S-1-5-21-1215549160-4155092653-3139280633-1000\...\Run: [dualmonitor] => D:\Program Files (x86)\Dual Monitor\DualMonitor.exe [478720 2013-02-18] (Cristi)
HKU\S-1-5-21-1215549160-4155092653-3139280633-1000\...\MountPoints2: {8b105194-c89a-11e6-8bb7-005056c00008} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1215549160-4155092653-3139280633-1000\...\MountPoints2: {d0bf7622-e0fb-11e6-8062-005056c00008} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL G:\Autorun.exe
HKU\S-1-5-18\...\Run: [script_fcbd] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\fcbd.bat [351 2016-11-11] ()
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2016-03-27]
ShortcutTarget: Killer Network Manager.lnk -> C:\Windows\Installer\{4692B750-DE88-4DCF-9163-745AF5604B24}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe (Flexera Software LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MackieUSBaudio Control Panel Autostart.lnk [2016-03-27]
ShortcutTarget: MackieUSBaudio Control Panel Autostart.lnk -> D:\Program Files\Mackie Audio\MackieUSB_Driver\MackieCpl.exe (Loud Technologies, Inc.)
GroupPolicy: Beschränkung <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{083A4BBE-CEC9-4206-9AE5-95DFA11DC0E1}: [DhcpNameServer] 192.168.27.254
Tcpip\..\Interfaces\{6568C671-0145-4744-961B-2536EDC81DD1}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{8F59CAB1-D578-4A3F-9F0B-2C9FBE0124E8}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-21] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-21] (Oracle Corporation)
FireFox:
========
FF DefaultProfile: ofzmyb55.default
FF ProfilePath: C:\Users\MuF\AppData\Roaming\Mozilla\Firefox\Profiles\ofzmyb55.default [2017-03-22]
FF Homepage: Mozilla\Firefox\Profiles\ofzmyb55.default -> about:newtab
FF Extension: (Chrome Store Foxified) - C:\Users\MuF\AppData\Roaming\Mozilla\Firefox\Profiles\ofzmyb55.default\Extensions\Chrome-Store-Foxified@jetpack.xpi [2016-11-01]
FF Extension: (ProxTube) - C:\Users\MuF\AppData\Roaming\Mozilla\Firefox\Profiles\ofzmyb55.default\Extensions\ich@maltegoetz.de.xpi [2016-10-14]
FF Extension: (Reddit Enhancement Suite) - C:\Users\MuF\AppData\Roaming\Mozilla\Firefox\Profiles\ofzmyb55.default\Extensions\jid1-xUfzOsOFlzSOXg@jetpack.xpi [2017-02-19]
FF Extension: (Open With) - C:\Users\MuF\AppData\Roaming\Mozilla\Firefox\Profiles\ofzmyb55.default\Extensions\openwith@darktrojan.net.xpi [2017-03-07]
FF Extension: (uBlock Origin) - C:\Users\MuF\AppData\Roaming\Mozilla\Firefox\Profiles\ofzmyb55.default\Extensions\uBlock0@raymondhill.net.xpi [2017-03-13]
FF Extension: (Session Manager) - C:\Users\MuF\AppData\Roaming\Mozilla\Firefox\Profiles\ofzmyb55.default\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2017-01-31]
FF Extension: (NoScript) - C:\Users\MuF\AppData\Roaming\Mozilla\Firefox\Profiles\ofzmyb55.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2017-03-18]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_127.dll [2017-03-14] ()
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50905.0\npctrl.dll [2017-02-10] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_127.dll [2017-03-14] ()
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-21] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50905.0\npctrl.dll [2017-02-10] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-02-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-02-23] (NVIDIA Corporation)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2017-01-03]
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1517576 2017-03-16] ()
R2 FoxitReaderService; D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FoxitConnectedPDFService.exe [1659592 2016-10-13] (Foxit Software Inc.)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [Datei ist nicht signiert]
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2016-04-13] (Futuremark)
S3 Hamachi2Svc; D:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3416584 2017-03-02] (LogMeIn Inc.)
U2 HiPatchService; D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-10-10] (Hi-Rez Studios) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Datei ist nicht signiert]
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-06-18] ()
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193656 2016-03-30] (Logitech Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-23] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-23] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-02-23] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2017-02-23] (NVIDIA Corporation)
S3 Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [2123240 2017-03-14] (Electronic Arts)
S2 Origin Web Helper Service; D:\Program Files (x86)\Origin\OriginWebHelperService.exe [2184688 2017-03-14] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2016-04-12] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2016-12-10] ()
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [344576 2014-04-17] (Qualcomm Atheros) [Datei ist nicht signiert]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert]
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
R2 TeamViewer; D:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10351856 2016-12-15] (TeamViewer GmbH)
R2 TmWinService; C:\Program Files (x86)\Thrustmaster\TARGET\TmService.exe [315432 2016-04-15] (Guillemot Corporation)
S3 TunngleService; D:\Program Files (x86)\Tunngle\TnglCtrl.exe [872432 2016-06-23] (Tunngle.net GmbH)
R2 VMAuthdService; D:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe [97864 2016-10-21] (VMware, Inc.)
S2 VMwareHostd; D:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [12472904 2016-10-21] ()
S3 VSStandardCollectorService140; D:\Programme (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [108776 2016-09-06] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 automap; C:\Windows\System32\DRIVERS\automap.sys [18776 2012-04-19] (Focusrite Audio Engineering Limited)
R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [82096 2014-04-10] (Qualcomm Atheros, Inc.)
S3 chdrvr01; C:\Windows\System32\DRIVERS\chdrvr01.sys [248496 2012-08-25] (CH Products) [Datei ist nicht signiert]
S3 chdrvr02; C:\Windows\System32\DRIVERS\chdrvr02.sys [11440 2012-08-25] (CH Products) [Datei ist nicht signiert]
S3 chdrvr03; C:\Windows\System32\DRIVERS\chdrvr03.sys [24240 2012-08-25] (CH Products) [Datei ist nicht signiert]
S3 cpuz139; C:\Windows\TEMP\cpuz139_x64.sys [43328 2016-05-05] (CPUID)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [22216 2014-05-27] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [22728 2014-05-27] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-05-27] ()
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [44744 2014-02-03] ()
R3 Ke2200; C:\Windows\System32\DRIVERS\e22w7x64.sys [129200 2014-03-27] (Qualcomm Atheros, Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\Windows\System32\drivers\LGJoyXlCore.sys [68384 2015-06-11] (Logitech Inc.)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R3 LGSUsbFilt; C:\Windows\System32\DRIVERS\LGSUsbFilt.Sys [41752 2013-05-30] (Logitech Inc.)
R3 MackieUSB; C:\Windows\System32\DRIVERS\MackieUSB_x64.sys [245728 2016-03-27] ()
R3 MackieUSBks; C:\Windows\System32\DRIVERS\MackieUSBks_x64.sys [52192 2016-03-27] ()
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 npusbio; C:\Windows\System32\Drivers\npusbio_x64.sys [38400 2015-12-11] ()
S3 NvnUsbAudio; C:\Windows\System32\DRIVERS\nvnusbaudio.sys [54000 2015-06-10] (Novation DMS Ltd.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-02-23] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47672 2017-01-06] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-01-20] (NVIDIA Corporation)
S3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [39464 2016-04-26] (Tunngle.net GmbH)
S3 tmbulk; C:\Windows\System32\Drivers\tmbulk.sys [88880 2014-02-12] (© Guillemot R&D, 2011. All rights reserved.)
R3 TmBusEn; C:\Windows\System32\DRIVERS\TmBusEn.sys [30208 2011-01-26] (Guillemot Corporation)
R3 TmBusEn; C:\Windows\SysWOW64\DRIVERS\TmBusEn.sys [30208 2011-01-26] (Guillemot Corporation)
R3 TmFilter; C:\Windows\System32\DRIVERS\TmFilter.sys [24576 2011-01-26] (Guillemot Corporation)
R3 TmFilter; C:\Windows\SysWOW64\DRIVERS\TmFilter.sys [24576 2011-01-26] (Guillemot Corporation)
S3 TmHid; C:\Windows\System32\DRIVERS\TmHid.sys [24704 2011-01-26] (Guillemot Corporation)
S3 TmHid; C:\Windows\SysWOW64\DRIVERS\TmHid.sys [24704 2011-01-26] (Guillemot Corporation)
S1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [119712 2016-04-28] (Oracle Corporation)
R3 vjoy; C:\Windows\System32\DRIVERS\vjoy.sys [57976 2017-03-09] (Shaul Eizikovich)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [93248 2016-09-02] (VMware, Inc.)
R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [34520 2015-07-09] (VMware, Inc.)
S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X]
S3 MSICDSetup; \??\F:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\F:\NTIOLib_X64.sys [X]
S4 nvpciflt; \SystemRoot\system32\DRIVERS\nvpciflt.sys [X]
S3 WinRing0_1_2_0; \??\D:\FSX\SimLauncherX\SimLauncherX.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-03-22 06:31 - 2017-03-22 06:31 - 00000000 ____D C:\FRST
2017-03-20 21:47 - 2017-03-20 21:47 - 00000000 ____D C:\Windows\pss
2017-03-20 18:56 - 2017-03-20 18:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2017-03-19 03:30 - 2017-03-19 03:31 - 00000000 ____D C:\Program Files\vJoy
2017-03-19 03:30 - 2017-03-19 03:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\vJoy
2017-03-19 03:30 - 2017-03-09 12:27 - 00057976 _____ (Shaul Eizikovich) C:\Windows\system32\Drivers\vjoy.sys
2017-03-19 03:30 - 2017-03-09 12:27 - 00010936 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\hidkmdf.sys
2017-03-19 03:25 - 2017-03-19 03:31 - 00000000 ____D C:\Users\MuF\Joystick Gremlin
2017-03-17 01:33 - 2017-03-17 01:34 - 00000000 ____D C:\Users\MuF\AppData\Roaming\IvAi
2017-03-16 15:48 - 2017-03-17 01:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IVAO
2017-03-15 18:59 - 2017-03-15 18:59 - 00000000 ____D C:\Users\MuF\AppData\Roaming\teamspeak2
2017-03-15 18:54 - 2017-03-15 18:54 - 00034064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lhacm.acm
2017-03-15 18:54 - 2017-03-15 18:54 - 00000674 _____ C:\Users\MuF\Desktop\Teamspeak 2 RC2.lnk
2017-03-15 18:54 - 2017-03-15 18:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Teamspeak2 RC2
2017-03-15 17:27 - 2017-02-23 00:42 - 00084712 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2017-03-15 17:27 - 2017-02-23 00:37 - 01285632 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2017-03-15 17:27 - 2017-02-18 15:05 - 01609216 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2017-03-15 17:27 - 2017-02-18 15:05 - 00646656 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2017-03-15 17:27 - 2016-12-31 16:36 - 00556544 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2017-03-15 17:27 - 2016-12-31 16:36 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2017-03-15 17:27 - 2016-12-31 16:36 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2017-03-15 17:27 - 2016-12-31 16:36 - 00233984 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2017-03-15 17:27 - 2016-12-31 16:36 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2017-03-15 16:27 - 2017-03-16 16:59 - 00000000 ____D C:\Users\MuF\AppData\Roaming\IVAO
2017-03-13 17:51 - 2017-02-23 09:17 - 00136064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-03-13 17:49 - 2017-02-23 23:56 - 01600056 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2017-03-13 17:49 - 2017-02-23 23:56 - 00217528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2017-03-13 17:49 - 2017-02-23 23:56 - 00047664 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 40192056 _____ C:\Windows\system32\nvcompiler.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 35272760 _____ C:\Windows\SysWOW64\nvcompiler.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 28223544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 19007344 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 17281112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 14674712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 14429240 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-03-13 17:49 - 2017-02-23 11:34 - 11122912 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 11019888 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 09306312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 08990256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 03625408 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 03185600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 01985080 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437878.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 01589696 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437878.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 01051584 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 00989120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 00959424 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 00912440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 00687408 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 00611384 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 00576008 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 00503920 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 00500792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 00425288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 00408272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 00170360 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2017-03-13 17:49 - 2017-02-23 11:34 - 00131720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2017-03-02 13:31 - 2017-03-02 13:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dual Monitor
2017-03-02 13:18 - 2017-03-02 13:18 - 00000000 ____D C:\Users\MuF\AppData\Roaming\Actual Tools
2017-03-02 13:18 - 2017-03-02 13:18 - 00000000 ____D C:\ProgramData\Actual Tools
2017-03-01 17:35 - 2017-03-01 17:35 - 00000000 __SHD C:\Users\MuF\AppData\Roaming\Common
2017-02-28 23:50 - 2017-02-28 23:50 - 00000000 ____D C:\ProgramData\Windows App Certification Kit
2017-02-28 23:50 - 2017-02-28 23:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2017-02-28 23:50 - 2017-02-28 23:50 - 00000000 ____D C:\Program Files\Application Verifier
2017-02-28 23:50 - 2017-02-28 23:50 - 00000000 ____D C:\Program Files (x86)\Application Verifier
2017-02-28 23:48 - 2017-02-28 23:48 - 00000000 ____D C:\Program Files (x86)\HTML Help Workshop
2017-02-28 23:37 - 2017-02-28 23:37 - 00000000 ____D C:\Users\MuF\AppData\Roaming\NuGet
2017-02-28 10:10 - 2017-02-28 10:10 - 00000000 ____D C:\Program Files\IIS
2017-02-28 10:10 - 2017-02-28 10:10 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0
2017-02-28 10:10 - 2017-02-28 10:10 - 00000000 ____D C:\Program Files (x86)\IIS
2017-02-28 10:03 - 2017-02-28 10:03 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2017-02-28 10:03 - 2017-02-28 10:03 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2017-02-28 10:00 - 2017-02-28 10:00 - 00000000 ____D C:\ProgramData\PreEmptive Solutions
2017-02-28 09:59 - 2017-02-28 09:59 - 00000000 ____D C:\Program Files (x86)\ShellDir
2017-02-28 09:56 - 2017-02-28 09:56 - 00000000 ____D C:\ProgramData\NuGet
2017-02-28 09:56 - 2017-02-28 09:56 - 00000000 ____D C:\Program Files (x86)\NuGet
2017-02-28 09:56 - 2017-02-28 09:56 - 00000000 ____D C:\Program Files (x86)\Microsoft Office365 Tools
2017-02-28 09:56 - 2017-02-28 09:56 - 00000000 ____D C:\Program Files (x86)\AppInsights
2017-02-28 09:55 - 2017-02-28 09:55 - 00000000 ____D C:\Program Files (x86)\Microsoft WCF Data Services
2017-02-28 09:54 - 2017-02-28 09:54 - 00001199 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend for Visual Studio 2015.lnk
2017-02-28 09:54 - 2017-02-28 09:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
2017-02-28 09:51 - 2017-02-28 10:12 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0
2017-02-28 09:51 - 2017-02-28 09:51 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 12.0
2017-02-28 09:50 - 2017-02-28 09:50 - 00000000 ____D C:\Windows\SysWOW64\1031
2017-02-28 09:50 - 2017-02-28 09:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015
2017-02-28 09:49 - 2017-02-28 09:49 - 00000000 ____D C:\Windows\symbols
2017-02-28 09:49 - 2017-02-28 09:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer
2017-02-28 09:47 - 2017-02-28 09:47 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015.lnk
2017-02-28 09:47 - 2017-02-28 09:47 - 00000000 ____D C:\Windows\system32\1033
2017-02-28 09:43 - 2017-02-28 09:43 - 00000000 ____D C:\Windows\system32\1031
2017-02-28 09:43 - 2017-02-28 09:43 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 14.0
2017-02-28 09:42 - 2017-02-28 23:49 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2017-02-28 09:42 - 2017-02-28 23:49 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2017-02-28 09:40 - 2017-02-28 09:40 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-02-24 23:44 - 2017-02-24 23:44 - 00000000 ____D C:\Users\MuF\ansel
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-03-22 06:30 - 2016-09-23 20:29 - 00000000 ____D C:\Users\MuF\AppData\LocalLow\Mozilla
2017-03-22 06:29 - 2016-07-25 06:38 - 00000000 ____D C:\ProgramData\NVIDIA
2017-03-22 06:28 - 2016-09-22 17:45 - 00003014 _____ C:\Windows\System32\Tasks\MSIAfterburner
2017-03-22 06:28 - 2016-05-18 10:10 - 00000000 ____D C:\ProgramData\VMware
2017-03-22 06:28 - 2016-05-11 00:52 - 00000000 ____D C:\Users\MuF\AppData\Local\LogMeIn Hamachi
2017-03-22 06:27 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-03-21 04:33 - 2016-03-27 18:39 - 00000000 ____D C:\Users\MuF\AppData\Roaming\TS3Client
2017-03-21 04:19 - 2009-07-14 05:45 - 00021680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-03-21 04:19 - 2009-07-14 05:45 - 00021680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-03-20 21:56 - 2016-04-03 22:06 - 00000000 ____D C:\Users\MuF\AppData\Local\CrashDumps
2017-03-20 21:42 - 2016-03-27 18:02 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-03-20 21:15 - 2016-07-22 13:40 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2017-03-20 21:15 - 2016-07-22 13:40 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2017-03-20 18:32 - 2016-06-12 07:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft
2017-03-20 17:46 - 2011-04-12 08:43 - 00704032 _____ C:\Windows\system32\perfh007.dat
2017-03-20 17:46 - 2011-04-12 08:43 - 00151458 _____ C:\Windows\system32\perfc007.dat
2017-03-20 17:46 - 2009-07-14 06:13 - 01628954 _____ C:\Windows\system32\PerfStringBackup.INI
2017-03-20 17:46 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-03-19 23:46 - 2016-06-12 10:29 - 00000000 ____D C:\Users\MuF\AppData\Local\Arma 3 Launcher
2017-03-19 21:21 - 2016-06-12 10:30 - 00000000 ____D C:\Users\MuF\AppData\Local\Arma 3
2017-03-19 17:05 - 2016-12-28 01:32 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-03-19 17:05 - 2016-03-27 16:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-03-19 03:25 - 2016-03-27 16:10 - 00000000 ____D C:\Users\MuF
2017-03-17 20:02 - 2016-10-07 14:03 - 00000000 ____D C:\Users\MuF\AppData\Roaming\flightgear.org
2017-03-17 19:30 - 2017-01-24 17:31 - 00000000 ____D C:\Users\MuF\AppData\Roaming\RAASPRO
2017-03-17 17:24 - 2016-05-18 10:11 - 00000000 ____D C:\Users\MuF\AppData\Roaming\VMware
2017-03-17 17:24 - 2016-05-18 10:11 - 00000000 ____D C:\Users\MuF\AppData\Local\VMware
2017-03-17 15:25 - 2016-04-06 18:46 - 00000000 ____D C:\ProgramData\Ableton
2017-03-16 16:10 - 2017-01-24 16:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lockheed Martin
2017-03-16 15:08 - 2016-03-29 12:12 - 00000000 ____D C:\Users\MuF\AppData\Roaming\LockAP
2017-03-16 14:39 - 2016-04-14 18:42 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2017-03-16 14:39 - 2016-04-14 18:42 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2017-03-16 05:08 - 2017-01-19 07:27 - 00000000 ___SD C:\Windows\system32\CompatTel
2017-03-16 05:08 - 2017-01-19 07:27 - 00000000 ____D C:\Windows\system32\appraiser
2017-03-16 03:02 - 2016-03-27 22:50 - 00000000 ____D C:\Windows\system32\MRT
2017-03-16 03:01 - 2016-03-27 22:50 - 138634176 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-03-16 03:00 - 2016-04-14 18:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-03-16 01:42 - 2016-03-27 19:04 - 00000000 ____D C:\Users\MuF\AppData\Roaming\Origin
2017-03-16 01:42 - 2016-03-27 18:56 - 00000000 ____D C:\ProgramData\Origin
2017-03-15 00:58 - 2016-03-27 19:06 - 00000000 ____D C:\Users\MuF\AppData\Local\Ubisoft Game Launcher
2017-03-14 21:48 - 2016-11-10 02:50 - 06847064 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2017-03-14 21:48 - 2016-03-29 14:18 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-03-14 21:48 - 2016-03-29 14:18 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-03-14 21:48 - 2016-03-29 14:18 - 00004366 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-03-14 21:48 - 2016-03-29 14:18 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-03-14 21:48 - 2016-03-29 14:18 - 00000000 ____D C:\Windows\system32\Macromed
2017-03-14 21:14 - 2016-03-28 19:58 - 00000000 ____D C:\Users\MuF\AppData\Roaming\vlc
2017-03-13 17:51 - 2016-03-27 16:32 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-03-13 17:51 - 2016-03-27 16:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-03-13 17:51 - 2016-03-27 16:32 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-03-12 22:19 - 2016-12-15 12:09 - 00004146 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-12 22:19 - 2016-10-23 12:04 - 00003852 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-12 22:19 - 2016-10-23 12:04 - 00003738 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-12 22:19 - 2016-10-23 12:04 - 00003738 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-12 22:19 - 2016-10-23 12:04 - 00003730 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-12 22:19 - 2016-10-23 12:04 - 00003554 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-12 22:19 - 2016-10-23 12:04 - 00003494 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-03-12 22:19 - 2016-10-17 16:15 - 00001416 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-03-12 22:19 - 2016-03-27 16:32 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-03-12 22:19 - 2016-03-27 16:31 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-03-08 17:55 - 2017-01-09 23:26 - 00000000 ____D C:\Users\MuF\AppData\Roaming\Natural Selection 2
2017-03-07 10:27 - 2016-03-27 18:32 - 00000000 ____D C:\Users\MuF\AppData\Roaming\Notepad++
2017-03-06 04:54 - 2016-03-27 18:36 - 00000000 ____D C:\Users\MuF\AppData\Roaming\Foxit Software
2017-03-04 00:42 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-03-02 15:57 - 2016-11-17 17:14 - 00000734 _____ C:\Users\Public\Desktop\TeamViewer 12.lnk
2017-03-02 15:57 - 2016-11-17 17:14 - 00000734 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2017-03-02 13:31 - 2016-05-20 19:41 - 00000000 ____D C:\Users\MuF\AppData\Roaming\Dual Monitor
2017-03-02 13:26 - 2016-05-12 14:00 - 00034720 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2017-03-02 12:53 - 2016-03-29 12:13 - 00000600 _____ C:\Users\MuF\AppData\Local\PUTTY.RND
2017-03-01 18:03 - 2016-03-27 19:26 - 00000000 ____D C:\Users\MuF\AppData\Roaming\.minecraft
2017-03-01 17:38 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\oobe
2017-02-28 23:54 - 2016-03-27 16:16 - 00000000 ____D C:\ProgramData\Package Cache
2017-02-28 10:18 - 2016-12-25 19:56 - 00000000 ____D C:\Users\MuF\AppData\Roaming\CodeBlocks
2017-02-28 10:03 - 2016-06-12 06:46 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2017-02-28 10:03 - 2016-06-12 06:46 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2017-02-28 09:49 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2017-02-28 09:44 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-02-28 09:42 - 2016-03-27 16:15 - 01606042 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-02-23 19:35 - 2016-10-17 16:14 - 01880512 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2017-02-23 19:35 - 2016-10-17 16:14 - 01755072 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2017-02-23 19:35 - 2016-10-17 16:14 - 01468864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2017-02-23 19:35 - 2016-10-17 16:14 - 01317312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2017-02-23 19:35 - 2016-10-17 16:14 - 00120256 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2017-02-23 15:30 - 2016-12-15 12:09 - 00001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
2017-02-23 11:34 - 2016-12-15 12:12 - 34950592 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-02-23 11:34 - 2016-10-23 12:22 - 00492744 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2017-02-23 11:34 - 2016-07-09 20:58 - 19883088 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2017-02-23 11:34 - 2016-07-09 20:58 - 16399408 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2017-02-23 11:34 - 2016-07-09 20:58 - 13377072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2017-02-23 11:34 - 2016-07-09 20:58 - 04064088 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-02-23 11:34 - 2016-07-09 20:58 - 03583744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-02-23 11:34 - 2016-07-09 20:58 - 00042616 _____ C:\Windows\system32\nvinfo.pb
2017-02-23 09:43 - 2016-10-23 12:04 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2017-02-23 09:28 - 2016-07-25 06:38 - 06401984 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2017-02-23 09:28 - 2016-07-25 06:38 - 02479160 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2017-02-23 09:28 - 2016-07-25 06:38 - 01764408 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2017-02-23 09:28 - 2016-07-25 06:38 - 00548288 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2017-02-23 09:28 - 2016-07-25 06:38 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2017-02-23 09:28 - 2016-07-25 06:38 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2017-02-23 09:28 - 2016-07-25 06:38 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2017-02-23 07:38 - 2016-07-25 06:38 - 07807027 _____ C:\Windows\system32\nvcoproc.bin
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-04-04 19:24 - 2017-02-07 17:48 - 0002669 _____ () C:\Users\MuF\AppData\Roaming\SpeedRunnersLog.txt
2016-03-29 12:13 - 2017-03-02 12:53 - 0000600 _____ () C:\Users\MuF\AppData\Local\PUTTY.RND
2016-03-27 16:26 - 2017-01-31 21:09 - 0007643 _____ () C:\Users\MuF\AppData\Local\resmon.resmoncfg
2016-12-15 14:35 - 2016-12-15 14:35 - 0000037 _____ () C:\Users\MuF\AppData\Local\X-Plane Installer.prf
2016-12-15 14:35 - 2017-01-27 13:09 - 0000015 _____ () C:\Users\MuF\AppData\Local\X-Plane_drm_11.prf
2016-12-15 14:19 - 2016-12-15 14:19 - 0000016 _____ () C:\Users\MuF\AppData\Local\x-plane_install_11.txt
2016-03-27 18:05 - 2012-02-03 08:09 - 0126976 _____ (Thesycon GmbH) C:\ProgramData\CNE509F.tmp
2016-12-15 12:09 - 2017-01-21 15:31 - 0005307 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-15 12:09 - 2017-01-20 09:43 - 0005307 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-03-15 15:51
==================== Ende von FRST.txt ============================
Wär nett, wenn sich das jemand mal anschaut.  |
| Themen zu TR/Generic, vorhandene Reste? |
| .dll, adobe, bonjour, defender, explorer, firefox, flash player, homepage, launch, monitor, mozilla, node.js, nvcontainer, nvpciflt.sys, prozesse, realtek, registry, rundll, scan, server, software, svchost.exe, system, teamspeak, temp, ublock, ublock origin, usb, virus, windows, winlogon.exe |
Baum-Darstellung