| |
| |||||||
Mülltonne: BlueScreen und diverse Programmfehler z.B. bei Malwarebytes oder dem ESET Online Scanner!Windows 7 Beiträge, die gegen unsere Regeln verstoßen haben, solche, die die Welt nicht braucht oder sonstiger Müll landet hier in der Mülltonne... |
19.04.2017, 18:08
| #1 |
 |  BlueScreen und diverse Programmfehler z.B. bei Malwarebytes oder dem ESET Online Scanner! Hallo! Kann bitte jemand anhand der folgenden FRST-Logs mein System überprüfen? Ich hatte in letzter Zeit einen BlueScreen und mein Malwarebytes funktioniert wohl nicht richtig, der ESET Online Scanner steht anscheinend in Konflikt mit einem anderen Prgramm... habe das in der Addition.txt gelesen. Vielen Dank! Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 17-04-2017 01
durchgeführt von Michael (Administrator) auf BENUNDMICHASPC (19-04-2017 19:00:37)
Gestartet von C:\Users\Michael\Desktop
Geladene Profile: Michael (Verfügbare Profile: Michael)
Platform: Windows 10 Home Version 1703 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Windows (R) Win 7 DDK provider) C:\Windows\System32\AdminService.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Updater\Updater.exe
(Microsoft Corporation) C:\Windows\System32\SecurityHealthService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Corporation) C:\Windows\SysWOW64\backgroundTaskHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\PlacesServer.exe
(Dolby Laboratories Inc.) C:\Program Files\Dolby Digital Plus\ddp.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\PlacesServer.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Spotify Ltd) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(© 2015 Microsoft Corporation) C:\Users\Michael\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Microsoft Corporation) C:\Windows\Speech\Common\sapisvr.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-05-26] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1387376 2014-05-13] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3936936 2017-04-19] (Synaptics Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKU\S-1-5-21-1456624418-3334000832-3954471285-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3019552 2017-03-23] (Valve Corporation)
HKU\S-1-5-21-1456624418-3334000832-3954471285-1001\...\Run: [Spotify Web Helper] => C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1168896 2015-03-09] (Spotify Ltd)
HKU\S-1-5-21-1456624418-3334000832-3954471285-1001\...\Run: [BingSvc] => C:\Users\Michael\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-1456624418-3334000832-3954471285-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27545056 2017-02-14] (Skype Technologies S.A.)
HKU\S-1-5-21-1456624418-3334000832-3954471285-1001\...\Run: [Speech Recognition] => C:\WINDOWS\Speech\Common\sapisvr.exe [44032 2017-03-18] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2016-06-27] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2016-06-27] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2016-06-27] (Acer Incorporated)
Startup: C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2017-01-19]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{191c0dfa-34ee-491a-bdd6-38a4f15b3bc5}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{94263cb7-5d00-45ec-82b2-62d17714c381}: [DhcpNameServer] 192.17.128.24
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1456624418-3334000832-3954471285-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=ACJB
SearchScopes: HKU\S-1-5-21-1456624418-3334000832-3954471285-1001 -> DefaultScope {7C1C975C-7AC6-4548-BA3E-05DE5460D328} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1456624418-3334000832-3954471285-1001 -> {7C1C975C-7AC6-4548-BA3E-05DE5460D328} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-03-06] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-04-19] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-19] (Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 401p3phy.default
FF ProfilePath: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\401p3phy.default [2017-04-19]
FF Homepage: Mozilla\Firefox\Profiles\401p3phy.default -> about:home
FF Extension: (Awesome Screenshot - Capture, Annotate & More) - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\401p3phy.default\Extensions\jid0-GXjLLfbCoAx0LcltEdFrEkQdQPI@jetpack.xpi [2017-04-17]
FF Extension: (uBlock Origin) - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\401p3phy.default\Extensions\uBlock0@raymondhill.net.xpi [2017-04-17]
FF Extension: (NoScript) - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\401p3phy.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2017-03-18]
FF Extension: (ImTranslator) - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\401p3phy.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2017-03-30]
FF Extension: (Flash and Video Download) - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\401p3phy.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} [2017-03-12]
FF Extension: (Disable Prefetch) - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\401p3phy.default\features\{00ba0853-70f4-4a7b-a80d-c2d69a743c89}\disable-prefetch@mozilla.org.xpi [2017-04-06]
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-02-19] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-02-19] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-04-19] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-04-19] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-03-06] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-16] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2017-03-13] ()
Chrome:
=======
CHR Profile: C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default [2017-04-19]
CHR Extension: (Google Präsentationen) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-04-06]
CHR Extension: (Google Docs) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-06]
CHR Extension: (Google Drive) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-06]
CHR Extension: (YouTube) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-06]
CHR Extension: (Google Tabellen) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-04-06]
CHR Extension: (Google Docs Offline) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-17]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-06]
CHR Extension: (Google Mail) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-06]
CHR Extension: (Chrome Media Router) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-17]
CHR HKLM-x32\...\Chrome\Extension: [iigcbafcnfakaokfjaplokfbgmjldpfg] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AtherosSvc; C:\WINDOWS\system32\AdminService.exe [347064 2017-04-19] (Windows (R) Win 7 DDK provider)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2267352 2016-08-30] (Acer Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3737792 2017-03-26] (Microsoft Corporation)
S3 DevicesFlowUserSvc; C:\WINDOWS\System32\DevicesFlowBroker.dll [689152 2017-03-18] (Microsoft Corporation)
S3 DevicesFlowUserSvc_60144; C:\WINDOWS\system32\svchost.exe [47664 2017-03-18] (Microsoft Corporation)
S3 DevicesFlowUserSvc_60144; C:\WINDOWS\SysWOW64\svchost.exe [40904 2017-03-18] (Microsoft Corporation)
R2 DusmSvc; C:\WINDOWS\System32\dusmsvc.dll [302592 2017-03-18] (Microsoft Corporation)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573032 2014-07-22] (Acer Incorporated)
S2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [350576 2017-03-13] (WildTangent)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373720 2016-12-19] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
S3 IpxlatCfgSvc; C:\WINDOWS\System32\IpxlatCfg.dll [64000 2017-03-18] (Microsoft Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-02-19] (Intel Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [455912 2014-12-30] (Acer Incorporate)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
S3 NaturalAuthentication; C:\WINDOWS\System32\NaturalAuth.dll [723968 2017-03-18] (Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [492480 2017-03-28] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [492480 2017-03-28] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-04-01] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2017-03-28] (NVIDIA Corporation)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [458984 2014-10-17] (Acer Incorporate)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
R2 SecurityHealthService; C:\WINDOWS\system32\SecurityHealthService.exe [335808 2017-03-18] (Microsoft Corporation)
S3 SEMgrSvc; C:\WINDOWS\system32\SEMgrSvc.dll [1191424 2017-03-18] (Microsoft Corporation)
S3 spectrum; C:\WINDOWS\system32\spectrum.exe [891904 2017-03-18] (Microsoft Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [237736 2017-04-19] (Synaptics Incorporated)
R3 TokenBroker; C:\WINDOWS\System32\TokenBroker.dll [1054720 2017-03-18] (Microsoft Corporation)
R3 TokenBroker; C:\WINDOWS\SysWOW64\TokenBroker.dll [799232 2017-03-18] (Microsoft Corporation)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [234240 2014-07-15] (acer)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WFDSConMgrSvc; C:\WINDOWS\System32\wfdsconmgrsvc.dll [555008 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)
S3 wlpasvc; C:\WINDOWS\System32\lpasvc.dll [1295360 2017-03-18] (Microsoft Corporation)
S3 xbgm; C:\WINDOWS\System32\xbgmsvc.dll [301216 2017-03-18] (Microsoft Corporation)
S3 XboxGipSvc; C:\WINDOWS\System32\XboxGipSvc.dll [18944 2017-03-18] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 BthLEEnum; C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [96768 2017-03-18] (Microsoft Corporation)
R3 CAD; C:\WINDOWS\System32\drivers\CAD.sys [53664 2017-03-18] (Microsoft Corporation)
S2 CldFlt; C:\WINDOWS\System32\drivers\cldflt.sys [12288 2017-03-18] (Microsoft Corporation)
R1 epp; C:\EEK\bin64\epp.sys [115216 2017-01-03] (Emsisoft Ltd)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-04-19] (REALiX(tm))
S3 iaLPSS2i_GPIO2_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [85504 2017-03-18] (Intel Corporation)
S3 iaLPSS2i_I2C_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [168448 2017-03-18] (Intel Corporation)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
S3 mausbhost; C:\WINDOWS\System32\drivers\mausbhost.sys [405408 2017-03-18] (Microsoft Corporation)
S3 mausbip; C:\WINDOWS\System32\drivers\mausbip.sys [51104 2017-03-18] (Microsoft Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [251832 2017-04-19] (Malwarebytes)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [122368 2017-03-18] (Microsoft Corporation)
S3 nvdimmn; C:\WINDOWS\System32\drivers\nvdimmn.sys [80896 2017-03-18] (Microsoft Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_289a34d2afeb4cf6\nvlddmkm.sys [14841784 2017-04-03] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-02-23] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [47552 2017-03-28] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [76840 2017-04-01] (NVIDIA Corporation)
S3 pmem; C:\WINDOWS\System32\drivers\pmem.sys [101376 2017-03-18] (Microsoft Corporation)
R3 Qcamain10x64; C:\WINDOWS\System32\drivers\Qcamain10x64.sys [2344448 2017-03-18] (Qualcomm Atheros, Inc.)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 SpatialGraphFilter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [40352 2017-03-20] (Microsoft Corporation)
R3 SynRMIHID; C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys [57432 2017-04-19] (Synaptics Incorporated)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
S3 WinNat; C:\WINDOWS\System32\drivers\winnat.sys [217088 2017-03-18] (Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
NETSVC: NaturalAuthentication -> C:\Windows\System32\NaturalAuth.dll (Microsoft Corporation)
NETSVC: xbgm -> C:\Windows\System32\xbgmsvc.dll (Microsoft Corporation)
NETSVC: TokenBroker -> C:\Windows\System32\TokenBroker.dll (Microsoft Corporation)
NETSVC: XboxGipSvc -> C:\Windows\System32\XboxGipSvc.dll (Microsoft Corporation)
NETSVCx32: TokenBroker -> C:\Windows\SysWOW64\TokenBroker.dll (Microsoft Corporation)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-04-19 19:01 - 2017-04-19 19:01 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Synaptics
2017-04-19 19:00 - 2017-04-19 19:00 - 00000000 ___HD C:\OneDriveTemp
2017-04-19 18:56 - 2017-04-19 18:56 - 01469952 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2017-04-19 18:56 - 2017-04-19 18:56 - 00198584 _____ (Qualcomm®Atheros®) C:\WINDOWS\system32\BtContextMenu.dll
2017-04-19 18:56 - 2017-04-19 18:56 - 00058488 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x00000200.dfu
2017-04-19 18:56 - 2017-04-19 18:56 - 00057624 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x00000300.dfu
2017-04-19 18:56 - 2017-04-19 18:56 - 00039528 _____ C:\WINDOWS\system32\Drivers\AthrBT_TF_0x00000302.dfu
2017-04-19 18:56 - 2017-04-19 18:56 - 00035860 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x00000302.dfu
2017-04-19 18:56 - 2017-04-19 18:56 - 00019992 _____ (Qualcomm®Atheros®) C:\WINDOWS\system32\BtContextMenu.dll.muien-US
2017-04-19 18:56 - 2017-04-19 18:56 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2017-04-19 18:56 - 2017-04-19 18:56 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2017-04-19 18:55 - 2017-04-19 18:56 - 00057432 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynRMIHID.sys
2017-04-19 18:55 - 2017-04-19 18:55 - 00755880 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2017-04-19 18:55 - 2017-04-19 18:55 - 00607400 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2017-04-19 18:55 - 2017-04-19 18:55 - 00411304 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2017-04-19 18:55 - 2017-04-19 18:55 - 00260264 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2017-04-19 18:55 - 2017-04-19 18:55 - 00243880 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo32.dll
2017-04-19 18:55 - 2017-04-19 18:55 - 00048296 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynRMIHID_Aux.sys
2017-04-19 18:55 - 2017-04-19 18:55 - 00000000 ____D C:\Program Files\Synaptics
2017-04-19 18:54 - 2017-04-19 18:54 - 00204896 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2017-04-19 18:47 - 2017-04-19 18:58 - 00002373 _____ C:\Users\Public\Desktop\Driver Booster 4.lnk
2017-04-19 18:47 - 2017-04-19 18:47 - 00027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2017-04-19 18:47 - 2017-04-19 18:47 - 00003396 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2017-04-19 18:47 - 2017-04-19 18:47 - 00003044 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Michael)
2017-04-19 18:47 - 2017-04-19 18:47 - 00000000 ____D C:\WINDOWS\IObit
2017-04-19 18:47 - 2017-04-19 18:47 - 00000000 ____D C:\Users\Michael\AppData\LocalLow\IObit
2017-04-19 18:47 - 2017-04-19 18:47 - 00000000 ____D C:\ProgramData\ProductData
2017-04-19 18:47 - 2017-04-19 18:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4
2017-04-19 18:47 - 2017-04-19 18:47 - 00000000 ____D C:\ProgramData\IObit
2017-04-19 18:46 - 2017-04-19 18:46 - 00000000 ____D C:\Program Files (x86)\IObit
2017-04-19 18:44 - 2017-04-19 18:44 - 00000000 ____D C:\Users\Michael\AppData\Roaming\IObit
2017-04-19 18:43 - 2017-04-19 18:43 - 17866872 _____ (IObit ) C:\Users\Michael\Desktop\driver_booster_setup(4.3.0.504).exe
2017-04-19 11:24 - 2017-04-19 11:24 - 00501956 _____ C:\WINDOWS\Minidump\041917-16671-01.dmp
2017-04-19 11:19 - 2017-04-19 11:24 - 00000000 ____D C:\WINDOWS\Minidump
2017-04-19 11:19 - 2017-04-19 11:19 - 00570316 _____ C:\WINDOWS\Minidump\041917-15953-01.dmp
2017-04-19 11:18 - 2017-04-19 11:24 - 633846445 _____ C:\WINDOWS\MEMORY.DMP
2017-04-19 10:17 - 2017-04-19 10:17 - 00000000 ____D C:\Users\Michael\Documents\Win7_Win8_Win81_Win10_R281
2017-04-18 18:25 - 2017-04-18 18:25 - 00251840 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\77F117C8.sys
2017-04-18 14:34 - 2017-04-19 18:59 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-04-18 14:34 - 2017-04-19 18:39 - 00077440 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-04-18 14:34 - 2017-04-18 14:34 - 00001916 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-04-18 14:34 - 2017-04-18 14:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-04-18 14:34 - 2017-04-18 14:34 - 00000000 ____D C:\Program Files\Malwarebytes
2017-04-18 14:31 - 2017-04-18 14:33 - 57131432 _____ (Malwarebytes ) C:\Users\Michael\Downloads\mb3-setup-SEMFD.100SEM-3.0.6.1469-1075.exe
2017-04-17 17:03 - 2017-04-17 17:03 - 00000000 ____D C:\Users\Michael\AppData\Local\DBG
2017-04-17 17:00 - 2017-04-17 17:00 - 00000000 ____D C:\WINDOWS\Panther
2017-04-17 16:09 - 2017-04-17 16:21 - 00000838 _____ C:\Users\Michael\Desktop\Heimnetzgruppe.txt
2017-04-17 14:15 - 2017-04-17 14:15 - 02870984 _____ (ESET) C:\Users\Michael\Desktop\esetsmartinstaller_deu.exe
2017-04-17 14:15 - 2017-04-17 14:15 - 00000000 ____D C:\Program Files (x86)\ESET
2017-04-17 10:46 - 2017-03-28 05:32 - 00153536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-04-17 10:46 - 2017-03-28 05:32 - 00127424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-04-16 23:52 - 2017-04-16 23:52 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-04-16 23:51 - 2017-04-16 23:51 - 00001260 _____ C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Update- und Datenschutzeinstellungen.lnk
2017-04-16 23:45 - 2017-04-16 23:45 - 23680512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 23675392 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 20505600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 19334144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 12787200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 11869696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 08319392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-04-16 23:45 - 2017-04-16 23:45 - 08247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 06756920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 03672064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-04-16 23:45 - 2017-04-16 23:45 - 02957824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-04-16 23:45 - 2017-04-16 23:45 - 02444184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-04-16 23:45 - 2017-04-16 23:45 - 02085280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 01657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 01605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 01604312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 01411640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 01356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 01323880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 01147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-04-16 23:45 - 2017-04-16 23:45 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 01024416 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-04-16 23:45 - 2017-04-16 23:45 - 00986592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00805376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-04-16 23:45 - 2017-04-16 23:45 - 00626520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-04-16 23:45 - 2017-04-16 23:45 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-04-16 23:45 - 2017-04-16 23:45 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-04-16 23:45 - 2017-04-16 23:45 - 00409504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-04-16 23:45 - 2017-04-16 23:45 - 00382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00205728 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-04-16 23:45 - 2017-04-16 23:45 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-04-16 23:45 - 2017-04-16 23:45 - 00032004 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-04-16 23:43 - 2017-04-16 23:43 - 00543648 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-04-16 23:43 - 2017-04-16 23:43 - 00388000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-04-16 23:43 - 2017-04-16 23:43 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-04-16 23:43 - 2017-04-16 22:49 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2017-04-16 23:40 - 2017-04-16 23:40 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2017-04-16 23:40 - 2017-04-16 23:40 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-04-16 23:40 - 2017-04-16 23:40 - 00000000 ____D C:\Program Files\MSBuild
2017-04-16 23:40 - 2017-04-16 23:40 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-04-16 23:40 - 2017-04-16 23:40 - 00000000 ____D C:\Program Files (x86)\MSBuild
2017-04-16 23:39 - 2017-02-10 12:26 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-04-16 23:39 - 2017-02-10 12:26 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-04-16 23:39 - 2017-02-10 12:26 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-04-16 23:39 - 2017-02-10 12:21 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-04-16 23:39 - 2017-02-10 12:21 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-04-16 23:39 - 2017-02-10 12:21 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-04-16 23:37 - 2017-04-16 23:37 - 00000020 ___SH C:\Users\Michael\ntuser.ini
2017-04-16 23:13 - 2017-04-16 23:14 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2017-04-16 23:13 - 2017-04-16 23:14 - 00007623 _____ C:\WINDOWS\diagerr.xml
2017-04-16 23:08 - 2017-04-19 18:58 - 02499770 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-16 23:06 - 2017-04-19 18:59 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-04-16 23:06 - 2017-04-17 10:47 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-16 23:06 - 2017-04-17 10:47 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-16 23:06 - 2017-04-17 10:47 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-16 23:06 - 2017-04-17 10:47 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-16 23:06 - 2017-04-17 10:47 - 00003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-16 23:06 - 2017-04-17 08:07 - 00003292 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-04-16 23:06 - 2017-04-16 23:06 - 00003852 _____ C:\WINDOWS\System32\Tasks\ACCAgent
2017-04-16 23:06 - 2017-04-16 23:06 - 00003556 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-04-16 23:06 - 2017-04-16 23:06 - 00003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-16 23:06 - 2017-04-16 23:06 - 00003332 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-04-16 23:06 - 2017-04-16 23:06 - 00003094 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{9CFE62E8-A0A7-4EAE-B632-553FB8CAF1E2}
2017-04-16 23:06 - 2017-04-16 23:06 - 00002968 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-04-16 23:06 - 2017-04-16 23:06 - 00002820 _____ C:\WINDOWS\System32\Tasks\ACC
2017-04-16 23:06 - 2017-04-16 23:06 - 00002812 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1456624418-3334000832-3954471285-1001
2017-04-16 23:06 - 2017-04-16 23:06 - 00002762 _____ C:\WINDOWS\System32\Tasks\BacKGroundAgent
2017-04-16 23:06 - 2017-04-16 23:06 - 00002750 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1456624418-3334000832-3954471285-500
2017-04-16 23:06 - 2017-04-16 23:06 - 00002660 _____ C:\WINDOWS\System32\Tasks\HPCustParticipation HP DeskJet 3700 series
2017-04-16 23:06 - 2017-04-16 23:06 - 00002590 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
2017-04-16 23:06 - 2017-04-16 23:06 - 00002574 _____ C:\WINDOWS\System32\Tasks\UbtFrameworkService
2017-04-16 23:06 - 2017-04-16 23:06 - 00002534 _____ C:\WINDOWS\System32\Tasks\AcerCloud
2017-04-16 23:06 - 2017-04-16 23:06 - 00002376 _____ C:\WINDOWS\System32\Tasks\abDocsDllLoader
2017-04-16 23:06 - 2017-04-16 23:06 - 00002350 _____ C:\WINDOWS\System32\Tasks\{7B1E94C5-8D09-4714-A881-79DA0EDDD2CC}
2017-04-16 23:06 - 2017-04-16 23:06 - 00002328 _____ C:\WINDOWS\System32\Tasks\ACCBackgroundApplication
2017-04-16 23:06 - 2017-04-16 23:06 - 00002266 _____ C:\WINDOWS\System32\Tasks\{DBB3FF19-40C6-406A-8DE3-F428ED50094C}
2017-04-16 23:06 - 2017-04-16 23:06 - 00002182 _____ C:\WINDOWS\System32\Tasks\Quick Access Quick Launcher
2017-04-16 23:06 - 2017-04-16 23:06 - 00002118 _____ C:\WINDOWS\System32\Tasks\DolbySelectorTask
2017-04-16 23:06 - 2017-04-16 23:06 - 00002096 _____ C:\WINDOWS\System32\Tasks\Power Management
2017-04-16 23:06 - 2017-04-16 23:06 - 00002070 _____ C:\WINDOWS\System32\Tasks\Launch Manager
2017-04-16 23:06 - 2017-04-16 23:06 - 00002062 _____ C:\WINDOWS\System32\Tasks\Quick Access
2017-04-16 23:06 - 2017-04-16 23:06 - 00002038 _____ C:\WINDOWS\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance
2017-04-16 23:06 - 2017-04-16 23:06 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2017-04-16 23:06 - 2017-04-16 23:06 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2017-04-16 23:06 - 2015-03-09 23:28 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2694184490-1238151170-3932642029-500
2017-04-16 23:06 - 2015-01-13 08:56 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2854828685-3388332692-2217138476-500
2017-04-16 23:00 - 2017-04-16 23:00 - 00000000 ____D C:\ProgramData\USOShared
2017-04-16 22:59 - 2017-04-16 22:59 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-04-16 22:55 - 2017-04-16 23:01 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-04-16 22:53 - 2017-04-19 11:24 - 00000000 ____D C:\Users\Michael
2017-04-16 22:53 - 2017-04-16 22:53 - 00000000 _SHDL C:\Users\Michael\Vorlagen
2017-04-16 22:53 - 2017-04-16 22:53 - 00000000 _SHDL C:\Users\Michael\Startmenü
2017-04-16 22:53 - 2017-04-16 22:53 - 00000000 _SHDL C:\Users\Michael\Netzwerkumgebung
2017-04-16 22:53 - 2017-04-16 22:53 - 00000000 _SHDL C:\Users\Michael\Lokale Einstellungen
2017-04-16 22:53 - 2017-04-16 22:53 - 00000000 _SHDL C:\Users\Michael\Eigene Dateien
2017-04-16 22:53 - 2017-04-16 22:53 - 00000000 _SHDL C:\Users\Michael\Druckumgebung
2017-04-16 22:53 - 2017-04-16 22:53 - 00000000 _SHDL C:\Users\Michael\Documents\Eigene Videos
2017-04-16 22:53 - 2017-04-16 22:53 - 00000000 _SHDL C:\Users\Michael\Documents\Eigene Musik
2017-04-16 22:53 - 2017-04-16 22:53 - 00000000 _SHDL C:\Users\Michael\Documents\Eigene Bilder
2017-04-16 22:53 - 2017-04-16 22:53 - 00000000 _SHDL C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-04-16 22:53 - 2017-04-16 22:53 - 00000000 _SHDL C:\Users\Michael\AppData\Local\Verlauf
2017-04-16 22:53 - 2017-04-16 22:53 - 00000000 _SHDL C:\Users\Michael\AppData\Local\Anwendungsdaten
2017-04-16 22:53 - 2017-04-16 22:53 - 00000000 _SHDL C:\Users\Michael\Anwendungsdaten
2017-04-16 22:53 - 2017-04-16 22:53 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2017-04-16 22:53 - 2017-04-16 22:53 - 00000000 ____D C:\Program Files\Common Files\Atheros
2017-04-16 22:52 - 2017-04-19 19:00 - 00000000 ____D C:\ProgramData\NVIDIA
2017-04-16 22:52 - 2017-04-19 18:59 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-04-16 22:52 - 2017-04-17 12:48 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-04-16 22:52 - 2017-04-16 22:56 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-04-16 22:52 - 2017-04-16 22:56 - 00000000 ____D C:\Program Files\Intel
2017-04-16 22:52 - 2017-04-16 22:56 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-04-16 22:52 - 2017-04-16 22:52 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2017-04-16 22:52 - 2017-04-16 22:52 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-04-16 22:52 - 2017-04-16 22:52 - 00000000 ____D C:\Program Files\Realtek
2017-04-16 22:52 - 2017-04-16 22:52 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2017-04-16 22:52 - 2017-04-01 04:10 - 06437312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-04-16 22:52 - 2017-04-01 04:10 - 02481208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-04-16 22:52 - 2017-04-01 04:10 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-04-16 22:52 - 2017-04-01 04:10 - 00549944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-04-16 22:52 - 2017-04-01 04:10 - 00393784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-04-16 22:52 - 2017-04-01 04:10 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-04-16 22:52 - 2017-04-01 04:10 - 00071224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-04-16 22:52 - 2017-03-31 12:15 - 07851747 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-04-16 22:52 - 2017-03-28 03:25 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-04-16 22:52 - 2016-12-19 08:17 - 00103944 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2017-04-16 22:52 - 2016-12-19 08:17 - 00099848 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2017-04-16 22:51 - 2017-04-16 22:51 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2017-04-16 22:51 - 2017-03-18 22:56 - 02233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-04-16 22:49 - 2017-04-19 16:33 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-04-16 22:49 - 2017-04-17 17:01 - 00398488 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-04-16 17:57 - 2017-04-16 18:33 - 00000000 ____D C:\Users\Michael\Desktop\INTENSO
2017-04-16 17:50 - 2017-04-16 18:49 - 11590533 _____ C:\WINDOWS\system32\mbarwind-01.arw
2017-04-16 14:47 - 2017-04-16 14:47 - 00000000 ____D C:\Users\Michael\AppData\Local\UNP
2017-04-16 14:36 - 2017-04-16 23:01 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-04-16 14:36 - 2017-04-16 14:37 - 00000000 ____D C:\Program Files\UNP
2017-04-16 13:37 - 2017-03-28 07:37 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll
2017-04-16 13:37 - 2017-03-28 07:28 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-04-16 12:59 - 2017-04-16 18:24 - 00000000 ____D C:\Users\Michael\Desktop\Nicht mehr benötigte Desktop-Dateien
2017-04-07 18:18 - 2017-04-07 18:18 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-04-07 18:18 - 2017-03-21 06:27 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-04-07 18:18 - 2017-03-10 23:17 - 00536864 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-04-07 18:18 - 2017-03-10 23:17 - 00525600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-04-07 18:18 - 2017-03-10 23:17 - 00254240 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-04-07 18:18 - 2017-03-10 23:17 - 00233760 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-04-07 18:16 - 2017-04-01 05:27 - 40201152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 35354048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 35280320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 28592184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 11111392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 11056272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 10635192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 09316648 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 09014792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 08876272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 04085712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 03790904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 03602296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 03246016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 01988032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438165.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 01591352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438165.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 01278528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 01055800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 00995920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 00990144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 00960448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 00911296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 00776048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 00688968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 00612088 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 00609728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 00577544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 00499136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-04-07 18:16 - 2017-04-01 05:27 - 00045061 _____ C:\WINDOWS\system32\nvinfo.pb
2017-04-07 18:16 - 2017-04-01 05:27 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-04-07 18:16 - 2017-04-01 05:27 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-04-07 18:16 - 2017-04-01 02:41 - 00076840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-04-06 17:07 - 2017-04-19 16:16 - 00040199 _____ C:\Users\Michael\Desktop\Addition.txt
2017-04-06 17:05 - 2017-04-19 19:01 - 00024313 _____ C:\Users\Michael\Desktop\FRST.txt
2017-04-06 13:52 - 2017-04-06 16:58 - 07516469 _____ C:\WINDOWS\system32\mbarwind-00.arw
2017-04-03 18:19 - 2017-04-03 18:19 - 00000000 ____D C:\ProgramData\G Data
2017-04-03 15:13 - 2017-04-16 23:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-04-03 15:13 - 2017-04-03 15:13 - 00001493 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-04-03 15:13 - 2017-02-23 20:32 - 01880512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-04-03 15:13 - 2017-02-23 20:32 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-04-03 15:13 - 2017-02-23 20:32 - 01468864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-04-03 15:13 - 2017-02-23 20:32 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-04-03 15:13 - 2017-02-23 20:32 - 00120256 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-04-03 15:11 - 2017-03-28 05:32 - 00047552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2017-04-02 08:15 - 2017-04-02 08:15 - 00087904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UNPUXWorker.exe
2017-04-01 08:36 - 2017-04-16 14:38 - 00000000 ____D C:\Windows10Upgrade
2017-04-01 08:36 - 2017-04-03 17:06 - 00000735 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10-Upgrade-Assistent.lnk
2017-04-01 08:36 - 2017-04-03 17:06 - 00000723 _____ C:\Users\Michael\Desktop\Windows 10-Upgrade-Assistent.lnk
2017-04-01 07:25 - 2017-04-01 07:25 - 00002402 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WildTangent Games App - wildgames.lnk
2017-04-01 07:25 - 2017-04-01 07:25 - 00002398 _____ C:\Users\Public\Desktop\WildTangent Games App - wildgames.lnk
2017-03-30 15:05 - 2017-03-30 15:06 - 00000000 ____D C:\ProgramData\Malwarebytes Anti-Exploit
2017-03-30 14:48 - 2017-03-30 14:49 - 04089296 _____ C:\Users\Michael\Desktop\adwcleaner_6.045.exe
2017-03-30 14:43 - 2017-03-30 14:43 - 00001272 _____ C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\start emergency kit scanner.exe - Verknüpfung.lnk
2017-03-30 14:43 - 2017-03-30 14:43 - 00001250 _____ C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\start commandline scanner.exe - Verknüpfung.lnk
2017-03-30 14:43 - 2017-03-30 14:43 - 00000733 _____ C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FRST64.lnk
2017-03-27 14:54 - 2017-03-30 14:43 - 00001100 _____ C:\Users\Michael\Desktop\start emergency kit scanner.exe - Verknüpfung.lnk
2017-03-27 14:54 - 2017-03-30 14:43 - 00001082 _____ C:\Users\Michael\Desktop\start commandline scanner.exe - Verknüpfung.lnk
2017-03-27 14:47 - 2017-03-27 14:47 - 00000000 ____D C:\ProgramData\Emsisoft
2017-03-27 14:45 - 2017-04-16 17:18 - 00000000 ____D C:\EEK
2017-03-22 14:20 - 2017-04-19 19:00 - 00000000 ____D C:\FRST
2017-03-22 14:16 - 2017-04-19 19:00 - 02424832 _____ (Farbar) C:\Users\Michael\Desktop\FRST64.exe
2017-03-20 06:37 - 2017-04-16 23:07 - 00000000 ____D C:\WINDOWS\HoloShell
2017-03-20 06:37 - 2017-03-20 06:37 - 00000000 ____D C:\WINDOWS\system32\Hydrogen
2017-03-20 06:37 - 2017-03-20 06:37 - 00000000 ____D C:\ProgramData\WindowsHolographicDevices
2017-03-20 06:37 - 2017-03-18 22:59 - 00034390 _____ C:\WINDOWS\Core.xml
2017-03-20 06:36 - 2017-03-20 06:36 - 00000000 ____D C:\WINDOWS\SKB
2017-03-20 06:36 - 2017-03-20 06:36 - 00000000 ____D C:\WINDOWS\OCR
2017-03-20 06:36 - 2017-03-18 07:54 - 02021680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2017-03-20 06:36 - 2017-03-18 07:40 - 00387416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-03-20 06:36 - 2017-03-18 07:40 - 00276400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2017-03-20 06:36 - 2017-03-18 07:11 - 01339352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll
2017-03-20 06:36 - 2017-03-18 07:00 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2017-03-20 06:36 - 2017-03-18 07:00 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2017-03-20 06:36 - 2017-03-18 06:59 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2017-03-20 06:36 - 2017-03-18 06:59 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmerror.dll
2017-03-20 06:36 - 2017-03-18 06:58 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2017-03-20 06:36 - 2017-03-18 06:57 - 00249016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2017-03-20 06:36 - 2017-03-18 06:57 - 00153976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpps.dll
2017-03-20 06:36 - 2017-03-18 06:56 - 09261568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2017-03-20 06:36 - 2017-03-18 06:56 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2017-03-20 06:36 - 2017-03-18 06:55 - 00566272 _____ (Microsoft Corporation) C:\WINDOWS\system32\quickassist.exe
2017-03-20 06:36 - 2017-03-18 06:54 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\unregmp2.exe
2017-03-20 06:36 - 2017-03-18 06:45 - 13381120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2017-03-20 06:36 - 2017-03-18 06:44 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll
2017-03-20 06:36 - 2017-03-18 06:44 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2017-03-20 06:36 - 2017-03-18 06:44 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll
2017-03-20 06:36 - 2017-03-18 06:44 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmerror.dll
2017-03-20 06:36 - 2017-03-18 06:42 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2017-03-20 06:36 - 2017-03-18 06:41 - 09261568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2017-03-20 06:36 - 2017-03-18 06:41 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2017-03-20 06:36 - 2017-03-18 06:40 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quickassist.exe
2017-03-20 06:36 - 2017-03-18 06:39 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unregmp2.exe
2017-03-20 06:36 - 2017-03-18 06:37 - 12227072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2017-03-20 06:36 - 2017-03-18 05:00 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.tlb
2017-03-20 06:36 - 2017-03-18 05:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\amcompat.tlb
2017-03-20 06:36 - 2017-03-18 04:52 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.tlb
2017-03-20 06:36 - 2017-03-18 04:52 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\amcompat.tlb
2017-03-20 06:35 - 2017-04-19 18:58 - 01157044 _____ C:\WINDOWS\system32\perfh007.dat
2017-03-20 06:35 - 2017-04-19 18:58 - 00261016 _____ C:\WINDOWS\system32\perfc007.dat
2017-03-20 06:35 - 2017-03-20 06:35 - 00306166 _____ C:\WINDOWS\system32\perfi007.dat
2017-03-20 06:35 - 2017-03-20 06:35 - 00040520 _____ C:\WINDOWS\system32\perfd007.dat
2017-03-20 06:35 - 2017-03-20 06:35 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2017-03-20 06:35 - 2017-03-20 06:35 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2017-03-20 06:35 - 2017-03-20 06:35 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2017-03-20 06:35 - 2017-03-20 06:35 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2017-03-20 06:35 - 2017-03-20 06:35 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2017-03-20 06:35 - 2017-03-20 06:35 - 00000000 ____D C:\WINDOWS\SysWOW64\de
2017-03-20 06:35 - 2017-03-20 06:35 - 00000000 ____D C:\WINDOWS\SysWOW64\0409
2017-03-20 06:35 - 2017-03-20 06:35 - 00000000 ____D C:\WINDOWS\system32\winrm
2017-03-20 06:35 - 2017-03-20 06:35 - 00000000 ____D C:\WINDOWS\system32\WCN
2017-03-20 06:35 - 2017-03-20 06:35 - 00000000 ____D C:\WINDOWS\system32\slmgr
2017-03-20 06:35 - 2017-03-20 06:35 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2017-03-20 06:35 - 2017-03-20 06:35 - 00000000 ____D C:\WINDOWS\system32\de
2017-03-20 06:35 - 2017-03-20 06:35 - 00000000 ____D C:\WINDOWS\system32\0409
2017-03-20 06:35 - 2017-03-20 06:35 - 00000000 ____D C:\WINDOWS\DigitalLocker
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-04-19 19:00 - 2017-03-03 15:26 - 00000000 ____D C:\Users\Michael\AppData\LocalLow\Mozilla
2017-04-19 19:00 - 2016-11-11 20:04 - 00000000 ____D C:\Program Files (x86)\Steam
2017-04-19 19:00 - 2016-08-20 15:44 - 00000000 ___RD C:\Users\Michael\OneDrive
2017-04-19 18:59 - 2017-03-18 13:40 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2017-04-19 18:59 - 2016-08-20 15:37 - 00000000 __SHD C:\Users\Michael\IntelGraphicsProfiles
2017-04-19 18:57 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF
2017-04-19 18:56 - 2016-06-26 00:57 - 00601448 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btfilter.sys
2017-04-19 18:56 - 2016-06-26 00:57 - 00347064 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\AdminService.exe
2017-04-19 18:56 - 2016-06-26 00:57 - 00197560 _____ (Qualcomm Atheros Communications Inc.) C:\WINDOWS\system32\btcoinst.dll
2017-04-19 18:43 - 2017-03-12 09:05 - 00000000 ____D C:\WINDOWS\Microsoft Antimalware
2017-04-19 18:29 - 2017-01-12 15:05 - 00000000 ____D C:\ProgramData\Oracle
2017-04-19 18:28 - 2017-01-12 15:26 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-04-19 18:28 - 2017-01-12 15:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-04-19 18:28 - 2017-01-12 15:26 - 00000000 ____D C:\Program Files (x86)\Java
2017-04-19 18:19 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-04-19 18:19 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-04-19 17:50 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-04-19 17:21 - 2016-08-20 15:47 - 00000000 ____D C:\Users\Michael\AppData\Local\CrashDumps
2017-04-19 14:14 - 2017-03-18 09:26 - 00000000 ____D C:\AdwCleaner
2017-04-19 11:19 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-04-19 10:58 - 2017-03-08 15:54 - 00000000 ____D C:\ProgramData\SecTaskMan
2017-04-18 08:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\appcompat
2017-04-17 19:02 - 2017-03-18 22:51 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-04-17 14:46 - 2017-03-18 13:40 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-04-17 09:10 - 2016-10-28 15:20 - 00000000 ____D C:\Users\Michael\AppData\Local\ElevatedDiagnostics
2017-04-17 08:20 - 2016-08-20 15:37 - 00000000 ____D C:\Users\Michael\AppData\Local\Packages
2017-04-17 08:07 - 2016-09-01 19:04 - 00002441 _____ C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-04-17 08:03 - 2016-09-01 19:00 - 00000000 ____D C:\Users\Michael\AppData\Local\ConnectedDevicesPlatform
2017-04-16 23:50 - 2017-03-18 23:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-04-16 23:50 - 2016-08-20 16:32 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-04-16 23:49 - 2017-03-18 23:03 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-04-16 23:46 - 2017-03-18 23:06 - 00000000 ____D C:\WINDOWS\Setup
2017-04-16 23:40 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2017-04-16 23:40 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\MUI
2017-04-16 23:16 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\rescache
2017-04-16 23:16 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows NT
2017-04-16 23:15 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-04-16 23:13 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Registration
2017-04-16 23:12 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-04-16 23:06 - 2016-08-31 17:18 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-04-16 23:05 - 2017-03-18 23:03 - 00000000 __RHD C:\Users\Public\Libraries
2017-04-16 23:05 - 2016-08-20 15:55 - 00002268 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-04-16 23:01 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Help
2017-04-16 23:01 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-04-16 23:01 - 2016-12-03 11:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
2017-04-16 23:01 - 2016-11-12 11:15 - 00000000 ____D C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-04-16 23:01 - 2016-11-11 20:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2017-04-16 23:01 - 2016-08-30 14:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
2017-04-16 23:01 - 2015-03-09 23:19 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 12
2017-04-16 23:01 - 2015-03-09 23:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2017-04-16 23:01 - 2015-03-09 22:54 - 00000000 ____D C:\WINDOWS\system32\ihvmanager
2017-04-16 23:01 - 2015-01-13 08:39 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-04-16 23:01 - 2015-01-13 08:37 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2017-04-16 23:00 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\USOPrivate
2017-04-16 22:59 - 2013-08-22 15:36 - 00000000 ____D C:\Users\Default.migrated
2017-04-16 22:57 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2017-04-16 22:57 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2017-04-16 22:57 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE
2017-04-16 22:57 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2017-04-16 22:57 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\spool
2017-04-16 22:57 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-04-16 22:57 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2017-04-16 22:57 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2017-04-16 22:57 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2017-04-16 22:57 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\et-EE
2017-04-16 22:57 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\en-GB
2017-04-16 22:57 - 2015-03-09 23:00 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2017-04-16 22:57 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2017-04-16 22:57 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2017-04-16 22:56 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\InputMethod
2017-04-16 22:56 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-04-16 22:56 - 2017-03-09 15:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-04-16 22:56 - 2017-01-30 15:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2017-04-16 22:56 - 2016-08-20 15:37 - 00000000 ____D C:\WINDOWS\oem
2017-04-16 22:56 - 2015-01-13 08:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PhantomPDF
2017-04-16 22:56 - 2015-01-13 08:39 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector 10
2017-04-16 22:56 - 2015-01-13 08:37 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PhotoDirector 3
2017-04-16 22:53 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-04-16 17:56 - 2016-12-10 10:28 - 00027136 ___SH C:\Users\Michael\Documents\Thumbs.db
2017-04-16 13:47 - 2016-08-28 18:10 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-04-16 13:44 - 2016-08-28 18:10 - 148601744 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-04-16 12:41 - 2017-01-18 16:30 - 00532136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-04-07 17:49 - 2016-08-20 15:55 - 00002256 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-04-06 14:36 - 2016-11-20 14:59 - 00018432 ___SH C:\Users\Michael\Downloads\Thumbs.db
2017-04-06 14:01 - 2015-03-09 23:18 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-04-03 18:56 - 2017-03-18 23:06 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-04-03 18:56 - 2017-03-18 23:06 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-04-03 18:31 - 2016-08-20 15:37 - 00000000 ____D C:\Users\Michael\AppData\Local\NVIDIA Corporation
2017-04-03 15:14 - 2016-08-20 15:37 - 00000000 ____D C:\Users\Michael\AppData\Local\NVIDIA
2017-04-03 15:13 - 2015-01-13 08:42 - 00000000 ____D C:\ProgramData\Package Cache
2017-04-01 07:33 - 2017-03-07 15:10 - 00001162 _____ C:\Users\Michael\Desktop\Windows Defender.lnk
2017-04-01 07:25 - 2015-01-13 08:39 - 00000000 ____D C:\ProgramData\WildTangent
2017-04-01 07:24 - 2015-01-13 08:39 - 00000000 ____D C:\Program Files (x86)\WildTangent Games
2017-03-30 16:28 - 2016-08-31 13:38 - 00000000 ____D C:\ESD
2017-03-26 10:42 - 2016-08-28 17:45 - 00000000 ____D C:\Users\Michael\AppData\Roaming\.minecraft
2017-03-25 11:05 - 2016-08-20 15:38 - 00000000 ____D C:\Users\Michael\AppData\Local\clear.fi
2017-03-20 16:41 - 2016-08-28 17:45 - 00001275 _____ C:\Users\Michael\Desktop\nativelog.txt
2017-03-20 06:37 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SystemResources
2017-03-20 06:37 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SystemApps
2017-03-20 06:37 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-03-20 06:36 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\es-MX
2017-03-20 06:36 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\es-MX
2017-03-20 06:36 - 2017-03-18 22:59 - 20414976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 17048064 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 12039168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0007.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 12039168 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0007.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 11602432 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0007.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 07138816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Havok.Physics.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 03162112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SnippingTool.exe
2017-03-20 06:36 - 2017-03-18 22:59 - 02077184 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0007.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0007.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsCpl.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsCpl.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 01161216 ____R (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.Capture.UX.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00867328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00800256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mblctr.exe
2017-03-20 06:36 - 2017-03-18 22:59 - 00648192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_HoloLens_Environment.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00528896 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Pipeline.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2017-03-20 06:36 - 2017-03-18 22:59 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00299624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpendp.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicRuntimes.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellAPI.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00269640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpendp.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialStore.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\svf.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSHExtensions.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreShellAPI.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrreg.exe
2017-03-20 06:36 - 2017-03-18 22:59 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2017-03-20 06:36 - 2017-03-18 22:59 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinput.exe
2017-03-20 06:36 - 2017-03-18 22:59 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Analog.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00137112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipRenew.exe
2017-03-20 06:36 - 2017-03-18 22:59 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsClassExtension.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00128200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Display.BrightnessOverride.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00125015 ____R C:\WINDOWS\system32\CaptureCountdown.hcp
2017-03-20 06:36 - 2017-03-18 22:59 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AnalogShell.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopView.Internal.Broker.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00119017 ____R C:\WINDOWS\system32\CaptureBrackets.hcp
2017-03-20 06:36 - 2017-03-18 22:59 - 00108032 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Broker.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00099784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Display.BrightnessOverride.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00094624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\datamarketsvc.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCompositor.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00052224 ____R (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.Capture.Pipeline.ProxyStub.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DFDWiz.exe
2017-03-20 06:36 - 2017-03-18 22:59 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RotMgr.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrcomp.exe
2017-03-20 06:36 - 2017-03-18 22:59 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfdts.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Analog.ProxyStub.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00040352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SpatialGraphFilter.sys
2017-03-20 06:36 - 2017-03-18 22:59 - 00035840 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.exe
2017-03-20 06:36 - 2017-03-18 22:59 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetppui.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00030624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2017-03-20 06:36 - 2017-03-18 22:59 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorPerformanceEvents.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.ProxyStub.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe
2017-03-20 06:36 - 2017-03-18 22:59 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorCustomAdbAlgorithm.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopView.Internal.Broker.ProxyStub.dll
2017-03-20 06:36 - 2017-03-18 22:59 - 00017806 ____R C:\WINDOWS\system32\CaptureToast.hcp
2017-03-20 06:36 - 2017-03-18 22:59 - 00014336 _____ C:\WINDOWS\system32\HolographicShareInterop.ProxyStub.dll
2017-03-20 06:36 - 2017-03-18 22:56 - 00037280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\terminpt.sys
2017-03-20 06:36 - 2017-03-18 22:56 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpbus.sys
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\dsc
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ___RD C:\WINDOWS\PrintDialog
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ___RD C:\WINDOWS\MiracastView
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\setup
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\migwiz
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\Com
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\IME
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows Defender
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\System
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-03-20 06:35 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-03-20 06:35 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-03-20 06:35 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\servicing
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2017-04-16 22:53 - 2017-04-16 22:53 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Einige Dateien in TEMP:
====================
2017-04-19 18:24 - 2017-04-19 18:24 - 0739904 _____ (Oracle Corporation) C:\Users\Michael\AppData\Local\Temp\jre-8u131-windows-au.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-04-16 22:49
==================== Ende von FRST.txt ============================
__________________ Gruß, RyUHD  Proud Member of:
|
| Themen zu BlueScreen und diverse Programmfehler z.B. bei Malwarebytes oder dem ESET Online Scanner! |
| .dll, administrator, adobe, bluescreen, defender, explorer, firefox, geforce, home, homepage, launch, mozilla, node.js, nvidia, ordner, prozesse, realtek, registry, router, rundll, scan, services.exe, software, svchost.exe, system, ublock, ublock origin, windows, winlogon.exe |
Baum-Darstellung