Hey ich folge gerade allen Schritten und bedanke mich schon mal für die Hilfe :).
Es hat alles so weit funktioniert .
Zu Avast das habe ich mir zu gelget nach dem ich das mit dem Virus mitbekommen habe , ich dachte Avast schaft es das wieder in den Griff zu bekommen , habe ich wohl falsch gedacht.
Bei bedarf kann ich auch den PayPal beleg anhängen.:dankeschoen:
Mit Revo habe ich nur diesen Eintrag gefunden : Your download is ready Packages habe ihn so wie beschrieben gelöscht.
Für Chrome und Mozilla habe ich auch alle genannten Schritte beachtet , Add Block ist weg sowie auch Weekly Weather und Ultimate Shopping Search. Code:
# AdwCleaner 7.0.4.0 - Logfile created on Mon Nov 13 01:03:49 2017
# Updated on 2017/27/10 by Malwarebytes
# Database: 11-10-2017.1
# Running on Windows 10 Education (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
PUP.Optional.Legacy, C:\Users\Passi\AppData\Local\StormFall
PUP.Optional.Legacy, C:\Users\Passi\AppData\Roaming\SpeedMon
PUP.Optional.Legacy, C:\Users\Passi\AppData\Local\AdvinstAnalytics
Adware.OnlineIO, C:\ProgramData\Microleaves
Adware.OnlineIO, C:\Users\All Users\Microleaves
Adware.OnlineIO, C:\Users\Passi\AppData\Roaming\Microleaves
PUP.Optional.UltimateShoppingSearch, C:\Program Files (x86)\UltimateShoppingSearch
PUP.Adware.Heuristic, C:\Program Files\e964daf2839b2401ca6976447a795cb5
PUP.Adware.Heuristic, C:\Program Files\452f97f88a9f4cfee108767b5c29f1f8
PUP.Adware.Heuristic, C:\Program Files\4da060f92f88fcea83d9726d5c020fb4
PUP.Adware.Heuristic, C:\Program Files\5eadc9dcd330e9bbc1767b7ed5aa3846
***** [ Files ] *****
PUP.Optional.Legacy, C:\Users\Passi\AppData\Local\Temp\Utils.dll
PUP.Optional.Legacy, C:\Users\Passi\AppData\Roaming\Mozilla\Firefox\Profiles\sotpgp62.default\searchplugins\Search Provided by Bing.xml
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Internet Explorer\DOMStorage\d10lpsik1i8c69.cloudfront.net
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Internet Explorer\DOMStorage\watch4.de
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.watch4.de
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-3931479015-1760554122-2593176613-1001\Software\SpeedMon
PUP.Optional.Legacy, [Key] - HKCU\Software\SpeedMon
PUP.Optional.Legacy, [Key] - HKU\S-1-5-21-3931479015-1760554122-2593176613-1001\Software\CoinisRevShare
PUP.Optional.Legacy, [Key] - HKCU\Software\CoinisRevShare
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\CLSID\{C424171E-592A-415A-9EB1-DFD6D95D3530}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C424171E-592A-415A-9EB1-DFD6D95D3530}
PUP.Optional.Legacy, [Value] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar | {C424171E-592A-415A-9EB1-DFD6D95D3530}
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C424171E-592A-415A-9EB1-DFD6D95D3530}
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C424171E-592A-415A-9EB1-DFD6D95D3530}
PUP.Optional.Legacy, [Value] - HKU\S-1-5-21-3931479015-1760554122-2593176613-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run | SpeedMon
PUP.Optional.Legacy, [Key] - HKCU\SOFTWARE\Classes\Applications\speedmon.exe
PUP.Optional.Legacy, [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext | DisableAddonLoadTimePerformanceNotifications
PUP.Optional.SlimCleanerPlus, [Key] - HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
PUP.Optional.SlimCleanerPlus, [Key] - HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
PUP.Optional.InstallCore, [Key] - HKU\S-1-5-21-3931479015-1760554122-2593176613-1001\Software\csastats
PUP.Optional.InstallCore, [Key] - HKCU\Software\csastats
PUP.Optional.ProductSetup.A, [Key] - HKU\S-1-5-21-3931479015-1760554122-2593176613-1001\Software\PRODUCTSETUP
PUP.Optional.ProductSetup.A, [Key] - HKCU\Software\PRODUCTSETUP
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries.
*************************
C:/AdwCleaner/AdwCleaner[S0].txt - [4409 B] - [2017/11/9 11:6:38]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt ##########
Zu MBAM ist es wirklich notwendig das ich es mir runterlade , da ich ja schon Avast besitze , wenn es nicht anders geht mache ich es sofort keine frage. Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 12-11-2017 03
durchgeführt von Passi (Administrator) auf PASSI (13-11-2017 02:15:35)
Gestartet von C:\Users\Passi\Desktop
Geladene Profile: Passi (Verfügbare Profile: Passi)
Platform: Windows 10 Education Version 1703 15063.674 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\63.0.3239.32\remoting_host.exe
(pdfforge GmbH) C:\Program Files\PDF Architect 4\creator-ws.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(© pdfforge GmbH.) C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe
( Rsupport Corporation) C:\Program Files (x86)\RSUPPORT\MobizenService\MobizenService.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Hi-Rez Studios) E:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\63.0.3239.32\remoting_host.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(1und1 Mail und Media GmbH) C:\Program Files (x86)\GMX MailCheck\IE\GMX_MailCheck_Broker.exe
(Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Rsupport corporation) C:\Program Files (x86)\RSUPPORT\MobizenService\MobizenTray.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Valve Corporation) E:\Steam\Steam.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Spotify Ltd) C:\Users\Passi\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CoolerMaster) C:\Users\Passi\Desktop\Inferno.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-07-15] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-10-11] (AVAST Software)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [MailCheck IE Broker] => C:\Program Files (x86)\GMX MailCheck\IE\GMX_MailCheck_Broker.exe [2159168 2015-10-30] (1und1 Mail und Media GmbH)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3567928 2017-11-01] (Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ACHTUNG
HKU\S-1-5-21-3931479015-1760554122-2593176613-1001\...\Run: [Steam] => E:\Steam\steam.exe [3102496 2017-10-31] (Valve Corporation)
HKU\S-1-5-21-3931479015-1760554122-2593176613-1001\...\Run: [Spotify] => C:\Users\Passi\AppData\Roaming\Spotify\Spotify.exe [21025392 2017-11-10] (Spotify Ltd)
HKU\S-1-5-21-3931479015-1760554122-2593176613-1001\...\Run: [Spotify Web Helper] => C:\Users\Passi\AppData\Roaming\Spotify\SpotifyWebHelper.exe [777840 2017-11-10] (Spotify Ltd)
HKU\S-1-5-21-3931479015-1760554122-2593176613-1001\...\MountPoints2: {efcf49c6-55b7-11e7-9c2a-d05099985fba} - "D:\HiSuiteDownLoader.exe"
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{3a142281-5904-4ad5-b3cf-861fcc23431e}: [DhcpNameServer] 172.17.2.1
Tcpip\..\Interfaces\{aea61620-17b1-4da3-98c3-042b6e24204f}: [DhcpNameServer] 192.168.178.1
Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-3931479015-1760554122-2593176613-1001 -> {192DB381-B2EF-45C0-8667-BCBD0BDE92C9} URL = hxxp://go.1und1.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8
SearchScopes: HKU\S-1-5-21-3931479015-1760554122-2593176613-1001 -> {657DA27D-9DF9-4CB5-96DC-91DE06E2D7E9} URL = hxxp://go.gmx.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8
SearchScopes: HKU\S-1-5-21-3931479015-1760554122-2593176613-1001 -> {69C2DBE1-332A-421D-B281-4672C4EA16B6} URL = hxxp://go.mail.com/tb/en-us/ie_searchplugin/?q={searchTerms}&enc=UTF-8
SearchScopes: HKU\S-1-5-21-3931479015-1760554122-2593176613-1001 -> {9BEC69E0-B839-4419-949E-955D69F95EA7} URL = hxxp://go.web.de/tb/ie_searchplugin/?q={searchTerms}&enc=UTF-8
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-10-20] (Oracle Corporation)
BHO: GMX MailCheck BHO -> {BF42D4A8-016E-4fcd-B1EB-837659FD77C6} -> C:\Program Files\GMX MailCheck\IE\GMX_MailCheck.dll [2015-10-30] (1und1 Mail und Media GmbH)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-20] (Oracle Corporation)
BHO-x32: PDF Architect 4 Helper -> {38279E1A-7019-40C1-B579-E99DFB3312E8} -> C:\Program Files (x86)\PDF Architect 4\creator-ie-helper.dll [2016-08-05] (pdfforge GmbH)
BHO-x32: GMX MailCheck BHO -> {BF42D4A8-016E-4fcd-B1EB-837659FD77C6} -> C:\Program Files (x86)\GMX MailCheck\IE\GMX_MailCheck.dll [2015-10-30] (1und1 Mail und Media GmbH)
Toolbar: HKLM-x32 - GMX MailCheck - {C424171E-592A-415a-9EB1-DFD6D95D3530} - C:\Program Files (x86)\GMX MailCheck\IE\GMX_MailCheck.dll [2015-10-30] (1und1 Mail und Media GmbH)
Toolbar: HKLM-x32 - PDF Architect 4 Toolbar - {23FD9C33-A9E1-48A1-8404-E5925CF1C8E1} - C:\Program Files (x86)\PDF Architect 4\creator-ie-plugin.dll [2016-08-05] (pdfforge GmbH)
Handler: gmx - {8FAF0273-9CA8-4efc-9536-1E35E254D5CD} - C:\Program Files\GMX MailCheck\IE\GMX_MailCheck.dll [2015-10-30] (1und1 Mail und Media GmbH)
Handler-x32: gmx - {8FAF0273-9CA8-4efc-9536-1E35E254D5CD} - C:\Program Files (x86)\GMX MailCheck\IE\GMX_MailCheck.dll [2015-10-30] (1und1 Mail und Media GmbH)
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-3931479015-1760554122-2593176613-1001 -> hxxp://google.de/
FireFox:
========
FF DefaultProfile: sotpgp62.default
FF ProfilePath: C:\Users\Passi\AppData\Roaming\Mozilla\Firefox\Profiles\sotpgp62.default [2017-11-13]
FF NewTab: Mozilla\Firefox\Profiles\sotpgp62.default -> about:newtab
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\sotpgp62.default -> Search Provided by Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\sotpgp62.default -> Search Provided by Bing
FF Homepage: Mozilla\Firefox\Profiles\sotpgp62.default -> hxxps://www.bing.com/search?FORM=INCOH1&PC=IC04&PTAG=ICO-f6ceb940
FF Keyword.URL: Mozilla\Firefox\Profiles\sotpgp62.default -> user_pref("keyword.URL", true);
FF Extension: (Avast Online Security) - C:\Users\Passi\AppData\Roaming\Mozilla\Firefox\Profiles\sotpgp62.default\Extensions\wrc@avast.com.xpi [2017-11-13]
FF Extension: (Greasemonkey) - C:\Users\Passi\AppData\Roaming\Mozilla\Firefox\Profiles\sotpgp62.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2017-11-01]
FF HKLM\...\Firefox\Extensions: [pdf_architect_4_conv@pdfarchitect.org] - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension
FF Extension: (PDF Architect 4 Creator) - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension [2016-09-20] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [@ultimateshoppingsearch] - C:\Users\Passi\AppData\Roaming\Mozilla\Firefox\Profiles\sotpgp62.default\extensions\@ultimateshoppingsearch.xpi => nicht gefunden
FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-20] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-20] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll [2013-05-13] ( Microsoft Corporation)
FF Plugin-x32: @nexon.net/NxGame -> C:\ProgramData\NexonUS\NGM\npNxGameUS.dll [2017-10-20] (Nexon)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin HKU\S-1-5-21-3931479015-1760554122-2593176613-1001: ubisoft.com/uplaypc -> E:\uplay\Ubisoft Game Launcher\npuplaypc.dll [2017-08-31] ()
Chrome:
=======
CHR DefaultProfile: Default
CHR DefaultSearchURL: Default -> hxxp://www.ultimateshoppingsearch.com/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> ultimateshoppingsearch.com
CHR Profile: C:\Users\Passi\AppData\Local\Google\Chrome\User Data\Default [2017-11-13]
CHR Extension: (Präsentationen) - C:\Users\Passi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-16]
CHR Extension: (Docs) - C:\Users\Passi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-16]
CHR Extension: (Google Drive) - C:\Users\Passi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-11]
CHR Extension: (YouTube) - C:\Users\Passi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-11]
CHR Extension: (Unknown Space) - C:\Users\Passi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpjdbdbhiomamecfnjahemfimgjamhjd [2017-08-12]
CHR Extension: (Google-Suche) - C:\Users\Passi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-11]
CHR Extension: (Tabellen) - C:\Users\Passi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-16]
CHR Extension: (Google Docs Offline) - C:\Users\Passi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-12]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Passi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Google Mail) - C:\Users\Passi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-11]
CHR Extension: (Chrome Media Router) - C:\Users\Passi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-08]
CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eiibddcohpjhajbnfkpboacmohommppp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <nicht gefunden>
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7446024 2017-10-11] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-10-11] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [330832 2017-11-05] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6971400 2017-11-10] ()
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\63.0.3239.32\remoting_host.exe [71512 2017-11-02] (Google Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-03-24] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-03-24] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51016 2017-11-01] (Dropbox, Inc.)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [Datei ist nicht signiert]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Datei ist nicht signiert]
U2 HiPatchService; E:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2017-07-11] (Hi-Rez Studios) [Datei ist nicht signiert]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [323952 2017-09-27] (HP Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-06-23] (Intel Corporation)
R2 Mobizen plugin; C:\Program Files (x86)\RSUPPORT\MobizenService\MobizenService.exe [1276288 2017-09-21] ( Rsupport Corporation)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [7987104 2017-04-10] (INCA Internet Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518264 2017-10-11] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518264 2017-10-11] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-10-27] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [460920 2017-10-11] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2123104 2017-11-02] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3002728 2017-11-02] (Electronic Arts)
S3 PDF Architect 4; C:\Program Files\PDF Architect 4\ws.exe [2438880 2016-08-05] (pdfforge GmbH)
S3 PDF Architect 4 CrashHandler; C:\Program Files\PDF Architect 4\crash-handler-ws.exe [1038048 2016-08-05] (pdfforge GmbH)
R2 PDF Architect 4 Creator; C:\Program Files\PDF Architect 4\creator-ws.exe [851168 2016-08-05] (pdfforge GmbH)
R2 PDF Architect 4 Manager; C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe [972056 2016-05-18] (© pdfforge GmbH.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-03-20] (Microsoft Corporation)
S3 VSStandardCollectorService140; E:\Visual\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [108776 2016-07-26] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [183584 2017-11-13] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [321032 2017-11-13] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [198968 2017-11-13] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [343288 2017-11-13] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [57728 2017-11-13] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [47008 2017-11-13] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [41832 2017-09-03] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [148288 2017-11-13] (AVAST Software)
R1 aswNetSec; C:\WINDOWS\System32\drivers\aswNetSec.sys [570152 2017-11-13] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110376 2017-11-13] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84416 2017-11-13] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1026232 2017-11-13] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [455384 2017-11-13] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [203976 2017-11-13] (AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [44640 2015-12-06] (The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [364464 2017-11-13] (AVAST Software)
S3 avmeject; C:\WINDOWS\System32\drivers\avmeject.sys [14120 2014-11-21] (AVM Berlin)
S3 dtultrascsibus; C:\WINDOWS\System32\drivers\dtultrascsibus.sys [30264 2016-09-27] (Disc Soft Ltd)
S3 dtultrausbbus; C:\WINDOWS\System32\drivers\dtultrausbbus.sys [47672 2016-09-27] (Disc Soft Ltd)
S3 fwlanusb5_nv2; C:\WINDOWS\system32\DRIVERS\fwlanusb5_nv2.sys [1322824 2014-11-21] (AVM GmbH)
U1 lpsport; C:\Windows\System32\Drivers\lpsport.sys [61304 2017-11-05] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvpcdi.inf_amd64_c7a551674a068e37\nvlddmkm.sys [16936048 2017-10-28] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-10-11] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [50624 2017-10-11] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57976 2017-10-27] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-03-18] (Realtek )
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [220672 2017-03-18] (Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [47096 2017-10-29] (Wellbia.com Co., Ltd.)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [270608 2017-10-19] (BigNox Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-11-13 02:15 - 2017-11-13 02:15 - 000023766 _____ C:\Users\Passi\Desktop\FRST.txt
2017-11-13 02:15 - 2017-11-13 02:15 - 000000000 ____D C:\Users\Passi\Desktop\FRST-OlderVersion
2017-11-13 02:07 - 2017-11-13 02:07 - 000365168 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-11-13 02:07 - 2017-11-13 02:07 - 000183584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2017-11-13 02:07 - 2017-11-13 02:07 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys.151053525123402
2017-11-13 02:06 - 2017-11-13 02:06 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-11-13 02:01 - 2017-11-13 02:01 - 000000000 _____ C:\Users\Passi\Desktop\Neues Textdokument.txt
2017-11-13 01:53 - 2017-11-13 01:53 - 000001079 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2017-11-13 01:53 - 2017-11-13 01:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2017-11-13 01:53 - 2017-11-13 01:53 - 000000000 ____D C:\Program Files\VS Revo Group
2017-11-13 01:45 - 2017-11-13 01:45 - 008261584 _____ (Malwarebytes) C:\Users\Passi\Downloads\AdwCleaner_7.0.4.0.exe
2017-11-13 01:44 - 2017-11-13 01:44 - 007189760 _____ (VS Revo Group ) C:\Users\Passi\Downloads\revo204setup.exe
2017-11-11 13:20 - 2017-11-13 02:15 - 000000000 ____D C:\Users\Passi\Desktop\Neuer Ordner
2017-11-10 15:01 - 2017-11-10 15:01 - 000000000 ____D C:\Users\Passi\AppData\Roaming\Battlerite
2017-11-10 12:08 - 2017-11-10 12:08 - 000000912 _____ C:\Users\Passi\Desktop\MU_LEGEND.lnk
2017-11-10 12:08 - 2017-11-10 12:08 - 000000000 ____D C:\Users\Passi\AppData\Local\VCLStylesSkin
2017-11-10 12:08 - 2017-11-10 12:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MU LEGEND GLOBAL
2017-11-09 18:22 - 2017-11-09 18:22 - 000000000 ____D C:\ProgramData\WEBZEN
2017-11-09 13:51 - 2017-11-09 13:51 - 000000000 ____D C:\Users\Passi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Drakensang Online
2017-11-09 13:39 - 2017-11-09 13:39 - 000000000 ____D C:\Users\Passi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dragon Rise
2017-11-09 12:05 - 2017-11-13 02:04 - 000000000 ____D C:\AdwCleaner
2017-11-09 11:03 - 2017-11-13 02:15 - 000000000 ____D C:\FRST
2017-11-09 11:03 - 2017-11-09 11:03 - 008261584 _____ (Malwarebytes) C:\Users\Passi\Desktop\adwcleaner_7.0.4.0.exe
2017-11-09 11:02 - 2017-11-13 02:15 - 002392576 _____ (Farbar) C:\Users\Passi\Desktop\FRST64.exe
2017-11-07 18:09 - 2017-11-07 18:09 - 000000066 _____ C:\RushCoreSection_7268.dat
2017-11-07 18:09 - 2017-11-07 18:09 - 000000063 _____ C:\RushCoreSection_11196.dat
2017-11-05 22:41 - 2017-11-05 22:41 - 000000000 ____D C:\ProgramData\Steam
2017-11-05 17:16 - 2017-11-13 02:07 - 000570152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetSec.sys
2017-11-05 17:16 - 2017-11-05 17:16 - 000556152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswa00a49a6375c2034.tmp
2017-11-05 17:16 - 2017-11-05 17:16 - 000001979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Internet Security.lnk
2017-11-05 17:09 - 2017-11-05 17:09 - 000000000 ____D C:\Users\Passi\ansel
2017-11-05 16:58 - 2017-11-05 16:58 - 000002210 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2017-11-05 16:58 - 2017-11-05 16:58 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-11-05 16:58 - 2017-10-27 17:06 - 000136312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-11-05 16:58 - 2017-09-14 00:20 - 000798008 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-11-05 16:58 - 2017-09-14 00:20 - 000490296 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-11-05 16:58 - 2017-09-14 00:19 - 000927544 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-11-05 16:58 - 2017-09-14 00:19 - 000591160 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-11-05 16:57 - 2017-11-05 16:58 - 000000000 ____D C:\WINDOWS\LastGood
2017-11-05 16:57 - 2017-10-27 18:50 - 000532088 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 040237688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 035156928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 029270976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 023262280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 019037416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 013864048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 013254520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 011779328 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 010882720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 004201592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 003614328 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 001989056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438813.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 001673848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438813.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 001331200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 001321448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 001135464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 001099712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 001044848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 001038680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 001031104 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 000981112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 000932288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 000885680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 000794392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 000739448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 000634224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 000618928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 000615544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 000598464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 000505976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 000045496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2017-11-05 16:55 - 2017-10-27 18:50 - 000000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-11-05 16:55 - 2017-10-27 18:50 - 000000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-11-05 16:52 - 2017-11-05 16:52 - 000001489 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-11-05 12:55 - 2017-11-05 12:55 - 000000000 ____D C:\Users\Passi\Documents\CPY_SAVES
2017-11-04 23:28 - 2017-11-04 23:28 - 000003594 _____ C:\WINDOWS\System32\Tasks\WeeklyWeather
2017-11-04 23:28 - 2017-11-04 23:28 - 000003562 _____ C:\WINDOWS\System32\Tasks\WeeklyWeather2
2017-11-04 19:53 - 2017-11-04 19:53 - 000002159 _____ C:\Users\Passi\Desktop\JDownloader 2.lnk
2017-11-04 19:53 - 2017-11-04 19:53 - 000000000 ____D C:\Users\Passi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2017-11-04 19:52 - 2017-11-07 02:21 - 000000000 ____D C:\Users\Passi\AppData\Local\JDownloader v2.0
2017-11-03 14:52 - 2017-11-03 14:52 - 000051619 _____ C:\WINDOWS\uninstaller.dat
2017-11-02 23:27 - 2017-11-07 18:01 - 000000000 ____D C:\Users\Passi\Desktop\dro
2017-11-02 23:24 - 2017-11-09 13:51 - 000002041 _____ C:\Users\Passi\Desktop\Drakensang Online.lnk
2017-11-02 23:24 - 2017-11-09 13:51 - 000000000 ____D C:\Program Files (x86)\Drakensang Online
2017-11-02 21:30 - 2017-11-02 22:54 - 000000000 ____D C:\Users\Passi\AppData\Local\Warframe
2017-11-02 18:32 - 2017-11-02 18:32 - 000000000 ___HD C:\$AV_ASW
2017-11-02 18:31 - 2017-11-02 18:36 - 000000000 ____D C:\Users\Passi\Desktop\Bot
2017-11-01 19:57 - 2017-11-01 19:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-11-01 16:37 - 2017-11-02 02:57 - 000000000 ____D C:\Users\Passi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Joymax
2017-11-01 16:29 - 2017-11-01 17:05 - 000000000 ____D C:\Users\Passi\AppData\Roaming\SBot
2017-11-01 12:58 - 2017-11-01 12:58 - 000051016 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-11-01 12:58 - 2017-11-01 12:58 - 000045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-11-01 12:58 - 2017-11-01 12:58 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-11-01 12:58 - 2017-11-01 12:58 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-10-31 01:56 - 2017-10-31 01:56 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2017-10-29 19:44 - 2017-10-29 19:44 - 000000000 ____D C:\Users\Passi\Documents\FLiNGTrainer
2017-10-29 11:19 - 2017-10-29 11:19 - 000000000 ____D C:\adb
2017-10-25 19:03 - 2017-10-25 19:03 - 000000000 ____D C:\ProgramData\pwd
2017-10-25 17:31 - 2017-10-25 17:53 - 000000000 ____D C:\Users\Passi\AppData\Local\CSO
2017-10-25 17:31 - 2017-10-25 17:31 - 000000000 ____D C:\Users\Passi\Documents\Counter-Strike Nexon Zombies
2017-10-24 15:13 - 2017-10-24 15:13 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2017-10-24 14:11 - 2017-10-24 14:11 - 000000000 ____D C:\Nexon
2017-10-24 14:10 - 2017-10-24 14:10 - 000000000 ____D C:\Users\Passi\AppData\Roaming\Python
2017-10-24 14:10 - 2017-10-24 14:10 - 000000000 ____D C:\Users\Passi\AppData\Local\NexonLauncher
2017-10-24 14:10 - 2017-10-24 14:10 - 000000000 ____D C:\Users\Passi\AppData\Local\Crashpad
2017-10-24 14:09 - 2017-10-24 14:10 - 000000000 ____D C:\Users\Passi\AppData\Roaming\NexonLauncher
2017-10-24 14:09 - 2017-10-24 14:09 - 000000000 ____D C:\Users\Passi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nexon
2017-10-20 16:13 - 2017-10-24 14:04 - 000000000 ____D C:\Users\Passi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dragonica Online
2017-10-20 15:24 - 2017-10-20 15:24 - 000000000 ____D C:\Users\Passi\AppData\LocalLow\AhnLab
2017-10-20 15:24 - 2017-10-20 15:24 - 000000000 ____D C:\Program Files (x86)\AhnLab
2017-10-20 15:21 - 2017-10-20 15:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon
2017-10-19 10:21 - 2017-10-19 10:21 - 000000914 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2017-10-19 01:55 - 2017-10-19 01:55 - 000002051 _____ C:\Users\Public\Desktop\Mobizen.lnk
2017-10-19 01:55 - 2017-10-19 01:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RSUPPORT
2017-10-19 01:44 - 2017-10-19 01:44 - 778848410 _____ C:\WINDOWS\MEMORY.DMP
2017-10-19 01:44 - 2017-10-19 01:44 - 000000000 ____D C:\WINDOWS\Minidump
2017-10-19 01:39 - 2017-10-19 01:39 - 000000045 _____ C:\Users\Passi\nuuid.ini
2017-10-19 01:39 - 2017-10-19 01:39 - 000000041 _____ C:\Users\Passi\inst.ini
2017-10-19 01:39 - 2017-10-19 01:39 - 000000000 ____D C:\Users\Passi\vmlogs
2017-10-19 01:39 - 2017-10-19 01:39 - 000000000 ____D C:\Users\Passi\Nox_share
2017-10-19 01:39 - 2017-10-19 01:39 - 000000000 ____D C:\Users\Passi\AppData\Roaming\Microsoft\Windows\Start Menu\Nox
2017-10-19 01:39 - 2017-10-19 01:39 - 000000000 ____D C:\Users\Passi\.BigNox
2017-10-19 01:38 - 2017-10-19 01:38 - 000000000 ____D C:\Program Files (x86)\Bignox
2017-10-19 01:37 - 2017-10-19 01:44 - 000000000 ____D C:\Users\Passi\AppData\Local\Nox
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-11-13 02:12 - 2017-07-02 01:37 - 003224034 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-11-13 02:12 - 2017-03-20 05:43 - 001505506 _____ C:\WINDOWS\system32\perfh007.dat
2017-11-13 02:12 - 2017-03-20 05:43 - 000375986 _____ C:\WINDOWS\system32\perfc007.dat
2017-11-13 02:07 - 2017-07-02 01:48 - 000003994 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-11-13 02:07 - 2017-02-09 12:27 - 000343288 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys
2017-11-13 02:07 - 2017-02-09 12:27 - 000321032 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2017-11-13 02:07 - 2017-02-09 12:27 - 000198968 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2017-11-13 02:07 - 2017-02-09 12:27 - 000057728 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2017-11-13 02:07 - 2015-12-06 20:13 - 001026232 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-11-13 02:07 - 2015-12-06 20:13 - 000455384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-11-13 02:07 - 2015-12-06 20:13 - 000364464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-11-13 02:07 - 2015-12-06 20:13 - 000203976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-11-13 02:07 - 2015-12-06 20:13 - 000148288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-11-13 02:07 - 2015-12-06 20:13 - 000110376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-11-13 02:07 - 2015-12-06 20:13 - 000084416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-11-13 02:07 - 2015-12-06 20:13 - 000047008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-11-13 02:06 - 2015-12-07 10:41 - 000000000 ____D C:\Users\Passi\AppData\Local\Spotify
2017-11-13 02:05 - 2017-07-02 01:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-11-13 02:05 - 2017-07-02 01:37 - 000000000 ____D C:\ProgramData\NVIDIA
2017-11-13 02:05 - 2015-12-07 10:41 - 000000000 ____D C:\Users\Passi\AppData\Roaming\Spotify
2017-11-13 02:04 - 2017-07-02 01:38 - 000000000 ____D C:\Users\Passi
2017-11-13 02:04 - 2017-03-18 12:40 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2017-11-13 02:01 - 2017-09-17 15:47 - 000000000 ____D C:\Users\Passi\AppData\Local\CrashDumps
2017-11-13 02:01 - 2017-06-30 11:33 - 000000000 ____D C:\Users\Passi\AppData\Roaming\WhatsApp
2017-11-13 02:00 - 2017-09-12 15:03 - 000000000 ____D C:\Users\Passi\AppData\LocalLow\Mozilla
2017-11-12 18:23 - 2017-07-02 01:36 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-11-12 11:59 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-11-09 00:03 - 2017-06-30 11:33 - 000000000 ____D C:\Users\Passi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2017-11-09 00:03 - 2017-06-30 11:33 - 000000000 ____D C:\Users\Passi\AppData\Local\WhatsApp
2017-11-09 00:03 - 2017-06-30 11:33 - 000000000 ____D C:\Users\Passi\AppData\Local\SquirrelTemp
2017-11-08 21:10 - 2017-09-28 17:56 - 000000919 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2017-11-08 20:33 - 2017-09-08 17:13 - 000000202 _____ C:\Users\Passi\Desktop\PLAYERUNKNOWN'S BATTLEGROUNDS.url
2017-11-08 20:20 - 2017-09-15 04:12 - 000000000 _____ C:\WINDOWS\SysWOW64\last.dump
2017-11-07 21:11 - 2015-12-11 12:27 - 000002264 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-11-07 19:07 - 2017-04-13 16:40 - 000000000 ____D C:\Users\Passi\Documents\DragonNest
2017-11-07 18:03 - 2017-03-18 22:01 - 000000000 ____D C:\WINDOWS\INF
2017-11-07 11:07 - 2015-12-11 12:27 - 000000000 ____D C:\Program Files (x86)\Google
2017-11-06 11:23 - 2016-09-28 10:38 - 000000000 ____D C:\ProgramData\Origin
2017-11-06 11:22 - 2016-09-28 10:40 - 000000000 ____D C:\Users\Passi\AppData\Roaming\Origin
2017-11-05 22:41 - 2015-12-06 19:46 - 000000000 ____D C:\Users\Passi\AppData\Local\NVIDIA
2017-11-05 18:06 - 2015-12-13 18:52 - 000000000 ____D C:\Users\Passi\Documents\My Games
2017-11-05 17:16 - 2017-06-07 21:41 - 000061304 _____ () C:\WINDOWS\system32\Drivers\lpsport.sys
2017-11-05 16:58 - 2017-09-15 14:44 - 000000000 ____D C:\temp
2017-11-05 16:58 - 2017-07-02 01:37 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-11-05 16:58 - 2015-12-07 17:40 - 000000000 ____D C:\Users\Passi\AppData\Roaming\NVIDIA
2017-11-05 16:58 - 2015-12-06 19:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-11-05 16:57 - 2017-07-02 01:37 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-11-05 16:57 - 2017-07-02 01:37 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-11-05 16:52 - 2017-08-27 20:04 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-05 16:52 - 2017-08-27 20:04 - 000004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-05 16:52 - 2017-07-02 01:48 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-05 16:51 - 2017-07-02 01:48 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-05 16:51 - 2017-07-02 01:48 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-05 16:51 - 2017-07-02 01:48 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-05 16:51 - 2017-07-02 01:48 - 000003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-05 16:51 - 2017-07-02 01:48 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-11-05 16:48 - 2017-03-15 15:47 - 000001682 _____ C:\Users\Passi\Documents\starburn.txt
2017-11-04 19:41 - 2017-07-27 13:41 - 000003358 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3931479015-1760554122-2593176613-1001
2017-11-04 19:41 - 2015-12-06 23:34 - 000002387 _____ C:\Users\Passi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-11-04 19:41 - 2015-12-06 23:34 - 000000000 ___RD C:\Users\Passi\OneDrive
2017-11-03 22:53 - 2017-09-28 10:04 - 000000000 ____D C:\Program Files (x86)\Origin
2017-11-03 14:15 - 2017-09-12 15:03 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-11-03 14:15 - 2017-09-12 15:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-11-02 22:23 - 2016-09-21 15:23 - 000000080 _____ C:\Users\Passi\AppData\Roaming\mBot.ini
2017-11-02 13:49 - 2017-03-24 15:31 - 000001224 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2017-11-02 13:49 - 2017-03-24 15:31 - 000001220 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2017-11-02 13:41 - 2017-07-02 01:48 - 000003738 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2017-11-02 13:41 - 2017-07-02 01:48 - 000003638 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-11-02 13:41 - 2017-07-02 01:48 - 000003556 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-11-02 13:41 - 2017-07-02 01:48 - 000003514 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2017-11-02 13:41 - 2017-07-02 01:48 - 000003372 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1466508071
2017-11-02 13:41 - 2017-07-02 01:48 - 000003332 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-11-02 13:41 - 2017-07-02 01:48 - 000003332 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-11-02 13:41 - 2017-07-02 01:48 - 000003190 _____ C:\WINDOWS\System32\Tasks\Registration 1und1 Task
2017-11-02 13:41 - 2017-07-02 01:48 - 000002896 _____ C:\WINDOWS\System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe
2017-11-02 13:41 - 2017-07-02 01:48 - 000002636 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1449429382
2017-11-02 13:41 - 2017-07-02 01:48 - 000002444 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe
2017-11-02 13:41 - 2017-07-02 01:48 - 000002392 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe
2017-11-02 13:41 - 2017-07-02 01:48 - 000002388 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_itype_exe
2017-11-02 13:41 - 2017-07-02 01:48 - 000002378 _____ C:\WINDOWS\System32\Tasks\{60890883-293F-4787-9C11-11C186EB4FC2}
2017-11-02 13:41 - 2017-07-02 01:48 - 000002374 _____ C:\WINDOWS\System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe
2017-11-02 13:41 - 2017-07-02 01:48 - 000002370 _____ C:\WINDOWS\System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe
2017-11-02 13:41 - 2017-07-02 01:48 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2017-11-02 03:08 - 2017-05-05 23:31 - 000000000 ____D C:\Users\Passi\AppData\Roaming\vlc
2017-11-01 19:57 - 2017-03-24 15:31 - 000000000 ____D C:\Program Files (x86)\Dropbox
2017-10-29 11:26 - 2016-01-26 22:21 - 000047096 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2017-10-27 23:09 - 2015-12-06 20:13 - 001029872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw3b43021719b31b50.tmp
2017-10-27 22:42 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-10-27 18:50 - 2017-08-27 20:04 - 000057976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-10-27 18:50 - 2017-05-18 06:47 - 036239480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-10-27 18:50 - 2017-05-18 06:46 - 001615472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2017-10-27 18:50 - 2017-05-18 06:46 - 000225208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2017-10-27 18:50 - 2017-05-18 06:42 - 004485048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-10-27 18:50 - 2017-05-18 06:42 - 003817584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-10-27 18:50 - 2017-05-18 03:24 - 000048442 _____ C:\WINDOWS\system32\nvinfo.pb
2017-10-27 18:50 - 2017-03-20 05:46 - 000437696 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll
2017-10-27 17:36 - 2017-07-02 01:37 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-10-27 17:12 - 2017-07-02 01:37 - 005960824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-10-27 17:12 - 2017-07-02 01:37 - 002587768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-10-27 17:12 - 2017-07-02 01:37 - 001766520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-10-27 17:12 - 2017-07-02 01:37 - 000607168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-10-27 17:12 - 2017-07-02 01:37 - 000449656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-10-27 17:12 - 2017-07-02 01:37 - 000123000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-10-27 17:12 - 2017-07-02 01:37 - 000081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-10-25 13:59 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-10-25 13:59 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-10-25 11:33 - 2017-07-02 01:37 - 007802921 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-10-24 14:26 - 2017-03-18 21:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-10-20 15:21 - 2017-04-02 18:45 - 000000000 ____D C:\ProgramData\NexonUS
2017-10-20 14:05 - 2015-12-08 21:21 - 000000000 ____D C:\ProgramData\Oracle
2017-10-20 13:37 - 2015-12-08 21:25 - 000000000 ____D C:\Program Files\Java
2017-10-20 13:37 - 2015-12-08 21:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-10-20 13:36 - 2015-12-08 21:26 - 000110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2017-10-19 10:21 - 2016-01-26 17:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2017-10-19 10:21 - 2016-01-26 17:13 - 000000000 ____D C:\Program Files\CPUID
2017-10-19 02:23 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\rescache
2017-10-19 01:55 - 2015-12-24 00:12 - 000000000 ____D C:\Users\Passi\AppData\Roaming\Rsupport
2017-10-19 01:55 - 2015-12-24 00:12 - 000000000 ____D C:\Program Files (x86)\RSUPPORT
2017-10-19 01:40 - 2015-12-20 14:33 - 000000000 ____D C:\Users\Passi\.android
2017-10-19 01:38 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\Registration
2017-10-15 21:36 - 2015-12-06 23:33 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-10-15 21:34 - 2017-07-02 01:36 - 000319896 _____ C:\WINDOWS\system32\FNTCACHE.DAT
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-09-21 15:23 - 2017-11-02 22:23 - 000000080 _____ () C:\Users\Passi\AppData\Roaming\mBot.ini
2016-01-25 12:59 - 2016-02-23 18:18 - 000007602 _____ () C:\Users\Passi\AppData\Local\Resmon.ResmonCfg
2016-02-25 20:13 - 2016-02-25 20:13 - 000000057 _____ () C:\ProgramData\Ament.ini
2017-07-02 01:37 - 2017-07-02 01:37 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
2016-07-24 00:01 - 2016-10-23 00:15 - 000000016 _____ () C:\ProgramData\mntemp
Einige Dateien in TEMP:
====================
2017-11-04 19:51 - 2017-11-04 19:51 - 000079736 _____ (AppWork GmbH) C:\Users\Passi\AppData\Local\Temp\131542950905872545.exe
2017-11-04 19:51 - 2017-11-04 19:51 - 001534344 _____ ( ) C:\Users\Passi\AppData\Local\Temp\13154295091559697632.exe
2017-10-25 17:31 - 2017-10-25 17:31 - 000000093 _____ () C:\Users\Passi\AppData\Local\Temp\1f68ffea5f82cc09f4a77ae4eee204ac.dll
2017-11-02 22:15 - 2016-12-31 11:46 - 000089088 _____ () C:\Users\Passi\AppData\Local\Temp\29k471M3P3L515PW.dll
2017-10-25 17:30 - 2017-10-25 17:59 - 000000000 _____ () C:\Users\Passi\AppData\Local\Temp\3d51890c7b88e4feeeed777176b46429.dll
2017-11-02 22:14 - 2016-12-31 11:46 - 000089088 _____ () C:\Users\Passi\AppData\Local\Temp\4k3L94XHfX0huC2F.dll
2017-07-02 11:00 - 2017-07-02 11:00 - 000000180 _____ () C:\Users\Passi\AppData\Local\Temp\6699d3ee8dd9cf775caae782c8f44f03.dll
2017-11-02 22:02 - 2016-12-31 11:46 - 000089088 _____ () C:\Users\Passi\AppData\Local\Temp\7HW39WgI9010G05r.dll
2017-09-28 21:25 - 2017-09-28 21:25 - 003239696 _____ (Microsoft) C:\Users\Passi\AppData\Local\Temp\CNC4LauncherUpdate.exe
2017-07-02 11:00 - 2017-10-29 11:26 - 000000088 _____ () C:\Users\Passi\AppData\Local\Temp\fc213aaa3da8e4d67b6709f42918af8b.dll
2017-09-11 15:09 - 2017-09-11 15:09 - 000740416 _____ (Oracle Corporation) C:\Users\Passi\AppData\Local\Temp\jre-8u144-windows-au.exe
2017-10-20 13:36 - 2017-10-20 13:36 - 001856576 _____ (Oracle Corporation) C:\Users\Passi\AppData\Local\Temp\jre-8u151-windows-au.exe
2017-11-02 21:57 - 2016-12-31 11:46 - 000089088 _____ () C:\Users\Passi\AppData\Local\Temp\MR4jNXJdqy3O2FaI.dll
2017-10-20 15:20 - 2017-10-20 15:20 - 000765952 _____ (Nexon) C:\Users\Passi\AppData\Local\Temp\NGMDll.dll
2017-10-20 15:20 - 2017-10-20 15:20 - 000421888 _____ (Nexon) C:\Users\Passi\AppData\Local\Temp\NGMResource.dll
2017-10-20 15:20 - 2017-10-20 15:20 - 003371008 _____ (Nexon) C:\Users\Passi\AppData\Local\Temp\NGMSetup.exe
2017-11-02 22:11 - 2016-12-31 11:46 - 000089088 _____ () C:\Users\Passi\AppData\Local\Temp\nJ47028z2k379e60.dll
2017-11-02 22:25 - 2016-12-31 11:46 - 000089088 _____ () C:\Users\Passi\AppData\Local\Temp\NseWbVtiJZ6nt15x.dll
2017-02-19 14:24 - 2016-12-29 13:29 - 000860960 _____ (NVIDIA Corporation) C:\Users\Passi\AppData\Local\Temp\nvSCPAPI64.dll
2017-11-05 16:55 - 2016-12-29 13:28 - 000351680 _____ (NVIDIA Corporation) C:\Users\Passi\AppData\Local\Temp\nvStInst.exe
2017-11-04 23:39 - 2017-11-04 23:39 - 000040448 _____ () C:\Users\Passi\AppData\Local\Temp\proxy_vole2516952071548900314.dll
2017-11-04 19:52 - 2017-11-04 19:52 - 000040448 ____N () C:\Users\Passi\AppData\Local\Temp\proxy_vole2576601012464927066.dll
2017-11-04 19:53 - 2017-11-04 19:53 - 000040448 _____ () C:\Users\Passi\AppData\Local\Temp\proxy_vole6089353811857697179.dll
2017-11-02 22:24 - 2016-12-31 11:46 - 000089088 _____ () C:\Users\Passi\AppData\Local\Temp\sbyuB0Ko6Gm5W0gm.dll
2017-10-20 15:20 - 2017-10-20 15:20 - 000258352 _____ (Microsoft Corporation) C:\Users\Passi\AppData\Local\Temp\unicows.dll
2017-11-05 17:09 - 2017-11-05 12:48 - 000123143 _____ () C:\Users\Passi\AppData\Local\Temp\Uninstall.exe
2017-09-09 01:19 - 2017-08-18 19:27 - 000171840 _____ () C:\Users\Passi\AppData\Local\Temp\UninstallTwitch.exe
2017-11-02 22:20 - 2016-12-31 11:46 - 000089088 _____ () C:\Users\Passi\AppData\Local\Temp\VjG8zRlvE2TUnQ48.dll
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-11-03 10:58
==================== Ende von FRST.txt ============================
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-11-2017 03
durchgeführt von Passi (13-11-2017 02:16:03)
Gestartet von C:\Users\Passi\Desktop
Windows 10 Education Version 1703 15063.674 (X64) (2017-07-02 00:51:30)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3931479015-1760554122-2593176613-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3931479015-1760554122-2593176613-503 - Limited - Disabled)
Gast (S-1-5-21-3931479015-1760554122-2593176613-501 - Limited - Disabled)
Passi (S-1-5-21-3931479015-1760554122-2593176613-1001 - Administrator - Enabled) => C:\Users\Passi
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Active Directory Authentication Library für SQL Server (HKLM\...\{DCF8CB30-F4CE-476A-AB02-E8D620FADC70}) (Version: 13.0.1601.5 - Microsoft Corporation) Hidden
Active Directory Authentication Library für SQL Server (x86) (HKLM-x32\...\{03D2027B-6335-4822-89ED-CD99D2F4CE43}) (Version: 13.0.1601.5 - Microsoft Corporation) Hidden
Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.183 - Adobe Systems Incorporated)
Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{0E4C791E-B78E-477D-BD5A-CDD0985BA6EC}) (Version: 7.0.20622.1 - Microsoft Corporation)
Avast Internet Security (HKLM-x32\...\Avast Antivirus) (Version: 17.8.2318 - AVAST Software)
Azure AD Authentication Connected Service (HKLM-x32\...\{8A1AD070-269F-4A15-AAB5-76AB896EF195}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
AzureTools.Notifications (HKLM-x32\...\{1E5CA362-39B6-4BD0-B9C0-69CF15F0FEA2}) (Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Blend for Visual Studio SDK for .NET 4.5 (HKLM-x32\...\{37E53780-3944-4A6A-842F-727128E8616E}) (Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Chrome Remote Desktop Host (HKLM-x32\...\{D61C8E6E-A4F3-4CD8-8568-51CEB5660C89}) (Version: 63.0.3239.32 - Google Inc.)
Command & Conquer™ 4 Tiberian Twilight (HKLM-x32\...\{BA4C8F9F-D81B-4AFE-AE5A-3837830F5B89}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ The Ultimate Collection Additional Content (HKLM-x32\...\{1A882F29-BC18-4AC2-A71E-0FC30FA32568}) (Version: 1.0.0.0 - Electronic Arts)
CPUID CPU-Z 1.81 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.81 - )
CPUID HWMonitor 1.29 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
Crossout Launcher 1.0.3.18 (HKU\S-1-5-21-3931479015-1760554122-2593176613-1001\...\CrossOutLauncher_is1) (Version: - )
Devenv-Ressourcen für Microsoft Visual Studio 2015 (HKLM-x32\...\{FB44808B-AC6F-301D-806D-77815A51E242}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Diablo III Public Test (HKLM-x32\...\Diablo III Public Test) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-3931479015-1760554122-2593176613-1001\...\Discord) (Version: 0.0.298 - Discord Inc.)
Dotfuscator and Analytics Community Edition 5.22.0 (HKLM-x32\...\{60018889-9E0F-43E8-9B89-29E8C828B40A}) (Version: 5.22.0.3788 - PreEmptive Solutions) Hidden
Dotfuscator and Analytics Community Edition Language Pack 5.22.0 de-DE (HKLM-x32\...\{B9DF8A8B-D2CB-4884-A485-C9CA86F7BF7E}) (Version: 5.22.0.3788 - PreEmptive Solutions) Hidden
Dragon Rise (HKLM-x32\...\Dragon Rise) (Version: - )
Drakensang Online (HKLM-x32\...\Drakensang Online) (Version: - )
Dropbox (HKLM-x32\...\Dropbox) (Version: 38.4.27 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.65.1 - Dropbox, Inc.) Hidden
Entity Framework 6.1.3 Tools for Visual Studio 2015 Update 1 (HKLM-x32\...\{2A56910C-69C8-495D-8ED8-9080F0A14E58}) (Version: 14.0.41103.0 - Microsoft Corporation)
Epic Games Launcher (HKLM-x32\...\{67E2C47C-F3B7-41E8-B615-1CE5B4E329AB}) (Version: 1.1.129.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Erforderliche Komponenten für SSDT (HKLM-x32\...\{2466E484-9D86-416B-9C88-AA533F15AF1C}) (Version: 12.0.2000.8 - Microsoft Corporation)
Erforderliche Komponenten für SSDT (HKLM-x32\...\{FD639F4D-1460-42E6-B32D-FEC1745D0BDC}) (Version: 13.0.1601.5 - Microsoft Corporation)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG)
Gemeinsam genutzte Microsoft Azure-Komponenten für Visual Studio 2015 Sprachpaket – DEU - v1.8 (HKLM-x32\...\{2289E12B-ECFB-4983-8787-3E415B03C55F}) (Version: 1.8.40521.1 - Microsoft Corporation) Hidden
GMX MailCheck für Internet Explorer (HKLM-x32\...\1&1 Mail & Media GmbH Toolbar IE8) (Version: 2.6.5.0 - 1&1 Mail & Media GmbH)
GMX Softwareaktualisierung (HKLM-x32\...\1&1 Mail & Media GmbH 1und1Softwareaktualisierung) (Version: 3.0.3.0 - 1&1 Mail & Media GmbH)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.89 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
HP Deskjet 2540 series - Grundlegende Software für das Gerät (HKLM\...\{333E22D7-9F56-4482-A13C-1B9D35B9D641}) (Version: 32.2.188.47710 - Hewlett-Packard Co.)
HP Support Solutions Framework (HKLM-x32\...\{A38E954F-9043-42BD-9DE9-246ED183791D}) (Version: 12.8.37.11 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
IIS 10.0 Express (HKLM\...\{13FD7E30-D2F1-498D-ABC2-A4242DB6610E}) (Version: 10.0.1736 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version: - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version: - )
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Java 8 Update 151 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\{517CC397-B22F-4593-8DCB-DE72CC541E9A}) (Version: 3.0.1 - Riot Games ) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
MAGIX Content und Soundpools (HKLM-x32\...\MAGIX_GlobalContent) (Version: 1.0.0.0 - MAGIX Software GmbH)
MAGIX Music Maker 2015 Premium (HKLM\...\{3DF585C2-BDD1-42F7-84E1-AB6191830E0E}) (Version: 21.0.0.30 - MAGIX Software GmbH) Hidden
MAGIX Music Maker 2015 Premium (HKLM-x32\...\MX.{3DF585C2-BDD1-42F7-84E1-AB6191830E0E}) (Version: 21.0.0.30 - MAGIX Software GmbH)
MAGIX Music Maker 2015 Premium Update (HKLM\...\{8E8B5FEB-83B3-430D-8900-ADEE0567EA9B}) (Version: 21.0.4.50 - MAGIX Software GmbH) Hidden
MAGIX Music Maker 2015 Trial Soundpools (HKLM\...\{BF54E0F5-095A-4DFD-BF99-60ACF3E0C18F}) (Version: 1.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Speed burnR (MSI) (HKLM\...\{AD4A2318-33E8-4E3C-90F5-5E91D0EE8572}) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden
MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{AD4A2318-33E8-4E3C-90F5-5E91D0EE8572}) (Version: 7.0.2.6 - MAGIX Software GmbH)
MagmaFlyff Live (HKLM-x32\...\MagmaFlyff) (Version: Live - )
Manager (HKLM-x32\...\{38251B9A-C44B-42D9-9A6A-0697986E334A}) (Version: 4.1.4.27792 - 2015 pdfforge GmbH. All rights reserved) Hidden
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0012.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (Deutsch) (HKLM-x32\...\{CBD7095F-7211-43FD-9FE7-FB08D753AF79}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (Deutsch) (HKLM-x32\...\{EE8BD24B-75E1-4BBF-86B9-91FE16ADE71C}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 SDK (Deutsch) (HKLM-x32\...\{529EFF09-750D-48B9-A47A-34A3B6248C3F}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Version Manager (x64) 1.0.0-beta5 (HKLM\...\{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}) (Version: 1.0.10609.0 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.25420 - Microsoft Corporation)
Microsoft Help Viewer 2.2 Sprachpaket - DEU (HKLM-x32\...\Microsoft Help Viewer 2.2 Sprachpaket - DEU) (Version: 2.2.25420 - Microsoft Corporation)
Microsoft Office Excel Viewer (HKLM-x32\...\{95120000-003F-0407-0000-0000000FF1CE}) (Version: 12.0.6334.5000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3931479015-1760554122-2593176613-1001\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{F09DEB00-9F41-4BC9-BA81-9F131B12B3D5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{8E4BA1E5-54E8-41F0-919B-CD875B83CFCE}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2016 LocalDB (HKLM\...\{C555970C-4C94-4A20-9869-AE7E2F84748F}) (Version: 13.0.1601.5 - Microsoft Corporation)
Microsoft SQL Server 2016 Management Objects (x64) (HKLM\...\{264B070C-82D7-4C9C-B1CE-A0B124BCC787}) (Version: 13.0.1601.5 - Microsoft Corporation)
Microsoft SQL Server 2016 T-SQL Language Service (HKLM-x32\...\{4EFF12AE-599C-42A2-ACFA-0D95C3B11A19}) (Version: 13.0.14500.10 - Microsoft Corporation)
Microsoft SQL Server 2016 T-SQL ScriptDom (HKLM\...\{E8F3D249-7DE6-4422-AC86-1CE7D5CCFA0F}) (Version: 13.0.1601.5 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 DEU (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - DEU (14.0.60519.0) (HKLM-x32\...\{9F367648-EC0C-4F97-B351-D12A51E38F96}) (Version: 14.0.60519.0 - Microsoft Corporation)
Microsoft SQL Server*2014 Management Objects (HKLM-x32\...\{4F4CB3E2-9D2F-465A-854B-8276B02F4E7D}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server*2014 Management Objects (x64) (HKLM\...\{03CB711D-679E-46ED-851B-C568418CF914}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server*2014 Transact-SQL ScriptDom (HKLM\...\{F2A2DB39-2C5A-4764-AA0F-5AB112663FFA}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server*2014 T-SQL Language Service (HKLM-x32\...\{06BE8B71-46C6-434B-869E-85C58EF3120A}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server*2016 Management Objects (HKLM-x32\...\{35A7B00B-4F9C-4B4D-919C-86FFFEE46AD6}) (Version: 13.0.1601.5 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{887868A2-D6DE-3255-AA92-AA0B5A59B874}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio Community 2015 mit Updates (HKLM-x32\...\{ec2556f3-08aa-4829-8017-07d7ea9e125d}) (Version: 14.0.25420.1 - Microsoft Corporation)
Microsoft Web Deploy 3.6 (HKLM\...\{94E1227C-08A9-4962-B388-1F05D89AEA75}) (Version: 3.1238.1962 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 3.0.337.0 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2014 (HKLM\...\{7F6DCED8-6A2B-4436-AF20-8F659D04E388}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2014 (HKLM-x32\...\{48BF289B-F3FA-4023-9251-80ABF7B726F9}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server*2016 (HKLM\...\{FEC926D4-785B-4ED7-B35D-3FA37DD29F8B}) (Version: 13.0.1601.5 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server*2016 (HKLM-x32\...\{A37BE9D7-EAAE-4C6B-9D7E-DBD8B8D88681}) (Version: 13.0.1601.5 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mit C# erstellte geräteübergreifende Hybrid-Apps - Vorlagen - DEU (HKLM-x32\...\{F6C04806-5A52-31D1-ACF7-A010F8315E7A}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Mobizen (HKLM-x32\...\{BA0D3A44-BCEE-4C8B-BCD4-F7F1E64F41E3}) (Version: 2.21.6.1 - RSUPPORT)
Mozilla Firefox 56.0.2 (x64 de) (HKLM\...\Mozilla Firefox 56.0.2 (x64 de)) (Version: 56.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 55.0.3 - Mozilla)
MSBuild/NuGet Integration 14.0 (x86) (HKLM-x32\...\{128C1654-3B9E-4959-8BFB-CE6F09C0A01D}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MU LEGEND GLOBAL (HKLM-x32\...\{MU2GB92C-VH2O-Z2AQ-N26J-M2VJEWJEUE52}_is1) (Version: 1.0.0.0 - Webzen)
Nexon Launcher (HKLM-x32\...\Nexon Nexon Launcher) (Version: 2.0.0 - Nexon)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.10.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.10.0.95 - NVIDIA Corporation)
NVIDIA Grafiktreiber 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 19.0.3 - OBS Project)
Origin (HKLM-x32\...\Origin) (Version: 10.5.5.6040 - Electronic Arts, Inc.)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM-x32\...\{D5409B11-EF28-37A1-AE7A-6051A5BAD923}) (Version: 4.5.50932 - Microsoft Corporation)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 RC für Windows Store-Apps (Deutsch) (HKLM-x32\...\{63045916-32E7-31D6-BD8E-C13406E137B5}) (Version: 4.5.21005 - Microsoft Corporation) Hidden
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM-x32\...\{3F514FDC-F0F2-3B99-86D6-F7B3A2679B39}) (Version: 4.5.51209 - Microsoft Corporation)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.6 (Deutsch) (HKLM-x32\...\{FACF2669-E25A-428A-9167-5EEDE741F3B9}) (Version: 4.6.00127 - Microsoft Corporation)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM-x32\...\{4860C1E5-CE58-4D32-89DE-37951333B4C9}) (Version: 4.6.01055 - Microsoft Corporation)
PDF Architect 4 (HKLM-x32\...\PDF Architect 4) (Version: 4.0.34.26215 - pdfforge GmbH)
PDF Architect 4 Asian Fonts Pack (HKLM\...\{E15E5BA3-68C2-4B55-8D38-4DBB3F9B21DD}) (Version: 4.1.5.29097 - pdfforge GmbH) Hidden
PDF Architect 4 Convert Module (HKLM\...\{58B672CE-84B3-4FCD-B2BC-85D6832081AF}) (Version: 4.1.5.29097 - pdfforge GmbH) Hidden
PDF Architect 4 Create Module (HKLM\...\{72B9DF2C-76FA-40B5-A469-16EAB159CE72}) (Version: 4.1.5.29097 - pdfforge GmbH) Hidden
PDF Architect 4 Edit Module (HKLM\...\{BDF7326B-7ED4-4034-B867-F4E88D4E628B}) (Version: 4.1.5.29097 - pdfforge GmbH) Hidden
PDF Architect 4 Forms Module (HKLM\...\{BBBB75A5-1B4B-404F-B441-C59E29AC887E}) (Version: 4.1.5.29097 - pdfforge GmbH) Hidden
PDF Architect 4 Insert Module (HKLM\...\{F9417A7E-A44D-4318-B479-56D2533F01F8}) (Version: 4.1.5.29097 - pdfforge GmbH) Hidden
PDF Architect 4 OCR Module (HKLM\...\{DCD772BD-5EE9-4B00-B976-5EC52C022981}) (Version: 4.1.5.29097 - pdfforge GmbH) Hidden
PDF Architect 4 Review Module (HKLM\...\{64D4BCF9-C439-4CBF-8E35-AF14C867F9A2}) (Version: 4.1.5.29097 - pdfforge GmbH) Hidden
PDF Architect 4 Secure Module (HKLM\...\{357F5B29-55DD-4799-B85A-C4C5F9CF061F}) (Version: 4.1.5.29097 - pdfforge GmbH) Hidden
PDF Architect 4 View Module (HKLM\...\{03E04B47-9270-4613-8D7E-DA4AD2B259A0}) (Version: 4.1.5.29097 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.3.0 - pdfforge GmbH)
PreEmptive Analytics Client German Language Pack (HKLM-x32\...\{B9EE1E60-4884-4B2F-9187-92F532437D60}) (Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
PreEmptive Analytics Visual Studio Components (HKLM-x32\...\{436A18DD-5F2C-4B3C-985E-AD3C13B0CC25}) (Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
REACHit (HKLM-x32\...\{4532E4C5-C84D-4040-A044-ECFCC5C6995B}) (Version: 2.5.005.12 - Lenovo)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7560 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.4 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.4 - VS Revo Group, Ltd.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.2.0 - Rockstar Games)
Roslyn Language Services - x86 (HKLM-x32\...\{77E8F7C4-9E1F-3BE9-A1D3-6023F288BA69}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (HKLM-x32\...\{87BFB956-DC1D-38FC-A849-A9997A183F63}) (Version: 14.0.25425 - Microsoft Corporation) Hidden
SafeZone Stable 1.46.1990.144 (HKLM-x32\...\SafeZone 1.46.1990.144) (Version: 1.46.1990.144 - Avast Software) Hidden
SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden
Sirius MT2 Version 20.13 (HKLM-x32\...\{831D4B74-7A92-4363-869D-524876C480B1}_is1) (Version: 20.13 - Sirius MT2)
Spotify (HKU\S-1-5-21-3931479015-1760554122-2593176613-1001\...\Spotify) (Version: 1.0.67.582.g19436fa3 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Team Explorer for Microsoft Visual Studio 2015 Update 3.1 (HKLM-x32\...\{23F3B544-D6BD-322B-A48A-C66790A8AE0D}) (Version: 14.102.25521 - Microsoft) Hidden
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
Test Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{9EABBFE1-7EED-47D9-8FB8-21D7E4808057}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Text-To-Speech-Runtime (HKLM-x32\...\{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}) (Version: 1.0.0.0 - Magix Development GmbH)
The Witcher 3 Wild Hunt Game of the Year Edition MULTi2 1.31 (HKLM-x32\...\The Witcher 3 Wild Hunt Game of the Year Edition MULTi2 1.31) (Version: - )
Tom Clancy's The Division (HKLM-x32\...\Uplay Install 568) (Version: - Ubisoft)
TypeScript Power Tool (HKLM-x32\...\{465ACA24-B8D6-4FEC-A42D-9EFCB92CD560}) (Version: 1.8.34.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{BA5762C7-D35F-4725-A4BD-525854127018}) (Version: 1.8.36.0 - Microsoft Corporation) Hidden
Universal Adb Driver (HKLM-x32\...\{D9C4202E-6D51-4B06-A8F1-22316E654BCA}) (Version: 1.0.0 - ClockworkMod)
Unreal Development Kit: 2015-01 (HKLM\...\UDK-a13914e1-9f7a-48e0-b52a-30f4becb3172) (Version: - Epic Games, Inc.)
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
Visual Studio 2015 Update 3 (KB3022398) (HKLM-x32\...\{7a68448b-9cf2-4049-bd73-5875f1aa7ba2}) (Version: 14.0.25420 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
VS Update core components (HKLM-x32\...\{2FAE53FC-8859-3EB9-BAAA-3A9BE26931BC}) (Version: 14.0.25425 - Microsoft Corporation) Hidden
vs_update3notification (HKLM-x32\...\{D949D8A9-0CEF-3997-BA76-75EA19E62137}) (Version: 14.0.25425 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WCF Data Services 5.6.4 DEU Language Pack (HKLM-x32\...\{A18C9DC6-4DE8-4C3C-9CE7-8CCC33BFAB3A}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services 5.6.4 Runtime (HKLM-x32\...\{DB85E7BD-B2DD-43D4-B3C0-23D7B527B597}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{0A3B508E-5638-4471-BCC9-954E1868CB86}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 DEU Language Pack (HKLM-x32\...\{7498BA51-A725-4293-A5E4-AB28BDE1C18A}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WhatsApp (HKU\S-1-5-21-3931479015-1760554122-2593176613-1001\...\WhatsApp) (Version: 0.2.6968 - WhatsApp)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
Windows 10-Upgrade-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17354 - Microsoft Corporation)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows-Treiberpaket - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
WinRAR 5.40 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Wondershare Filmora(Build 7.8.1) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3931479015-1760554122-2593176613-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3931479015-1760554122-2593176613-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3931479015-1760554122-2593176613-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3931479015-1760554122-2593176613-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3931479015-1760554122-2593176613-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3931479015-1760554122-2593176613-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-11] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-11] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-11] (AVAST Software)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ContextMenuHandlers1: [PDFArchitect4_ManagerExt] -> {3AECFCB3-8472-48E9-BC7B-5A3CD945C886} => C:\Program Files\PDF Architect 4\creator-context-menu.dll [2016-08-05] (pdfforge GmbH)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Windows\system32\mscoree.dll [2017-03-18] (Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-11] (AVAST Software)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-10-11] (AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0A70C72F-B0E7-43FE-BB66-E51E6A0AEF73} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-11-13] (AVAST Software)
Task: {0CC7E716-A328-48A0-B130-862C3647858F} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2017-06-13] (Microsoft Corporation)
Task: {1B5EC6E9-30E3-4685-A451-D5752AF44354} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2017-06-13] (Microsoft Corporation)
Task: {237C4E8E-6F39-4994-9410-59F3AC20C00C} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2017-06-13] (Microsoft Corporation)
Task: {3ABFDFE9-19DA-4EB8-85D9-04586B4CB984} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => E:\Visual\Common7\IDE\VSIXAutoUpdate.exe [2016-06-20] (Microsoft Corporation)
Task: {411EB7B8-9E8D-42B7-827D-E4E1D4EDAD2B} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-08] (Lenovo)
Task: {4596DB1A-CCC6-4DAF-A2F1-6F970C8B78B7} - System32\Tasks\Lenovo\REACHit Agent Startup => C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe [2015-12-10] (Lenovo)
Task: {4A16BFDD-D1CD-41A0-BA2F-CE952D412230} - System32\Tasks\Lenovo\REACHit Agent Update => C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe [2015-12-10] (Lenovo)
Task: {546C40D0-A855-4F36-A65E-C1788A772408} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-10-11] (NVIDIA Corporation)
Task: {596956B5-9CFE-4DE4-99BB-D439E57AAFFF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-10-25] (Adobe Systems Incorporated)
Task: {6FA1A0D2-8AAF-4A85-92C5-DDBFB1E30076} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-03-24] (Dropbox, Inc.)
Task: {78E95CE5-456B-4C34-8B80-402B33BC850E} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation)
Task: {7F726766-F9EA-42F5-9819-7CB52FDD3AE7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation)
Task: {8CF0B3FD-36BF-43AF-AAB8-95FBBF066F6A} - System32\Tasks\WeeklyWeather => C:\Users\Passi\AppData\Roaming\WeeklyWeather\python\pythonw.exe <==== ACHTUNG
Task: {9142929B-0939-4067-B2DE-A0D5CB105D48} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-11] (NVIDIA Corporation)
Task: {9195F736-3B3A-4EA5-95FE-E86AF9A397A9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.)
Task: {99E97EF0-825B-4031-B106-DE27E3B72175} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2017-06-13] (Microsoft Corporation)
Task: {9BF77F50-DABA-4EDA-8F10-7C3E3E6CACB6} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation)
Task: {9D936CAD-D367-42A1-BBDB-82EE22F32842} - System32\Tasks\Registration 1und1 Task => C:\Program Files (x86)\1und1Softwareaktualisierung\cdsupdclient.exe
Task: {A1B7303B-4190-475D-9C18-9A1D78F2608B} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [2017-06-13] (Microsoft)
Task: {A3E72F84-7262-4BE8-8D79-83BF1C867DB8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-11] (Google Inc.)
Task: {A505BC6C-3E93-4BD9-B715-00E8544FF664} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2017-06-13] (Microsoft)
Task: {B0088C7D-BC06-435C-910D-73849CB1D434} - System32\Tasks\SafeZone scheduled Autoupdate 1449429382 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software)
Task: {B5046482-1C90-4DD8-9106-07FE84F2998C} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {BF4E6FF3-98A1-4BE3-8923-A4AB225429D7} - System32\Tasks\{60890883-293F-4787-9C11-11C186EB4FC2} => C:\Windows\system32\pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=deDE --uid=battle.net --displayname="Battle.net"
Task: {D43AD9F8-1F87-4915-9098-340B3BB9CD68} - System32\Tasks\WeeklyWeather2 => C:\Users\Passi\AppData\Roaming\WeeklyWeather\python\pythonw.exe <==== ACHTUNG
Task: {D916DEE1-8CF6-4CBC-9AB1-D2C63ACC288D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-11] (Google Inc.)
Task: {E42B38CD-0AF0-40AE-9F40-928FEDEE2E9D} - System32\Tasks\SafeZone scheduled Autoupdate 1466508071 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software)
Task: {E96A442F-9AE8-4E9F-9A56-810DEF3CDD52} - System32\Tasks\Microsoft\Windows\Display\Brightness\BrightnessReset
Task: {EE036C14-105E-409D-AEB8-FA9548300147} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-10-11] (NVIDIA Corporation)
Task: {EEC86CA5-EEC1-4A73-85AF-FC31D239FD12} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-03-24] (Dropbox, Inc.)
Task: {F325CFFD-1529-489C-B01C-B8852DDFE3BA} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-10-11] (NVIDIA Corporation)
Task: {F36459A8-A418-42A4-8300-408057B6CC70} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_183_pepper.exe [2017-10-25] (Adobe Systems Incorporated)
Task: {FDCC3967-907C-4532-A480-F60EFFAC280B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation)
Task: {FF8F2CC0-AA79-45D1-8F68-2052FA8B9AC7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\Users\Passi\Desktop\FRITZ!Box 7490 - Verknüpfung.lnk -> hxxp://fritz.bo
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2016-11-12 16:42 - 2017-10-11 02:01 - 001267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-03-18 21:58 - 2017-03-18 21:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-03-18 21:59 - 2017-03-20 05:46 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-12 16:42 - 2017-10-11 02:01 - 001040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-10-11 18:10 - 2017-10-11 18:10 - 000167096 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-10-11 18:10 - 2017-10-11 18:10 - 000059040 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll
2017-06-29 22:12 - 2017-06-29 22:12 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-10-11 18:10 - 2017-10-11 18:10 - 000217088 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-10-11 18:10 - 2017-10-11 18:10 - 000244584 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-10-11 18:10 - 2017-10-11 18:10 - 000234280 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-10-27 23:09 - 2017-10-27 23:09 - 000703336 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-11-12 15:56 - 2017-11-12 15:56 - 005883064 _____ () C:\Program Files\AVAST Software\Avast\defs\17111200\algo.dll
2016-11-12 16:43 - 2017-10-11 02:00 - 070806136 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2017-10-15 21:37 - 2017-09-09 20:25 - 000688416 _____ () E:\Steam\SDL2.dll
2017-03-09 20:40 - 2016-09-01 02:02 - 004969248 _____ () E:\Steam\v8.dll
2017-11-02 12:04 - 2017-10-31 04:22 - 002546976 _____ () E:\Steam\video.dll
2017-03-09 20:40 - 2016-09-01 02:02 - 001563936 _____ () E:\Steam\icui18n.dll
2017-03-09 20:40 - 2016-09-01 02:02 - 001195296 _____ () E:\Steam\icuuc.dll
2017-03-09 20:40 - 2016-01-27 08:49 - 002549760 _____ () E:\Steam\libavcodec-56.dll
2017-03-09 20:40 - 2016-01-27 08:49 - 000491008 _____ () E:\Steam\libavformat-56.dll
2017-03-09 20:40 - 2016-01-27 08:49 - 000332800 _____ () E:\Steam\libavresample-2.dll
2017-03-09 20:40 - 2016-01-27 08:49 - 000442880 _____ () E:\Steam\libavutil-54.dll
2017-03-09 20:40 - 2016-01-27 08:49 - 000485888 _____ () E:\Steam\libswscale-3.dll
2017-11-02 12:04 - 2017-10-31 04:22 - 000901408 _____ () E:\Steam\bin\chromehtml.DLL
2017-03-09 20:40 - 2016-07-04 23:17 - 000266560 _____ () E:\Steam\openvr_api.dll
2017-10-15 21:37 - 2017-08-16 23:28 - 073130272 _____ () E:\Steam\bin\cef\cef.win7\libcef.dll
2017-10-15 21:37 - 2017-09-07 03:04 - 000678400 _____ () E:\Steam\bin\cef\cef.win7\SDL2.dll
2017-03-09 20:40 - 2015-09-25 00:52 - 000119208 _____ () E:\Steam\winh264.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2015-07-10 12:04 - 2017-11-13 02:04 - 000000830 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3931479015-1760554122-2593176613-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Passi\Desktop\321.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{FA5A4DB0-9A65-48FB-94D3-19D331FE3618}] => (Allow) E:\Steam\Steam.exe
FirewallRules: [{DAEB9979-85C2-4F4C-B58E-6F8152326E7D}] => (Allow) E:\Steam\Steam.exe
FirewallRules: [{0C926099-2F71-41CE-91E9-02BCE6EA8797}] => (Allow) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{1E8D3557-421D-485C-85A5-AF1763B0958D}] => (Allow) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe
==================== Wiederherstellungspunkte =========================
ACHTUNG: Systemwiederherstellung ist deaktiviert
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (11/13/2017 02:01:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MULegend.exe, Version: 1.0.12621.0, Zeitstempel: 0x5a0022d2
Name des fehlerhaften Moduls: MULegend.exe, Version: 1.0.12621.0, Zeitstempel: 0x5a0022d2
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00278e41
ID des fehlerhaften Prozesses: 0x2f90
Startzeit der fehlerhaften Anwendung: 0x01d35c070893896b
Pfad der fehlerhaften Anwendung: E:\mu\MU_LEGEND_GLOBAL\Binaries\Win32\MULegend.exe
Pfad des fehlerhaften Moduls: E:\mu\MU_LEGEND_GLOBAL\Binaries\Win32\MULegend.exe
Berichtskennung: c08ffe39-cac0-40d3-af67-ce2b78d1ef84
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (11/12/2017 12:15:41 PM) (Source: ESENT) (EventID: 489) (User: )
Description: SettingSyncHost (15744) {5D4A38B3-E95F-4868-A96D-DAE9AB58D37E}: Der Versuch, die Datei "C:\Users\Passi\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
Error: (11/12/2017 12:15:31 PM) (Source: ESENT) (EventID: 489) (User: )
Description: SettingSyncHost (15744) {792328A0-8D56-4317-BD17-38162D6DC021}: Der Versuch, die Datei "C:\Users\Passi\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
Error: (11/12/2017 12:15:21 PM) (Source: ESENT) (EventID: 489) (User: )
Description: SettingSyncHost (15744) {C4307346-521E-4866-A895-2862B55BB91C}: Der Versuch, die Datei "C:\Users\Passi\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
Error: (11/12/2017 12:15:11 PM) (Source: ESENT) (EventID: 489) (User: )
Description: SettingSyncHost (15744) {DE32BF35-8BF5-4DB9-99DE-6B4928C41488}: Der Versuch, die Datei "C:\Users\Passi\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
Error: (11/12/2017 12:15:00 PM) (Source: ESENT) (EventID: 489) (User: )
Description: SettingSyncHost (15744) {9AB3DCDE-187B-43DA-804B-8D0173B46451}: Der Versuch, die Datei "C:\Users\Passi\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
Error: (11/12/2017 12:14:50 PM) (Source: ESENT) (EventID: 489) (User: )
Description: SettingSyncHost (15744) {0218B05F-CD8C-48AA-9B31-3EF0AFC7BFC4}: Der Versuch, die Datei "C:\Users\Passi\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
Error: (11/12/2017 12:14:40 PM) (Source: ESENT) (EventID: 489) (User: )
Description: SettingSyncHost (15744) {A9BB686D-670E-4854-90D8-B7B85550FA38}: Der Versuch, die Datei "C:\Users\Passi\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
Error: (11/12/2017 12:14:30 PM) (Source: ESENT) (EventID: 489) (User: )
Description: SettingSyncHost (15744) {749D7BE4-9E73-4A12-9491-F7D389695ABE}: Der Versuch, die Datei "C:\Users\Passi\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
Error: (11/12/2017 12:14:20 PM) (Source: ESENT) (EventID: 489) (User: )
Description: SettingSyncHost (15744) {05AEF755-ECE0-410B-A001-85516467F104}: Der Versuch, die Datei "C:\Users\Passi\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
Systemfehler:
=============
Error: (11/13/2017 02:05:11 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "CldFlt" wurde aufgrund folgenden Fehlers nicht gestartet:
Die Anforderung wird nicht unterstützt.
Error: (11/13/2017 02:04:06 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Origin Web Helper Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/13/2017 02:04:06 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "PDF Architect 4 Manager" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/13/2017 02:04:06 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Hi-Rez Studios Authenticate and Update Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/13/2017 02:04:06 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "FABS - Helping agent for MAGIX media database" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/13/2017 02:04:06 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "DbxSvc" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/13/2017 02:04:06 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA LocalSystem Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 6000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (11/13/2017 02:04:06 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Mobizen plugin" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/13/2017 02:04:06 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA Telemetry Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (11/13/2017 02:04:06 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "SQL Server VSS Writer" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
CodeIntegrity:
===================================
Date: 2017-11-12 17:43:56.425
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-11-12 17:43:56.302
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-11-12 17:43:56.121
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-11-12 17:43:56.002
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-11-12 17:43:54.630
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-11-12 17:43:54.531
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-11-12 17:36:36.100
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-11-12 17:36:35.974
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-11-12 17:36:35.778
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-11-12 17:36:35.652
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Xeon(R) CPU E3-1231 v3 @ 3.40GHz
Prozentuale Nutzung des RAM: 19%
Installierter physikalischer RAM: 16326.27 MB
Verfügbarer physikalischer RAM: 13153.49 MB
Summe virtueller Speicher: 25542.27 MB
Verfügbarer virtueller Speicher: 21940.66 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:118.29 GB) (Free:44.36 GB) NTFS
Drive e: (Games) (Fixed) (Total:931.51 GB) (Free:535.2 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: 50F4848D)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=118.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=474 MB) - (Type=27)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 469C672E)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
Lesestoff: