Unbekannte Maleware/Virus

simonspc · 08.12.2015, 20:04

Hallo liebes Team,
Ich bin ziemlich am verzweifeln. Seit einigen Tagen hab ich eine Art Virus, In jedem installierten Browser öffnen sich, zu zufälligen Zeitpunkten, Seiten durch einen automatischen redirect. Sogar in Steam wird man bei manchen Klicks auf ein Ad-Seite im Steambrowser umgeleitet. Absolut kein Virenscanner den ich kenne (online,offline,abgesichert und recoverymode) hat irgendetwas gefunden. Ich hab jeden Browser neuinstalliert, aber das Problem geht nicht weg!
Ich hab selten Probleme was Viren angeht, aber bei diesem weiß ich mir nicht mehr zu helfen, bitte helft mir!

Gruß Simon

[edit] Gerade wieder, hier auf der Seite, ein Link schiebt sich ständig unter den Cursor.

deeprybka · 08.12.2015, 21:01

Mein Name ist Jürgen und ich werde Dir bei Deinem Problem behilflich sein. Zusammen schaffen wir das...

Bitte arbeite alle Schritte der Reihe nach ab.
Lies die Anleitungen sorgfältig durch bevor Du beginnst. Wenn es Probleme gibt oder Du etwas nicht verstehst, dann stoppe mit Deiner Ausführung und beschreibe mir das Problem.
Führe bitte nur Scans durch, zu denen Du von mir aufgefordert wurdest.
Bitte kein Crossposting (posten in mehreren Foren).
Installiere oder deinstalliere während der Bereinigung keine Software, außer Du wurdest dazu aufgefordert.
Speichere alle unsere Tools auf dem Desktop ab. Link: So ladet Ihr unsere Tools richtig
Poste die Logfiles direkt in Deinen Thread in Code-Tags.
Bedenke, dass wir hier alle während unserer Freizeit tätig sind, wenn du innerhalb von 24 Stunden nichts von mir liest, dann schreibe mir bitte eine PM.

Hinweis:
Ich kann Dir niemals eine Garantie geben, dass wir alle schädlichen Dateien finden werden.
Eine Formatierung ist meist der schnellere und immer der sicherste Weg, aber auch nur bei wirklicher Malware empfehlenswert.
Adware & Co. können wir sehr gut entfernen.
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Du mein clean bekommst.

Los geht's:

Schritt 1

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Lesestoff
Posten in CODE-Tags: So gehts...
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert uns massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

simonspc · 08.12.2015, 21:17

Danke für die Hilfe, hier der Code
FRST:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-12-2015
durchgeführt von Simon (Administrator) auf SIMONSPC (08-12-2015 19:54:47)
Gestartet von F:\Simon\Downloads
Geladene Profile: Simon (Verfügbare Profile: Simon & DefaultAppPool)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\ns.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\ns.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2757424 2015-11-12] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2015-10-26] (LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKU\S-1-5-21-2336143983-1811979360-430894021-1000\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
HKU\S-1-5-21-2336143983-1811979360-430894021-1000\...\Run: [EPSON1425B4 (Epson Stylus SX420W)] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGCE.EXE [224768 2009-09-14] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2336143983-1811979360-430894021-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [3011152 2015-11-10] (Valve Corporation)
HKU\S-1-5-18\...\Run: [EPSON1425B4 (Epson Stylus SX420W)] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIGCE.EXE [224768 2009-09-14] (SEIKO EPSON CORPORATION)
ShellIconOverlayIdentifiers: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine64\22.5.2.15\buShell.dll [2015-07-13] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine64\22.5.2.15\buShell.dll [2015-07-13] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine64\22.5.2.15\buShell.dll [2015-07-13] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Simon\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64\FileSyncShell64.dll [2015-09-17] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Simon\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64\FileSyncShell64.dll [2015-09-17] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Simon\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64\FileSyncShell64.dll [2015-09-17] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Simon\AppData\Local\MEGAsync\ShellExtX64.dll Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Simon\AppData\Local\MEGAsync\ShellExtX64.dll Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Simon\AppData\Local\MEGAsync\ShellExtX64.dll Keine Datei
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Simon\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll [2015-09-17] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Simon\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll [2015-09-17] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Simon\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll [2015-09-17] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  Keine Datei
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WG111v3 Smart Wizard.lnk [2013-06-15]
ShortcutTarget: NETGEAR WG111v3 Smart Wizard.lnk -> C:\Program Files (x86)\NETGEAR\WG111v3\WG111v3.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2015-09-09]
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe ()

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

AutoConfigURL: [S-1-5-21-2336143983-1811979360-430894021-1000] => hxxp://unstopp.me/wpad.dat?0dd2e26bf24691c9645fc90193c3dea62276241
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{b32a8aa6-df65-45fa-b25c-5ec9ee67235f}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{eb8607cf-4b5c-418d-b9ed-29d6ba627bc2}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{f087c7c2-90c2-4711-bcda-3b70a6b12a7e}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=de&pid=N360&pvid=21.6.0.32
HKU\S-1-5-21-2336143983-1811979360-430894021-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://houmpage.com/?src=hp&ssid=1449349777&a=1003679&uuid=de5a6fb7-3566-4d43-aba5-fd983da20605
HKU\S-1-5-21-2336143983-1811979360-430894021-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2336143983-1811979360-430894021-1000 -> {cf34d395-9ff1-49a0-98a5-8db1636431b1} URL = hxxp://houmpage.com/search/?src=ds&q={searchTerms}&ssid=1449349777&a=1003679&uuid=de5a6fb7-3566-4d43-aba5-fd983da20605
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine64\22.5.2.15\coIEPlg.dll [2015-07-10] (Symantec Corporation)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\coIEPlg.dll [2015-07-10] (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton 360\Engine\21.7.0.11\IPS\IPSBHO.DLL => Keine Datei
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-22] (Oracle Corporation)
BHO-x32: af0.Adblock.BHO -> {90EFF544-3981-4d46-85C9-C0361D0931D6} -> mscoree.dll => Keine Datei
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-22] (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine64\22.5.2.15\coIEPlg.dll [2015-07-10] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\coIEPlg.dll [2015-07-10] (Symantec Corporation)
Toolbar: HKU\S-1-5-21-2336143983-1811979360-430894021-1000 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine64\22.5.2.15\coIEPlg.dll [2015-07-10] (Symantec Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -  Keine Datei

FireFox:
========
FF ProfilePath: C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\kgm45mf1.default
FF Homepage: hxxp://houmpage.com/?src=hp&ssid=1449349777&a=1003679&uuid=de5a6fb7-3566-4d43-aba5-fd983da20605
FF Session Restore: -> ist aktiviert.
FF NetworkProxy: "http", "www-proxy.t-online.de"
FF NetworkProxy: "http_port", 80
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-12-06] ()
FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll [Keine Datei]
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-12-06] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll [2014-06-24] (Adobe Systems, Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll [Keine Datei]
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-05-13] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-05-13] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-22] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-01-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-11-24] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-11-24] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-06] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2336143983-1811979360-430894021-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Simon\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-06-10] (Unity Technologies ApS)
FF Extension: Amazon-Icon - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\kgm45mf1.default\extensions\amazon-icon@giga.de [2015-03-26] [ist nicht signiert]
FF Extension: Telekom YouTube Turbo - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\kgm45mf1.default\extensions\info@maltegoetz.de.xpi [2015-12-03]
FF Extension: MySearch - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\kgm45mf1.default\Extensions\e3e@uaoyatwiaa.com [2014-08-01] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.5.0.124\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.5.0.124\coFFPlgn [2015-12-08]

Chrome: 
=======
CHR Profile: C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-06]
CHR Extension: (YouTube) - C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-06]
CHR Extension: (Google-Suche) - C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-06]
CHR Extension: (AdBlock) - C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-12-06]
CHR Extension: (Video Speed Controller) - C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffaoalbilbmmfgbnbgppjihopabppdk [2015-12-06]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-12-06]
CHR Extension: (Google Mail) - C:\Users\Simon\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-06]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\Exts\Chrome.crx [2015-12-05]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\Exts\Chrome.crx [2015-12-05]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ocbnpbkmjpgbdcgiflkgkpnkinifpgpj] - <kein Path/update_url>

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1125888 2015-08-26] ()
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [236832 2015-09-06] (EasyAntiCheat Ltd)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1156400 2015-11-12] (NVIDIA Corporation)
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-05-13] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-10-26] (LogMeIn, Inc.)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-05] (Microsoft Corporation)
R2 NS; C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\NS.exe [282016 2015-07-16] (Symantec Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872688 2015-11-12] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [8133424 2015-11-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5915440 2015-11-12] (NVIDIA Corporation)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2099720 2015-11-28] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2015-11-29] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 acedrv10; C:\WINDOWS\system32\drivers\acedrv10.sys [464464 2015-11-16] (Protect Software GmbH)
R2 acehlp10; C:\WINDOWS\system32\drivers\acehlp10.sys [229664 2015-11-16] (Protect Software GmbH)
S3 adp3132; C:\Windows\system32\drivers\adp3132.sys [385072 2010-01-28] (Adaptec, Inc.)
S3 amdide64; C:\Windows\system32\drivers\amdide64.sys [11904 2011-12-18] (Advanced Micro Devices Inc.)
R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [37472 2013-02-14] (Advanced Micro Devices, Inc.)
S3 asahci64; C:\Windows\system32\drivers\asahci64.sys [49760 2012-01-06] (Asmedia Technology)
S3 asvpndrv; C:\Windows\System32\DRIVERS\asvpndrv.sys [31744 2014-05-17] (Astrill)
S3 athr; C:\Windows\System32\drivers\athw10x.sys [4301304 2015-05-17] (Qualcomm Atheros Communications, Inc.)
R1 BHDrvx64; C:\Program Files (x86)\Norton Security\NortonData\22.5.0.124\Definitions\BASHDefs\20151113.001\BHDrvx64.sys [1665608 2015-11-13] (Symantec Corporation)
R1 ccSet_NS; C:\Windows\system32\drivers\NSx64\1605020.00F\ccSetx64.sys [173808 2015-07-11] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [498512 2015-12-05] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [157520 2015-12-05] (Symantec Corporation)
S3 EtronSTOR; C:\Windows\System32\Drivers\EtronSTOR.sys [32512 2012-06-13] (Etron Technology Inc)
S3 FLxHCIh; C:\Windows\system32\drivers\FLxHCIh.sys [77040 2012-11-02] (Fresco Logic)
R3 GameKB; C:\Windows\system32\drivers\GameKB.sys [31232 2013-10-15] ( )
S3 ghsmdm; C:\Windows\system32\DRIVERS\ghsmdm.sys [129304 2011-03-28] (ZTE Incorporated)
R3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
S3 iaStorS; C:\Windows\system32\drivers\iaStorS.sys [652760 2012-10-18] (Intel Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Security\NortonData\22.5.0.124\Definitions\IPSDefs\20151205.001\IDSvia64.sys [767224 2015-12-04] (Symantec Corporation)
S3 ISASerial; C:\Windows\system32\drivers\ISASerial.sys [72192 2008-02-20] (Windows (R) Codename Longhorn DDK provider)
S3 massfilter_hs; C:\Windows\System32\drivers\massfilter_hs.sys [18456 2011-07-07] (HandSet Incorporated)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
S3 MTsensor; C:\Windows\system32\drivers\ASACPI.sys [15416 2009-07-16] ()
S3 MtsHID; C:\Windows\system32\drivers\MtsHID.sys [27664 2009-07-15] (TechniSat Provide)
R3 NAVENG; C:\Program Files (x86)\Norton Security\NortonData\22.5.0.124\Definitions\VirusDefs\20151208.003\ENG64.SYS [138488 2015-12-05] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton Security\NortonData\22.5.0.124\Definitions\VirusDefs\20151208.003\EX64.SYS [2148080 2015-12-05] (Symantec Corporation)
S3 nvamacpi; C:\Windows\system32\drivers\NVAMACPI.sys [28192 2009-07-17] (NVIDIA Corporation)
S3 nvrd64; C:\Windows\system32\drivers\nvrd64.sys [175648 2009-08-04] (NVIDIA Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19760 2015-11-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
S3 ocz10xx; C:\Windows\system32\drivers\ocz10xx.sys [139056 2012-04-05] (OCZ Technology Group, Inc.)
S3 OxPPort; C:\Windows\system32\drivers\OxPPort.sys [98304 2008-07-31] (OEM)
S3 PciIsaSerial; C:\Windows\system32\drivers\PciIsaSerial.sys [72192 2008-05-22] (Windows (R) Codename Longhorn DDK provider)
S3 PciPPorts; C:\Windows\system32\drivers\PciPPorts.sys [95744 2008-05-22] ()
S3 PciSPorts; C:\Windows\system32\drivers\PciSPorts.sys [126464 2008-05-22] ()
S3 PPorts; C:\Windows\system32\drivers\PPorts.sys [95744 2008-02-20] ()
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek                                            )
R3 RTL8187B; C:\Windows\System32\drivers\rtl8187B.sys [459336 2015-07-10] (Realtek Semiconductor Corporation                           )
S3 rusb3hub; C:\Windows\system32\drivers\rusb3hub.sys [102912 2012-03-15] (Renesas Electronics Corporation)
S3 rusb3xhc; C:\Windows\system32\drivers\rusb3xhc.sys [220672 2012-03-15] (Renesas Electronics Corporation)
S3 Si3124r5; C:\Windows\system32\drivers\Si3124r5.sys [340008 2010-04-13] (Silicon Image, Inc)
R0 SiFilter; C:\Windows\System32\drivers\SiWinAcc.sys [22568 2010-04-13] (Silicon Image, Inc.)
R0 SiRemFil; C:\Windows\System32\drivers\SiRemFil.sys [16936 2010-04-13] (Silicon Image, Inc.)
S3 SPorts; C:\Windows\system32\drivers\SPorts.sys [124416 2008-02-20] ()
R3 SRTSP; C:\Windows\System32\Drivers\NSx64\1605020.00F\SRTSP64.SYS [926448 2015-07-11] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NSx64\1605020.00F\SRTSPX64.SYS [50936 2015-07-11] (Symantec Corporation)
S3 StnPport; C:\Windows\system32\drivers\StnPport.sys [97280 2009-12-17] ()
S3 StnSport; C:\Windows\system32\drivers\StnSport.sys [126464 2009-11-14] ()
R0 SymEFASI; C:\Windows\System32\drivers\NSx64\1605020.00F\SYMEFASI64.SYS [1620720 2015-07-11] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\NSx64\1605020.00F\SymELAM.sys [24192 2015-07-11] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [111344 2015-12-05] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NSx64\1605020.00F\Ironx64.SYS [297720 2015-07-11] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NSx64\1605020.00F\SYMNETS.SYS [576248 2015-07-11] (Symantec Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 VUSB3HUB; C:\Windows\system32\drivers\ViaHub3.sys [210944 2012-05-30] (VIA Technologies, Inc.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 xhcdrv; C:\Windows\system32\drivers\xhcdrv.sys [261120 2012-05-30] (VIA Technologies, Inc.)
S3 cpuz138; \??\C:\Users\Simon\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [X]
U3 idsvc; kein ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-12-08 19:54 - 2015-12-08 19:54 - 00000000 ____D C:\FRST
2015-12-08 19:24 - 2015-12-08 19:24 - 00016148 _____ C:\WINDOWS\system32\SIMONSPC_Simon_HistoryPrediction.bin
2015-12-08 19:16 - 2015-12-08 19:16 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DeadLock
2015-12-08 19:16 - 2015-12-08 19:16 - 00000000 ____D C:\Program Files (x86)\CodeDead
2015-12-08 18:56 - 2015-12-08 18:56 - 00000000 ____D C:\Users\Simon\AppData\Roaming\AVAST Software
2015-12-08 18:55 - 2015-12-08 19:34 - 00000000 ____D C:\Program Files (x86)\Steam
2015-12-08 18:55 - 2015-12-08 18:55 - 00000986 _____ C:\Users\Public\Desktop\Steam.lnk
2015-12-08 18:55 - 2015-12-08 18:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-12-08 18:51 - 2015-12-08 18:51 - 00000000 ____D C:\ProgramData\AVAST Software
2015-12-07 21:02 - 2015-12-07 21:02 - 00002560 _____ C:\WINDOWS\_MSRSTRT.EXE
2015-12-07 20:30 - 2015-12-07 20:33 - 00000000 ____D C:\ProgramData\HitmanPro
2015-12-07 20:22 - 2015-12-07 20:26 - 00847710 _____ C:\TDSSKiller.3.1.0.7_07.12.2015_20.22.58_log.txt
2015-12-07 20:15 - 2015-12-07 20:15 - 00221032 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-07 20:04 - 2015-12-07 20:28 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2015-12-07 20:04 - 2015-12-07 20:04 - 00000000 ____D C:\WINDOWS\pss
2015-12-06 17:46 - 2015-12-06 17:46 - 00002206 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2015-12-06 17:46 - 2015-12-06 17:46 - 00000000 ____D C:\WINDOWS\LastGood
2015-12-06 17:46 - 2015-11-24 19:42 - 00102704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2015-12-06 17:45 - 2015-11-25 00:07 - 42913912 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 37882672 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 22345336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 18389624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 16561320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 15933400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 15839392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 14844304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 13533416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 12040952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 02876536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 02496816 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 01905272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435906.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 01564792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435906.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 01016360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 00877872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 00861816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 00823232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 00689784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 00673912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 00539464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 00503416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 00501056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 00446768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 00445400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 00422752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 00413816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 00369272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 00177416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 00151368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-12-06 17:45 - 2015-11-25 00:07 - 00039240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2015-12-06 12:42 - 2015-12-06 12:42 - 00002045 _____ C:\Users\Simon\AppData\Local\recently-used.xbel
2015-12-06 01:07 - 2015-11-12 19:37 - 00112712 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2015-12-06 01:04 - 2015-12-08 19:29 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton Security
2015-12-06 00:52 - 2015-12-06 00:52 - 00002324 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-12-06 00:52 - 2015-12-06 00:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-12-06 00:47 - 2015-12-08 19:52 - 00001126 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-06 00:47 - 2015-12-08 19:24 - 00001122 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-06 00:47 - 2015-12-06 00:47 - 00004184 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-06 00:47 - 2015-12-06 00:47 - 00003952 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-06 00:28 - 2015-12-06 00:28 - 00000000 ____D C:\Users\Simon\AppData\Local\Deployment
2015-12-06 00:25 - 2015-12-06 00:25 - 00001216 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-12-05 23:49 - 2015-12-07 18:06 - 00000000 ____D C:\Users\Simon\AppData\Local\The Witcher
2015-12-05 22:35 - 2015-12-07 20:07 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-12-05 22:35 - 2015-12-06 00:22 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-12-05 22:35 - 2015-12-05 22:35 - 00001171 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-12-05 22:35 - 2015-12-05 22:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-12-05 22:35 - 2015-12-05 22:35 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-12-05 22:35 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-12-05 22:35 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-12-05 22:35 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2015-12-05 22:34 - 2015-12-06 15:17 - 00000000 ____D C:\WINDOWS\system32\Drivers\NSx64
2015-12-05 22:34 - 2015-12-06 00:59 - 00003386 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration
2015-12-05 22:34 - 2015-12-06 00:59 - 00002381 _____ C:\Users\Public\Desktop\Norton Security.LNK
2015-12-05 22:34 - 2015-12-06 00:59 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2015-12-05 22:34 - 2015-12-05 22:45 - 00111344 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS
2015-12-05 22:34 - 2015-12-05 22:45 - 00008214 _____ C:\WINDOWS\system32\Drivers\SYMEVENT64x86.CAT
2015-12-05 22:34 - 2015-12-05 22:34 - 00000000 ____D C:\Program Files\Common Files\Symantec Shared
2015-12-05 22:34 - 2015-12-05 22:34 - 00000000 ____D C:\Program Files (x86)\Norton Security
2015-12-05 22:29 - 2015-12-05 22:29 - 00000000 ____D C:\Users\Simon\AppData\Roaming\QuickScan
2015-11-23 16:35 - 2015-11-23 16:35 - 00000000 ____D C:\Users\Simon\AppData\Local\Mega Limited
2015-11-22 18:58 - 2015-11-22 18:58 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2015-11-22 18:58 - 2015-11-16 04:54 - 01905456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435900.dll
2015-11-22 18:58 - 2015-11-16 04:54 - 01564792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435900.dll
2015-11-18 23:03 - 2015-05-17 12:00 - 04301304 _____ (Qualcomm Atheros Communications, Inc.) C:\WINDOWS\system32\Drivers\athw10x.sys
2015-11-18 22:58 - 2015-11-03 19:20 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-11-18 22:58 - 2015-11-03 19:20 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-18 22:57 - 2015-12-07 20:05 - 00000000 ____D C:\WINDOWS\Minidump
2015-11-16 22:12 - 2015-11-16 22:12 - 00000000 ____D C:\Users\Simon\.thumbnails
2015-11-16 22:11 - 2015-12-06 12:42 - 00000000 ____D C:\Users\Simon\.gimp-2.8
2015-11-16 22:11 - 2015-11-16 22:11 - 00464464 _____ (Protect Software GmbH) C:\WINDOWS\system32\Drivers\acedrv10.sys
2015-11-16 22:11 - 2015-11-16 22:11 - 00229664 _____ (Protect Software GmbH) C:\WINDOWS\system32\Drivers\acehlp10.sys
2015-11-16 22:04 - 2015-11-16 22:04 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Atari
2015-11-16 21:58 - 2015-11-16 21:58 - 00043520 _____ C:\WINDOWS\SysWOW64\CmdLineExt03.dll
2015-11-14 15:31 - 2015-11-14 15:31 - 00000000 ____D C:\Users\Simon\AppData\Local\oneClickRoot
2015-11-14 15:31 - 2015-11-14 15:31 - 00000000 ____D C:\Users\Simon\AppData\Local\AWSToolkit
2015-11-14 15:30 - 2015-11-14 15:30 - 00000000 ____D C:\Users\Simon\AppData\Roaming\One Click Root
2015-11-14 14:39 - 2015-11-14 14:39 - 00000000 ____D C:\Users\Simon\AppData\Local\My Games
2015-11-14 14:36 - 2015-11-29 11:24 - 00281872 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2015-11-14 14:36 - 2015-11-29 11:24 - 00076888 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-11-13 19:50 - 2015-11-13 19:50 - 00000000 _____ C:\WINDOWS\My Product Name
2015-11-13 19:50 - 2015-11-13 19:50 - 00000000 _____ C:\Users\Simon\Downloads\GTAV_Setup_Tool.exe
2015-11-13 19:50 - 2015-11-13 19:50 - 00000000 _____ C:\Users\Simon\Desktop\OpenOffice 4.1.1 (de) Installation Files
2015-11-13 19:50 - 2015-11-13 19:50 - 00000000 _____ C:\bfff6744af70b90b49f28346cdd773ea
2015-11-13 19:50 - 2015-11-13 19:50 - 00000000 _____ C:\8f23d2348890ff4a71ac07a236309363
2015-11-13 19:50 - 2015-11-13 19:50 - 00000000 _____ C:\627d08ba61b9df8749362f
2015-11-13 19:50 - 2015-11-13 19:50 - 00000000 _____ C:\5a37be3f1cf146ab32dbc7
2015-11-13 17:04 - 2015-11-13 17:04 - 00000962 _____ C:\Users\Public\Desktop\Sizer.lnk
2015-11-13 17:04 - 2015-11-13 17:04 - 00000000 ____D C:\Program Files (x86)\Sizer
2015-11-13 17:02 - 2015-11-13 17:02 - 00001095 _____ C:\Users\Public\Desktop\WOW Slider.lnk
2015-11-13 17:02 - 2015-11-13 17:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WOW Slider
2015-11-13 17:02 - 2015-11-13 17:02 - 00000000 ____D C:\Program Files (x86)\WOW Slider
2015-11-11 16:15 - 2015-11-05 06:15 - 08020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-11-11 16:15 - 2015-11-05 06:15 - 00541024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-11 16:15 - 2015-11-05 06:14 - 00459104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-11-11 16:15 - 2015-11-05 06:13 - 00577888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-11-11 16:15 - 2015-11-05 06:11 - 01392480 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-11-11 16:15 - 2015-11-05 06:06 - 03621248 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-11-11 16:15 - 2015-11-05 05:56 - 01083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-11-11 16:15 - 2015-11-05 05:56 - 00116064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-11-11 16:15 - 2015-11-05 05:56 - 00025280 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-11-11 16:15 - 2015-11-05 05:30 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-11-11 16:15 - 2015-11-05 05:24 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-11-11 16:15 - 2015-11-05 05:23 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-11-11 16:15 - 2015-11-05 05:20 - 21873664 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-11-11 16:15 - 2015-11-05 05:18 - 24597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-11-11 16:15 - 2015-11-05 05:18 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-11-11 16:15 - 2015-11-05 05:17 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-11 16:15 - 2015-11-05 05:12 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2015-11-11 16:15 - 2015-11-05 05:10 - 12504064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-11-11 16:15 - 2015-11-05 05:10 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-11-11 16:15 - 2015-11-05 05:07 - 01068032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-11-11 16:15 - 2015-11-05 05:06 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-11 16:15 - 2015-11-05 05:05 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-11-11 16:15 - 2015-11-05 05:03 - 02180608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-11 16:15 - 2015-11-05 05:03 - 01015808 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-11-11 16:15 - 2015-11-05 05:01 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-11-11 16:15 - 2015-11-05 04:59 - 03587072 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-11-11 16:15 - 2015-11-05 04:59 - 02675200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-11 16:15 - 2015-11-05 04:56 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-11 16:15 - 2015-11-05 04:55 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-11-11 16:15 - 2015-11-05 04:54 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-11-11 16:15 - 2015-11-05 04:47 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-11-11 16:15 - 2015-11-05 04:42 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-11-11 16:15 - 2015-11-05 04:40 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-11-11 16:15 - 2015-11-05 04:35 - 18803712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-11-11 16:15 - 2015-11-05 04:35 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-11-11 16:15 - 2015-11-05 04:28 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-11-11 16:15 - 2015-11-05 04:27 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2015-11-11 16:15 - 2015-11-05 04:23 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dlnashext.dll
2015-11-11 16:14 - 2015-11-05 06:06 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-11-11 16:14 - 2015-11-05 06:01 - 00607408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-11-11 16:14 - 2015-11-05 05:23 - 00762888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-11-11 16:14 - 2015-11-05 05:18 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-11-11 16:14 - 2015-11-05 05:11 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-11 16:14 - 2015-11-05 05:05 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-11-11 16:14 - 2015-11-05 05:01 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-11-11 16:14 - 2015-11-05 05:01 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-11-11 16:14 - 2015-11-05 04:58 - 01383936 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-11-11 16:14 - 2015-11-05 04:58 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-11-11 16:14 - 2015-11-05 04:34 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-11-11 16:14 - 2015-11-05 04:33 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-11-11 16:14 - 2015-11-05 04:33 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-11-11 16:14 - 2015-11-05 04:30 - 00767488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-11-11 16:14 - 2015-11-05 04:27 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-11-10 22:37 - 2015-11-05 18:00 - 01905456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435891.dll
2015-11-10 22:37 - 2015-11-05 18:00 - 01564792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435891.dll
2015-11-09 19:05 - 2015-11-12 22:12 - 00000000 ____D C:\Users\Simon\AppData\Local\David_Rudie

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-12-08 19:54 - 2015-07-10 10:05 - 00000000 ____D C:\Windows
2015-12-08 19:30 - 2015-08-05 22:31 - 02077126 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-08 19:30 - 2015-07-10 17:34 - 00883584 _____ C:\WINDOWS\system32\perfh007.dat
2015-12-08 19:30 - 2015-07-10 17:34 - 00195718 _____ C:\WINDOWS\system32\perfc007.dat
2015-12-08 19:30 - 2015-07-10 12:02 - 00000000 ____D C:\WINDOWS\INF
2015-12-08 19:24 - 2015-08-05 22:30 - 00000000 ____D C:\ProgramData\NVIDIA
2015-12-08 19:24 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-12-08 19:23 - 2015-07-10 10:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-12-08 19:22 - 2014-11-14 19:35 - 00000000 ____D C:\Users\Simon\AppData\Roaming\TS3Client
2015-12-08 18:55 - 2015-08-05 22:33 - 00000000 ____D C:\Users\Simon
2015-12-08 18:54 - 2013-07-16 13:31 - 00000000 ____D C:\Users\Simon\AppData\Local\CrashDumps
2015-12-07 21:20 - 2015-08-10 12:32 - 00000000 ____D C:\AdwCleaner
2015-12-07 21:20 - 2014-07-13 12:41 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-12-07 20:38 - 2013-11-24 15:42 - 00007658 _____ C:\Users\Simon\AppData\Local\Resmon.ResmonCfg
2015-12-07 20:26 - 2015-10-04 21:17 - 00000000 ____D C:\Program Files (x86)\SHARKOON Skiller
2015-12-07 20:05 - 2014-12-22 17:33 - 00000000 ____D C:\Users\Simon\AppData\Local\LogMeIn Hamachi
2015-12-07 19:55 - 2015-07-10 12:04 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-12-06 17:46 - 2015-08-05 22:30 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-12-06 17:46 - 2014-04-17 18:10 - 00000000 ____D C:\temp
2015-12-06 17:46 - 2013-10-28 22:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-12-06 01:07 - 2013-11-13 15:22 - 00000000 ____D C:\Users\Simon\AppData\Local\NVIDIA Corporation
2015-12-06 00:51 - 2014-04-27 17:27 - 00000000 ____D C:\Program Files (x86)\Google
2015-12-05 23:49 - 2014-04-27 17:27 - 00000000 ____D C:\Users\Simon\AppData\Local\Google
2015-12-05 22:46 - 2015-07-10 10:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-12-05 22:34 - 2013-06-16 13:09 - 00000000 ____D C:\ProgramData\Norton
2015-12-05 22:33 - 2013-07-18 15:47 - 00000000 ____D C:\Program Files (x86)\NortonInstaller
2015-12-05 21:35 - 2015-11-01 13:40 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-12-05 21:20 - 2015-11-03 12:40 - 00006335 _____ C:\Users\Simon\Downloads\FTBLauncherLog.txt
2015-12-05 21:20 - 2015-11-03 12:40 - 00000068 _____ C:\Users\Simon\Downloads\MinecraftLog.txt
2015-12-05 20:23 - 2013-06-14 15:02 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-12-04 21:19 - 2015-11-04 19:53 - 00000000 ____D C:\Users\Simon\AppData\Roaming\.minecraft
2015-11-29 19:13 - 2014-05-30 16:31 - 00000000 ____D C:\ProgramData\Origin
2015-11-29 11:25 - 2014-07-30 13:22 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2015-11-29 11:24 - 2014-06-23 19:07 - 00000000 ____D C:\ProgramData\Package Cache
2015-11-29 11:24 - 2013-12-08 14:09 - 00281872 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2015-11-26 01:34 - 2015-07-13 19:45 - 11228488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-11-25 00:07 - 2015-07-13 19:45 - 18487360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-11-25 00:07 - 2015-07-13 19:45 - 12870384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-11-25 00:07 - 2015-07-13 19:45 - 03540360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-11-25 00:07 - 2015-07-13 19:45 - 03126800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-11-25 00:07 - 2015-07-13 19:45 - 00034494 _____ C:\WINDOWS\system32\nvinfo.pb
2015-11-25 00:07 - 2015-04-16 18:03 - 00205456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2015-11-25 00:07 - 2015-04-16 06:19 - 01572496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2015-11-25 00:07 - 2013-06-14 14:55 - 00112760 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-11-25 00:07 - 2013-06-14 14:55 - 00105080 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-11-24 20:32 - 2015-08-05 22:30 - 06358648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-11-24 20:32 - 2015-08-05 22:30 - 02983032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-11-24 20:32 - 2015-08-05 22:30 - 02554672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-11-24 20:32 - 2015-08-05 22:30 - 00938616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-11-24 20:32 - 2015-08-05 22:30 - 00385328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-11-24 20:32 - 2015-08-05 22:30 - 00062768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-11-23 22:31 - 2015-08-23 14:18 - 00000000 ____D C:\Program Files\WBFS
2015-11-23 21:35 - 2015-08-05 22:30 - 06049858 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-11-22 14:03 - 2013-10-22 13:40 - 00000000 ____D C:\ProgramData\Oracle
2015-11-22 12:45 - 2015-11-04 14:36 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-11-22 12:45 - 2015-10-21 13:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2015-11-22 12:45 - 2015-10-06 17:27 - 00000000 ____D C:\Users\Simon\.oracle_jre_usage
2015-11-22 12:45 - 2014-10-19 11:55 - 00000000 ____D C:\Program Files (x86)\Java
2015-11-22 12:45 - 2013-10-22 13:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-11-21 16:38 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-21 15:38 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps
2015-11-20 20:31 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache
2015-11-18 22:58 - 2015-08-05 22:54 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-11-18 22:57 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-14 14:36 - 2013-12-08 14:09 - 02250024 _____ C:\WINDOWS\SysWOW64\pbsvc.exe
2015-11-13 19:50 - 2015-09-09 17:42 - 00000000 ____D C:\Program Files (x86)\TP-LINK
2015-11-13 18:13 - 2015-04-15 15:14 - 00000080 _____ C:\Users\Simon\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-11-12 19:37 - 2015-08-06 11:46 - 01828160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-11-12 19:37 - 2015-08-06 11:46 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-11-12 19:37 - 2015-08-06 11:46 - 01509824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-11-12 19:37 - 2015-08-06 11:46 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-11-11 19:16 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-11 19:15 - 2013-07-26 20:43 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-11 19:12 - 2013-06-28 23:18 - 145617392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-11-10 16:27 - 2013-06-16 15:10 - 00000000 ____D C:\ProgramData\Skype
2015-11-10 16:26 - 2013-06-16 15:10 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Skype

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2013-11-15 15:47 - 2013-11-15 15:47 - 117266842 _____ () C:\Users\Simon\AppData\Roaming\.minecraft.zip
2014-06-17 20:10 - 2015-09-07 17:30 - 0000098 _____ () C:\Users\Simon\AppData\Roaming\LauncherSettings_live.cfg
2013-07-14 12:19 - 2013-07-14 12:19 - 0001247 _____ () C:\Users\Simon\AppData\Roaming\Roaming - Verknüpfung.lnk
2015-09-07 17:22 - 2015-09-07 17:23 - 0010499 _____ () C:\Users\Simon\AppData\Roaming\TheHunterSettings_live.bin
2014-06-17 19:44 - 2015-09-07 17:20 - 0000040 _____ () C:\Users\Simon\AppData\Roaming\TheHunterSettings_steam_live.cfg
2013-07-14 12:19 - 2014-01-24 15:10 - 0047104 ___SH () C:\Users\Simon\AppData\Roaming\Thumbs.db
2015-12-06 12:42 - 2015-12-06 12:42 - 0002045 _____ () C:\Users\Simon\AppData\Local\recently-used.xbel
2013-11-24 15:42 - 2015-12-07 20:38 - 0007658 _____ () C:\Users\Simon\AppData\Local\Resmon.ResmonCfg
2015-08-05 22:30 - 2015-08-05 22:30 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\Simon\AppData\Local\Temp\sqlite3.dll
C:\Users\Simon\AppData\Local\Temp\{CC1208CA-C96F-4057-B935-72612942657A}.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


ACHTUNG: ==> Auf den BCD konnte nicht zugegriffen werden. 


LastRegBack: 2015-12-06 18:14

==================== Ende von FRST.txt ============================

simonspc · 08.12.2015, 21:18

Addition

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-12-2015
durchgeführt von Simon (2015-12-08 19:55:09)
Gestartet von F:\Simon\Downloads
Windows 10 Home (X64) (2015-08-05 21:54:32)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2336143983-1811979360-430894021-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2336143983-1811979360-430894021-503 - Limited - Disabled)
Gast (S-1-5-21-2336143983-1811979360-430894021-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2336143983-1811979360-430894021-1003 - Limited - Enabled)
Simon (S-1-5-21-2336143983-1811979360-430894021-1000 - Administrator - Enabled) => C:\Users\Simon

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

 (HKLM\...\UDK-08edf8be-5306-4c06-884e-ea81b1b8b3f1) (Version:  - RuneStorm
AdblockIE (HKLM-x32\...\{5508128A-2C7B-46B5-81F9-58E8E8115F0B}) (Version: 1.2 - af0.net)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
Assassin's Creed Rogue (HKLM-x32\...\Uplay Install 895) (Version:  - Ubisoft)
Assassin's Creed Unity (HKLM-x32\...\Uplay Install 720) (Version:  - Ubisoft)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.6.2.40658 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 4.05 - Piriform)
CLICKBIOSII (HKLM-x32\...\{EBCB111F-4907-4B28-BD03-F5BD901106D2}_is1) (Version: 1.0.123 - MSI)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
Craften Terminal 4.0.2 (HKLM-x32\...\{4e7c3936-7c06-4ef0-928b-c5d92f372578}_is1) (Version: 4.0.2 - Craften.de)
Crysis®3 (HKLM-x32\...\{4198AE83-A3C6-4C41-85C8-EC63E990696E}) (Version: 1.0.0.0 - Electronic Arts)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DayZ Commander (HKLM-x32\...\{7B2CA5E9-763C-4FCE-81EE-13E81ABFE908}) (Version: 0.92.115 - Dotjosh Studios)
DeadLock (HKLM-x32\...\{44B03566-4ED2-4B03-B593-26B2C5826FF4}) (Version: 1.2.2 - CodeDead)
Die Siedler II - Die nächste Generation (HKLM-x32\...\S2TNG) (Version:  - )
EPSON SX420W Series Printer Uninstall (HKLM\...\EPSON SX420W Series) (Version:  - SEIKO EPSON Corporation)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Far Cry 4 (HKLM-x32\...\Uplay Install 420) (Version:  - Ubisoft)
Fotogalerie (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.73 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Graphics Rules Maker (HKLM-x32\...\Graphics Rules Maker) (Version: 1.1.0 - SimsNetwork.com)
Handset USB Driver (HKLM\...\{D2D77DC2-8299-11D1-8949-444553540000}_is1) (Version: 5.2066.1.A11B02 - )
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
Java SE Development Kit 8 Update 60 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180600}) (Version: 8.0.600.27 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.406 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.406 - LogMeIn, Inc.) Hidden
Magic DVD Copier V9.0.0 (HKLM-x32\...\Magic DVD Copier_is1) (Version:  - Magic DVD Software, Inc.)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Mozilla Firefox 30.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSI Afterburner 3.0.1 (HKLM-x32\...\Afterburner) (Version: 3.0.1 - MSI Co., LTD)
MSI Kombustor 3.5.1 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version:  - MSI Co., LTD)
NETGEAR WG111v3 wireless USB 2.0 adapter (HKLM-x32\...\InstallShield_{5396FBD8-8BD7-47F9-92AE-F62F13D5A11D}) (Version: 1.00.0000 - NETGEAR)
NETGEAR WG111v3 wireless USB 2.0 adapter (x32 Version: 1.00.0000 - NETGEAR) Hidden
Norton Security (HKLM-x32\...\NS) (Version: 22.5.2.15 - Symantec Corporation)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 359.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 359.06 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.7.4.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.7.4.10 - NVIDIA Corporation)
NVIDIA Grafiktreiber 359.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 359.06 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
Peggle (HKLM-x32\...\{715AD72D-887A-459E-988B-D4F3E87FA24B}) (Version: 1.04.0.0 - PopCap Games)
Project 64 version 2.1.0.1 (HKLM-x32\...\Project 64_is1) (Version: 2.1.0.1 - )
ProtectDisc Helper Driver 10 (HKLM-x32\...\ProtectDisc Driver 10) (Version: 10.0.0.5 - )
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
ROCCAT Lua Mouse Driver (HKLM-x32\...\InstallShield_{0F5183CD-4A86-43A4-8CAA-1045871F54DE}) (Version: 1.14 - ROCCAT)
ROCCAT Lua Mouse Driver (x32 Version: 1.14 - ROCCAT) Hidden
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.8 - Rockstar Games)
RollerCoaster Tycoon 2 (HKLM-x32\...\{72DF62BD-FF36-424E-AA5F-D89BAFF2C249}) (Version:  - )
SHARKOON Skiller (HKLM-x32\...\{91C25547-9534-41A5-823A-1E54BA16EA3F}) (Version: 1.00.0000 - )
SHIELD Streaming (Version: 4.1.0240 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.7.4.10 - NVIDIA Corporation) Hidden
SimCity 2000 Special Edition (HKLM-x32\...\{59D2C751-F7BE-4E9F-9C8C-1F16013802C7}) (Version: 2.0.0.1 - Electronic Arts)
Sizer 3.34 (HKLM-x32\...\{DE43AA92-E8C0-4620-AFE2-FBD623C71643}) (Version: 3.3.4.0 - Brian Apps)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Stronghold Legends (HKLM-x32\...\{66A405D2-BA14-4594-BF36-B3B544F0754E}) (Version: 1.20.0000 - Firefly Studios)
SweetFX Configurator (HKU\S-1-5-21-2336143983-1811979360-430894021-1000\...\f4ebec2474b2f64a) (Version: 1.3.3.32 - SweetFX Configurator)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer)
The Sims 2: Ultimate Collection (HKLM-x32\...\{04450C18-F039-4B81-A621-70C3B0F523D5}) (Version: 1.0.0.0 - Electronic Arts)
TL-WN851ND Driver (HKLM-x32\...\{4BAE4C76-44C3-418F-B715-6BBF5A65323E}) (Version: 1.00.0000 - TP-LINK)
Ultima 8 (HKLM-x32\...\{428C6B01-D292-46F9-9321-75668ED17DA2}) (Version: 1.0.0.1 - Electronic Arts)
Unity Web Player (HKU\S-1-5-21-2336143983-1811979360-430894021-1000\...\UnityWebPlayer) (Version: 4.5.1f3 - Unity Technologies ApS)
Uplay (HKLM-x32\...\Uplay) (Version: 4.0 - Ubisoft)
Viscera Cleanup Detail - ALPHA (HKLM\...\UDK-21259f03-d0b4-4048-97ab-a88246cbb3eb) (Version:  - RuneStorm)
Viscera Cleanup Detail - Alpha (HKLM\...\UDK-9a2ae211-257e-4255-8f6e-67b5c4a8be3e) (Version:  - Epic Games, Inc.)
Viscera Cleanup Detail: Santas Rampage
Watch_Dogs (HKLM-x32\...\Uplay Install 274) (Version:  - Ubisoft)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3522.0110 - Microsoft Corporation)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WOW Slider (HKLM-x32\...\WOW Slider_is1) (Version:  - )
ZTE Handset USB Driver (HKLM\...\{01D42BF0-ED08-463f-8A28-99EB6FEE962B}) (Version:  - ZTE Corporation)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2336143983-1811979360-430894021-1000_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-2336143983-1811979360-430894021-1000_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-2336143983-1811979360-430894021-1000_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-2336143983-1811979360-430894021-1000_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-2336143983-1811979360-430894021-1000_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-2336143983-1811979360-430894021-1000_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)

==================== Wiederherstellungspunkte =========================

16-11-2015 18:07:55 Windows Update
19-11-2015 20:18:15 Windows Update
23-11-2015 22:29:57 Removed One Click Root
29-11-2015 11:23:38 DirectX wurde installiert
05-12-2015 21:23:52 Windows-Sicherung
06-12-2015 19:00:01 Windows-Sicherung
08-12-2015 18:53:37 Steam wird entfernt

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {012E2F5C-AEEC-4184-B9F2-BB553E27C391} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {033E1C02-4654-4F5A-9A2B-C2C653E6EED4} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {1424E8B3-3F49-423A-A616-1C6DF3D1F1C2} - System32\Tasks\Norton Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\SymErr.exe [2015-05-19] (Symantec Corporation)
Task: {14C9EF7F-12E9-4B7B-8658-FF7B087A5B57} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => BthUdTask.exe
Task: {16160BAE-999B-430D-93AC-B72F7F4B0544} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {1704EFED-D5E5-4DA5-BA7B-768258AF1DD6} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {1835313F-5571-424F-BF04-5B40D7BE16AA} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {18600800-2A7B-4C2D-9E8F-8913AE65CB02} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {1AF354A0-494A-43A7-ACF8-0189DE048727} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {1BFF0BCE-07DE-4716-87E6-B9874F1143CE} - System32\Tasks\Norton Security\Norton Error Processor => C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\SymErr.exe [2015-05-19] (Symantec Corporation)
Task: {1C14C566-6976-4BCC-9221-BC5DE2F854A3} - System32\Tasks\{A9877B74-15D6-4F7C-8D9C-A8EC2D667DA3} => pcalua.exe -a "D:\SteamLibrary\steamapps\common\Hitman Codename 47\setup.exe" -d "D:\SteamLibrary\steamapps\common\Hitman Codename 47"
Task: {45AAB304-C03B-47DF-9D73-D7F0807FDDE0} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {4BF8A4BC-EA74-48B7-BDC1-3B00149546BB} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {553B6F3F-EBD3-4552-A8A9-DF400FEC2726} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {5AE66A1F-AF86-4F97-810B-A3FD56E45F4C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {5CD3D5F7-1651-425A-A488-C0724DB18E42} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {5D1BAF0A-12BE-408F-B762-4A19BC14DDBB} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {62EA1D63-C337-4262-9D61-02A9AE72C624} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {63A2B05B-CA63-47C5-BF59-143B403F19B0} - System32\Tasks\Norton Security\Norton Autofix => C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\SymErr.exe [2015-05-19] (Symantec Corporation)
Task: {74D5A3C8-F258-409C-8658-10774F1A68FC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {7D6CFEDC-D24E-4DC5-BD15-929A8C5510F4} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {7E029AF5-1670-4452-987C-80A12C83E34D} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\WSCStub.exe [2015-07-16] (Symantec Corporation)
Task: {7E597BFD-E3F4-4967-A653-92DF2AC5A316} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {88220E8C-820B-4462-BB7D-868CE6598EDD} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {931D6E88-2462-438C-8B37-4732A8A69327} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {97C01A09-59B2-4696-9504-FC0FE474FA1C} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {9C4E2CFB-4E4F-4466-AF37-82653B556F42} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {9FFC9F5A-D7BD-4DCB-91D8-040224CAE64E} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {A37DA873-5D68-43EC-BC68-37278F5533A6} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {AF425EC7-1794-4752-9A09-0E6FC42FD92A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {B077A2FF-F167-4FFF-9608-E3E0A9C728FA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {B1446734-2B65-482B-BBE2-3CD9F5AB4917} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {B70F8623-0D04-41B6-A3A1-652DE29516B9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-06] (Google Inc.)
Task: {B7A5DD83-EF59-4EAD-91EC-F98D83CAAF64} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {BB08595F-1F25-4809-AABE-6D4330256054} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {D28BDF41-163B-421A-AE83-F2782A8442F5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {D4F78157-058F-4077-8B25-CF5A74AC38A6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {D5432825-322D-4C01-BBED-76C74374CB1A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {DAC10571-6393-4708-AEDC-6D9382925C39} - System32\Tasks\CreateExplorerShellUnelevatedTask => /NOUACCHECK
Task: {DC65E898-0054-4F0C-9460-5ED85077B61C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-11-11] (Microsoft Corporation)
Task: {E7638C5E-3FEF-417F-80A1-3C7499A80934} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-06] (Google Inc.)
Task: {E7FCFC49-A8F9-4CDD-BA2B-A3514AD843C4} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {E87A45C3-EF16-4BB4-92DC-AE20826D80DE} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {EDD8269A-CAFA-49FA-8132-97B6B06FC7E1} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {FBFF52CC-D337-4760-8B6D-12DA82F23793} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {FD110491-1F4F-46BF-8818-64FC7E51942C} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-08-05 23:25 - 2015-08-05 23:25 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-08-05 22:30 - 2015-11-24 20:32 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-11-14 14:36 - 2015-11-29 11:24 - 00076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-10-01 15:33 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-01 15:33 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-10-01 15:33 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-10-01 15:33 - 2015-09-17 06:44 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-10-01 15:33 - 2015-09-17 06:42 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-10-01 15:33 - 2015-09-17 06:42 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-01 15:33 - 2015-09-17 06:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 12:00 - 2015-07-10 17:45 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-08-06 11:46 - 2015-11-12 19:39 - 00012080 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-04-10 16:38 - 2013-05-13 23:17 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-10-05 08:18 - 2015-10-05 17:18 - 00778752 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-07-03 08:12 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-11-09 18:44 - 2015-11-10 03:44 - 02541648 _____ () C:\Program Files (x86)\Steam\video.dll
2015-09-23 16:33 - 2015-09-24 01:33 - 02549248 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-09-23 16:33 - 2015-09-24 01:33 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-09-23 16:33 - 2015-09-24 01:33 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-09-23 16:33 - 2015-09-24 01:33 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-09-23 16:33 - 2015-09-24 01:33 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-07-03 08:12 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-07-03 08:12 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-11-09 18:44 - 2015-11-10 03:44 - 00806992 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-11-03 14:00 - 2015-11-03 23:00 - 00201728 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2015-10-08 14:20 - 2015-10-08 23:20 - 45010208 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-09-24 15:56 - 2015-09-25 00:56 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2015-12-06 00:52 - 2015-11-24 09:00 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\libglesv2.dll
2015-12-06 00:52 - 2015-11-24 09:00 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.73\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\5a37be3f1cf146ab32dbc7:Win32App
AlternateDataStreams: C:\627d08ba61b9df8749362f:Win32App
AlternateDataStreams: C:\8f23d2348890ff4a71ac07a236309363:Win32App
AlternateDataStreams: C:\bfff6744af70b90b49f28346cdd773ea:Win32App
AlternateDataStreams: C:\Program Files\CCleaner:Win32App
AlternateDataStreams: C:\Program Files\GIMP 2:Win32App
AlternateDataStreams: C:\Program Files\Handset USB Driver:Win32App
AlternateDataStreams: C:\Program Files\Microsoft Silverlight:Win32App
AlternateDataStreams: C:\Program Files\Microsoft Xbox 360 Accessories:Win32App
AlternateDataStreams: C:\Program Files\MSI Kombustor 3:Win32App
AlternateDataStreams: C:\Program Files\TeamSpeak 3 Client:Win32App
AlternateDataStreams: C:\Program Files\WinRAR:Win32App
AlternateDataStreams: C:\Program Files (x86)\Battlelog Web Plugins:Win32App
AlternateDataStreams: C:\Program Files (x86)\Craften Terminal:Win32App
AlternateDataStreams: C:\Program Files (x86)\LogMeIn Hamachi:Win32App
AlternateDataStreams: C:\Program Files (x86)\MagicDVDCopier:Win32App
AlternateDataStreams: C:\Program Files (x86)\Microsoft SQL Server Compact Edition:Win32App
AlternateDataStreams: C:\Program Files (x86)\Mozilla Firefox:Win32App
AlternateDataStreams: C:\Program Files (x86)\OpenOffice 4:Win32App
AlternateDataStreams: C:\Program Files (x86)\SHARKOON Skiller:Win32App
AlternateDataStreams: C:\Program Files (x86)\Sizer:Win32App
AlternateDataStreams: C:\Program Files (x86)\TeamViewer:Win32App
AlternateDataStreams: C:\Program Files (x86)\Windows Live:Win32App
AlternateDataStreams: C:\Program Files (x86)\WOW Slider:Win32App
AlternateDataStreams: C:\WINDOWS\My Product Name:Win32App
AlternateDataStreams: C:\WINDOWS\SysWOW64\Adobe:Win32App
AlternateDataStreams: C:\ProgramData\regid.1991-06.com.microsoft:Win32App
AlternateDataStreams: C:\Users\Simon\Downloads:Win32App
AlternateDataStreams: C:\Users\Simon\Desktop\OpenOffice 4.1.1 (de) Installation Files:Win32App
AlternateDataStreams: C:\Users\Simon\Downloads\GTAV_Setup_Tool.exe:Win32App

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\29238610.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\29238610.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2336143983-1811979360-430894021-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\...\StartupApproved\StartupFolder: => "NETGEAR WG111v3 Smart Wizard.lnk"
HKLM\...\StartupApproved\StartupFolder: => "TP-LINK Wireless Configuration Utility.lnk"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "GamingKeyboard"
HKU\S-1-5-21-2336143983-1811979360-430894021-1000\...\StartupApproved\Run: => "EPSON1425B4 (Epson Stylus SX420W)"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{D313B668-FCD1-4F66-A711-F102B64F292B}] => (Allow) D:\SteamLibrary\SteamApps\common\Aberoth\Aberoth.exe
FirewallRules: [{737D0DF8-DEEC-455F-93F5-4427AC9E85AA}] => (Allow) D:\SteamLibrary\SteamApps\common\Aberoth\Aberoth.exe
FirewallRules: [{558CE0A0-8ECA-4800-AAF3-C8E6671E37C2}] => (Allow) D:\SteamLibrary\SteamApps\common\The Crew\TheCrew.exe
FirewallRules: [{13F62B68-4290-446E-8D76-A743180B88FE}] => (Allow) D:\SteamLibrary\SteamApps\common\The Crew\TheCrew.exe
FirewallRules: [{8198ED1F-A7C7-4A19-8802-DC374D0CC0B9}] => (Allow) D:\SteamLibrary\SteamApps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{9F194FB3-ADB0-4BD7-B474-32CD288E3BBD}] => (Allow) D:\SteamLibrary\SteamApps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{C069870F-B4C3-46B7-903A-3195BD2739F6}] => (Allow) D:\Program Files (x86)\Origin Games\The Sims 2 Ultimate Collection\Fun with Pets\SP9\TSBin\Sims2EP9.exe
FirewallRules: [{591FCA92-7B34-42B1-8E3D-60B40F10FC73}] => (Allow) D:\Program Files (x86)\Origin Games\The Sims 2 Ultimate Collection\Fun with Pets\SP9\TSBin\Sims2EP9.exe
FirewallRules: [{55AF2FA3-4E80-40E8-A23E-BD6B7DEDB093}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win64\UDK.exe
FirewallRules: [{8CF0857C-50D7-4BE3-B8B9-B237D20939CE}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win64\UDK.exe
FirewallRules: [{50BEB310-5862-4270-97F2-67F6BA939E29}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win32\UDK.exe
FirewallRules: [{065BAD30-3C9E-4EB1-BBB4-E95C54B27A79}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win32\UDK.exe
FirewallRules: [{0E36DC1B-11C2-4062-B452-0571E557E263}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera\Binaries\Win64\UDK.exe
FirewallRules: [{CC2424B4-C705-4A80-8A00-49372FE96FD9}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera\Binaries\Win64\UDK.exe
FirewallRules: [{5582FFA0-76BC-44ED-B13E-2695EB4C08F7}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera\Binaries\Win32\UDK.exe
FirewallRules: [{8B715E8A-8847-462A-9DCB-0911F8971B59}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera\Binaries\Win32\UDK.exe
FirewallRules: [{2947E04B-7ED9-4561-BE03-D0C171466F07}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera Cleanup Detail Santa's Rampage\Binaries\Win64\UDK.exe
FirewallRules: [{19CDD8C8-70FE-4706-BDF5-BE9C3581E5C6}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera Cleanup Detail Santa's Rampage\Binaries\Win64\UDK.exe
FirewallRules: [{888EE949-0A36-4ABE-B4DE-5A84665C9631}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera Cleanup Detail Santa's Rampage\Binaries\Win32\UDK.exe
FirewallRules: [{82515861-2721-417E-AC82-62CCADF2DCD6}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera Cleanup Detail Santa's Rampage\Binaries\Win32\UDK.exe
FirewallRules: [{A11C7D02-A12B-468E-8FB8-C2C4B0774080}] => (Allow) D:\SteamLibrary\SteamApps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{8D553382-A785-44DF-B3AF-93FD83F0842D}] => (Allow) D:\SteamLibrary\SteamApps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{F183312B-8604-4A40-A573-FFD854E774B6}] => (Allow) D:\Program Files (x86)\Origin Games\Ultima 8\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{912CB269-5C38-4422-9263-86A7BF477134}] => (Allow) D:\Program Files (x86)\Origin Games\Ultima 8\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{C7536544-82E8-4C59-A4A0-1377B1BD59AF}] => (Allow) D:\SteamLibrary\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{FA10FCE4-DE56-43A0-AD9F-4F3250FCE2C6}] => (Allow) D:\SteamLibrary\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{5E73F48F-3F23-4F7B-A735-C3808C4F77E6}] => (Allow) D:\SteamLibrary\SteamApps\common\Wolfenstein.The.New.Order\WolfNewOrder_x64.exe
FirewallRules: [{9A57C430-7C8E-4B5E-A01F-23DA656B684B}] => (Allow) D:\SteamLibrary\SteamApps\common\Wolfenstein.The.New.Order\WolfNewOrder_x64.exe
FirewallRules: [{F8D2D618-1E77-4805-9FC4-C063CF5B6A3E}] => (Allow) D:\SteamLibrary\SteamApps\common\Saints Row the Third\SaintsRowTheThird_DX11.exe
FirewallRules: [{0B27AAD6-601D-4014-94F7-4F44DF0196E5}] => (Allow) D:\SteamLibrary\SteamApps\common\Saints Row the Third\SaintsRowTheThird_DX11.exe
FirewallRules: [{E87A34C9-9FC1-4B4F-9D6E-8ACE9DCE8761}] => (Allow) D:\SteamLibrary\SteamApps\common\Saints Row the Third\SaintsRowTheThird.exe
FirewallRules: [{F1358065-11CB-45D7-9040-EA2BC757AE08}] => (Allow) D:\SteamLibrary\SteamApps\common\Saints Row the Third\SaintsRowTheThird.exe
FirewallRules: [{D9ADA3A2-B430-4752-8A3D-DBE19E81EA70}] => (Allow) D:\SteamLibrary\SteamApps\common\Caster\caster.exe
FirewallRules: [{A90583DC-4EA2-4074-B5B2-63D1217C6213}] => (Allow) D:\SteamLibrary\SteamApps\common\Caster\caster.exe
FirewallRules: [{728B7513-5320-4CD4-81C1-09769578632E}] => (Allow) D:\SteamLibrary\SteamApps\common\Rust\Legacy\rust.exe
FirewallRules: [{CC17BAB1-743C-438A-9D98-26F76D178484}] => (Allow) D:\SteamLibrary\SteamApps\common\Rust\Legacy\rust.exe
FirewallRules: [{E81718FF-9250-4A95-914D-41F3355D4AD6}] => (Allow) D:\SteamLibrary\SteamApps\common\POSTAL2Complete\ShareThePain\System\Postal2MP.exe
FirewallRules: [{0894070A-9A08-44B3-9811-987D02E9D7C4}] => (Allow) D:\SteamLibrary\SteamApps\common\POSTAL2Complete\ShareThePain\System\Postal2MP.exe
FirewallRules: [{1065A4BA-892D-4BA0-8D6F-039278195F84}] => (Allow) D:\SteamLibrary\SteamApps\common\POSTAL2Complete\System\Postal2.exe
FirewallRules: [{1D2319AC-091B-4F03-AF2E-47E0FD8663C5}] => (Allow) D:\SteamLibrary\SteamApps\common\POSTAL2Complete\System\Postal2.exe
FirewallRules: [{C4CE2371-F6BA-47D2-A862-ABB8F5227D37}] => (Allow) D:\SteamLibrary\SteamApps\common\Hitman Absolution\HMA.exe
FirewallRules: [{9312ABD3-CF3D-4E20-8CF9-0CCDCAE0FDA1}] => (Allow) D:\SteamLibrary\SteamApps\common\Hitman Absolution\HMA.exe
FirewallRules: [{040AEA4E-73F4-40B1-B2B7-F6471427F2B7}] => (Allow) D:\SteamLibrary\SteamApps\common\Hitman Sniper Challenge\HMSC.exe
FirewallRules: [{A54947AE-F480-445E-A4E7-A9119471E31E}] => (Allow) D:\SteamLibrary\SteamApps\common\Hitman Sniper Challenge\HMSC.exe
FirewallRules: [{EA976D44-539F-45E7-8EF9-5757F02C4CE4}] => (Allow) D:\Assassin's Creed Rogue\ACC.exe
FirewallRules: [{2561C130-CB66-4B9A-97BC-094CF8F5ACB1}] => (Allow) D:\Assassin's Creed Rogue\ACC.exe
FirewallRules: [{285CD2A4-7F17-486F-B2AD-D6B27F42549A}] => (Allow) D:\Assassin's Creed Rogue\ACC.exe
FirewallRules: [{AB2F5320-C68D-4F97-8B96-56C1193235DD}] => (Allow) D:\Assassin's Creed Rogue\ACC.exe
FirewallRules: [{4B7F149D-A66C-4E60-AC00-F7D2CD43A087}] => (Allow) D:\SteamLibrary\SteamApps\common\Hitman Blood Money\configure.exe
FirewallRules: [{7D61D1A9-2509-499E-B780-E334160D7350}] => (Allow) D:\SteamLibrary\SteamApps\common\Hitman Blood Money\configure.exe
FirewallRules: [{E80E5076-5099-4490-8676-868708BC81D4}] => (Allow) D:\SteamLibrary\SteamApps\common\Hitman Blood Money\HitmanBloodMoney.exe
FirewallRules: [{8EEDA9A9-83F8-41F6-AA35-E1258BE68FB3}] => (Allow) D:\SteamLibrary\SteamApps\common\Hitman Blood Money\HitmanBloodMoney.exe
FirewallRules: [{AC71F5C4-3BB7-4A54-9E63-797604F35C03}] => (Allow) D:\SteamLibrary\SteamApps\common\Hitman Contracts\HitmanContracts.exe
FirewallRules: [{AD6981A7-A2FB-47F1-BB33-B8F3A5A7F1F2}] => (Allow) D:\SteamLibrary\SteamApps\common\Hitman Contracts\HitmanContracts.exe
FirewallRules: [{9BD267FE-B245-46F8-85F9-9DE614ABDDB3}] => (Allow) D:\SteamLibrary\SteamApps\common\Hitman 2 Silent Assassin\config.exe
FirewallRules: [{3B4A67EB-3902-4DF1-B99E-5E8555B1FCCB}] => (Allow) D:\SteamLibrary\SteamApps\common\Hitman 2 Silent Assassin\config.exe
FirewallRules: [{A8963540-0928-4E90-8B8A-738565A594F6}] => (Allow) D:\SteamLibrary\SteamApps\common\Hitman 2 Silent Assassin\hitman2.exe
FirewallRules: [{49D4EE29-8D3E-4361-BB46-0AF5B999E63A}] => (Allow) D:\SteamLibrary\SteamApps\common\Hitman 2 Silent Assassin\hitman2.exe
FirewallRules: [{54E60016-8B6E-4FBD-AC5C-337F2BCBA279}] => (Allow) D:\SteamLibrary\SteamApps\common\Hitman Codename 47\Setup.exe
FirewallRules: [{5A3125A3-16E9-4F37-AFC8-BE8157235A3F}] => (Allow) D:\SteamLibrary\SteamApps\common\Hitman Codename 47\Setup.exe
FirewallRules: [{F2DAF231-F7F9-4C05-AF1B-D0192BC21B2D}] => (Allow) D:\SteamLibrary\SteamApps\common\Hitman Codename 47\Hitman.Exe
FirewallRules: [{22485680-1AE8-4945-ADE8-D082EBD8BF7F}] => (Allow) D:\SteamLibrary\SteamApps\common\Hitman Codename 47\Hitman.Exe
FirewallRules: [{253D529A-A85E-481D-947F-80F5AEA3D0FC}] => (Allow) D:\SteamLibrary\SteamApps\common\POSTAL2Complete\System\Launcher.exe
FirewallRules: [{23ACE535-C2AD-40FC-B020-C1F9407CD761}] => (Allow) D:\SteamLibrary\SteamApps\common\POSTAL2Complete\System\Launcher.exe
FirewallRules: [{D89FC34B-7906-49F6-8AF9-DDCF2FD8274A}] => (Allow) D:\SteamLibrary\SteamApps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{68B0D397-7AAE-4D5F-B951-33152FE50AEB}] => (Allow) D:\SteamLibrary\SteamApps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{9A02FADA-6210-4DDB-8EA4-E4634D96A6F9}] => (Allow) D:\SteamLibrary\SteamApps\common\Grand Theft Auto Vice City\gta-vc.exe
FirewallRules: [{5DFB404B-DDE2-494F-9B66-158017C045AB}] => (Allow) D:\SteamLibrary\SteamApps\common\Grand Theft Auto Vice City\gta-vc.exe
FirewallRules: [{BAB56507-2842-42DE-81D2-6362F8062BFD}] => (Allow) D:\SteamLibrary\SteamApps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{8B0296A0-3BE1-4DAB-8900-35116C27FAC7}] => (Allow) D:\SteamLibrary\SteamApps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{749E261C-66DA-4EF5-9E09-BF45DE21BB0F}] => (Allow) D:\SteamLibrary\SteamApps\common\Rust\Rust.exe
FirewallRules: [{2353FA47-8AC9-44FB-8BCE-A08FB1F964F1}] => (Allow) D:\SteamLibrary\SteamApps\common\Rust\Rust.exe
FirewallRules: [{67C8294F-9D60-4769-8D37-3742975C3236}] => (Allow) D:\SteamLibrary\SteamApps\common\Need for Speed Hot Pursuit\NFS11.exe
FirewallRules: [{6CCB9B73-E041-470B-8868-2652BCBEECBF}] => (Allow) D:\SteamLibrary\SteamApps\common\Need for Speed Hot Pursuit\NFS11.exe
FirewallRules: [{705FFCF6-C60C-488C-A119-E551ED657191}] => (Allow) D:\Program Files (x86)\Origin Games\Peggle Deluxe\Peggle.exe
FirewallRules: [{9BF970D6-3393-41FB-ACB6-9E39D3B9D921}] => (Allow) D:\Program Files (x86)\Origin Games\Peggle Deluxe\Peggle.exe
FirewallRules: [{E89B2FD1-B1DB-4B56-A06C-8E3A52F1281A}] => (Allow) D:\SteamLibrary\SteamApps\common\Supreme Commander 2\bin\SupremeCommander2.exe
FirewallRules: [{621B3077-68E9-4CC4-9CDD-5151417BE25C}] => (Allow) D:\SteamLibrary\SteamApps\common\Supreme Commander 2\bin\SupremeCommander2.exe
FirewallRules: [{E0140B40-8784-417E-A24A-99A4CF9C173D}] => (Allow) D:\SteamLibrary\SteamApps\common\Grand Theft Auto IV Episodes from Liberty City\EFLC\LaunchEFLC.exe
FirewallRules: [{587BBA34-D19F-4A95-9A1E-1F6ADE2978FF}] => (Allow) D:\SteamLibrary\SteamApps\common\Grand Theft Auto IV Episodes from Liberty City\EFLC\LaunchEFLC.exe
FirewallRules: [{9780DAE5-6EB5-42CA-BDF4-36DDA5AE9F9C}] => (Allow) D:\SteamLibrary\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [{02925BE3-E891-463B-9831-99A16B41B77C}] => (Allow) D:\SteamLibrary\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [{D0EF2352-5BAB-44B2-A1FF-C9699C4278FF}] => (Allow) D:\SteamLibrary\SteamApps\common\Double Action\hl2.exe
FirewallRules: [{BB52E44D-0CDC-4952-80FE-8D946B0DBB21}] => (Allow) D:\SteamLibrary\SteamApps\common\Double Action\hl2.exe
FirewallRules: [{FD7D3EF3-B915-4FFD-AC98-DB87657B8DC0}] => (Allow) D:\SteamLibrary\SteamApps\common\Assassin's Creed 2\AssassinsCreedIIGame.exe
FirewallRules: [{67666B20-DF91-444A-9E1D-7307F118F305}] => (Allow) D:\SteamLibrary\SteamApps\common\Assassin's Creed 2\AssassinsCreedIIGame.exe
FirewallRules: [{8E86CF3C-0779-412D-AA30-02A2720A63BD}] => (Allow) D:\SteamLibrary\SteamApps\common\Assassins Creed Brotherhood\ACBSP.exe
FirewallRules: [{C960CDCE-C745-493F-BF33-A8A940292C54}] => (Allow) D:\SteamLibrary\SteamApps\common\Assassins Creed Brotherhood\ACBSP.exe
FirewallRules: [{F610D73F-D83E-49CD-A2D0-396784D1C4BD}] => (Allow) D:\SteamLibrary\SteamApps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
FirewallRules: [{3743AA08-CFA1-466F-B110-BC2DBBD1A9E1}] => (Allow) D:\SteamLibrary\SteamApps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
FirewallRules: [{42FA2758-F066-4ACA-99BD-36D5877BD440}] => (Allow) D:\SteamLibrary\SteamApps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [{22063A0F-C834-4D8F-B1EE-AA61C4E4474F}] => (Allow) D:\SteamLibrary\SteamApps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [{AB062F30-BA7F-4988-B54F-0D1FB87E8A37}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera Cleanup Detail Santa's Rampage\Binaries\Win32\UDK.exe
FirewallRules: [{D48D874A-01B0-4A7B-9AB3-082B5F2EDAF4}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera Cleanup Detail Santa's Rampage\Binaries\Win32\UDK.exe
FirewallRules: [{069FDA96-CA19-4505-9DA7-757912C5EB1E}] => (Allow) D:\SteamLibrary\SteamApps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe
FirewallRules: [{1048B480-48FB-4E8A-B954-AE2982C5B30A}] => (Allow) D:\SteamLibrary\SteamApps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe
FirewallRules: [{5826E230-D1C8-41EC-8AAD-67426B0C32C3}] => (Allow) D:\Program Files (x86)\Origin Games\SimCity 2000 SE\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{CED582F8-1C50-4581-94B7-0D7BDC071BDC}] => (Allow) D:\Program Files (x86)\Origin Games\SimCity 2000 SE\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{60E12956-5B51-497C-9322-3E53343B7B91}] => (Allow) D:\SteamLibrary\SteamApps\common\Defy Gravity\DefyGravity.exe
FirewallRules: [{FB12124E-3270-436A-BB7B-115934869510}] => (Allow) D:\SteamLibrary\SteamApps\common\Defy Gravity\DefyGravity.exe
FirewallRules: [{D77BC7E4-786E-4073-8920-D8B29CFD516E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Metro 2033\metro2033.exe
FirewallRules: [{3BE52BF8-DBE2-4CB5-A88E-70FF7AD6DCAC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Metro 2033\metro2033.exe
FirewallRules: [{B49EB543-FA1F-4F5C-B586-DB00E18C88E3}] => (Allow) D:\Program Files (x86)\Origin Games\Crysis 3\Bin32\Crysis3.exe
FirewallRules: [{0CAB4E1E-EA7A-47A7-A683-B5BB0610DD85}] => (Allow) D:\Program Files (x86)\Origin Games\Crysis 3\Bin32\Crysis3.exe
FirewallRules: [{FFBEA846-B3D6-4A6D-92A3-CBC1C14958DA}] => (Allow) D:\SteamLibrary\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{DD2C1BE2-3AE8-4404-97B2-FBA8EAA8ADE1}] => (Allow) D:\SteamLibrary\SteamApps\common\Super Hexagon\superhexagon.exe
FirewallRules: [{E3D2636E-33B4-4E63-B471-DB8D8CB71EA1}] => (Allow) D:\SteamLibrary\SteamApps\common\Assassin's Creed Revelations\ACRMP.exe
FirewallRules: [{B84C880B-075E-4EF3-9067-7B026D06F6E5}] => (Allow) D:\SteamLibrary\SteamApps\common\Assassin's Creed Revelations\ACRMP.exe
FirewallRules: [{66237A8A-F9FB-4D7F-BC5A-00DB9F1D146E}] => (Allow) D:\SteamLibrary\SteamApps\common\Assassin's Creed Revelations\ACRSP.exe
FirewallRules: [{B66BE0D5-4FDB-4C8C-A4AA-4B29B82F9F0F}] => (Allow) D:\SteamLibrary\SteamApps\common\Assassin's Creed Revelations\ACRSP.exe
FirewallRules: [{63A4110D-1686-4118-AA17-5CFB129AE4AF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Gun Monkeys\Gun_Monkeys.exe
FirewallRules: [{EB04E2D0-333A-4739-95C9-C1C62545A0D6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Gun Monkeys\Gun_Monkeys.exe
FirewallRules: [{D961C8EC-6570-4DF3-AF70-48780416CC4E}] => (Allow) D:\SteamLibrary\SteamApps\common\Borderlands\Binaries\Borderlands.exe
FirewallRules: [{4BD2B100-02F3-44B7-991D-92E10FAD1908}] => (Allow) D:\SteamLibrary\SteamApps\common\Borderlands\Binaries\Borderlands.exe
FirewallRules: [{63EC0E2C-D400-4539-A862-C0183DE74069}] => (Allow) D:\Assassin's Creed Unity\ACU.exe
FirewallRules: [{B42C879F-DB3A-4C58-B019-2C69A05D2CE4}] => (Allow) D:\Assassin's Creed Unity\ACU.exe
FirewallRules: [{4D080898-7393-4D78-A14F-955D45FDF72C}] => (Allow) D:\Assassin's Creed Unity\ACU.exe
FirewallRules: [{DF254D0C-EFA0-4ACD-B9A6-4F15FC729A3E}] => (Allow) D:\Assassin's Creed Unity\ACU.exe
FirewallRules: [{35BB7B98-08AE-4716-B55D-85E18D8DAC3E}] => (Allow) D:\SteamLibrary\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{125488D0-7451-418A-991A-744DD175425A}] => (Allow) D:\SteamLibrary\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{EAE6DEF6-F4AC-41D1-A4C0-EF9EB41194F8}] => (Allow) D:\SteamLibrary\SteamApps\common\nmrih\sdk\hl2.exe
FirewallRules: [{53D457D9-15ED-494F-A3C3-3649002DF0FA}] => (Allow) D:\SteamLibrary\SteamApps\common\nmrih\sdk\hl2.exe
FirewallRules: [{AE855B1F-3775-4C7B-A67C-1DEBF9ED4B81}] => (Allow) D:\SteamLibrary\SteamApps\common\Canyon Capers\CanyonCapers.exe
FirewallRules: [{18B6787C-E873-40C9-886D-DC583FBCC848}] => (Allow) D:\SteamLibrary\SteamApps\common\Canyon Capers\CanyonCapers.exe
FirewallRules: [{DC142FB6-E1A7-411F-A392-33FBEBC3E452}] => (Allow) D:\SteamLibrary\SteamApps\common\Assassins Creed\AssassinsCreed_Game.exe
FirewallRules: [{F2473CAD-6774-453A-BD28-D8A4462EF5EF}] => (Allow) D:\SteamLibrary\SteamApps\common\Assassins Creed\AssassinsCreed_Game.exe
FirewallRules: [UDP Query User{10949D8A-AE7A-4B27-BF7C-2A256A6223A6}D:\steamlibrary\steamapps\common\payday the heist\payday_win32_release.exe] => (Allow) D:\steamlibrary\steamapps\common\payday the heist\payday_win32_release.exe
FirewallRules: [TCP Query User{3BDE7FDA-1199-452A-8985-B9A346D02D29}D:\steamlibrary\steamapps\common\payday the heist\payday_win32_release.exe] => (Allow) D:\steamlibrary\steamapps\common\payday the heist\payday_win32_release.exe
FirewallRules: [{3E45FAF3-3FE3-4A85-8E1C-D6F20F2B7001}] => (Allow) D:\SteamLibrary\SteamApps\common\WOG\disasm.exe
FirewallRules: [{2A233E33-A455-4CEA-88D2-3A6B13C18E73}] => (Allow) D:\SteamLibrary\SteamApps\common\WOG\disasm.exe
FirewallRules: [{A3C89CF5-49DA-4131-84CF-AD458E94EC60}] => (Allow) D:\SteamLibrary\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{1E4FE871-62A1-4E20-A6FE-ED74C9AC18F3}] => (Allow) D:\SteamLibrary\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{3FCC86D2-DC73-41A3-BDAA-C77C79C7F1F1}] => (Allow) D:\SteamLibrary\SteamApps\common\Half-Life\hl.exe
FirewallRules: [{E31D931F-5CFD-4219-B530-27656F2AEFD0}] => (Allow) D:\SteamLibrary\SteamApps\common\Half-Life\hl.exe
FirewallRules: [{96E0417B-B20B-415A-B23F-FC459ABEBC86}] => (Allow) D:\SteamLibrary\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{0931F60E-509E-430A-8C62-B8FBAB73B942}] => (Allow) D:\SteamLibrary\SteamApps\common\GarrysMod\hl2.exe
FirewallRules: [{352DED74-1B11-40D6-8C79-AE9E1CAC25BB}] => (Allow) D:\SteamLibrary\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{1CEAAD94-DE4E-4F5E-A7C2-A736C5BDFEBF}] => (Allow) D:\SteamLibrary\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{AE1F726E-92F4-4F6D-9339-0806475831EA}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2 Beta\left4dead2_beta.exe
FirewallRules: [{FCFE2A40-B85D-4CEE-97BC-F8764BB3493E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2 Beta\left4dead2_beta.exe
FirewallRules: [{BC97EA2F-0795-4603-B90B-21A44432F9BE}] => (Allow) D:\SteamLibrary\SteamApps\common\L.A.Noire\LANLauncher.exe
FirewallRules: [{99F7A47B-FE05-4632-AB02-A90191BC4D95}] => (Allow) D:\SteamLibrary\SteamApps\common\L.A.Noire\LANLauncher.exe
FirewallRules: [{BDA5E3C7-0C21-4866-806F-529FAFCF4729}] => (Allow) D:\SteamLibrary\SteamApps\common\Game Dev Tycoon\nw.exe
FirewallRules: [{B56B020B-5B82-49A5-976B-3D0E19119B44}] => (Allow) D:\SteamLibrary\SteamApps\common\Game Dev Tycoon\nw.exe
FirewallRules: [{B71B9971-3663-4CA6-B108-15A06B95B599}] => (Allow) D:\SteamLibrary\SteamApps\common\Max Payne 3\Max Payne 3\MaxPayne3.exe
FirewallRules: [{41F5226D-5663-41F5-8160-38B1A8838814}] => (Allow) D:\SteamLibrary\SteamApps\common\Max Payne 3\Max Payne 3\MaxPayne3.exe
FirewallRules: [{EDA9B4A7-E56E-4D82-B296-5EA7BA9B1967}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{4D96F560-95EB-4C8C-8B5B-913F4C8EF915}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{846EED6F-D0BE-49A5-9B1C-B3EA90B2834D}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{B488AA10-8DAC-4ADB-9F9B-6D43512CA13F}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{7CEA3A11-46BB-47DD-813F-088CAD68150B}] => (Allow) D:\SteamLibrary\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{2B792028-EBE6-4E77-A4E3-3985EC84185A}] => (Allow) D:\SteamLibrary\SteamApps\common\Robocraft\Robocraft.exe
FirewallRules: [{ECF86D99-DF3C-43D7-99C1-637F4967AFDF}] => (Allow) D:\SteamLibrary\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{B8186E13-410F-40C7-B851-9EA334108D3E}] => (Allow) D:\SteamLibrary\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{A9473475-E02B-4B0C-ADD3-1CE806588A6E}] => (Allow) D:\SteamLibrary\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{68B9F44D-97F3-4434-AC25-0C42D1450E2D}] => (Allow) D:\SteamLibrary\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{7AF4D0B1-AE1C-4DDE-B9E9-7F05EB90F643}] => (Allow) D:\SteamLibrary\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{944DF32E-FE46-4320-8F4A-94FC2F7417EA}] => (Allow) D:\SteamLibrary\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{90733B5A-7762-41E8-A5FC-AC584E0D50C5}] => (Allow) D:\SteamLibrary\SteamApps\common\Nidhogg\Nidhogg.exe
FirewallRules: [{02FAA544-ECE2-4285-ACCB-DD9602D28CA8}] => (Allow) D:\SteamLibrary\SteamApps\common\Nidhogg\Nidhogg.exe
FirewallRules: [{D083B9F2-290D-4784-946A-F352920D1026}] => (Allow) D:\SteamLibrary\SteamApps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
FirewallRules: [{D76EB5A2-F693-4FBF-8921-AC4139A19DCC}] => (Allow) D:\SteamLibrary\SteamApps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
FirewallRules: [{6C8C2E52-2BE7-42B9-AAD3-4428FC76D892}] => (Allow) D:\SteamLibrary\SteamApps\common\Just Cause\JCSetup.exe
FirewallRules: [{3A173AE3-4AB7-4CB1-A2F7-704A66BF964F}] => (Allow) D:\SteamLibrary\SteamApps\common\Just Cause\JCSetup.exe
FirewallRules: [{D59563FE-499B-467A-9D73-B5A1FFB9A45E}] => (Allow) D:\SteamLibrary\SteamApps\common\Just Cause\JustCause.exe
FirewallRules: [{7273F00D-8F95-46AC-9FEA-FABD36065F1A}] => (Allow) D:\SteamLibrary\SteamApps\common\Just Cause\JustCause.exe
FirewallRules: [{238D947C-8506-4A2E-979C-5AEBC37594FC}] => (Allow) D:\SteamLibrary\SteamApps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\gu.exe
FirewallRules: [{00316530-CB86-43C1-9E26-A40505D59016}] => (Allow) D:\SteamLibrary\SteamApps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\gu.exe
FirewallRules: [{3D84878B-BE97-4A4C-AC46-7A705E0FD5A4}] => (Allow) D:\SteamLibrary\SteamApps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\Blacklist_DX11_game.exe
FirewallRules: [{13A5DCA8-21DD-4EF1-A6B5-E3B2AC42B211}] => (Allow) D:\SteamLibrary\SteamApps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\Blacklist_DX11_game.exe
FirewallRules: [{26F7B25D-70DB-4460-98D9-C9238977EDBA}] => (Allow) D:\SteamLibrary\SteamApps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\Blacklist_game.exe
FirewallRules: [{E0083CAC-D6AF-4F17-9D0A-35BAAB88C7EA}] => (Allow) D:\SteamLibrary\SteamApps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\Blacklist_game.exe
FirewallRules: [{13E577D9-2B45-41E9-9DB3-D5B9850B5849}] => (Allow) D:\SteamLibrary\SteamApps\common\Just Cause 2\JustCause2.exe
FirewallRules: [{4FF54BC4-257A-4960-B2B8-B381B78DD592}] => (Allow) D:\SteamLibrary\SteamApps\common\Just Cause 2\JustCause2.exe
FirewallRules: [{1C512A00-93AA-4312-944F-D71A2B118C4D}] => (Allow) D:\SteamLibrary\SteamApps\common\Tom Clancy's Splinter Cell Blacklist\Blacklist_Launcher.exe
FirewallRules: [{5AF58232-0A71-47BA-A380-013294BDD4CF}] => (Allow) D:\SteamLibrary\SteamApps\common\Tom Clancy's Splinter Cell Blacklist\Blacklist_Launcher.exe
FirewallRules: [{CA666329-FD85-41E1-A105-A4DE4422CAB5}] => (Allow) D:\SteamLibrary\SteamApps\common\Bioshock\Builds\Release\Bioshock.exe
FirewallRules: [{8EA7CB85-D862-4756-94AF-F746A4218B52}] => (Allow) D:\SteamLibrary\SteamApps\common\Bioshock\Builds\Release\Bioshock.exe
FirewallRules: [{67C7D991-F9FD-45A4-BEF7-3053406B50C4}] => (Allow) D:\SteamLibrary\SteamApps\common\Afterfall InSanity\Binaries\Win32\InSanity-Win32-Shipping.exe
FirewallRules: [{0AD1FF39-2A17-4DD9-B0E5-F8D369F7AC0C}] => (Allow) D:\SteamLibrary\SteamApps\common\Afterfall InSanity\Binaries\Win32\InSanity-Win32-Shipping.exe
FirewallRules: [{D8A00280-1245-4FCF-8116-A0462B3C2A5B}] => (Allow) D:\SteamLibrary\SteamApps\common\Star Wars Battlefront II\GameData\BattlefrontII.exe
FirewallRules: [{41B7A43D-CEFF-4C28-BF58-59F04E4931E5}] => (Allow) D:\SteamLibrary\SteamApps\common\Star Wars Battlefront II\GameData\BattlefrontII.exe
FirewallRules: [{DBD0D978-ED90-49A8-8F25-E08B7AA3F63C}] => (Allow) D:\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [{66F42C9C-B038-44F0-ACA5-1FBD9576E101}] => (Allow) D:\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [{FD8E33D4-70CC-48E3-8ED8-E579FB50DEC6}] => (Allow) D:\SteamLibrary\SteamApps\common\Star Wars Empire at War\runme2.exe
FirewallRules: [{C01C222B-D3E7-4A3A-8EDA-82A856FAABA5}] => (Allow) D:\SteamLibrary\SteamApps\common\Star Wars Empire at War\runme2.exe
FirewallRules: [{E999586B-72B7-4D9A-8541-7238DB185129}] => (Allow) D:\SteamLibrary\SteamApps\common\Star Wars Empire at War\runme.exe
FirewallRules: [{E54CFC08-DB85-479B-9823-FB6A18763204}] => (Allow) D:\SteamLibrary\SteamApps\common\Star Wars Empire at War\runme.exe
FirewallRules: [{70AAF815-9397-4DEB-9A19-89872A584750}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{7D104823-1ABD-467E-8D7F-EECE20294B04}] => (Allow) LPort=1900
FirewallRules: [{5CB3C4C4-995E-491B-B79D-48D35D2F66E7}] => (Allow) LPort=2869
FirewallRules: [{FA65F53E-A981-4576-A46D-4EBCAB6D594B}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{DAF09972-8D09-49A1-825F-1CD76983D340}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GoatSimulator\Binaries\Win32\GoatGame-Win32-Shipping.exe
FirewallRules: [{0E35B8AA-D522-4052-BAAD-3110494D97B5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\GoatSimulator\Binaries\Win32\GoatGame-Win32-Shipping.exe
FirewallRules: [{1333200B-BE5F-422A-9A9C-8CA9C83A10E2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{3319D26B-975D-488D-AA0B-FB82C583D522}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{4BB02CE1-05B5-4A00-BD19-1BB854EE0655}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{FF27AE59-2EA2-4AF3-B9C2-A9F508B947BE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{E835250F-5EB4-4CED-9BA3-177E9D31C109}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{52EFF1F6-56A2-458F-89BA-1C8E5A3C5550}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{178D36C4-7168-49C8-95E4-19FC882F06BC}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{E0558920-C9F1-4351-97CF-47DF8BECC8D1}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{FF61243D-C18D-4BA8-A9E5-5B2F20F164D2}] => (Allow) D:\SteamLibrary\SteamApps\common\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{2482F27A-E8B1-47BF-B44B-AF6E7DA8792C}] => (Allow) D:\SteamLibrary\SteamApps\common\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{5DA11067-81B2-46E3-8F89-9D58F8E75CF8}] => (Allow) D:\SteamLibrary\SteamApps\common\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{0D9022BE-83D4-446E-9A2F-FF73438C214C}] => (Allow) D:\SteamLibrary\SteamApps\common\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{1D76B63B-4205-479D-BF31-8AB5537E986B}] => (Allow) D:\SteamLibrary\SteamApps\common\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{31E6C4CE-A8E7-4162-9C33-2E716009C8CD}] => (Allow) D:\SteamLibrary\SteamApps\common\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{07632CA4-9D6F-4CF0-9159-96ED3B8CF80F}] => (Allow) D:\SteamLibrary\SteamApps\common\Far Cry 3\bin\farcry3.exe
FirewallRules: [{4D19FF2C-ECC2-4483-AB33-1142BDDEF154}] => (Allow) D:\SteamLibrary\SteamApps\common\Far Cry 3\bin\farcry3.exe
FirewallRules: [{90DA9852-79CA-40E2-8041-3824F6F20A4D}] => (Allow) D:\SteamLibrary\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{06B196D5-0F07-4CCF-9FA2-92E69295AE2E}] => (Allow) D:\SteamLibrary\SteamApps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{293D881F-1F51-4CCF-BCC3-32374037A591}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Bridge It Demo\BridgeIt.exe
FirewallRules: [{3AAE983E-3E99-4C0E-ADA5-15FEAE924574}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Bridge It Demo\BridgeIt.exe
FirewallRules: [{1512148F-DC0C-4297-B132-BE5182F960F0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{819722A6-0871-4DAA-8497-4600AA82F2B7}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{8DB12FBB-3509-4402-8CA5-AA0625F45F4F}] => (Allow) D:\SteamLibrary\SteamApps\common\Game Dev Tycoon\GameDevTycoon.exe
FirewallRules: [{CCF35CEF-B3DB-4568-A4F8-AC14073E4105}] => (Allow) D:\SteamLibrary\SteamApps\common\Game Dev Tycoon\GameDevTycoon.exe
FirewallRules: [{E46FA9FA-8456-4A0B-A047-5DD0FBC33782}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Splintercell Chaos Theory\System\splintercell3.exe
FirewallRules: [{3CF4A988-44E1-4EA8-9DFF-4A5149382F05}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Splintercell Chaos Theory\System\splintercell3.exe
FirewallRules: [{39A13BAF-9C73-4D87-9486-22FD3BEAAF15}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{FDE9A24E-2FCC-41FD-AB42-909736FCE993}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E4619053-98F0-4550-B207-90CEFB23F129}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{193CF318-1650-4E9B-84F4-AACE997ABEFE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{B58ED4C8-161D-43E3-BFF5-49B135EF8341}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Assassin's Creed 3\AC3MP.exe
FirewallRules: [{9E634000-5FFC-4396-B898-7820F7EA81F9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Assassin's Creed 3\AC3MP.exe
FirewallRules: [{07820F8C-9036-400A-B2F7-8BA2DADE4B8F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Assassin's Creed 3\AC3SP.exe
FirewallRules: [{A9F6733A-856A-4E72-BB18-E7253572606C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Assassin's Creed 3\AC3SP.exe
FirewallRules: [{5DC94380-E8C5-4034-9C10-BC8252557F0D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{E899DD1E-7447-4ED6-8649-52468E827956}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{660B28D1-0A3C-49FE-BEEF-275BEE27E810}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Gunpoint\Gunpoint.exe
FirewallRules: [{0FD7CB15-8CCF-4105-9E2B-4F87BD157CBD}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Gunpoint\Gunpoint.exe
FirewallRules: [{A35B9467-7DBC-40B7-B1E5-B4E72A23579A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B9DD5FAA-66F9-4DFB-BCA6-91B9A9CE4950}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{C0CAE934-F770-46AB-BCD3-88CA16E881E0}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{0820C2DE-DA48-49CC-A432-F3552CE4E7A6}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{7EBFB998-59DA-4D7F-B03B-C926E9613458}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{443DD523-474D-4D9C-B089-ABBC2365005B}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{6F3C813D-E021-4268-A142-68E2C5E2DD72}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe
FirewallRules: [TCP Query User{A7877FD2-317E-49C3-B7E1-FD877ECA7F57}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe
FirewallRules: [UDP Query User{A4EB86C5-CF96-49DD-B12F-9D0F89498977}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{6BD52893-AD61-4045-8CA3-4246C26F6AD5}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [{3EDED378-C2BD-4FAA-8C27-95246CAC30B4}] => (Allow) C:\Program Files (x86)\Firefly Studios\Stronghold Legends\StrongholdLegends.exe
FirewallRules: [{1215648D-D4E3-4323-A31C-7C58EBC84A91}] => (Allow) C:\Program Files (x86)\Firefly Studios\Stronghold Legends\StrongholdLegends.exe
FirewallRules: [{FF77E70D-3FEE-49DF-9FEB-09FEA10C5016}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{D360C8F1-E9EF-4C68-94EC-FAE156F76E95}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{F7D91F38-6488-4634-9DD4-D9F46BB836C4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{21A8816C-3DE2-4A3A-85F8-6F695143DC18}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D033B953-292D-44D4-9565-C544C4A51D82}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B06427F8-BFF1-49C2-8DC4-D2AF9937D768}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{D6CE7DDE-A945-4282-B88B-AD82B01488D7}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [TCP Query User{C87018D8-80F6-4A30-AEB4-4C88095C07A0}D:\gta5\gta5.exe] => (Allow) D:\gta5\gta5.exe
FirewallRules: [UDP Query User{5B157020-EF17-4094-9E41-8FCC730D068C}D:\gta5\gta5.exe] => (Allow) D:\gta5\gta5.exe
FirewallRules: [{6E7A343D-33AE-4ED8-8888-75DBE04C98A3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{618DDA3C-DE62-43AA-BE0B-7931CC0CACFC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{BB95A732-E067-43F0-ACD9-D8059AA181A3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{A950B6F8-8B95-4968-A6D7-A1F7940624A0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{EF7D5551-7EDB-4FDA-8D90-303A1449AFE2}] => (Allow) D:\SteamLibrary\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{9D24A84E-F319-41D8-A5D8-8A5C7E721C92}] => (Allow) D:\SteamLibrary\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{832C18BB-A17D-41FD-8931-9BEA501B53B8}] => (Allow) D:\SteamLibrary\SteamApps\common\Arma 2 operation arrowhead\ArmA2OA_BE.exe
FirewallRules: [{36E14C78-F5A1-4CFE-962C-4FAF789BB485}] => (Allow) D:\SteamLibrary\SteamApps\common\Arma 2 operation arrowhead\ArmA2OA_BE.exe
FirewallRules: [{6CE6C4BE-AB08-46EF-A21C-B1E6E5B42CF0}] => (Allow) D:\SteamLibrary\SteamApps\common\Arma 2 operation arrowhead\ArmA2OA.exe
FirewallRules: [{82533EBE-311A-451A-AA2E-846E5612F090}] => (Allow) D:\SteamLibrary\SteamApps\common\Arma 2 operation arrowhead\ArmA2OA.exe
FirewallRules: [{42E0964C-A8AF-4D75-82F7-4F8A69EE7E26}] => (Allow) D:\SteamLibrary\SteamApps\common\Arma 2 operation arrowhead\DLCsetup\ACR\datacachepreprocessor.exe
FirewallRules: [{3CEC2B59-0BE5-4E04-9F7C-8DB298AA52D0}] => (Allow) D:\SteamLibrary\SteamApps\common\Arma 2 operation arrowhead\DLCsetup\ACR\datacachepreprocessor.exe
FirewallRules: [{04E186E2-5013-47BC-8A31-5D3CA06D402A}] => (Allow) D:\SteamLibrary\SteamApps\common\Arma 2 operation arrowhead\DLCsetup\BAF\datacachepreprocessor.exe
FirewallRules: [{A776FC25-0C6E-48A7-B2CD-247469B6DEF7}] => (Allow) D:\SteamLibrary\SteamApps\common\Arma 2 operation arrowhead\DLCsetup\BAF\datacachepreprocessor.exe
FirewallRules: [{E2061E6B-6D47-4A9D-BFD6-49679AB18ED0}] => (Allow) D:\SteamLibrary\SteamApps\common\Arma 2 operation arrowhead\DLCsetup\PMC\datacachepreprocessor.exe
FirewallRules: [{DD4A5B07-7D8F-4E79-B132-A11016B7A727}] => (Allow) D:\SteamLibrary\SteamApps\common\Arma 2 operation arrowhead\DLCsetup\PMC\datacachepreprocessor.exe
FirewallRules: [{12FC2ED8-DB40-4569-9B17-CCBB0828CAF7}] => (Allow) D:\SteamLibrary\SteamApps\common\Deus Ex\System\DeusEx.exe
FirewallRules: [{FBA6FEA9-A2D5-4E5C-8CA4-F8E1C77C4F36}] => (Allow) D:\SteamLibrary\SteamApps\common\Deus Ex\System\DeusEx.exe
FirewallRules: [{5A05CFC5-CF53-4EB9-8D11-2CE6F5DA52BC}] => (Allow) D:\SteamLibrary\SteamApps\common\Deus Ex Invisible War\System\dx2.exe
FirewallRules: [{7C9D28C7-8350-4D8C-A23D-33539015B855}] => (Allow) D:\SteamLibrary\SteamApps\common\Deus Ex Invisible War\System\dx2.exe
FirewallRules: [{CAD9A03B-6509-4A10-9311-B06C4CE5AD93}] => (Allow) D:\SteamLibrary\SteamApps\common\Deus Ex The Fall\DeusEx_steam.exe
FirewallRules: [{DC680C8F-B669-47CB-BB64-E8B912926D63}] => (Allow) D:\SteamLibrary\SteamApps\common\Deus Ex The Fall\DeusEx_steam.exe
FirewallRules: [{DAD8482A-030F-42B1-B872-734EF3F2F0D3}] => (Allow) D:\SteamLibrary\SteamApps\common\CSNZ\Bin\cstrike-online.exe
FirewallRules: [{335ED28A-D714-4BF1-95DC-FB4230080DBA}] => (Allow) D:\SteamLibrary\SteamApps\common\CSNZ\Bin\cstrike-online.exe
FirewallRules: [{7CA0130A-B8A9-4E26-87FE-3073F935C2CF}] => (Allow) D:\SteamLibrary\SteamApps\common\theHunter\launcher\launcher.exe
FirewallRules: [{00188FDF-DD93-4F6C-9828-312D30F9DDAF}] => (Allow) D:\SteamLibrary\SteamApps\common\theHunter\launcher\launcher.exe
FirewallRules: [{58D50EC3-6952-4F04-9CF4-634337A0B8C5}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera\Binaries\Win32\UDK.exe
FirewallRules: [{A552FB4E-46D3-4DD5-AC9E-8DFC3B6DE538}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera\Binaries\Win32\UDK.exe
FirewallRules: [{B29BE834-EC68-488A-89EE-5C36946C870A}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera\Binaries\Win64\UDK.exe
FirewallRules: [{FB42F8AA-0A42-4753-A102-74AF79355A17}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera\Binaries\Win64\UDK.exe
FirewallRules: [{43AD6830-5CE6-49F1-B82C-94053EC5B3EF}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera\Binaries\UDKLift.exe
FirewallRules: [{67B28B5D-7D72-43FD-869A-7C9207C69F6B}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera\Binaries\UDKLift.exe
FirewallRules: [{4E10E9F1-8BDC-4D48-9CB2-3909EE11E93D}] => (Allow) D:\SteamLibrary\SteamApps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe
FirewallRules: [{6356AECD-C106-4D60-82E9-A60FFBEB2C9A}] => (Allow) D:\SteamLibrary\SteamApps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe
FirewallRules: [{1408AB76-54C9-4735-9584-82C4FC6EE527}] => (Allow) D:\SteamLibrary\SteamApps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{478B838C-9E26-487C-AF5A-845DC8CE3B39}] => (Allow) D:\SteamLibrary\SteamApps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{2177F16D-CC1E-4C6D-94F6-D1BE6C7BDC04}] => (Allow) D:\SteamLibrary\SteamApps\common\3SwitcheD\3SwitcheD.exe
FirewallRules: [{AB15D709-1888-4FCE-85A4-52E3183F1CDD}] => (Allow) D:\SteamLibrary\SteamApps\common\3SwitcheD\3SwitcheD.exe
FirewallRules: [{5906F314-96AB-4416-80E7-C2D3B2B7D6A3}] => (Allow) D:\SteamLibrary\SteamApps\common\pressure\bin\pressure.exe
FirewallRules: [{E2FFE7E0-42D6-42D3-BE76-781F6D259C78}] => (Allow) D:\SteamLibrary\SteamApps\common\pressure\bin\pressure.exe
FirewallRules: [{DC871330-EDAB-4013-8BC7-1143659F976A}] => (Allow) D:\SteamLibrary\SteamApps\common\The39Steps\39steps.exe
FirewallRules: [{58B25BA6-F63A-4E53-9AA4-CDBCD3346DEB}] => (Allow) D:\SteamLibrary\SteamApps\common\The39Steps\39steps.exe
FirewallRules: [{F1DCFB10-D7DC-494A-A145-7C388288100D}] => (Allow) D:\SteamLibrary\SteamApps\common\Commander Conquest of the Americas Gold\Commander.exe
FirewallRules: [{CCFBBF3E-F358-43A2-AA30-4A5CC34C1C6B}] => (Allow) D:\SteamLibrary\SteamApps\common\Commander Conquest of the Americas Gold\Commander.exe
FirewallRules: [{235E609B-EAD6-4AC4-A891-B114DFDE1942}] => (Allow) D:\SteamLibrary\SteamApps\common\Chicken Shoot\Kurka.exe
FirewallRules: [{3DC3FF6E-4961-4FBC-950B-73F8144C483C}] => (Allow) D:\SteamLibrary\SteamApps\common\Chicken Shoot\Kurka.exe
FirewallRules: [{7833D95A-3388-4AD4-9D74-55CBD9AC691E}] => (Allow) D:\SteamLibrary\SteamApps\common\Chicken Shoot 2\Kurka.exe
FirewallRules: [{17EDD022-A225-470A-AB23-7CDAECD83442}] => (Allow) D:\SteamLibrary\SteamApps\common\Chicken Shoot 2\Kurka.exe
FirewallRules: [{511C0F5F-5689-42AE-807F-E3ADA17E81CA}] => (Allow) D:\SteamLibrary\SteamApps\common\Ionball 2  Ionstorm\IonStorm_v1.1.exe
FirewallRules: [{925EB543-47F8-4B86-8B32-E58A993135C7}] => (Allow) D:\SteamLibrary\SteamApps\common\Ionball 2  Ionstorm\IonStorm_v1.1.exe
FirewallRules: [{FA1B4D47-988A-4945-A02C-9407F1886435}] => (Allow) D:\SteamLibrary\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{0385B3E6-58C0-4C36-9FEA-F3D6BB9E46D4}] => (Allow) D:\SteamLibrary\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [TCP Query User{18393D6C-1E6A-4250-AC8C-706D849DC850}D:\steamlibrary\steamapps\common\thehunter\game\thehunter.exe] => (Allow) D:\steamlibrary\steamapps\common\thehunter\game\thehunter.exe
FirewallRules: [UDP Query User{7B787C85-1669-4F84-9D47-7419DFED8CD7}D:\steamlibrary\steamapps\common\thehunter\game\thehunter.exe] => (Allow) D:\steamlibrary\steamapps\common\thehunter\game\thehunter.exe
FirewallRules: [{BFCDE5C0-F765-4C04-A142-1D9F6E8ECBC5}] => (Block) D:\steamlibrary\steamapps\common\thehunter\game\thehunter.exe
FirewallRules: [{81EA7671-6003-419E-8CE8-F311AEF13A80}] => (Block) D:\steamlibrary\steamapps\common\thehunter\game\thehunter.exe
FirewallRules: [{72E4C232-8836-4F49-B04C-882126660555}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [TCP Query User{D9FB0F18-A64A-461D-AE72-BF1B272C7491}D:\viscera_alpha\binaries\win32\udk.exe] => (Allow) D:\viscera_alpha\binaries\win32\udk.exe
FirewallRules: [UDP Query User{40CFD092-8A8D-4B64-A8BC-B1089529F20F}D:\viscera_alpha\binaries\win32\udk.exe] => (Allow) D:\viscera_alpha\binaries\win32\udk.exe
FirewallRules: [{155D00AD-FC3B-46F6-A55C-6BDB5B612C10}] => (Block) D:\viscera_alpha\binaries\win32\udk.exe
FirewallRules: [{7996ED6F-171D-4B17-947B-BD102F5088FF}] => (Block) D:\viscera_alpha\binaries\win32\udk.exe
FirewallRules: [TCP Query User{2DFF47FD-3FDE-441D-8548-B22086FEA2B6}C:\users\simon\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\simon\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{A4891BBF-6F40-43E7-A8F0-2FCB9C262653}C:\users\simon\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\simon\appdata\roaming\spotify\spotify.exe
FirewallRules: [{FD932FA4-5F87-42CF-9368-EB6B0E77CCD0}] => (Allow) D:\SteamLibrary\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{2AB3CD96-430E-4EFC-89AD-E2338DA3D4A9}] => (Allow) D:\SteamLibrary\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{69FDDC5F-9984-4162-B6C8-DDA576B7ADA4}] => (Allow) D:\SteamLibrary\SteamApps\common\Sniper Elite\SniperElite.exe
FirewallRules: [{C7DFE615-B043-455D-BA86-F20E36B1E58B}] => (Allow) D:\SteamLibrary\SteamApps\common\Sniper Elite\SniperElite.exe
FirewallRules: [{5217F3F1-37A0-4C03-9FE3-1FDB45FB9542}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{428D4581-E25F-48E3-941F-97403CCDB5C4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{42CB22D0-62CF-4E22-8643-0A78ED12B2EB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{45A79091-2C72-4946-B272-B93C1CC7B1BA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{8D2237E6-E449-4091-9DF3-547683D057C1}] => (Allow) F:\SteamLibrary\steamapps\common\Wolfenstein.The.Old.Blood.DE\WolfOldBlood_x64.exe
FirewallRules: [{840A3303-CFB8-4B8E-A66C-8BC05A8A6F5F}] => (Allow) F:\SteamLibrary\steamapps\common\Wolfenstein.The.Old.Blood.DE\WolfOldBlood_x64.exe
FirewallRules: [{90FB12D6-8E39-4219-8E25-BFE521DDE515}] => (Allow) F:\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{2E57506B-FF4B-4F5E-BB86-B28C4002BC5F}] => (Allow) F:\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{84D31AC9-2183-4A16-A6F6-0555D0887FF2}] => (Allow) F:\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{261C934D-5B29-4604-9B20-6417AE3D8387}] => (Allow) F:\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{857BAE03-4418-45D1-9F6B-8B32A88087FB}] => (Allow) F:\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{A57EBC35-DBB8-471E-B03D-A31E45866F1D}] => (Allow) F:\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{8616D867-EACF-419C-BEBF-048E6DEA0BAE}] => (Allow) F:\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{4202BDEC-E31E-4035-9AA3-AFDB40088E6E}] => (Allow) F:\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{EAB656A3-7CBE-4A83-BA81-CA1A44485101}] => (Allow) D:\SteamLibrary\SteamApps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [{FE810AA5-9299-4D37-B6B4-25D4304A3619}] => (Allow) D:\SteamLibrary\SteamApps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [{B5A6D148-6A65-4CFD-9E2C-96DEF267563F}] => (Allow) D:\SteamLibrary\SteamApps\common\CSNZ\Bin\cstrike-online.exe
FirewallRules: [{3D66BD48-8BDF-4300-B905-1A58713A4AE5}] => (Allow) D:\SteamLibrary\SteamApps\common\CSNZ\Bin\cstrike-online.exe
FirewallRules: [{DCABB2F9-CEB5-4FB5-88AA-585F945E280D}] => (Allow) F:\SteamLibrary\steamapps\common\Uncrowded\Uncrowded.exe
FirewallRules: [{0C8157F5-2966-41A2-A9CF-A244FB5706E7}] => (Allow) F:\SteamLibrary\steamapps\common\Uncrowded\Uncrowded.exe
FirewallRules: [{6295B7D8-E14C-46DC-BCCE-ABAF91CFF630}] => (Allow) F:\SteamLibrary\steamapps\common\Orion Dino Beatdown\Binaries\Win32\DinoHordeGame.exe
FirewallRules: [{C2F0C8A6-F136-4E50-AF23-85B8B4465034}] => (Allow) F:\SteamLibrary\steamapps\common\Orion Dino Beatdown\Binaries\Win32\DinoHordeGame.exe
FirewallRules: [{225A5BDA-A343-49A1-A330-50F5B4756BEF}] => (Allow) F:\SteamLibrary\steamapps\common\Labyronia RPG 2\Game.exe
FirewallRules: [{4A16F313-FDAD-406A-9670-EA30A92147CA}] => (Allow) F:\SteamLibrary\steamapps\common\Labyronia RPG 2\Game.exe
FirewallRules: [TCP Query User{1B2EE032-E1B1-4D2C-9CD8-A149A80FBA4F}C:\program files\java\jdk1.8.0_60\bin\javaw.exe] => (Allow) C:\program files\java\jdk1.8.0_60\bin\javaw.exe
FirewallRules: [UDP Query User{E63DA3AD-66F1-4660-9074-51424D671B1A}C:\program files\java\jdk1.8.0_60\bin\javaw.exe] => (Allow) C:\program files\java\jdk1.8.0_60\bin\javaw.exe
FirewallRules: [{30B13580-5DAE-442C-AEC1-246075F4957D}] => (Allow) C:\program files\java\jdk1.8.0_60\bin\javaw.exe
FirewallRules: [{0EE6DDDB-4719-48FE-8DD0-446B56150E69}] => (Allow) C:\program files\java\jdk1.8.0_60\bin\javaw.exe
FirewallRules: [{49C598C8-60E1-4F6D-AFAA-87551B0BA258}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{A7EB7E9D-C28C-4A6C-A9F9-564B26CFE0D5}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{0D61EEC9-B8FC-4789-9495-60BB9897049B}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{6876D37E-C5A0-4464-B07C-772E8E0C2C8B}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{67CD5AB3-1D99-4995-9AD2-262439D8FA97}] => (Allow) C:\windows\syswow64\javaw.exe
FirewallRules: [{A5785622-BAA7-4614-83F4-BF43B9842044}] => (Allow) C:\windows\syswow64\javaw.exe
FirewallRules: [{647FB06D-A2B2-45B3-9C28-687CCFDAF5E7}] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [{D00D35B9-E001-448D-BDEB-9C096CC40E54}] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [{C1428406-9130-475E-A3E6-5B56AAD62CFE}] => (Allow) C:\program files\java\jdk1.8.0_60\bin\javaw.exe
FirewallRules: [{B80299DD-2FEC-4F3E-933B-AC753BA2F662}] => (Allow) C:\program files\java\jdk1.8.0_60\bin\javaw.exe
FirewallRules: [{581922E5-3457-4EBE-A383-C080336E82FD}] => (Allow) C:\program files\java\jdk1.8.0_60\bin\javaw.exe
FirewallRules: [{115A9D44-75AF-4ACE-9E19-40ABF6508226}] => (Allow) C:\program files\java\jdk1.8.0_60\bin\javaw.exe
FirewallRules: [TCP Query User{F9EDF042-CEC4-443F-887D-A141C4D37271}C:\program files (x86)\java\jre1.8.0_65\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_65\bin\javaw.exe
FirewallRules: [UDP Query User{9CDA50EF-3D63-4B37-9FC8-CDB2E7AA9C43}C:\program files (x86)\java\jre1.8.0_65\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_65\bin\javaw.exe
FirewallRules: [{543A8B73-7A30-4753-9ACF-346B0D171AA9}] => (Block) C:\program files (x86)\java\jre1.8.0_65\bin\javaw.exe
FirewallRules: [{ED2ACFA3-1246-4179-8483-2E0A54A33D26}] => (Block) C:\program files (x86)\java\jre1.8.0_65\bin\javaw.exe
FirewallRules: [TCP Query User{56083987-3A37-455E-9821-F9E42FA39A95}F:\simon\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) F:\simon\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{A838DA14-FDFD-4E71-95EB-4D40D1C3DF34}F:\simon\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) F:\simon\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{E0E5DA18-A93B-472C-BD1C-273F56D744C4}] => (Block) F:\simon\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{352C0336-78E2-4986-8A3F-D2984EF4BD1C}] => (Block) F:\simon\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{5E98947E-F3F3-4980-93F0-83CF75C1D6E2}F:\simon\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) F:\simon\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{A1F62111-40C1-4C32-837C-869C46531FE9}F:\simon\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) F:\simon\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{29D90DC0-BB5F-4B6D-9D53-EFD0AF7A2C07}] => (Block) F:\simon\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{F490BADB-FB9D-4381-B46B-58CF27CEE990}] => (Block) F:\simon\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{C3476579-8CBC-44C9-B40E-F713B89C5C73}C:\users\simon\appdata\local\temp\rar$exa0.062\bruteforce\server\bfs.exe] => (Allow) C:\users\simon\appdata\local\temp\rar$exa0.062\bruteforce\server\bfs.exe
FirewallRules: [UDP Query User{52688BFF-EFD1-4289-BC8B-AB82D5A14F8F}C:\users\simon\appdata\local\temp\rar$exa0.062\bruteforce\server\bfs.exe] => (Allow) C:\users\simon\appdata\local\temp\rar$exa0.062\bruteforce\server\bfs.exe
FirewallRules: [{4D2B1739-DC43-4372-A509-6AD8EFF8700F}] => (Block) C:\users\simon\appdata\local\temp\rar$exa0.062\bruteforce\server\bfs.exe
FirewallRules: [{ECB5745F-59CC-48C8-AB04-045F81CFF643}] => (Block) C:\users\simon\appdata\local\temp\rar$exa0.062\bruteforce\server\bfs.exe
FirewallRules: [{EC8F35DC-662D-4565-9B2B-A572A2787875}] => (Allow) D:\SteamLibrary\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{BE366740-7196-4BFF-83E0-A308174DD5A9}] => (Allow) D:\SteamLibrary\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{5A2E30AA-9785-4808-86D4-F82482A8A291}] => (Allow) D:\SteamLibrary\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{C2CD73AC-84B3-4D29-8DEC-5663745DA490}] => (Allow) D:\SteamLibrary\SteamApps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{7F60E887-C462-4529-8243-2D6128DBB7EC}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera\Binaries\Win32\UDK.exe
FirewallRules: [{46E39287-4F17-4D12-A56A-264A78041D82}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera\Binaries\Win32\UDK.exe
FirewallRules: [{E99B9A20-706F-4FEF-91E1-514D02642C23}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera\Binaries\Win64\UDK.exe
FirewallRules: [{6D1AE107-707D-44FF-9680-3446F596158E}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera\Binaries\Win64\UDK.exe
FirewallRules: [{B3F7758A-AB44-44E5-B089-CC58AF19C730}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera\Binaries\UDKLift.exe
FirewallRules: [{37D9EE58-BC21-452F-B635-3C147A2CADB6}] => (Allow) D:\SteamLibrary\SteamApps\common\Viscera\Binaries\UDKLift.exe
FirewallRules: [{0D7D9E29-8CCF-4899-818C-ABB7385AD44D}] => (Allow) D:\SteamLibrary\SteamApps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [{67A53702-C48D-4CD7-B778-1A6EF99422C5}] => (Allow) D:\SteamLibrary\SteamApps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [{468A0FBA-C594-4781-A92B-06F0F6343203}] => (Allow) F:\SteamLibrary\steamapps\common\Far Cry 2\bin\FarCry2.exe
FirewallRules: [{805585A1-06B2-452E-97C4-ABE95B028D11}] => (Allow) F:\SteamLibrary\steamapps\common\Far Cry 2\bin\FarCry2.exe
FirewallRules: [{66F89970-02BA-401F-ABCB-AAAC1F60ACEB}] => (Allow) F:\SteamLibrary\steamapps\common\Far Cry 2\bin\FC2Editor.exe
FirewallRules: [{13264A27-6D7A-4067-8117-8B34031B7630}] => (Allow) F:\SteamLibrary\steamapps\common\Far Cry 2\bin\FC2Editor.exe
FirewallRules: [{D2166829-6E82-422D-B492-5C3FB837CC6B}] => (Allow) F:\SteamLibrary\steamapps\common\Far Cry 2\bin\FC2BenchmarkTool.exe
FirewallRules: [{42868D99-E46C-442A-BB31-15E7D14A3FE1}] => (Allow) F:\SteamLibrary\steamapps\common\Far Cry 2\bin\FC2BenchmarkTool.exe
FirewallRules: [{BDDAC5BF-9938-4BF5-8D71-B7D4619C9FCD}] => (Allow) F:\SteamLibrary\steamapps\common\Far Cry 2\bin\FC2ServerLauncher.exe
FirewallRules: [{8062B9D9-95EE-4958-9F6F-3FC47E842768}] => (Allow) F:\SteamLibrary\steamapps\common\Far Cry 2\bin\FC2ServerLauncher.exe
FirewallRules: [{161A1C27-FF5D-42D1-A302-3ABDC60E0D6F}] => (Allow) F:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{D3273329-885F-41C5-9D87-6769FF14A3EE}] => (Allow) F:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{55C660BA-E832-4E96-B8F9-861D51DC8EC3}] => (Allow) F:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{3FABA4F5-9625-4CEA-B45D-9667D2651F5D}] => (Allow) F:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{CFFA9183-B211-4B4C-A2B0-55C0E981199A}] => (Allow) F:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [{D910C111-BDA5-4A74-98D4-BCDF3C789042}] => (Allow) F:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [{D74F34F7-8D1F-4A32-A415-C151F4C671C5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{5872954F-4E89-4929-A665-5BB2C83E0D6D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{63290278-533C-4D26-8468-0D0EA3023054}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{15D0584D-FE43-4E98-A6D8-F7BCBC302701}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{A6357161-030A-4F93-A7C8-E717018A2C4C}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{9CF08451-A680-438E-AA27-4D43A5D9D0E5}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{5D518472-6CEA-4D22-9372-C97B81FB9CC6}] => (Allow) F:\OriginGames\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{EFDADFFF-F1DD-4F6B-833D-99A50AFA74C8}] => (Allow) F:\OriginGames\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{33DE7A03-70F7-43C1-B422-DC77862A4FBA}] => (Allow) F:\OriginGames\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{FF240177-CFC8-41DA-B2DD-4F6E5FA00040}] => (Allow) F:\OriginGames\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [TCP Query User{AF00AA37-DB74-4E9C-8C44-FC96CAFF5E64}F:\origingames\battlefield 4\bf4.exe] => (Allow) F:\origingames\battlefield 4\bf4.exe
FirewallRules: [UDP Query User{5947592E-7458-42DF-A7CA-13558275D19E}F:\origingames\battlefield 4\bf4.exe] => (Allow) F:\origingames\battlefield 4\bf4.exe
FirewallRules: [{2E2746D7-15BF-43E1-AF18-DC8411374955}] => (Block) F:\origingames\battlefield 4\bf4.exe
FirewallRules: [{62DCC7DC-9579-450C-8604-D5541A1E9F20}] => (Block) F:\origingames\battlefield 4\bf4.exe
FirewallRules: [{83995CFA-7C27-4362-9AEA-03FE4E81ECC0}] => (Allow) D:\SteamLibrary\SteamApps\common\theHunter\launcher\launcher.exe
FirewallRules: [{13845D4D-ADFD-4068-8022-48999F641507}] => (Allow) D:\SteamLibrary\SteamApps\common\theHunter\launcher\launcher.exe
FirewallRules: [{41F8A041-476C-43AB-9ADC-7F87DC97FCC8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{7E245735-B5B2-4F6E-A276-0E943D257AA5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{9944B9B8-2299-4F9B-9A37-E69B0F45F709}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Microsoft PS/2-Maus
Description: Microsoft PS/2-Maus
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: PS/2-Standardtastatur
Description: PS/2-Standardtastatur
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardtastaturen)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (12/08/2015 07:23:39 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SimonsPC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (12/08/2015 06:54:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SystemSettings.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f39ae
Name des fehlerhaften Moduls: SettingsHandlers_StorageSense.dll, Version: 10.0.10240.16384, Zeitstempel: 0x559f3d87
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000174b9
ID des fehlerhaften Prozesses: 0x53c
Startzeit der fehlerhaften Anwendung: 0xSystemSettings.exe0
Pfad der fehlerhaften Anwendung: SystemSettings.exe1
Pfad des fehlerhaften Moduls: SystemSettings.exe2
Berichtskennung: SystemSettings.exe3
Vollständiger Name des fehlerhaften Pakets: SystemSettings.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: SystemSettings.exe5

Error: (12/08/2015 06:53:38 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (12/07/2015 09:45:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: backgroundTaskHost.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f38c5
Name des fehlerhaften Moduls: twinapi.appcore.dll, Version: 10.0.10240.16590, Zeitstempel: 0x563ad512
Ausnahmecode: 0xc000027b
Fehleroffset: 0x000000000006646f
ID des fehlerhaften Prozesses: 0x2188
Startzeit der fehlerhaften Anwendung: 0xbackgroundTaskHost.exe0
Pfad der fehlerhaften Anwendung: backgroundTaskHost.exe1
Pfad des fehlerhaften Moduls: backgroundTaskHost.exe2
Berichtskennung: backgroundTaskHost.exe3
Vollständiger Name des fehlerhaften Pakets: backgroundTaskHost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: backgroundTaskHost.exe5

Error: (12/07/2015 09:02:46 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SimonsPC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (12/07/2015 08:27:27 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SimonsPC)
Description: Bei der Aktivierung der App „windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy:microsoft.windows.immersivecontrolpanel“ ist folgender Fehler aufgetreten: -2144927149. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (12/07/2015 01:14:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: dwm.exe, Version: 10.0.10240.16384, Zeitstempel: 0x559f3907
Name des fehlerhaften Moduls: dwmcore.dll, Version: 10.0.10240.16461, Zeitstempel: 0x55d2d629
Ausnahmecode: 0xc0000602
Fehleroffset: 0x00000000000aca77
ID des fehlerhaften Prozesses: 0x13d4
Startzeit der fehlerhaften Anwendung: 0xdwm.exe0
Pfad der fehlerhaften Anwendung: dwm.exe1
Pfad des fehlerhaften Moduls: dwm.exe2
Berichtskennung: dwm.exe3
Vollständiger Name des fehlerhaften Pakets: dwm.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: dwm.exe5

Error: (12/06/2015 10:12:12 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: SimonsPC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (12/06/2015 07:31:38 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (12/06/2015 07:31:38 PM) (Source: Windows Backup) (EventID: 4104) (User: )
Description: Die Sicherung war nicht erfolgreich. Fehler: Auf diesem Laufwerk ist nicht genügend Speicherplatz zum Speichern der Sicherung verfügbar. Löschen Sie ältere Sicherungen und nicht benötigte Daten, um Speicherplatz freizugeben, oder ändern Sie die Sicherungseinstellungen. (0x81000005).


Systemfehler:
=============
Error: (12/08/2015 07:32:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (12/08/2015 07:32:58 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.

Error: (12/08/2015 07:24:08 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Net.Tcp-Listeneradapter" ist vom Dienst "Net.Tcp-Portfreigabedienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1058

Error: (12/08/2015 07:23:39 PM) (Source: DCOM) (EventID: 10010) (User: SimonsPC)
Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca

Error: (12/08/2015 07:23:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (12/08/2015 06:58:20 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40. Der Windows-SChannel-Fehlerstatus lautet: 808.

Error: (12/07/2015 11:26:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (12/07/2015 09:20:41 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Net.Tcp-Listeneradapter" ist vom Dienst "Net.Tcp-Portfreigabedienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1058

Error: (12/07/2015 09:20:18 PM) (Source: DCOM) (EventID: 10010) (User: SimonsPC)
Description: {3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (12/07/2015 09:20:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-3450 CPU @ 3.10GHz
Prozentuale Nutzung des RAM: 28%
Installierter physikalischer RAM: 8124.64 MB
Verfügbarer physikalischer RAM: 5803.98 MB
Summe virtueller Speicher: 16316.64 MB
Verfügbarer virtueller Speicher: 13905.75 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:238.47 GB) (Free:156.62 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: () (Fixed) (Total:931.51 GB) (Free:15.56 GB) NTFS
Drive f: () (Fixed) (Total:931.51 GB) (Free:712.09 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: DA60CAF6)
Partition 1: (Active) - (Size=238.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 873C423C)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================

deeprybka · 09.12.2015, 16:11

Hi,

Schritt 1

Drücke bitte die

+ R Taste und schreibe notepad in das Ausführen Fenster.
Klicke auf OK und kopiere nun den Text aus der Codebox in das leere Textdokument:

Code:

ATTFilter

CloseProcesses:
cmd: type "C:\TDSSKiller.3.1.0.7_07.12.2015_20.22.58_log.txt"
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Simon\AppData\Local\MEGAsync\ShellExtX64.dll Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Simon\AppData\Local\MEGAsync\ShellExtX64.dll Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Simon\AppData\Local\MEGAsync\ShellExtX64.dll Keine Datei
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  Keine Datei
AutoConfigURL: [S-1-5-21-2336143983-1811979360-430894021-1000] => hxxp://unstopp.me/wpad.dat?0dd2e26bf24691c9645fc90193c3dea62276241
HKU\S-1-5-21-2336143983-1811979360-430894021-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://houmpage.com/?
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2336143983-1811979360-430894021-1000 -> {cf34d395-9ff1-49a0-98a5-8db1636431b1} URL = hxxp://
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton 360\Engine\21.7.0.11\IPS\IPSBHO.DLL => Keine Datei
BHO-x32: af0.Adblock.BHO -> {90EFF544-3981-4d46-85C9-C0361D0931D6} -> mscoree.dll => Keine Datei
Task: {18600800-2A7B-4C2D-9E8F-8913AE65CB02} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei 
Task: {553B6F3F-EBD3-4552-A8A9-DF400FEC2726} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei 
Task: {5AE66A1F-AF86-4F97-810B-A3FD56E45F4C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei 
Task: {62EA1D63-C337-4262-9D61-02A9AE72C624} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei 
Task: {88220E8C-820B-4462-BB7D-868CE6598EDD} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei 
Task: {AF425EC7-1794-4752-9A09-0E6FC42FD92A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei 
Task: {BB08595F-1F25-4809-AABE-6D4330256054} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei 
Task: {D28BDF41-163B-421A-AE83-F2782A8442F5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei 
Task: {D4F78157-058F-4077-8B25-CF5A74AC38A6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei 
Task: {E87A45C3-EF16-4BB4-92DC-AE20826D80DE} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei 
Task: {FBFF52CC-D337-4760-8B6D-12DA82F23793} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei 
EmptyTemp:

Speichere dieses bitte als Fixlist.txt in das Verzeichnis ab, in dem sich auch die FRST-Anwendung befindet.

Starte FRST und drücke auf den Entfernen-Button.
Das Tool erstellt eine "Fixlog.txt" -Datei.
Poste mir bitte deren Inhalt.

Schritt 2

Bitte lade Dir herdprotect von Reason Software (portable edition) auf Deinen Desktop.

Mit Rechts-Klick als Administrator starten.
Wähle als Installationspfad den vorgegebenen. (%ProgramFiles%)
Bestätige die Bedingungen und starte herdprotect durch Klick auf Finish.
Klicke auf Scan und warte geduldig bis der Scan beendet wurde.
Keine Funde entfernen lassen und Logdatei über Save Results abspeichern.
Poste bitte den Inhalt der Log-Datei.

simonspc · 09.12.2015, 19:55

Zu groß für einen Post.
Fixlog 1.

Code:

ATTFilter

Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-12-2015
durchgeführt von Simon (2015-12-09 19:43:47) Run:1
Gestartet von F:\Simon\Downloads
Geladene Profile: Simon (Verfügbare Profile: Simon & DefaultAppPool)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
CloseProcesses:
cmd: type "C:\TDSSKiller.3.1.0.7_07.12.2015_20.22.58_log.txt"
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Simon\AppData\Local\MEGAsync\ShellExtX64.dll Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Simon\AppData\Local\MEGAsync\ShellExtX64.dll Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Simon\AppData\Local\MEGAsync\ShellExtX64.dll Keine Datei
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  Keine Datei
AutoConfigURL: [S-1-5-21-2336143983-1811979360-430894021-1000] => hxxp://unstopp.me/wpad.dat?0dd2e26bf24691c9645fc90193c3dea62276241
HKU\S-1-5-21-2336143983-1811979360-430894021-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://houmpage.com/?
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2336143983-1811979360-430894021-1000 -> {cf34d395-9ff1-49a0-98a5-8db1636431b1} URL = hxxp://
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton 360\Engine\21.7.0.11\IPS\IPSBHO.DLL => Keine Datei
BHO-x32: af0.Adblock.BHO -> {90EFF544-3981-4d46-85C9-C0361D0931D6} -> mscoree.dll => Keine Datei
Task: {18600800-2A7B-4C2D-9E8F-8913AE65CB02} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei 
Task: {553B6F3F-EBD3-4552-A8A9-DF400FEC2726} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei 
Task: {5AE66A1F-AF86-4F97-810B-A3FD56E45F4C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei 
Task: {62EA1D63-C337-4262-9D61-02A9AE72C624} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei 
Task: {88220E8C-820B-4462-BB7D-868CE6598EDD} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei 
Task: {AF425EC7-1794-4752-9A09-0E6FC42FD92A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei 
Task: {BB08595F-1F25-4809-AABE-6D4330256054} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei 
Task: {D28BDF41-163B-421A-AE83-F2782A8442F5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei 
Task: {D4F78157-058F-4077-8B25-CF5A74AC38A6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei 
Task: {E87A45C3-EF16-4BB4-92DC-AE20826D80DE} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei 
Task: {FBFF52CC-D337-4760-8B6D-12DA82F23793} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei 
EmptyTemp:
*****************

Prozess erfolgreich geschlossen.

=========  type "C:\TDSSKiller.3.1.0.7_07.12.2015_20.22.58_log.txt" =========

20:22:58.0470 0x0654  TDSS rootkit removing tool 3.1.0.7 Nov 29 2015 22:37:04
20:23:01.0714 0x0654  ============================================================
20:23:01.0714 0x0654  Current date / time: 2015/12/07 20:23:01.0714
20:23:01.0714 0x0654  SystemInfo:
20:23:01.0714 0x0654  
20:23:01.0714 0x0654  OS Version: 10.0.10240 ServicePack: 0.0
20:23:01.0714 0x0654  Product type: Workstation
20:23:01.0714 0x0654  ComputerName: SIMONSPC
20:23:01.0714 0x0654  UserName: Simon
20:23:01.0714 0x0654  Windows directory: C:\WINDOWS
20:23:01.0714 0x0654  System windows directory: C:\WINDOWS
20:23:01.0714 0x0654  Running under WOW64
20:23:01.0714 0x0654  Processor architecture: Intel x64
20:23:01.0714 0x0654  Number of processors: 4
20:23:01.0714 0x0654  Page size: 0x1000
20:23:01.0714 0x0654  Boot type: Safe boot with network
20:23:01.0714 0x0654  ============================================================
20:23:01.0891 0x0654  KLMD registered as C:\WINDOWS\system32\drivers\88758011.sys
20:23:01.0918 0x0654  System UUID: {99AA554A-E0FD-4FD6-BF92-784926031BD9}
20:23:02.0112 0x0654  Drive \Device\Harddisk0\DR0 - Size: 0x3B9E656000 ( 238.47 Gb ), SectorSize: 0x200, Cylinders: 0x799A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:23:02.0126 0x0654  Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:23:02.0137 0x0654  ============================================================
20:23:02.0137 0x0654  \Device\Harddisk0\DR0:
20:23:02.0137 0x0654  MBR partitions:
20:23:02.0137 0x0654  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1DCEF11A
20:23:02.0137 0x0654  \Device\Harddisk1\DR1:
20:23:02.0137 0x0654  MBR partitions:
20:23:02.0137 0x0654  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74703000
20:23:02.0137 0x0654  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x74703800, BlocksNum 0x74704800
20:23:02.0137 0x0654  ============================================================
20:23:02.0138 0x0654  C: <-> \Device\Harddisk0\DR0\Partition1
20:23:02.0182 0x0654  D: <-> \Device\Harddisk1\DR1\Partition2
20:23:02.0209 0x0654  F: <-> \Device\Harddisk1\DR1\Partition1
20:23:02.0209 0x0654  ============================================================
20:23:02.0209 0x0654  Initialize success
20:23:02.0209 0x0654  ============================================================
20:23:24.0252 0x071c  ============================================================
20:23:24.0252 0x071c  Scan started
20:23:24.0252 0x071c  Mode: Manual; TDLFS; 
20:23:24.0252 0x071c  ============================================================
20:23:24.0252 0x071c  KSN ping started
20:23:26.0622 0x071c  KSN ping finished: true
20:23:26.0844 0x071c  ================ Scan system memory ========================
20:23:26.0844 0x071c  System memory - ok
20:23:26.0844 0x071c  ================ Scan services =============================
20:23:26.0864 0x071c  [ 22CE801AD25C51E2553F41A076BB0CB2, 0520216417F1619FB642734EC937C59D5E79A24306C1E9B793C82FAE077851E6 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
20:23:26.0868 0x071c  1394ohci - ok
20:23:26.0875 0x071c  [ 2C49A2441EBB24C6ACFB524C1459115F, 0ABACB6F21C41C0297994E61F1BFABB3905AF6B569D0446FE8E174EB9225B8EF ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
20:23:26.0877 0x071c  3ware - ok
20:23:26.0886 0x071c  [ 5BFA2793D19F12D358224742C7AE0AA0, F8B97978E730B71735E9DFD7C5832D704E86632A173C08DB00380D3D60222BF9 ] acedrv10        C:\WINDOWS\system32\drivers\acedrv10.sys
20:23:26.0893 0x071c  acedrv10 - ok
20:23:26.0899 0x071c  [ 90FA6FDD9D9F731BF3C0FD5A0BE32A63, 2D8E9F7D0C6EC3725182831BB5EA289705CA23A738349E3E661DE6BD542A44B4 ] acehlp10        C:\WINDOWS\system32\drivers\acehlp10.sys
20:23:26.0903 0x071c  acehlp10 - ok
20:23:26.0913 0x071c  [ B87D3D07FE6F15328C6860D542F0E2BD, 46CF069EDD7DBFB4DB800BABA3081DAB363DD2CFD724AFF5916D3419F62A3574 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
20:23:26.0922 0x071c  ACPI - ok
20:23:26.0926 0x071c  [ 1E3C4EDBB7F3F668B7205E351010BB79, A3CA12F72836C4F77B671264828B370B9EBA9CD71110E2C0514994760B6B12FF ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
20:23:26.0929 0x071c  acpiex - ok
20:23:26.0931 0x071c  [ 13B1C26AEDCB40082CDD97506F968129, 883442206B4C60AA493E84CC3037B6C1568441E1F43D2B1FCBFD8D87D135D511 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
20:23:26.0932 0x071c  acpipagr - ok
20:23:26.0934 0x071c  [ B3D64FF927D611721DA73A61BF3A18B3, 96B51AFDC3078B5088AAF66F0CF3E07D2FCBBC84A19D309A25DF0A5C6CECB958 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
20:23:26.0935 0x071c  AcpiPmi - ok
20:23:26.0937 0x071c  [ 19F793B2203D94AC1F8AEDB08B494E2E, DC98CCF9935E1F1C32FA88575A9A678B74916EFF48E39A64CF1FF92232F64A52 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
20:23:26.0937 0x071c  acpitime - ok
20:23:26.0941 0x071c  [ 5DB2C6B908C50767E2EDAA294A7566B5, 13AE4879D679BB0C6B2A5A5B13910359815A9D2E569BC1DE740B5A387A78CF33 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:23:26.0943 0x071c  AdobeARMservice - ok
20:23:26.0952 0x071c  [ 132190688D8E51D61F88A150D7DF9FB4, 76E1C520CCA50509AD60B7257099855674E4BB8E63CE933A0B53C7A8DCAE55C9 ] adp3132         C:\WINDOWS\system32\drivers\adp3132.sys
20:23:26.0958 0x071c  adp3132 - ok
20:23:26.0977 0x071c  [ 2A24E10C1A1DE0E0035E353EED494A1C, CBBFA86578BE74CAADDCA923D65E3BFFC57BC17B887936ADE5C6952530546A22 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
20:23:26.0993 0x071c  ADP80XX - ok
20:23:27.0006 0x071c  [ A3D96563BF46FC8A0E5756B796127D14, BAD3C30714F6514D2AF725077A79FF671CC022E415786E1666C0B7C24CE3670A ] AFD             C:\WINDOWS\system32\drivers\afd.sys
20:23:27.0014 0x071c  AFD - ok
20:23:27.0018 0x071c  [ EF09D07626820F7F89519514C17FE768, C3EC1DC163CD5946270ED876CD414889BBF2C586A8AF5DC7825FA5D77001E827 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
20:23:27.0019 0x071c  agp440 - ok
20:23:27.0024 0x071c  [ 8A289EF0721F95267BF2404BABEE146D, E263D258F03DF3BB405D49AE7230C37E7EB8F392FDEE48059C7C1E3709520D35 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
20:23:27.0028 0x071c  ahcache - ok
20:23:27.0034 0x071c  [ FD420DB9B94309BCF182F4E8FB022C1D, 3C6C520D5CA222BACA0CE3FBD3804F9DD35100BE69138D1577D2951D17B4684E ] ahcix64s        C:\WINDOWS\system32\drivers\ahcix64s.sys
20:23:27.0039 0x071c  ahcix64s - ok
20:23:27.0041 0x071c  [ C301499987AF909258774AE9DC5778BB, 3ED539C999847116AE9DB9C8C5A34AB09703BAE3018E1EAF6DBC779BB6736F32 ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
20:23:27.0042 0x071c  AJRouter - ok
20:23:27.0046 0x071c  [ DD69535D379F9E40AD0D6002887AAA99, 579DD18CE2B264B4058C6069B8AEE6FD9FE6A882B7DA19E300DFE40B37A4E5BE ] ALG             C:\WINDOWS\System32\alg.exe
20:23:27.0047 0x071c  ALG - ok
20:23:27.0051 0x071c  [ F86AB0981B5A2A0512486FABA308AB6E, 3E14FEEFF3922D7189FAAEB43B70E16AD42A03C7BD8951EFD734A4FBB8D1223B ] amdhub30        C:\WINDOWS\system32\drivers\amdhub30.sys
20:23:27.0053 0x071c  amdhub30 - ok
20:23:27.0055 0x071c  [ 0DB2DF2B692A3F70443FD14D7920F249, 2B567735CF07D2386E65A17801890C98379322DE08CA2B43CA8C33466552BE92 ] amdide64        C:\WINDOWS\system32\drivers\amdide64.sys
20:23:27.0056 0x071c  amdide64 - ok
20:23:27.0060 0x071c  [ 6763084E8322A4876D1613854640F914, 89EEEB47517A9964FA799821E5E45BDD6009EBDC628D6DADE6A7F03DE7CDA6CD ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
20:23:27.0062 0x071c  AmdK8 - ok
20:23:27.0065 0x071c  [ 1C9C3547977DFA31C1A1FD0E8F1C0C11, A89AF945B2B4E8658A5BCAC58A54F84AFA6BC75CA3561E4BA2C0927705F578DA ] amdkmpfd        C:\WINDOWS\system32\drivers\amdkmpfd.sys
20:23:27.0066 0x071c  amdkmpfd - ok
20:23:27.0069 0x071c  [ DE29D8AB57AD67D4940CAB4A48B3E230, 4E92AFCD9107573DAB8E65AC6318E4B8851DCCBE17E135DFF8CF5733210B52E6 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
20:23:27.0072 0x071c  AmdPPM - ok
20:23:27.0075 0x071c  [ 4C1F9BBAF5CCD76D4642F3B92B97B454, 514CCAA8B586B1019658BE101046386EB727AD48D7913AEF9A168763E91F0DE5 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
20:23:27.0077 0x071c  amdsata - ok
20:23:27.0083 0x071c  [ F8195C1A15955180DD663E7FF4C2F6DD, F3C0C6B38FB9478217EE25EBDBDF7A18F01B97655BC38373E70E71171705D5E9 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
20:23:27.0087 0x071c  amdsbs - ok
20:23:27.0089 0x071c  [ DD2F5BBCFAC4D8E48DB1A95A7EEBFF08, 619E3106072C6F785144D785C4AFB4C607CAF7ED29AAA4A1411BE262E62B7ADE ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
20:23:27.0090 0x071c  amdxata - ok
20:23:27.0096 0x071c  [ 951284E2DC549A41D7615EF031889EE4, 306B4606D4C69B0E0C37540A265D4087808E9FC53D8B3F95AC3C3C6A87C24915 ] amdxhc          C:\WINDOWS\system32\drivers\amdxhc.sys
20:23:27.0099 0x071c  amdxhc - ok
20:23:27.0103 0x071c  [ EE4797DFEBBE8ACDB548DD8E80BE0A88, 9D56F835A5A9C045829EDFB546379E3448C9E539E5C2608B559DE4D052FEC769 ] amd_sata        C:\WINDOWS\system32\drivers\amd_sata.sys
20:23:27.0104 0x071c  amd_sata - ok
20:23:27.0108 0x071c  [ D56EAD71A86FD2ACAE2DB47D0A6A3A41, 2E5E6D0E00D25765CC8B9997B26DE43F305966BFA518CB72EA7CA77152001726 ] amd_xata        C:\WINDOWS\system32\drivers\amd_xata.sys
20:23:27.0109 0x071c  amd_xata - ok
20:23:27.0112 0x071c  [ E4AFE476D9F758514A8A571DF6A24372, A37055A2CDB577CC8B76D4B020924A6C68D94166C1C9A64F7C0E9E16692709FC ] AppHostSvc      C:\WINDOWS\system32\inetsrv\apphostsvc.dll
20:23:27.0113 0x071c  AppHostSvc - ok
20:23:27.0117 0x071c  [ 46AAF119090573A80D603745582229ED, 8D7C4AED66DD32A104965DC23D17C0815CD1BE2E3D52375C1A63863664EE174F ] AppID           C:\WINDOWS\system32\drivers\appid.sys
20:23:27.0120 0x071c  AppID - ok
20:23:27.0123 0x071c  [ 24315B385F515D6D5476757EAFD62633, CE645397BF43CC54B864A0E4FCB86F76C10B9C2D2482E85DBBE15EF7BF045F17 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
20:23:27.0124 0x071c  AppIDSvc - ok
20:23:27.0127 0x071c  [ 2CE396457D5C18F034D243EC7E159010, DDF588A568DF5EAE058DF315535BD746760363E2242EF8C705F8DCBA2D5DA4A7 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
20:23:27.0129 0x071c  Appinfo - ok
20:23:27.0140 0x071c  [ A8AC0B8ED134888731D1A1BCEF930FA1, 917D2C99CB28C5F20BA386148B6A93541AEF900A9A99D310D732B501322945E5 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
20:23:27.0149 0x071c  AppReadiness - ok
20:23:27.0183 0x071c  [ 43BE4036BC793A48BB0021B0FFF943CF, 233102A2B0D4B0527C6C2894EA5D14D556AD4C00BCFFC4E2B171F8B9DD200BAA ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
20:23:27.0214 0x071c  AppXSvc - ok
20:23:27.0219 0x071c  [ 0756EECAC010BE449D07502DF27E7701, 6A895CA80050D021DB5E130102F626027339A22673B7C15C51A375C0401F03D2 ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
20:23:27.0222 0x071c  arcsas - ok
20:23:27.0225 0x071c  [ EB6DC008A1F36DFD7999EB57E97EAACE, 2652798D622A751AD84429E03266F32B4EE86DECC34CA8153790D04F43E03A66 ] asahci64        C:\WINDOWS\system32\drivers\asahci64.sys
20:23:27.0226 0x071c  asahci64 - ok
20:23:27.0230 0x071c  [ 425A881DFFB426660A6861DC44927DD3, 575878CD7B7E2E6DD9D7051D0637C72D5795F863D32EA47B6A0B8A336D520D47 ] asmthub3        C:\WINDOWS\system32\drivers\asmthub3.sys
20:23:27.0232 0x071c  asmthub3 - ok
20:23:27.0241 0x071c  [ 0B19AE36FAAE5294B19B0AD4E5F2F37E, 654627BCE074752A06CAE501778AE044589E20E9568367F00A66C45E2A00B143 ] asmtxhci        C:\WINDOWS\system32\drivers\asmtxhci.sys
20:23:27.0247 0x071c  asmtxhci - ok
20:23:27.0255 0x071c  [ BD63768F58666341BE007DAA21B3A063, 1D6112E97042E19E4D916AA22F8AEB7FCC2F36CA45F55049D77042DAF3B8847C ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:23:27.0256 0x071c  aspnet_state - ok
20:23:27.0259 0x071c  [ B2F63C6DFCAA4770462F4070142C203C, 4924CDA6CF2F96665AE5BAACCD3B4FCABBBCAB23C6942D4D9B4D4C31D1173AF5 ] asvpndrv        C:\WINDOWS\system32\DRIVERS\asvpndrv.sys
20:23:27.0260 0x071c  asvpndrv - ok
20:23:27.0262 0x071c  [ A5792F971EFE86B7F56EE7299ED1082B, 82DCD15E2C9D8A3EA663941C9CE73020FEEF2F91354D0BB51E8A142AA1E30217 ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
20:23:27.0263 0x071c  AsyncMac - ok
20:23:27.0266 0x071c  [ 8921DF6060DB5C7700AA48CB12E9EA08, 8F18841B454CDE4926C50B23F818D00ECE0AE884DB198E396445CB44CB39B2C4 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
20:23:27.0267 0x071c  atapi - ok
20:23:27.0330 0x071c  [ 477906D31E1A5FDA0E5CD8D189DAD61F, C3A425D1167B6E0F15F9F8F084A3FE71F49CA7EB4ACB1CADB5F87DC2DB7B9039 ] athr            C:\WINDOWS\System32\drivers\athw10x.sys
20:23:27.0390 0x071c  athr - ok
20:23:27.0400 0x071c  [ 240FF83DD79546B26F187FAB20F83864, C4DC0159016B4A4630357131E614814C068D07BEA94AAF6393E882A78C9FCA1E ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
20:23:27.0404 0x071c  AudioEndpointBuilder - ok
20:23:27.0422 0x071c  [ 6300722E8527EC54D426FD00EE5196B2, 71376BE797E8F3E2E671167DA400239D5289DE7EE56CF29564C98715B9DB1D09 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
20:23:27.0437 0x071c  Audiosrv - ok
20:23:27.0442 0x071c  [ 2F7F80543129210CA75995D0DCA488E8, 353E598FF26FA363C02A2B44BA8D7D1ED97B8AC8C69F1B5C5D521BD0D5D5AB94 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
20:23:27.0444 0x071c  AxInstSV - ok
20:23:27.0454 0x071c  [ 00D64E82900E4EC9062805ED87C2D75A, 577110F9A7C6C2C4CF86FFF4F60E23F61623ED325FC950033900A5102754A677 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
20:23:27.0462 0x071c  b06bdrv - ok
20:23:27.0466 0x071c  [ 5164A66EC1565711A7B4CF2F143B4979, DA29F0FB63F3EB2BF92D51FEB4BB7D2B964553D2F634556325953927464CB3A5 ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
20:23:27.0467 0x071c  BasicDisplay - ok
20:23:27.0469 0x071c  [ F4C58BBF2972BD84C73F6A14CA35AC4E, B7A226EB861B63ACF4BF9B5A331ACA6FFC9B787DCCAA7697EEFC4F634508A6D5 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
20:23:27.0470 0x071c  BasicRender - ok
20:23:27.0473 0x071c  [ 25349D0B334E528667980948ED107D89, 70EF9D3B8DCAC6E9720C6F3EBC77392FADC182A6925F9024FE30A21321E0137F ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
20:23:27.0474 0x071c  bcmfn2 - ok
20:23:27.0481 0x071c  [ DF78B56EEE6004DEE8CE57763128075E, 5758CAF4B0182F3F2E2508B3BB58B0271F2689808D09675B2753FE373D1D77D2 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
20:23:27.0487 0x071c  BDESVC - ok
20:23:27.0489 0x071c  [ 1E8A9267F8886803AAE02982FC1B5BC4, 655DF84E037BD6E582A6BA89737A4388956219171AF7253D126E54A23F16BE59 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
20:23:27.0490 0x071c  Beep - ok
20:23:27.0508 0x071c  [ 56805606D40B1EC96AE8442E21318C13, 3CBCB50EA8D2124B5E322D38F721670B4997F5F6865D3C7D5F819B9EF9620394 ] BEService       C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
20:23:27.0525 0x071c  BEService - ok
20:23:27.0539 0x071c  [ 7FAFFFC4C59F5010D6E7CEA152076B92, 945FD6C04E109D4E5A4164BAA9A8120EC85AB809555AAD83E61B9F179F976FD7 ] BFE             C:\WINDOWS\System32\bfe.dll
20:23:27.0551 0x071c  BFE - ok
20:23:27.0579 0x071c  [ 9CF4428D09C73B6F633AF9E58B835689, 173D1A8A3E1B1CA6D0E4773B048B8B6549A8124E87942992BDE30211BEFFBE20 ] BHDrvx64        C:\Program Files (x86)\Norton Security\NortonData\22.5.0.124\Definitions\BASHDefs\20151113.001\BHDrvx64.sys
20:23:27.0604 0x071c  BHDrvx64 - ok
20:23:27.0624 0x071c  [ BD60F5633F6BD617D9ECCA3FFDC0D37E, 2F0DECAEB7096CD628387263381E123C883F483BD87F7F2BA6DEFBB5A184BAA3 ] BITS            C:\WINDOWS\System32\qmgr.dll
20:23:27.0650 0x071c  BITS - ok
20:23:27.0655 0x071c  [ C9FD65687EF89715999C582D3E568812, 42BA59A78A47C510CB2AFDC6C6080B33F9F611F84FEE5262DFF16D7633C50EB1 ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
20:23:27.0656 0x071c  bowser - ok
20:23:27.0666 0x071c  [ 3A4A543F135DE9A06ABA9DF982D79DD7, ABA165435C27BE15D7EBD3E7D023E295CB7AE2A099DF9E253C78EC45EADD75EA ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
20:23:27.0674 0x071c  BrokerInfrastructure - ok
20:23:27.0678 0x071c  [ 2AAD720B32904B97EDD8C3211344F79E, 41B1AEA5FAA48033B2581E18D68EFC986C3D65B383847E250C054CE3133A893C ] Browser         C:\WINDOWS\System32\browser.dll
20:23:27.0681 0x071c  Browser - ok
20:23:27.0684 0x071c  [ F8DD3B0EAC1EF1D087AE47E5819540AC, 866C951B52E3202AC89552AEA72A45123367199335578F03815E2ED55DA2FDAE ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
20:23:27.0685 0x071c  BthAvrcpTg - ok
20:23:27.0688 0x071c  [ 647E2A425AD43637EAA01096A58B7089, 8F76D024FEBCBA1AC54363133DE1E0DD5B9D696E5E688EFEBC3B79F7F1B9C568 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
20:23:27.0689 0x071c  BthHFEnum - ok
20:23:27.0691 0x071c  [ B95040CAD3434D9EE003065363A0FAFF, D441E0676EA1AE1ABC305732024311CA59715E6763B3D7ADB728DEEFC403E182 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
20:23:27.0692 0x071c  bthhfhid - ok
20:23:27.0699 0x071c  [ F334BF7B0737CEB3B6822631EAD55A87, 4E5AEB1F8E109BA01A5D1CDE2E3C677FF07F2AFE8B195CB5F82AA28816D2060E ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
20:23:27.0704 0x071c  BthHFSrv - ok
20:23:27.0708 0x071c  [ 29AEE352AED4FCD2191436D263D75347, 3D21262EA26BF423BFA4A9146E53F8B036B2A1157DBE91A11C5603AF7A670B6F ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
20:23:27.0709 0x071c  BTHMODEM - ok
20:23:27.0713 0x071c  [ 26DD0127A05B333E36316E6EA9A6AAE2, A2DC4483FF5639EE8DD315AB2989865CA6A6992C578FD7F7D31698A015355941 ] bthserv         C:\WINDOWS\system32\bthserv.dll
20:23:27.0715 0x071c  bthserv - ok
20:23:27.0718 0x071c  [ 854AF190F55E6D70EC65A85798F896E2, 6D39F9131BE93F934502BA1DB109E7AD35D3987B636F7B32F9C34823DF25746B ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
20:23:27.0719 0x071c  buttonconverter - ok
20:23:27.0722 0x071c  [ A10A1E05A943B10ECE5D57D131B7404D, 71BB816B6841001A4305DF1814926B639265E91895CA5D06284B0970E40CE386 ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
20:23:27.0724 0x071c  CapImg - ok
20:23:27.0729 0x071c  [ 5A1C7DBDDB001BC6F1D1720E655445E2, 07A766C804D0709936FF18A2F67C49D6499BEF9CEEB1EF69F654A35268A11027 ] ccSet_NS        C:\WINDOWS\system32\drivers\NSx64\1605020.00F\ccSetx64.sys
20:23:27.0733 0x071c  ccSet_NS - ok
20:23:27.0737 0x071c  [ F2829DC6D292DCAC5029893BB2E9FEE3, AF2A25722D3BE37BABD1F6668786AAF39E9D6CA18CE8E845E63266E218C64526 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
20:23:27.0738 0x071c  cdfs - ok
20:23:27.0742 0x071c  [ F3A9E38AE23AD4015764AF89E4AE3519, 57ED6AC834177E128720FEC5B5793F35C7C36474E2D787F182B6730933222CC9 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
20:23:27.0745 0x071c  CDPSvc - ok
20:23:27.0749 0x071c  [ CA160E02F35A61C6F5C681FB4669C519, E6BC66156EE226F16804C4FDC8A60EB15CE6212EAFB9FB841FAC899979E140E2 ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
20:23:27.0752 0x071c  cdrom - ok
20:23:27.0757 0x071c  [ 320E7A02D81A468E8C1FEEFDB856AFAE, E65127D3D6B628F9D19EA509FEBD9E4DC1BF20D0C62C3C9E1D7087DF972B2AA7 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
20:23:27.0760 0x071c  CertPropSvc - ok
20:23:27.0763 0x071c  [ 60D7D304DF75DFF6A46CF633F583B592, 4141D8D1C6FE829C02053DA91AC6B0628BDEB3322CAAD4AD958190F9D173340E ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
20:23:27.0765 0x071c  circlass - ok
20:23:27.0772 0x071c  [ FF9D4BCE19E5D36CB3A845A3286DA6C3, A0E2C38D629359EEC6F8EEC6F92A3E571AEF018BAF259F395DC497ED4827460B ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
20:23:27.0778 0x071c  CLFS - ok
20:23:27.0790 0x071c  [ 5C4648673693724C8D4A1A92E1AA06E6, 5D548241715687BFA52E40B867EF73CB45D01B7F9A9B7F00B92BF2B4C97BE1D0 ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
20:23:27.0800 0x071c  ClipSVC - ok
20:23:27.0806 0x071c  [ 8EBA63416EC166EBA6EF6D34A505D8C8, 5EB0236ABEA2277B71D9F009DA71934C618606B20BBEC07B8595195E40C12A2B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
20:23:27.0807 0x071c  CmBatt - ok
20:23:27.0818 0x071c  [ 3B64DA873CEA5BEC42570BFF1054A014, 3649B25855CB9BE5BA3B3FEE4221575381FB2D488B8B050B5DD0088386AA0F7B ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
20:23:27.0827 0x071c  CNG - ok
20:23:27.0830 0x071c  [ 5EEA0856000F81B3D709BC81B3AA1EF2, C04E4E31D3FC38102BA410D312F58AF848920EE37004A5C306D79229C9B6079A ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
20:23:27.0831 0x071c  cnghwassist - ok
20:23:27.0839 0x071c  [ 74CD3BF688E2B408227FE012A2F2D8ED, CC01AC79CEB9DC94FA5675D66F048928C9968B8944E34F5482A73C14B70EE8A8 ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys
20:23:27.0839 0x071c  CompositeBus - ok
20:23:27.0842 0x071c  COMSysApp - ok
20:23:27.0845 0x071c  [ D38774D1D383A2CDB9A4F64B7206913B, 6CDDC46D1D431342F00CA537FC327B23B8AA4D513CEEEE61F3E19C77975DF9C8 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
20:23:27.0846 0x071c  condrv - ok
20:23:27.0860 0x071c  [ 8AFDD74F2DC5BAD9B2215FB19DB65240, A2BDDA4C77C63D3D8E9F1D397D7B41EC1BF093A6399C14D311D4D230B5F1E093 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
20:23:27.0871 0x071c  CoreMessagingRegistrar - ok
20:23:27.0885 0x071c  cpuz138 - ok
20:23:27.0898 0x071c  [ 35DB06AACD8AD5999161DA71FF0E16F0, 22AD27811AAD14666ACEF4115447B0CFAA70D1E73923059FB2A9B4C3CBE500A6 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
20:23:27.0899 0x071c  CryptSvc - ok
20:23:27.0903 0x071c  [ F038EAF73AAB72A4A89185A5A7B9FD75, 8213A60B3BEAFC1C554C5D049DFE3C6E44CEFE639EDD6A335AC18A9DAEDA2D4B ] dam             C:\WINDOWS\system32\drivers\dam.sys
20:23:27.0905 0x071c  dam - ok
20:23:27.0920 0x071c  [ 5E57B9FBB4E9C43EE5B69BEE01A1819F, A1F8D1E52AF446CEA2EB50064E3A24B713B19197D61C3EAECB81B3CCD80558E7 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
20:23:27.0934 0x071c  DcomLaunch - ok
20:23:27.0940 0x071c  [ 0605AB12BF1856DF21AB708F28EA91CF, 3A6A7F8F84044DC1EA490A007E6DBC52203BA237ECF1B845961D9BB95E9BF8C8 ] DcpSvc          C:\WINDOWS\system32\dcpsvc.dll
20:23:27.0943 0x071c  DcpSvc - ok
20:23:27.0952 0x071c  [ BABB7BB5AD3CECFF466E6080F43CFC58, 1B8FF66557EC4C749156ED6DACC4D61D5DC4E25DD58F6DB3713C356214B80FDA ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
20:23:27.0960 0x071c  defragsvc - ok
20:23:27.0968 0x071c  [ 63C9464B165D31ACC46B6B089AB36B41, DE38DE4E6331D07630B63224F8014C27368C29791EDB58CC5DAE7CBACD37160A ] DeviceAssociationService C:\WINDOWS\system32\das.dll
20:23:27.0975 0x071c  DeviceAssociationService - ok
20:23:27.0979 0x071c  [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
20:23:27.0982 0x071c  DeviceInstall - ok
20:23:27.0985 0x071c  [ CF3895DD260ADE05BC91D8FBE0A82907, D7D8A29E873BE5C3832C9264F0165F6CD50D42ED0E04B0FCF07F054793092334 ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
20:23:27.0986 0x071c  DevQueryBroker - ok
20:23:27.0990 0x071c  [ 25435407D97419627F4B10653433BF2B, 5429B0DB7C5302E9A6AF92C046637183D4147D4A206963ABEA3A611214D6AB04 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
20:23:27.0992 0x071c  Dfsc - ok
20:23:27.0999 0x071c  [ E59C209F1F633C1AEAF151B2CA46BBAA, 6A4DA927418B56A228CC8D9DFA3351B2B53A9328F5C56C10F0C7B19974B2ED89 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
20:23:28.0005 0x071c  Dhcp - ok
20:23:28.0008 0x071c  [ 95AA7877FD4161BFBC8493F9279B1901, F6B7DF75D763A89901BD12454BEF92D161B392F721B8568505073929D9F419BD ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
20:23:28.0009 0x071c  diagnosticshub.standardcollector.service - ok
20:23:28.0035 0x071c  [ 58395E37ED838B93A56F1D089C2F53CF, 57D167B58DF5B33F7E2A98E1B8B33C8F076D34CA032D22F050AE6F83A48DC8E6 ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
20:23:28.0058 0x071c  DiagTrack - ok
20:23:28.0063 0x071c  [ FDCD449AE9E75D7690593D16ADAF4DB4, 3366C4BDB031EB525F85850E903C46802A2AC762C0772C6F6E543DDA4AF1E9D5 ] disk            C:\WINDOWS\system32\drivers\disk.sys
20:23:28.0065 0x071c  disk - ok
20:23:28.0071 0x071c  [ 43A1B8B43CA4E213E0FD920F2FD6BCBA, 839C6047FD6EA951538209C30C9D8AE68F9B47A58DA151D071C03408250B0ECD ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
20:23:28.0076 0x071c  DmEnrollmentSvc - ok
20:23:28.0079 0x071c  [ F10A8F6D036CEDD14A5471782C52F041, E0DA3C4F76DBBEAED549375E57819F8825B33A118F7674D417D294054863F648 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
20:23:28.0080 0x071c  dmvsc - ok
20:23:28.0083 0x071c  [ 7228733177F673B4D51BD1AA082D47C1, DBE155CDCFAA7C32407A207F637F252FA0CE30F1DE7E7DBEC42DB37FADB5BFA7 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
20:23:28.0084 0x071c  dmwappushservice - ok
20:23:28.0090 0x071c  [ 592E41B3C11CA12203D3708AD8FC3D37, 6C69D5D603FBF038C069EDDCE29F7C6A60CAAE58B985AB218E1497F2BA934D42 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
20:23:28.0095 0x071c  Dnscache - ok
20:23:28.0102 0x071c  [ 6184C7A2F12625C108AEFD3A43429967, 689153F319BB1013FF60F71317E8380A6945EEE8141EDBDD6B185A966E23BB93 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
20:23:28.0106 0x071c  dot3svc - ok
20:23:28.0111 0x071c  [ A616D8297C1BEA690BBC796736A7A78D, 9365470F4609606410AD79D98E1E77D815DC7C5AA924FB639FCF713EE8EDEA76 ] DPS             C:\WINDOWS\system32\dps.dll
20:23:28.0114 0x071c  DPS - ok
20:23:28.0117 0x071c  [ 45771610FF181434073B5A0A00F20F8D, 6A17DB09AA6D021F000F7315317235E1FCF41FD58EA7DF81A7C9F5A6DE999984 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
20:23:28.0117 0x071c  drmkaud - ok
20:23:28.0124 0x071c  [ 00D9A948FB7344C62CEBED88E50EE39A, EF33FE7FB34DE571F3956C1F7AC8EFAA25BFD9F3AFA3ECD25DD34C5890873245 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
20:23:28.0128 0x071c  DsmSvc - ok
20:23:28.0132 0x071c  [ D920A8B070A9BA5C9DEFC3BA7C3883B5, 8EA05CDE58930EB16B4B502561AF2DB5229658FDC1948A9A8F249A7402C21398 ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
20:23:28.0135 0x071c  DsSvc - ok
20:23:28.0166 0x071c  [ 89C9C3745F270EF93988DA57BC6AA62B, 947886F3121919427BDCB123C6FC28E29CA73D427E92025E1BEAA743D27306D3 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
20:23:28.0193 0x071c  DXGKrnl - ok
20:23:28.0198 0x071c  [ 6E36BDBB46DF7F865D0DD30663AE3891, 98967B01EA450AD4D5FE8085F710359C022D783B839A51BD4A266718156B01EB ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
20:23:28.0201 0x071c  Eaphost - ok
20:23:28.0203 0x071c  EasyAntiCheat - ok
20:23:28.0254 0x071c  [ 3070013B01EDA42C7EB67D731340C396, C083CA05650750876E70CB6AB51D5C047C06098C2ED86B083A74C97830247BFC ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
20:23:28.0302 0x071c  ebdrv - ok
20:23:28.0314 0x071c  [ DB817375F4D6D3F2556DE7777775D885, 6DC5CC936E26CBB468ACDD008F6F8B30F8D9D1EC631BCDDF7E692814C9A54D7D ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
20:23:28.0322 0x071c  eeCtrl - ok
20:23:28.0325 0x071c  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] EFS             C:\WINDOWS\System32\lsass.exe
20:23:28.0327 0x071c  EFS - ok
20:23:28.0330 0x071c  [ 59EE187E333EE9914DD9BEA5F4E0D85D, E34BB8075E38FC6AEC056323C6E3B5B4E7041EE6F4D51699B706DEEA18BDB911 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
20:23:28.0332 0x071c  EhStorClass - ok
20:23:28.0336 0x071c  [ 9297F1CC486F24BDFD2874156AC5430F, 1AF8689ADE4E658FC9418F7886B6C19F7D005EAB2AEF9B0E14FC81C61A74CECF ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
20:23:28.0338 0x071c  EhStorTcgDrv - ok
20:23:28.0341 0x071c  [ 9E8FF6B95FD420FA9E40BE548E5C8D92, 8825B81418335D03CFAADB792C1466023C459BE489ACACBD6686FFB544F22D30 ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
20:23:28.0343 0x071c  embeddedmode - ok
20:23:28.0349 0x071c  [ DC2F91EAE9A28FA8C6610A9B7701B70D, 480DB509BF944AAC3617594F1245B4603069DE39186BC1FA7EDB8E0536B05E79 ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
20:23:28.0354 0x071c  EntAppSvc - ok
20:23:28.0358 0x071c  [ A47F76D4AAFD6193AAC5E049C560213D, 2B6E4EB31394C4D8D2444A197FFCC3C702BC17B0F7BDF0D6FF87DF5C14016FC1 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
20:23:28.0361 0x071c  EraserUtilRebootDrv - ok
20:23:28.0363 0x071c  [ F7FCCA6300485EF60CEA6D991D6C8C78, 24080D80CF1FD678DF4C9CAE70F65F8D9232F5F6A6F2B73A77B5E3C91E6505F3 ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
20:23:28.0364 0x071c  ErrDev - ok
20:23:28.0367 0x071c  [ 03CBDC540473AA54D43DF4C7AC5205C4, 9757002E173220D00F41BDA7F5580B5C91A4176E97AB15C05D27D593A2B525EF ] EtronHub3       C:\WINDOWS\System32\Drivers\EtronHub3.sys
20:23:28.0369 0x071c  EtronHub3 - ok
20:23:28.0371 0x071c  [ 1EDF0CF390B84266FD7FFED38AB7DCAC, E0C34BFC031006195B6943DFEC32963675FBAC2A440F651AF3125ED98381E035 ] EtronSTOR       C:\WINDOWS\System32\Drivers\EtronSTOR.sys
20:23:28.0372 0x071c  EtronSTOR - ok
20:23:28.0376 0x071c  [ C4505F6B97A55F8D9154866FB621AF9C, 8CE76779DB4726821A4B1724D7F28A5669C8F1F8E56008C3CA5798A405F973B2 ] EtronXHCI       C:\WINDOWS\System32\Drivers\EtronXHCI.sys
20:23:28.0377 0x071c  EtronXHCI - ok
20:23:28.0387 0x071c  [ 2093F65AA84478E28C8E9D05BC413845, 086D4E0D4B993F4041AA8A9DCBEEDB53BD05B88E2BEFB218837FB10FACDF4233 ] EventSystem     C:\WINDOWS\system32\es.dll
20:23:28.0394 0x071c  EventSystem - ok
20:23:28.0401 0x071c  [ DCCDC3F35F0618692117DF90800A4284, B636B2A39AE89A9C2CDE17EC52DA669DA8AA9E2B04CA5CA19926DA8009655244 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
20:23:28.0406 0x071c  exfat - ok
20:23:28.0414 0x071c  [ 5A1C6AFFF6946C5C21A27AE05084C0D1, 558CB87E596E85182F6976F215EE0E35F57BF901409A2805E6A3C29D8984B048 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
20:23:28.0419 0x071c  fastfat - ok
20:23:28.0431 0x071c  [ 046FC9CF53A91E2FBA498CA7B0C3B028, BCFB06DF53065706DD6287E8C47BF5047F8A1E33981E1881E6ED7510337F5BC8 ] Fax             C:\WINDOWS\system32\fxssvc.exe
20:23:28.0441 0x071c  Fax - ok
20:23:28.0444 0x071c  [ 4E4B7D935DBF522B2F23D3573596181D, 9D0EC9F65920EE0FFFB2D49C58E4D5151C8CEEB7AA82543D226E4B84EEE4B3F0 ] fcvsc           C:\WINDOWS\System32\drivers\fcvsc.sys
20:23:28.0445 0x071c  fcvsc - ok
20:23:28.0448 0x071c  [ 583EB1C7690E361213BBD0472155128B, 5F5871490A6DAC4A824F4428941AC86FBFA9AA349B99B5D9544E5D62EB459FA8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
20:23:28.0448 0x071c  fdc - ok
20:23:28.0451 0x071c  [ 94B1A46EDD335F0C54C7BDAFC43348E6, 58073D58D0BE7389C2A4736AFE108835E5AE9C9950FF630644F585C99B964043 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
20:23:28.0452 0x071c  fdPHost - ok
20:23:28.0454 0x071c  [ BC855BB7DFE06F27F78E0EB2A8CCB70D, D16C3DAB99C16B077BA5DA5E9E0646B0B9237B00ABAE867D9F81A2D072D583B1 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
20:23:28.0456 0x071c  FDResPub - ok
20:23:28.0459 0x071c  [ F1125F20D56F28DDCD1A6F3E81EB4F5F, A6620ECCB15FAA70E4A43ADA4CE82CF97D708B6FA07F3FAED276359E7F92FD0F ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
20:23:28.0462 0x071c  fhsvc - ok
20:23:28.0465 0x071c  [ CDFD81CACE0E11596A3BB61EC4CF6467, 569FA86A215B054131AA9AFEECFEE7FD7143DCFFE275B84196004AEA538B2476 ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
20:23:28.0466 0x071c  FileCrypt - ok
20:23:28.0470 0x071c  [ 3F02FEDAE894CBF4BAADDF8C8E1D53A8, DA32ABB1CDA867B8456C46F8581FA7F3A8D8B89D9F6E7422F51941D5FFA15B13 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
20:23:28.0471 0x071c  FileInfo - ok
20:23:28.0474 0x071c  [ 2824933386E30DE5BA089DF539CE19A3, 7B33E514576C68B444AE99CBA1360EBFAE8A46EEE5C01F4EE4CF471A712AB148 ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
20:23:28.0474 0x071c  Filetrace - ok
20:23:28.0477 0x071c  [ 6A598249640F8BEDD79EC73917E1664F, A675238EA19E6632CDEB4EEFF7CF509EAAEF76AD8DFD247664E5607555D9CEE1 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
20:23:28.0478 0x071c  flpydisk - ok
20:23:28.0485 0x071c  [ 44B6A6832134DF651E887E941478CA35, FCF4EB726D00F5A17DD66C81CFDA49427281C94CF9CA2008397D591AEA61AE05 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
20:23:28.0491 0x071c  FltMgr - ok
20:23:28.0497 0x071c  [ 5F3982B51A5DF6F7FF5FD3A4CE0BFF5D, 99F99A96A310B701981B55F287C3685CBBBA3D7B810675C90DD78E4CE4E12180 ] FLxHCIc         C:\WINDOWS\system32\drivers\FLxHCIc.sys
20:23:28.0501 0x071c  FLxHCIc - ok
20:23:28.0504 0x071c  [ 1ACB3F124140A2EAB5A1E36286E37C0D, C0D00E1BF4D501A1D6DC97B9DE378867C9FDEFF6B4E17054DC1F1EC8F958D4C8 ] FLxHCIh         C:\WINDOWS\system32\drivers\FLxHCIh.sys
20:23:28.0506 0x071c  FLxHCIh - ok
20:23:28.0531 0x071c  [ C197284A9D565A38497733AF2BDFA111, C6615AF0D366C2DD6D431B073901EED02D49AA3F252230735DBB52A90BCFA833 ] FontCache       C:\WINDOWS\system32\FntCache.dll
20:23:28.0556 0x071c  FontCache - ok
20:23:28.0560 0x071c  [ 109AACC7FB0170535F71491F673AFD38, 212B6761ABBAC29993DA0A47C3DDE8074EA9E5A8FFA8FF6EAB95AC69D8FDD5A0 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:23:28.0562 0x071c  FontCache3.0.0.0 - ok
20:23:28.0565 0x071c  [ 3F3B9E8CECD5604BC7746EF3A852EB67, 51AF62A9563379266C0C873E82F55427900032DFD7AC3EBDCDF77F8F8DE91A5D ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
20:23:28.0566 0x071c  FsDepends - ok
20:23:28.0569 0x071c  [ B16B626996C74B564005BA855C5DEE90, B432C669EB610C262B18F3F8308EEE1B910DE7F7BC2A8EB5483419DC52A07AE1 ] fssfltr         C:\WINDOWS\system32\DRIVERS\fssfltr.sys
20:23:28.0570 0x071c  fssfltr - ok
20:23:28.0594 0x071c  [ 719FD319E03892FF22A33C18C513B9B0, F9CE212F1DDE9CE6E6394A48B6C5ED333D1243667B6796CC1F7A61AA2E4820D8 ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
20:23:28.0616 0x071c  fsssvc - ok
20:23:28.0620 0x071c  [ A60583221C7BB7CEC35C63285A297BE1, 3C842FBEAD1FA2BD8D37B2B0E8EDF77F4F50508C56FB25DFA81DE9679090D51D ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
20:23:28.0621 0x071c  Fs_Rec - ok
20:23:28.0632 0x071c  [ 58013A50225174EEF1410E37795D7908, F8E557CA4110ABB203192DEAF59D91A5FEF2A5EA394637276DAB7F4D2E7BFA39 ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
20:23:28.0641 0x071c  fvevol - ok
20:23:28.0645 0x071c  [ 0DAAE3EFCE00133AB3E383A36C47CDAF, 9145665F4F0575F951803AAFAA1A7DC0FAA35430CAE7D90E902074D60D6F4C62 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
20:23:28.0647 0x071c  gagp30kx - ok
20:23:28.0649 0x071c  [ CD7963CF1D4666BE048C21A6C5F262FC, B8061700DC07EBF1CEE8C4CA1AB7141C8459BFCF1AE4B95F2631FD0132E7F9DE ] GameKB          C:\WINDOWS\system32\drivers\GameKB.sys
20:23:28.0650 0x071c  GameKB - ok
20:23:28.0652 0x071c  [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv            C:\Windows\gdrv.sys
20:23:28.0652 0x071c  gdrv - ok
20:23:28.0654 0x071c  [ F59155B95D01C08F9ED774B626B504A1, EF0FCF35AD9CD5E5D695F0C064244D2B327E7FB10FD7CBB0586253EC75562918 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
20:23:28.0655 0x071c  gencounter - ok
20:23:28.0657 0x071c  [ AE24452F55C6F1784CBD7489D0CDDB02, 4E13C51CBF30A8662B1180AC74E968CFC428B6EA7931F09357E7D120063D4823 ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
20:23:28.0658 0x071c  genericusbfn - ok
20:23:28.0677 0x071c  [ 5E42BDFF22707E577AD82BE4C43C3BCE, 4C0BBF6AAA7EB30A789D91A4F29726C2A6D941D457B59CF376EF96571F3E1BB4 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
20:23:28.0694 0x071c  GfExperienceService - ok
20:23:28.0699 0x071c  [ 1ADA8F5FF1112AE81BFE1527E093A020, 44848FC9B9F47CD706186F509859127B3725838A67FA99225F4F2FFC9F44B94B ] ghsmdm          C:\WINDOWS\system32\DRIVERS\ghsmdm.sys
20:23:28.0701 0x071c  ghsmdm - ok
20:23:28.0705 0x071c  [ 96F0D3A583A91B634EE2AC2507356EDC, 43D2575F33D28F61C13D2DCF358BFA9DCEAE276C83152DBE7AE2020A66929CD9 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
20:23:28.0708 0x071c  GPIOClx0101 - ok
20:23:28.0729 0x071c  [ E50CE978F571B900D9A7E2F1C5BCC070, EA14873A5F1B700D7CDBE55B9D214DC457262866A90D80B3E8325A8EB7932CE7 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
20:23:28.0749 0x071c  gpsvc - ok
20:23:28.0752 0x071c  [ BA2455D93BD57989A04FE4094AA6F941, B579FB367C063EA30C034381148410D49D38E183A5A4D51D2334A81DAEE95CEC ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
20:23:28.0753 0x071c  GpuEnergyDrv - ok
20:23:28.0757 0x071c  [ 88FBBB1C601A6BC42054E57C2897FA45, 928C5BAB515035DE659C4255C209D33C407716DA325798951B2E8DA9BB230A9F ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:23:28.0760 0x071c  gupdate - ok
20:23:28.0763 0x071c  [ 88FBBB1C601A6BC42054E57C2897FA45, 928C5BAB515035DE659C4255C209D33C407716DA325798951B2E8DA9BB230A9F ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:23:28.0765 0x071c  gupdatem - ok
20:23:28.0768 0x071c  [ 7F79205B4EFA98F0767309479C8C01C6, 4B576903A83F33A8CF31D3887144A3D51C56D1187115C83AC99C0E9F6B4BF128 ] hamachi         C:\WINDOWS\system32\DRIVERS\Hamdrv.sys
20:23:28.0769 0x071c  hamachi - ok
20:23:28.0807 0x071c  [ 467E489AB87260D6035F9F4C8F28D15A, 4079195CA7F91332F63B050E1D66378DC5C796977024B4EF6B2CFD3227F0E49C ] Hamachi2Svc     C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
20:23:28.0842 0x071c  Hamachi2Svc - ok
20:23:28.0848 0x071c  [ C277A49F8A8295840DEBC9240B75A282, 8B2BA0E6A8300323765D95ECD843105B0FC4B80B85EE2220E677C4E9A760C9D8 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
20:23:28.0849 0x071c  HDAudBus - ok
20:23:28.0851 0x071c  [ D5A57EF4822A0388352FFF9F5CD53495, 509F365386859157E9078821FAA56D2A3C0BA296CA129E0D42453428A14687A5 ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
20:23:28.0852 0x071c  HidBatt - ok
20:23:28.0856 0x071c  [ 39575B53EB80C77FF2A3F1449D00B7F5, 37E66B38BACE00AFEF7093F990A234399D8451A9D2C2C8CBECAB69C664E63EA6 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
20:23:28.0858 0x071c  HidBth - ok
20:23:28.0860 0x071c  [ 35C3B602664116E737FF729F9A7156AD, 7A3C5CAD716E819CC53405971F3ACD135BCF023EC2228C1095E2116BCC384E62 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
20:23:28.0861 0x071c  hidi2c - ok
20:23:28.0864 0x071c  [ C4ABE526BBF2A18E8AF70177FBAD9C6E, 4DA06B563A08AC15D949F4599F73F172B3BFCB5D23B34240D1E2114438A11929 ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
20:23:28.0865 0x071c  hidinterrupt - ok
20:23:28.0868 0x071c  [ 348416C7D7EB05BC3099FE2F2B27985C, F30E8682E9DD731A1AD7328FB8A48A2BB7D6E52780AE1FDE839D26E84B4FA7B5 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
20:23:28.0869 0x071c  HidIr - ok
20:23:28.0871 0x071c  [ 5576DF399CF2D3B63608F7F282151249, 04939E79B8B8035547CE6FFE9001252CA810BAD46D8DB75FF5C13EB10EEB5C57 ] hidserv         C:\WINDOWS\system32\hidserv.dll
20:23:28.0873 0x071c  hidserv - ok
20:23:28.0875 0x071c  [ 01F732724AF6EFE69886DA95A4E51820, E048A480F9396418BDE9659596E7EDA5FF97D3CE029D186048609B47575BEAE1 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
20:23:28.0876 0x071c  HidUsb - ok
20:23:28.0882 0x071c  [ 7433A8D28EE11A661C7A45AF28BA7987, 8A73DB423924E84CD3629BF6C7298CD093D2437B73B3F4520D39330923DDA2D6 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
20:23:28.0887 0x071c  HomeGroupListener - ok
20:23:28.0896 0x071c  [ 3FDBFBE5AE639996EB8D482C16BA7EA9, 7E48304818AABB4C5B0CB7FD32D96D6F90F4180AB0F668A2FE653A7097A40673 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
20:23:28.0904 0x071c  HomeGroupProvider - ok
20:23:28.0907 0x071c  [ 3844CE7DD23530CAD59D8CABA57CCB05, A44BB60686A0E98FF370D9DED5B32C3F34F0352ACFA3B3052BA4023922B53DB7 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
20:23:28.0909 0x071c  HpSAMD - ok
20:23:28.0925 0x071c  [ CA6EADBB8731CA27BDA4037BF290AC14, 31EC9397D55D4EEC416AD722134E2D6B5D14E46D2150CB94889C4BFDAACBF421 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
20:23:28.0940 0x071c  HTTP - ok
20:23:28.0943 0x071c  [ 8841D927EB1F7FFC8B1805BC0CF190ED, B063E686380EEF582CF736E33751812F0041C593C7F30EE97D13DEDC9B246AB5 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
20:23:28.0944 0x071c  hwpolicy - ok
20:23:28.0947 0x071c  [ 53436C3835E80F4421652A67F44D6313, 8731091945A839713348DF3060A4C96033874E2B3DC7E099BEEC8C65B07F98CF ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
20:23:28.0947 0x071c  hyperkbd - ok
20:23:28.0950 0x071c  [ B2DC6C2F313EBB967B556B4E73A75451, B1816A0AE15705F0325F167EA76166779607D6086EC36A4A960E3BA47B4EBC4B ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
20:23:28.0951 0x071c  HyperVideo - ok
20:23:28.0954 0x071c  [ D4CDEE4A62BDFFF6E8558A9552148EA7, 55306786CB45082AE374937EBA256FF9CD640BB2E8C19DC6C704489D4743F5CC ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
20:23:28.0956 0x071c  i8042prt - ok
20:23:28.0959 0x071c  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
20:23:28.0960 0x071c  iaLPSSi_GPIO - ok
20:23:28.0963 0x071c  [ F1DF87463AC308047B089E9F0456B4C8, DFFF3C63D3124C2B879B888104042406FE326D4E7C8C1881A269BD4287B9CD33 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
20:23:28.0966 0x071c  iaLPSSi_I2C - ok
20:23:28.0976 0x071c  [ CCFA835960E35F30D28A868E0B3B8722, 47D95E75685F9D40229902A92426FBCB358EA929202EAFBBF79C72873B8B9032 ] iaStor          C:\WINDOWS\system32\drivers\iaStor.sys
20:23:28.0985 0x071c  iaStor - ok
20:23:28.0998 0x071c  [ B9E489CC1EA3284FEED33799DC70612D, 0DD714A3A37C391B38F4EEEB3F85C3C3C056F4AAB4A5EFA63835AD967BC25B51 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
20:23:29.0006 0x071c  iaStorA - ok
20:23:29.0018 0x071c  [ 9FDD4763A115D04F565C38183DE4646F, A8B0653E7C5F5B3CB2A1B642F502269FB1BB1E35DBB1CBABDBDADF92C9815727 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
20:23:29.0028 0x071c  iaStorAV - ok
20:23:29.0041 0x071c  [ BF97F6FA8A129741F6FDFC19BD21427F, E5E80F13E6ED48E43F17200C8206D23CB6FE7C1E7C22CAA7C1E890E9D7524A45 ] iaStorS         C:\WINDOWS\system32\drivers\iaStorS.sys
20:23:29.0050 0x071c  iaStorS - ok
20:23:29.0060 0x071c  [ 4E69EE8F8E5DA036535D433C544AF9E2, 2ADE9B97CE1C19FF984D8BB99CF31415872C2D9628864BD78C0E44D21CC94EE3 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
20:23:29.0066 0x071c  iaStorV - ok
20:23:29.0075 0x071c  [ 15C59DF20F74A0C2C764B991FED7F4A5, 6E9804775E815F32A4D73C346E627D64A3096525E78FAE3B6E43CFECAE270428 ] ibbus           C:\WINDOWS\System32\drivers\ibbus.sys
20:23:29.0081 0x071c  ibbus - ok
20:23:29.0085 0x071c  [ 33D4D4A24791587E83F7EE05A446FB7E, 081E48AF76D7D3A71850A4C910EFBB0B280235E2A5303178B0338230F4BA2DE2 ] ICCS            C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
20:23:29.0089 0x071c  ICCS - ok
20:23:29.0093 0x071c  [ 88E6A429944544346EC3AE1FD7D24BCC, B6B8D51E5491C91D2FCDC77C1D82A5168B0C860252208E1B4612D8D5C19401AD ] icssvc          C:\WINDOWS\System32\tetheringservice.dll
20:23:29.0097 0x071c  icssvc - ok
20:23:29.0100 0x071c  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
20:23:29.0102 0x071c  IDriverT - ok
20:23:29.0117 0x071c  [ 3448DB2B812AA873ED6E5D609B1DB067, E0F9B35FE59713C09BD838FAD5305DF5FDF24DF1D88F8849F7F88466CF93A7F7 ] IDSVia64        C:\Program Files (x86)\Norton Security\NortonData\22.5.0.124\Definitions\IPSDefs\20151204.001\IDSvia64.sys
20:23:29.0129 0x071c  IDSVia64 - ok
20:23:29.0132 0x071c  IEEtwCollectorService - ok
20:23:29.0147 0x071c  [ 6F9C31435DD3E3D3BC247212EA144EBF, 05C4A0BD4BABD27783CEFEE6108C1A05911A212189233F09AF1A56BDC60F60F8 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
20:23:29.0162 0x071c  IKEEXT - ok
20:23:29.0231 0x071c  [ 622868E4BAE8FBCD22CB1A5901A2C824, C1A2264C0984DD16C83B663C9CE43E049E1356E32C5771C3ACE225F285699138 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
20:23:29.0294 0x071c  IntcAzAudAddService - ok
20:23:29.0310 0x071c  [ C6128F2E3DC6156C6F8828F9F1B96010, 612C1191AFB8F69BA5634E8C52BDDE608F57D98FA4C76C5A337676A5F1E8191D ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
20:23:29.0321 0x071c  Intel(R) Capability Licensing Service Interface - ok
20:23:29.0335 0x071c  [ 729AB4F0608E95EFF8FDEF23596283E2, 62A2091FF440C65505AB3E38436A86D9B0978BCB9485960EFCE0C5CBC8E06201 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
20:23:29.0347 0x071c  Intel(R) Capability Licensing Service TCP IP Interface - ok
20:23:29.0350 0x071c  [ 498759139F71142888CF7EFA1ABE18C8, 9CD0CD748B143F947B4DEDE39344A8C284717CC8AC97E25827EB73CF10831419 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
20:23:29.0351 0x071c  intelide - ok
20:23:29.0353 0x071c  [ DC270DDCDDC2EF65D484A65CC5166222, A88BEAD819ABEFE28B6F9A10586ADCB0EE2A5ED9273F176E9313750609C7892F ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
20:23:29.0354 0x071c  intelpep - ok
20:23:29.0358 0x071c  [ B4D9C777762B1F7356958B9C0AA93BEB, F11B07FE939A107AB4EED4857854DF269C2D86A80C8507C8B1E95F7805975EDB ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
20:23:29.0360 0x071c  intelppm - ok
20:23:29.0363 0x071c  [ 22BD83268B80A8C89AAC0BDF46E4EB5D, E7DC0C2E4104B51EA545BA8D0CFF11FD6A15BFD8EE16E546E8FC220853402CB3 ] IoQos           C:\WINDOWS\system32\drivers\ioqos.sys
20:23:29.0364 0x071c  IoQos - ok
20:23:29.0367 0x071c  [ A49E47A6E1429123F46A7CA9C05AEFC1, FFD68CA46DFAA4954FD76145808E2C74BDC34FFD6979BB3FB6A3EE4DC33CDC78 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
20:23:29.0369 0x071c  IpFilterDriver - ok
20:23:29.0385 0x071c  [ 8FBA61B7CB44F136226BE3B346FC6D19, 2190A523AC948B18C2C7B6DC96ABB654DAB471AD5E5E13F79899416E91777AED ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
20:23:29.0399 0x071c  iphlpsvc - ok
20:23:29.0404 0x071c  [ E0C276985AF968CE295B8E09C121321F, 07B54165E80D4254C29A6CF00CC634E70F190EF0EB8EEF73EC14F38B841087A5 ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
20:23:29.0405 0x071c  IPMIDRV - ok
20:23:29.0409 0x071c  [ 5D3744E6FDEC1A6FB3FA9B1DD4AF0694, 209BE9FC25C8BF8CE058B7E993B6A902B881380DADC69F5208733077DA7F4382 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
20:23:29.0412 0x071c  IPNAT - ok
20:23:29.0414 0x071c  [ B18202D72C0EF4B53CEC6F59E3E1B955, 6DA244E6485372C16CF0B38838DC90B48079A85F5D22B0F2F197C8DA37F0A293 ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
20:23:29.0415 0x071c  IRENUM - ok
20:23:29.0417 0x071c  [ CD04CBCCCB4C0E4BB06B98E0F45C888A, 106B3E823C188BD14328F2BEA28559D2F637C270064B2FD214522FAC4E616F4C ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
20:23:29.0418 0x071c  isapnp - ok
20:23:29.0421 0x071c  [ AC45D94185CF67267D06BF2F45E9E31E, 737EA8220EC265AF3C61611C2B005D2825E6ABBB19DB934ECA0BCBB88CB42EA9 ] ISASerial       C:\WINDOWS\system32\drivers\ISASerial.sys
20:23:29.0423 0x071c  ISASerial - ok
20:23:29.0429 0x071c  [ 5D90E942C94B20E0F321015C0ABF3EEA, 4110551B172D4A5524DD857D7CB65FAF2594310BE7883D5641BC0DF5EF49C82C ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
20:23:29.0433 0x071c  iScsiPrt - ok
20:23:29.0437 0x071c  [ 8D990A44B4F2B68E2C56A3724EC3EB84, 5768FC5B156FC9CEEA735C933B50ADD8AE018F5609B83634F001E847E3101ACA ] itecir          C:\WINDOWS\system32\drivers\itecir.sys
20:23:29.0438 0x071c  itecir - ok
20:23:29.0443 0x071c  [ 924019BC58FEDDE04A08C45EC1CF1847, F18C581FE5C25C5BE4514185AD44C561EB715B98AFBE81EF0D673E103EA8E8EE ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
20:23:29.0446 0x071c  jhi_service - ok
20:23:29.0450 0x071c  [ C0D9BA660A41EE8A269EF804E6CD0D7B, B69B732FA7178F9FA97E16A1F99EED27ABDEDB37FB610F1D7A823BB24D08340B ] JRAID           C:\WINDOWS\system32\drivers\jraid.sys
20:23:29.0452 0x071c  JRAID - ok
20:23:29.0455 0x071c  [ 4192DFE6CA143C0AD8AF42C51A82BECA, 31FB3A261D0D5241CC87EF7DFF8BFC1A1EACE8CEC42138918EC5958DAEE100CD ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
20:23:29.0456 0x071c  kbdclass - ok
20:23:29.0459 0x071c  [ B63C0DB341DCB46CF7AA259333A737DD, F1B43BA68707F3F99CD31AB2035F5E86CD967AE4E5393928C69861785E960872 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
20:23:29.0460 0x071c  kbdhid - ok
20:23:29.0463 0x071c  [ 53C79A7FABDAAFD11EAB31963FB2CED7, 357418645DDCEFA5546AE78EDCAE86D50928710CA7A3F65F01CF721AADA36623 ] kdnic           C:\WINDOWS\System32\drivers\kdnic.sys
20:23:29.0463 0x071c  kdnic - ok
20:23:29.0466 0x071c  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] KeyIso          C:\WINDOWS\system32\lsass.exe
20:23:29.0467 0x071c  KeyIso - ok
20:23:29.0471 0x071c  [ 1E99B26BDB9B9C9BC775ED4543558560, 890870A6737B4910735D1B23F714AA73FCCD1C131D135FACBA6909F06D31B3FF ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
20:23:29.0473 0x071c  KSecDD - ok
20:23:29.0478 0x071c  [ 6198A79011C67497B324798B3D4272CE, C587F7D86837550D07918F6AACF26BF65EBAF7FF57475DC9196B4D011E83AE47 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
20:23:29.0480 0x071c  KSecPkg - ok
20:23:29.0483 0x071c  [ 503597D9B72DBD9998F722F12A51ACFC, 9B3585282191163AA70243BAD921ED8725A98454E0D3879E0F671E0E4F56AB4F ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
20:23:29.0484 0x071c  ksthunk - ok
20:23:29.0491 0x071c  [ ED5AE20C27F27F293C6C61AEC9881054, 4D5BE394D129BD559B0A9D237F3F59CB3D24C15ABDD97AE2E64931D6B9D14FF1 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
20:23:29.0498 0x071c  KtmRm - ok
20:23:29.0504 0x071c  [ C529DA0AD5A21878E318801B024AF8E7, A14E8ADCA33C37B1D256CB4926A19F56D2D19B94EDF314A4ED34A8B5AB62CA5A ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
20:23:29.0510 0x071c  LanmanServer - ok
20:23:29.0516 0x071c  [ D6D9F4CAFD3F1A7E30AD02E508552CD2, F0D225E5951CFE1D8349F634CC91BDD5B3F9DCF6233CCB965E99BFEAFE642265 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
20:23:29.0522 0x071c  LanmanWorkstation - ok
20:23:29.0526 0x071c  [ 24881F16D2829764681F5FAE7B86D7D3, 290348CFAF3165847E4B53965D22E9D417EE20FFD23293B5C1855C57E6328599 ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
20:23:29.0527 0x071c  lfsvc - ok
20:23:29.0529 0x071c  [ 6ED675774BDC3735AB6DA12D29F825CF, 4317C7CF491F4E806975E7A973CFF11CFEE9E94730DDABCC67C3D693691DDDE5 ] LicenseManager  C:\WINDOWS\system32\LicenseManagerSvc.dll
20:23:29.0530 0x071c  LicenseManager - ok
20:23:29.0533 0x071c  [ DB789F57CE94C827FBFF709CA5ABD29E, 4CA4DD079A63649C36F76A31C4081F11F5CF6574AC573B63EF930DB19B1D1C95 ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
20:23:29.0534 0x071c  lltdio - ok
20:23:29.0541 0x071c  [ FECBC6C4981772E5D0F517B34A5496EE, 15DB097BFB221B91E580E5CD1DD6B34A9A2C78A1A6FCE4162A855BB4AFE673E9 ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
20:23:29.0545 0x071c  lltdsvc - ok
20:23:29.0548 0x071c  [ 24C87BDC66AB192FEB273BEE5FD5AA38, BFAAE1F2450DEBD1A14877C046C6EBA91014DB0B5D0FB95EC14CB714B773B3C0 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
20:23:29.0549 0x071c  lmhosts - ok
20:23:29.0557 0x071c  [ D6BF6FD055BD719F3D62E51B90857159, A7777D18E404164B4DA531AD94D2A712D9CC6A9288795B7388037752A558E96F ] LMIGuardianSvc  C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
20:23:29.0563 0x071c  LMIGuardianSvc - ok
20:23:29.0570 0x071c  [ DFDA113036AABEA0525700925E984F50, DE43EA4E151CD0E7CE052BCF3C5E2EA5296BB15851964EB0059FBA00A4144E6A ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
20:23:29.0576 0x071c  LMS - ok
20:23:29.0581 0x071c  [ 3BB39166E446D456C277C17DFEA3DAC6, 1A08E1D017BBCE91E508D876835FA7AD2DA0859A8CFE8F8F31B4F12B48E2573D ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
20:23:29.0583 0x071c  LSI_SAS - ok
20:23:29.0587 0x071c  [ 25CF625E46307A5D6674C8DFA1A289AA, 1D00EB70B6B0157013A7C15EF194F51B8596612066EF31B337D8134D6BD0BBBE ] LSI_SAS2i       C:\WINDOWS\system32\drivers\lsi_sas2i.sys
20:23:29.0589 0x071c  LSI_SAS2i - ok
20:23:29.0593 0x071c  [ 722C52B12EA4C198D56994934C9DDAB6, 5F4AB818251C770821BAF41C19B1C483A31CCC28EB96F2084D4092E33EAF906B ] LSI_SAS3i       C:\WINDOWS\system32\drivers\lsi_sas3i.sys
20:23:29.0595 0x071c  LSI_SAS3i - ok
20:23:29.0598 0x071c  [ 3371FF1D5D745C3306C6A2C4E99C25A9, DD6F0099001501BAEDDF8411FBCD930BD6472662D209199249203CB2FDAA23FB ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
20:23:29.0600 0x071c  LSI_SSS - ok
20:23:29.0613 0x071c  [ E2EEF074F5260378F9AAFBCD592319A3, DC56674A08FA03FA7AF7DD8B3CC55D8324D1CB51546092A990A935FF9AB48A3C ] LSM             C:\WINDOWS\System32\lsm.dll
20:23:29.0625 0x071c  LSM - ok
20:23:29.0630 0x071c  [ C692B9C0352315417CF49FFA664957A3, C2D4F9A936B809889F7C51FE48214A1923175913A6C5D0B72D3BA469214B5174 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
20:23:29.0632 0x071c  luafv - ok
20:23:29.0635 0x071c  [ 6A4C75FD28F60062FEA3DF3B15D956C0, 4FC58F3320D33BDACCF759A50C623A3E58E4320749E6691B397DF0C8EAAA8A6F ] MapsBroker      C:\WINDOWS\System32\moshost.dll
20:23:29.0638 0x071c  MapsBroker - ok
20:23:29.0640 0x071c  [ 9B4B4838A6C8DC97416581C13CB6482C, 14EC024BF53917B839764367591466270C356EFDEA175C60A3E048D15C3C53ED ] massfilter_hs   C:\WINDOWS\System32\drivers\massfilter_hs.sys
20:23:29.0641 0x071c  massfilter_hs - ok
20:23:29.0648 0x071c  [ CFBC6C6D8A492697CABD1D353EE64933, DDAA844908324740C891EB8F08E2A8BB00457063B31C4A762745C1C2415FC12D ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
20:23:29.0649 0x071c  MBAMProtector - ok
20:23:29.0667 0x071c  [ 40C126CB15FAB7D6C66490DCA9C1AED2, B32CEE2D2409232C245427D5E9647FDF59AF1D8AB5E8A98EE2D1F1314599FD14 ] MBAMService     C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
20:23:29.0684 0x071c  MBAMService - ok
20:23:29.0688 0x071c  [ 08DECFCB9BA97786165A69AB1015BC30, EDC8C8447B57BD412E2DEBCA9B5B1B58C19D40105DC7CE9520DE214081696B05 ] MBAMWebAccessControl C:\WINDOWS\system32\drivers\mwac.sys
20:23:29.0689 0x071c  MBAMWebAccessControl - ok
20:23:29.0692 0x071c  [ B2ED9A7A5587A128A0EFD0DBE7662E95, 63070AAFD44E3CD2A4B262DF27222B103455A4D8C2E45914502BFA03D84D32C9 ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
20:23:29.0693 0x071c  megasas - ok
20:23:29.0704 0x071c  [ 083F71488E6780A67290273180256EA5, 5F43CE66F5A48850BABB70F4D219FDD002F9BC2B2F0E58E66FE2C492AA335E50 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
20:23:29.0713 0x071c  megasr - ok
20:23:29.0716 0x071c  [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
20:23:29.0717 0x071c  MEIx64 - ok
20:23:29.0730 0x071c  [ 5907A10D46747A2B6DBFD6A198254DC2, 6C283E9DC75C7ABFD270D6FABBF4F54628A1786E7CE2F603BF664CBB9E4FE583 ] mlx4_bus        C:\WINDOWS\System32\drivers\mlx4_bus.sys
20:23:29.0740 0x071c  mlx4_bus - ok
20:23:29.0744 0x071c  [ 91ED6F0EDF4158D63C52194F17D4F42E, ACF543978E253650C167C6C370699AEA7340EBCECF7CAB904CBDD334D1BD6928 ] MMCSS           C:\WINDOWS\system32\drivers\mmcss.sys
20:23:29.0745 0x071c  MMCSS - ok
20:23:29.0748 0x071c  [ 2C4CC9F6ADBED5A6D131FDB97A78FF68, 04DC76E3F0959C0A9B00DF2133B075194FB7DCBD76832B9D25B0E37223D300DC ] Modem           C:\WINDOWS\system32\drivers\modem.sys
20:23:29.0749 0x071c  Modem - ok
20:23:29.0755 0x071c  [ D8DB13529C8AD6FBAF8E2F382024374F, 13025035C479E2EF76EDCB90D83BE65B4ADD9F7000AD31FEAD628D5DDFE69158 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
20:23:29.0756 0x071c  monitor - ok
20:23:29.0759 0x071c  [ 2DAAF1EE1C30F2FCF59851A64ADA0422, 08CD801E63E2862DE058CD732C3DB3D87B1A2898732365440E3F8919932E96FC ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
20:23:29.0760 0x071c  mouclass - ok
20:23:29.0763 0x071c  [ D30FE074503283829ED194BCAE6239C3, A3A127381ECC798417D01F6B8A1894EED7D71989047BC4D1D74D0E7C8394AD65 ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
20:23:29.0764 0x071c  mouhid - ok
20:23:29.0768 0x071c  [ D5EC9413527B286CFEEB0294C53ABB95, B094C611F5A7E33D2F8667B2A4D6260E1D57BD135867F984EE5B674C7EE72B95 ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
20:23:29.0770 0x071c  mountmgr - ok
20:23:29.0773 0x071c  [ 26EA1DAD601EE3ACAC301D66F07BA219, C9594BB15D53D4AC2156CCCD2DB65B2C20620F1F60DA85F48D1586FC10028096 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:23:29.0775 0x071c  MozillaMaintenance - ok
20:23:29.0779 0x071c  [ 989A1BBD9C49B107B4A47D06E6827A69, 62D90B22AE13AC84324DFD5FEBA595813AD07469B7FEC41380CE223D93020CCA ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
20:23:29.0780 0x071c  mpsdrv - ok
20:23:29.0795 0x071c  [ A0DBB9386BEA8DA1A159C2A2E07081A3, 9D3F26005A76A72F9512F040D45C16124D17F8C8DA45C51FFAF74F066357D0A4 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
20:23:29.0808 0x071c  MpsSvc - ok
20:23:29.0813 0x071c  [ 5B37FDC07159FE9F5F52399F7D78F60B, A0C20EB9A7918395A13A5E21917887DDC9897C475D33091B518354163CAE108A ] MQAC            C:\WINDOWS\system32\drivers\mqac.sys
20:23:29.0816 0x071c  MQAC - ok
20:23:29.0820 0x071c  [ C1E74DD1D84861D8F12FF8BC0BA11975, 5912A0455C840F5C8AD6383823C9C7DE6FF8B5CAF1B72EA181864999891EAF30 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
20:23:29.0823 0x071c  MRxDAV - ok
20:23:29.0831 0x071c  [ 1DF2C5FD2710A13B07E663A12F0E0EEA, 8EBCA9269F52A5CF602F5DE2B0C2AB2BFD82F415465DBB74C73D43F321D9FD46 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
20:23:29.0837 0x071c  mrxsmb - ok
20:23:29.0844 0x071c  [ 185932B1149BD707F8A13174CDAB365B, BC26CB10DD6E81A94477564444E91F76D47E685E897BD77B9C1393F0D31AB718 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
20:23:29.0848 0x071c  mrxsmb10 - ok
20:23:29.0853 0x071c  [ 99E24D4DBACBC569833B9A67710D65E7, 93BC765E7B6E19E83AFF783DE8080A80A1D69A406B496F1E36C47AE6E86AFB76 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
20:23:29.0857 0x071c  mrxsmb20 - ok
20:23:29.0861 0x071c  [ 6F8BE4FB6262012E61BBADB5444628DC, E87489207AA48106C08E4BADDD8D66D14BC9DD6AD2A4CDD880BA655932CDDE60 ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
20:23:29.0863 0x071c  MsBridge - ok
20:23:29.0867 0x071c  [ 283BDF3602F442336DAF242BDD07FB98, 185F046B6AA24FFD1567F00AA70357C82002FF627E329CEF9B926645A6DDB172 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
20:23:29.0870 0x071c  MSDTC - ok
20:23:29.0874 0x071c  [ 7C55F1751CAC199680D4489D1EE46544, 967EC8137D321F6139C3382D19A338FD97A3023EB654747AC57C2008BE4AF677 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
20:23:29.0875 0x071c  Msfs - ok
20:23:29.0878 0x071c  [ 988588C16A53C2581488C15FF18934BF, F021FD31163CB5C7012CF96EF642C5E551708C835039075268F4CBED002D441D ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
20:23:29.0879 0x071c  msgpiowin32 - ok
20:23:29.0881 0x071c  [ 09622DBC24D0178F15DB8461BB6970DF, C0B3F9B2219AAF87E417EE9FF54C64B8AD9944E101EA79B5DC81D99E8C2ECF30 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
20:23:29.0882 0x071c  mshidkmdf - ok
20:23:29.0884 0x071c  [ 34BB07495C0159BE4189841E16F3BC2F, 264B5735D9A68C85BEDE363D4C0AE1FCC381B39EA884B4BAEE185EB8A873184A ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
20:23:29.0884 0x071c  mshidumdf - ok
20:23:29.0887 0x071c  [ 7BF3F0DA362C053918F5F2EC43CE39E2, AA773FA3F83C0C572160D3D0286A697DC628FF4F3655EF21D01C6D1B7BE5DF1C ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
20:23:29.0887 0x071c  msisadrv - ok
20:23:29.0891 0x071c  [ 669DA2006C0B9D882D2014617E1E88F5, 090F558818806CAEF6C81D369F8BFFE4A8240295EF37CAA7102A18F4CD20D868 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
20:23:29.0895 0x071c  MSiSCSI - ok
20:23:29.0897 0x071c  msiserver - ok
20:23:29.0899 0x071c  [ B2D0FD21FE67D6434769CC6F7A7883CA, B2368BD72952C6EE6DAF1AA006DF575A3019E4721BEFB108D3DF1B9E07B2BC5D ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
20:23:29.0899 0x071c  MSKSSRV - ok
20:23:29.0902 0x071c  [ FB3801F176376286A3F8F20FFB8CDC53, EEF89081665B9BBA93AE9F5912C40C1698E8BA8DBBCCC3BBE0BAB5A86B7E05D4 ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
20:23:29.0904 0x071c  MsLldp - ok
20:23:29.0906 0x071c  [ 85EBF0A28B8B132B67C84C6CE5EBAC29, D0012CF4822A3D16F7BF61C94C5650DC1ED310A0DD1A3333465D28C73D40ECDB ] MSMQ            C:\WINDOWS\system32\mqsvc.exe
20:23:29.0908 0x071c  MSMQ - ok
20:23:29.0910 0x071c  [ 8CBDF0E7A6CD824352F37A682A33DF7E, 4567FF4C73648FF26EA68EAE2B524B767099789086C158875C97768C77B81359 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
20:23:29.0911 0x071c  MSPCLOCK - ok
20:23:29.0913 0x071c  [ 33E5B6261D69ACD4948A5C64B9D8F29F, 1D32340640312372E52E59AFB5DB872E6F9DFE3AC16B56F9D928AE230DA02B8A ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
20:23:29.0914 0x071c  MSPQM - ok
20:23:29.0921 0x071c  [ 557DF8C0DBBBF518AC395C6EB1B179AE, B294B5A7882C0C60D91FB853FC87505B6E7638D25E360FDAE002AEBB714ED471 ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
20:23:29.0926 0x071c  MsRPC - ok
20:23:29.0930 0x071c  [ 0A29AFA668F5DD50482A98ECE70C77A7, 4C1F23B062361D97B1C8D864AB227E5F398F774A99B5E60A1149A4F78D5BEC20 ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
20:23:29.0931 0x071c  mssmbios - ok
20:23:29.0933 0x071c  [ 30CE30877FD5BFADE74FA27D7829BF89, B5EA1F8C91E75722DB1E3E2172C8607FEDBF35BDC4141258A3E6D29D8B0E193B ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
20:23:29.0934 0x071c  MSTEE - ok
20:23:29.0936 0x071c  [ 13D88C0B8A2FA001CD72D454955A6974, 19DD5C8BBD07B64F355737436BF702FFC209D84A8855D2224D3377E233D4BB34 ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
20:23:29.0936 0x071c  MTConfig - ok
20:23:29.0938 0x071c  [ 19B006B181E3875FD254F7B67ACF1E7C, 1D68D19522E71F16B8B50F8CCFBC9D884CF2DAC40CC409BD5A40A4D4223ABC61 ] MTsensor        C:\WINDOWS\system32\drivers\ASACPI.sys
20:23:29.0939 0x071c  MTsensor - ok
20:23:29.0942 0x071c  [ 07AD6825D5C658595CAB7F8F5849401C, 21DEC409C781848B8104CE23E42D3D3DFABE9CC2527C78B1ED9167E063DB1542 ] MtsHID          C:\WINDOWS\system32\drivers\MtsHID.sys
20:23:29.0942 0x071c  MtsHID - ok
20:23:29.0946 0x071c  [ 00C7F0F06A0A48B9CDB6B3AC3BE288F0, BF469A2DDF495ACB9FEE9063C6680C95BCC8686682C9EDAE6D1893D4058E8AA6 ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
20:23:29.0948 0x071c  Mup - ok
20:23:29.0951 0x071c  [ AFA051DA029FA6771746067137654584, 5AFB3B1565C68B84240337E62888191328363C1DC28C923C43BDBC9CFCDB1405 ] mv91cons        C:\WINDOWS\system32\drivers\mv91cons.sys
20:23:29.0951 0x071c  mv91cons - ok
20:23:29.0956 0x0940  Object required for P2P: [ 6300722E8527EC54D426FD00EE5196B2 ] Audiosrv
20:23:29.0959 0x071c  [ D72CFFB7AF56CBB37FD8D6686A33E6C7, 373B2FAE7219413B2BE534839D37F0DCA2CDFF9ED3B358EC1DF7474DAF20E9DC ] mv91xx          C:\WINDOWS\system32\drivers\mv91xx.sys
20:23:29.0963 0x071c  mv91xx - ok
20:23:29.0966 0x071c  [ 8E237527CA260C71D39ED4081BDF3419, CA52DD174C756A404B1FAD3F2A70E50085C2820BF12369259F61DA649101A179 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
20:23:29.0968 0x071c  mvumis - ok
20:23:29.0979 0x071c  [ 48D0587A8302FD3302CFE6F59F7345B0, 26D48AF3F7FF4867E179347CD635055DEA9A751C6C61CE2C391A7F74FC0DC1DE ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
20:23:29.0987 0x071c  NativeWifiP - ok
20:23:29.0991 0x071c  [ FE7B38240E86075E6BC5953496B5C2F1, 13CBDCFD5E63A49D6E66D9EBA701037F014EEED9BBFE8588CE2968A35FF2E16E ] NAVENG          C:\Program Files (x86)\Norton Security\NortonData\22.5.0.124\Definitions\VirusDefs\20151206.024\ENG64.SYS
20:23:29.0994 0x071c  NAVENG - ok
20:23:30.0027 0x071c  [ C002FA84570CA35F704ACF0AC4A5EAB0, E4246631E5D7AFD31CE642157A9102CB0DDE5B5051D08C3A5EA736CB3C99C6D9 ] NAVEX15         C:\Program Files (x86)\Norton Security\NortonData\22.5.0.124\Definitions\VirusDefs\20151206.024\EX64.SYS
20:23:30.0057 0x071c  NAVEX15 - ok
20:23:30.0063 0x071c  [ 11BE8117653C542D264788A700AC5BFE, 87EAAC2DF62BB26619DA72950F5EE41DCA1DBDF93F098647F9D200D588F14003 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
20:23:30.0066 0x071c  NcaSvc - ok
20:23:30.0074 0x071c  [ 286C6276B2BA86F29A0F687D05466277, AC8551536F37717A0ACE4A260F5696D1276F7AC62F669E8F12AA158DD86F71A5 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
20:23:30.0079 0x071c  NcbService - ok
20:23:30.0083 0x071c  [ C55DA734ED2A831E0BACAAFA01CEB7FF, 9D989B03D07BBAD287B317D238691664B0694331D6A69B7A1AA3D8AB7D1323FC ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
20:23:30.0085 0x071c  NcdAutoSetup - ok
20:23:30.0088 0x071c  [ CF8296427834CF8BBB3EE1444C17362D, 6EFBE1F015DFFA0704C66DF5C88089DD5771E1542018E4AE98389CFF3D0B2309 ] ndfltr          C:\WINDOWS\System32\drivers\ndfltr.sys
20:23:30.0090 0x071c  ndfltr - ok
20:23:30.0109 0x071c  [ 616F40B897DA651221F86A1741E9609B, 22D66029726313D92FC8E074BCC51C1E1560CB5FE36DCB735E7E063EA53E299A ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
20:23:30.0126 0x071c  NDIS - ok
20:23:30.0129 0x071c  [ A0719D1EBA971DFC5DF5F7CC010385F8, A982487D3A74E66F3C29AAA5B46CE9A0969F07F267DDEFE58C58573573AB0024 ] NdisCap         C:\WINDOWS\system32\drivers\ndiscap.sys
20:23:30.0130 0x071c  NdisCap - ok
20:23:30.0134 0x071c  [ 0C557932CCCC65AEB37326DD36504527, C0AF3066DEE4BCC32DB30CCC16B7A91442A8383BB36C7C4E3CC0A5EFE0FAAA9B ] NdisImPlatform  C:\WINDOWS\system32\drivers\NdisImPlatform.sys
20:23:30.0136 0x071c  NdisImPlatform - ok
20:23:30.0139 0x071c  [ 56F9345D1945826135FBAB7589592B1F, 6BC2A5900076B917823C7392C582A2648D0C8000F2F65D309D5B48E36D4FB4D6 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
20:23:30.0140 0x071c  NdisTapi - ok
20:23:30.0142 0x071c  [ AADFC340939D99E5D756E713E1D452EB, EFEFDBB2188DE82C2C5E67929861B269FD4C127D34D1DE6D0596ABC33E2C2B51 ] Ndisuio         C:\WINDOWS\system32\drivers\ndisuio.sys
20:23:30.0144 0x071c  Ndisuio - ok
20:23:30.0146 0x071c  [ 312DFD787D99D3BF1427B0388BC04F71, C082CA1F332AD57FF2100748518D3D7B3D0F1B042F69BD7401C44B77AFE97462 ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
20:23:30.0147 0x071c  NdisVirtualBus - ok
20:23:30.0151 0x071c  [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] NdisWan         C:\WINDOWS\System32\drivers\ndiswan.sys
20:23:30.0154 0x071c  NdisWan - ok
20:23:30.0159 0x071c  [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] ndiswanlegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
20:23:30.0162 0x071c  ndiswanlegacy - ok
20:23:30.0165 0x071c  [ 6E98F16983C4AE8703FF9F90AB4B31DD, BB8BD5DB4B5FB31F3A257747C27CBEFA4B7837EC5C0CF3D4F408E626E4003F4C ] ndproxy         C:\WINDOWS\system32\DRIVERS\NDProxy.sys
20:23:30.0166 0x071c  ndproxy - ok
20:23:30.0170 0x071c  [ F1B7CC77F412C8D45B2DDCF76EDA4F9D, 25F2AA76E675D9BCC0B1FD47AFEC6DF2D0B47E7B1C8AF6FB27C1ED2FB902961A ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
20:23:30.0172 0x071c  Ndu - ok
20:23:30.0175 0x071c  [ 824FDC990A3F79069BE468A132EB6888, D09F7A9EC04E37DA504CE54EEC25C312B407B6A8B214CBB074BEB50DE420F52A ] NetBIOS         C:\WINDOWS\system32\drivers\netbios.sys
20:23:30.0176 0x071c  NetBIOS - ok
20:23:30.0183 0x071c  [ F0D791348AD254360CC3C3E501CCB745, E4CAB4D3C2CD3169731283B00DEBFE26438BB66A3F0D78BDB68E876A14FC7070 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
20:23:30.0187 0x071c  NetBT - ok
20:23:30.0190 0x071c  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] Netlogon        C:\WINDOWS\system32\lsass.exe
20:23:30.0192 0x071c  Netlogon - ok
20:23:30.0197 0x071c  [ 7C8A7380CBE45DFD3DF118D8601499A7, C137280B7696F8CF4258BDC8B241C66BB3AA5708C5410D85255E46C7E8284826 ] Netman          C:\WINDOWS\System32\netman.dll
20:23:30.0202 0x071c  Netman - ok
20:23:30.0207 0x071c  [ FBF2ACE9B10DDE0B4108930D78370E86, 2A4910F071747B786EA49A638B3AAB698DCD0AD7FE702078BA83F85C533A227E ] NetMsmqActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:23:30.0211 0x071c  NetMsmqActivator - ok
20:23:30.0215 0x071c  [ FBF2ACE9B10DDE0B4108930D78370E86, 2A4910F071747B786EA49A638B3AAB698DCD0AD7FE702078BA83F85C533A227E ] NetPipeActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:23:30.0217 0x071c  NetPipeActivator - ok
20:23:30.0228 0x071c  [ BBE9D72EFC7BD66B28309C3607683DBA, FC372EFBC650CE0BDB117858D840A1FB361947B1C67D1DD16BABA95D0286856A ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
20:23:30.0237 0x071c  netprofm - ok
20:23:30.0242 0x071c  [ 5D046D71B18BEFB2E4D164C3DEEDD672, 536834D020889973854830919B23DF22CC1B27236AFAEDEBDF42D432CE48FCDE ] NetSetupSvc     C:\WINDOWS\System32\NetSetupSvc.dll
20:23:30.0246 0x071c  NetSetupSvc - ok
20:23:30.0249 0x071c  [ FBF2ACE9B10DDE0B4108930D78370E86, 2A4910F071747B786EA49A638B3AAB698DCD0AD7FE702078BA83F85C533A227E ] NetTcpActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:23:30.0251 0x071c  NetTcpActivator - ok
20:23:30.0255 0x071c  [ FBF2ACE9B10DDE0B4108930D78370E86, 2A4910F071747B786EA49A638B3AAB698DCD0AD7FE702078BA83F85C533A227E ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:23:30.0256 0x071c  NetTcpPortSharing - ok
20:23:30.0260 0x071c  [ 46E862DA2CF8F351375EF537276B69B5, AC0FE0977E56380849DCE668AC0F5AF183AAB115ED84ADD964E390CC0BEDF6D3 ] netvsc          C:\WINDOWS\System32\drivers\netvsc.sys
20:23:30.0262 0x071c  netvsc - ok
20:23:30.0269 0x071c  [ 88CE4AC85F36B6347C1D820FA373B998, E10B5DF8883928A2062FC6180DE4CF0DE33C68622C2E3E4E1AFC56A0682F8E75 ] NgcCtnrSvc      C:\WINDOWS\System32\NgcCtnrSvc.dll
20:23:30.0274 0x071c  NgcCtnrSvc - ok
20:23:30.0279 0x071c  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] NgcSvc          C:\WINDOWS\system32\lsass.exe
20:23:30.0280 0x071c  NgcSvc - ok
20:23:30.0288 0x071c  [ EA1C2DAB8A63712B94897A58557B086C, 98DD7E5C84F3CDF2DAA89484892D6B439F5D14297B5243436925BEEAA0C02EE1 ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
20:23:30.0294 0x071c  NlaSvc - ok
20:23:30.0297 0x071c  [ 41557BE174E9EC6AC703A8A4ADBC6650, 8CF6DF3FDC3C7C44B32851538A67BF86A54AB6444A424D7A20B7A9A94B4158D8 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
20:23:30.0298 0x071c  Npfs - ok
20:23:30.0301 0x071c  [ AC3F70FCFBCE97AA2F12BA43EE13B86E, D0AC50FB022C0F3031531CEE210D47FC3244C6FB55FAAD4AAB04081F0A21DAE4 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
20:23:30.0302 0x071c  npsvctrig - ok
20:23:30.0309 0x071c  [ 0A7FFDECBA6CA836A67AC584FA648919, 07DBCFF6CC0E67679E5ABCF41BDD3736131B0C84DAF3A4E628C0ADB083D252C5 ] NS              C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\NS.exe
20:23:30.0314 0x071c  NS - ok
20:23:30.0317 0x071c  [ 0AF4872D3D6FD3A030E836DAC2B3EF2D, 03EE7B6FAFC0BB5C26793BC5FF8BD1019AC96B3104688009C1E062C3F4F34D6D ] nsi             C:\WINDOWS\system32\nsisvc.dll
20:23:30.0319 0x071c  nsi - ok
20:23:30.0321 0x071c  [ 66A98C407085B8920DF1E6D722F1ADB8, 3FE307E4A9E41B08E0453507E50D6D0C67FA6F4245A863D90181463C749C83B5 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
20:23:30.0322 0x071c  nsiproxy - ok
20:23:30.0356 0x071c  [ 466EC5659C02ED53DBD47DC1BC2B8086, 1F35DE75386F7D029C01D67B09D5E5157141C6892858885C11972CE73D6078AC ] NTFS            C:\WINDOWS\system32\drivers\NTFS.sys
20:23:30.0386 0x071c  NTFS - ok
20:23:30.0390 0x071c  [ 383E546EF4982262A0EF6CC2B6E9D525, 3C6C90B62E8EB094E6928C388E5081A3F73DF87B0F34F716B72EA7B6EF71FBB7 ] Null            C:\WINDOWS\system32\drivers\Null.sys
20:23:30.0390 0x071c  Null - ok
20:23:30.0394 0x071c  [ 0EBC9D13CD96C15B1B18D8678A609E4B, B10896DE16B0C102DFB3E73A6C11A1982C5B428015DAE1F8776BCEF94A0F75C6 ] nusb3hub        C:\WINDOWS\system32\drivers\nusb3hub.sys
20:23:30.0395 0x071c  nusb3hub - ok
20:23:30.0400 0x071c  [ 7BDEC000D56D485021D9C1E63C2F81CA, 7F1303FD0371AF8715BFC38433B730C797170AEF10C7DB845B7B547DA8DBB5D5 ] nusb3xhc        C:\WINDOWS\system32\drivers\nusb3xhc.sys
20:23:30.0403 0x071c  nusb3xhc - ok
20:23:30.0406 0x071c  [ 7FD5C060CB907489A5702F628226F54A, 56101B878DCBFDEF4D5C8BBC6BE0D7710108E651809812BAB876A2E1D4ACB256 ] nvamacpi        C:\WINDOWS\system32\drivers\NVAMACPI.sys
20:23:30.0407 0x071c  nvamacpi - ok
20:23:30.0412 0x071c  [ D812362E8AF615B521AD4DF19A93BD5A, B1F04122DFE9FCC3FC56BE327D86912D624C89F2EFB9684BE66FC22115D0E19F ] NVHDA           C:\WINDOWS\system32\drivers\nvhda64v.sys
20:23:30.0415 0x071c  NVHDA - ok
20:23:30.0576 0x071c  [ 4D1C57D613F277B432188A10DFF85C2C, 04F451468BBFB417F0214CCC1EB99F5F0DBD74A438845E2F4D10934681DD229A ] nvlddmkm        C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
20:23:30.0734 0x071c  nvlddmkm - ok
20:23:30.0772 0x071c  [ 2CCD9A74A0F9C7605EAFA3F3AC8DC476, DEE95B0C0CA4525850E06AD3C1233A6C6E88D97EE874F83801686B87FD23F0BC ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
20:23:30.0799 0x071c  NvNetworkService - ok
20:23:30.0805 0x071c  [ 466F875F1D4C6ABB46AF28007009237C, 26F5A5579737A7CF2267F79DDE5A551149C682D5FD24663B53FCEC5AA6B448CE ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
20:23:30.0807 0x071c  nvraid - ok
20:23:30.0812 0x071c  [ 694F5E9D9D624D47F432F5B2E66A0528, 5ACE83A62CBBA735D516FD1C603C69A2136132203679D1F3C92AC5266E84DD8C ] nvrd64          C:\WINDOWS\system32\drivers\nvrd64.sys
20:23:30.0815 0x071c  nvrd64 - ok
20:23:30.0817 0x071c  [ E58D81FB8616D0CB55C1E36AA0B213C9, D83F78615889A466ADE2BFEF7AB357C0D31B7FA9A1A52668DED32A51FEFA87B5 ] nvsmu           C:\WINDOWS\system32\drivers\nvsmu.sys
20:23:30.0818 0x071c  nvsmu - ok
20:23:30.0823 0x071c  [ 76F19EAE7A52CBAF7B8EC428BE6E0DA0, CF1E55D92FA32744A20AB75D466A3E05E6FACF4694F9265C41F5C27C1E7243DC ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
20:23:30.0825 0x071c  nvstor - ok
20:23:30.0831 0x071c  [ 05DE5DC43AFE6CAB78F9C7CA044CBCBE, 59643F2B07DC964EDCE583CEA6AD81B33CB6D5923C9A5881268E7FCD5700601E ] nvstor64        C:\WINDOWS\system32\drivers\nvstor64.sys
20:23:30.0835 0x071c  nvstor64 - ok
20:23:30.0837 0x071c  [ 2F61DB46C84CCBB5D9F75065A85D2173, 79049D42F0D82BD3C5A9C8231CF2F412B50C9E6483DB14F41CD48301D85C166C ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
20:23:30.0838 0x071c  NvStreamKms - ok
20:23:30.0954 0x071c  [ 6F5AC1C495DA6D19AF99A59DC44BC13F, 61E8C0C0B9EEEF6ADE86AD4BC8D43256A6B20AEEB43BBC3C44B3B6140544259F ] NvStreamNetworkSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
20:23:31.0069 0x071c  NvStreamNetworkSvc - ok
20:23:31.0162 0x071c  [ 73FA6B2DF3348AF05E1F98310854BD4F, F0B7CF54495C81EE4C8B44580E399F3B22E190CB553AC7BA8E2DC13A28477566 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
20:23:31.0246 0x071c  NvStreamSvc - ok
20:23:31.0266 0x071c  [ 44C787E5661B40B78D59E0EB8B73C412, F88E919190C1ADB9AB266DE41C71DFC87F5AAE407783EDB70001D18B15D1052A ] nvsvc           C:\WINDOWS\system32\nvvsvc.exe
20:23:31.0282 0x071c  nvsvc - ok
20:23:31.0285 0x071c  [ 35DFC12FD7E44B7CB8CCD7E5A2B3975A, 36E0E39646636F6E027691E5C3903C51479B3F707BDEA40F460FD27E357DA14E ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
20:23:31.0286 0x071c  nvvad_WaveExtensible - ok
20:23:31.0290 0x071c  [ 0D0CB77D74B38E0EC62341C19E469D8D, A05D3CC67FEEB2FD219BFAA34BF98CB3F3718042124AF28F0E9FDFB9F132DD76 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
20:23:31.0292 0x071c  nv_agp - ok
20:23:31.0296 0x071c  [ 7B372B3C006280BCB8C8C7AFC8C38DF4, 3E5ECF426AEA89EC88AE13B73994DF3B363132106635C23DD898305544D36E57 ] ocz10xx         C:\WINDOWS\system32\drivers\ocz10xx.sys
20:23:31.0299 0x071c  ocz10xx - ok
20:23:31.0305 0x071c  [ EA3FFE8617B9FCA1620AD9876E92F4F1, 68D5143CA71D10A2BB44E29B3C76580596669D0624076BCF6CCBA7AF3140538E ] OneSyncSvc      C:\WINDOWS\System32\APHostService.dll
20:23:31.0310 0x071c  OneSyncSvc - ok
20:23:31.0313 0x0200  Object required for P2P: [ 467E489AB87260D6035F9F4C8F28D15A ] Hamachi2Svc
20:23:31.0378 0x071c  [ F34655869378762CEEF159E82BE95C3E, 346211DEB3D9C1D4C0688F737BF154A75C986921465FAF04E8CFED48385E64E8 ] Origin Client Service D:\Origin\OriginClientService.exe
20:23:31.0434 0x071c  Origin Client Service - ok
20:23:31.0439 0x071c  [ DC3FA0B732B5EF07C0CDE1682F6D0824, C20923BF74BD632EA56247E438D22A7D1519B63FF26974BCC9DA9255C37318F6 ] OxPPort         C:\WINDOWS\system32\drivers\OxPPort.sys
20:23:31.0441 0x071c  OxPPort - ok
20:23:31.0448 0x071c  [ CAFB5A95883158A0579DED2ED5CB0627, B23F7D19142DD3544F96ADB36F152F4EA7F6C524A1281EC26A2B95D7D044822C ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
20:23:31.0455 0x071c  p2pimsvc - ok
20:23:31.0463 0x071c  [ 3612CE3432E0A2BE0081E6B488ACF84C, F1A641735FD374CA293FB98FADA2C41E2033B17FECCA3B6D225D0E591AFFF413 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
20:23:31.0470 0x071c  p2psvc - ok
20:23:31.0474 0x071c  [ 38F1AE32339731F6E5A7281AE8042545, 308954518C45D29FC199525F0CC7FE4EA805322EC0B871DDDCBEEC15355514C8 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
20:23:31.0476 0x071c  Parport - ok
20:23:31.0479 0x071c  [ 707889D2F95AAE8C9DD254D8767AD908, BE7BD94728D7629F8B7567523FFB42B8979941CEA2EA03E11BFCD51CF119FC27 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
20:23:31.0482 0x071c  partmgr - ok
20:23:31.0491 0x071c  [ A09B0D8F9F0FC17EBCE6481AC9FD5CDF, 8E8D68992D98CF3DBC4B70C7902B3EC28A1E2DA8D4DB38F0AD9D52B1A5A1D40F ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
20:23:31.0500 0x071c  PcaSvc - ok
20:23:31.0507 0x071c  [ 2834089EA4E550FF3B96E61FB4AA34ED, D25DAB47F9778675E984E0738D2014024C2758D52D7E071167A12FF466B7898E ] pci             C:\WINDOWS\system32\drivers\pci.sys
20:23:31.0512 0x071c  pci - ok
20:23:31.0515 0x071c  [ 3D587E4295B11B8480F7ACB09A89D718, 8C3BD62B3451E1B2E7197EDAE381785406DF86C03BEEC486602C642FDD37DBC1 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
20:23:31.0515 0x071c  pciide - ok
20:23:31.0518 0x071c  [ D7C203015E2C2A2EAC8DACEF156D8DC3, FDE6B49A36588C22D92B591576FF1A1D8E60BE11EC3FBE8242FA671CF5A27031 ] PciIsaSerial    C:\WINDOWS\system32\drivers\PciIsaSerial.sys
20:23:31.0520 0x071c  PciIsaSerial - ok
20:23:31.0523 0x071c  [ 088B509B2F35A3CEE00AC0E0BC4C5BED, BD778FE0BAE72045511F1D66F980749443CC6EE2C3600FD55BD908BCCFD18B24 ] PciPPorts       C:\WINDOWS\system32\drivers\PciPPorts.sys
20:23:31.0525 0x071c  PciPPorts - ok
20:23:31.0529 0x071c  [ 7F97CDD5E91FC73DA2B01344957AA058, 72A887B477ADBBC9CC7071AF1A62EF3D62B3385B7D817AFE140CEBBA59948B41 ] PciSPorts       C:\WINDOWS\system32\drivers\PciSPorts.sys
20:23:31.0531 0x071c  PciSPorts - ok
20:23:31.0535 0x071c  [ B8F07002B5F1DA23CFF979C2806B09F3, AD5C589A02BB8185AA070420BF30E78BC8BE3C6F9B0F66319A8CA05B70A5ED32 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
20:23:31.0537 0x071c  pcmcia - ok
20:23:31.0540 0x071c  [ FF588077D0C6AC2EA3FCBF1903CE08D0, 64BE1646FB6D8CC902B6F386255F7C0420E3C334E14DECD527DD541B43A1DCD6 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
20:23:31.0541 0x071c  pcw - ok
20:23:31.0544 0x071c  [ 70469C8AC4AD367295E70CFDD81B754C, 3EC6FD742C7C60363939E5343477810D751D91D32A2F24285976C08A7C4477AB ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
20:23:31.0546 0x071c  pdc - ok
20:23:31.0559 0x071c  [ 688F47C342E1BBC87A48AB71D316233E, CE99AB67C7E7A11AC69C2F4513AEBDACA385BA7F8CC49BE6313CE04ED404A0E7 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
20:23:31.0569 0x071c  PEAUTH - ok

deeprybka · 09.12.2015, 22:47

Noch kein Fortschritt?

simonspc · 10.12.2015, 14:10

Es tut mir Leid, aber herdProtect funktioniert leider nicht.
Es lief die ganze Nacht, hat aber kein Fortschritt gemacht.
Was jetzt?

deeprybka · 10.12.2015, 14:40

Kein Problem.

Schritt 1

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

simonspc · 10.12.2015, 21:59

Endlich fertig, hier die Log file.

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=41eefbc9c78efb4f9ce54789e112d533
# end=init
# utc_time=2015-12-10 01:43:13
# local_time=2015-12-10 02:43:13 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT 
Update Init
Update Download
Update Finalize
Updated modules version: 27134
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=41eefbc9c78efb4f9ce54789e112d533
# end=updated
# utc_time=2015-12-10 01:50:54
# local_time=2015-12-10 02:50:54 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.2.9200 NT 
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=41eefbc9c78efb4f9ce54789e112d533
# engine=27134
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-12-10 04:55:53
# local_time=2015-12-10 05:55:53 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT 
# compatibility_mode_1='Norton Security'
# compatibility_mode=3604 16777213 100 97 79881 42469079 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 420713 13240565 0 0
# scanned=791308
# found=31
# cleaned=0
# scan_time=11098
sh=B90EEC619DE86A03385BC56DC4DA376401FBAE4B ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\abhcboegnnahoblgogedeahdhhlbilmh\219\wD34l8h5A3.js.vir"
sh=6C8008073DC9B4FC6F42623216C2ED8500D736A1 ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\eabcianhdkihpdmnfhbkamlpemmdcdkn\2.1\UBO3lb.js.vir"
sh=B90EEC619DE86A03385BC56DC4DA376401FBAE4B ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\abhcboegnnahoblgogedeahdhhlbilmh\219\wD34l8h5A3.js.vir"
sh=6C8008073DC9B4FC6F42623216C2ED8500D736A1 ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\eabcianhdkihpdmnfhbkamlpemmdcdkn\2.1\UBO3lb.js.vir"
sh=B90EEC619DE86A03385BC56DC4DA376401FBAE4B ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\abhcboegnnahoblgogedeahdhhlbilmh\219\wD34l8h5A3.js.vir"
sh=6C8008073DC9B4FC6F42623216C2ED8500D736A1 ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\eabcianhdkihpdmnfhbkamlpemmdcdkn\2.1\UBO3lb.js.vir"
sh=B90EEC619DE86A03385BC56DC4DA376401FBAE4B ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\abhcboegnnahoblgogedeahdhhlbilmh\219\wD34l8h5A3.js.vir"
sh=6C8008073DC9B4FC6F42623216C2ED8500D736A1 ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Gast\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\eabcianhdkihpdmnfhbkamlpemmdcdkn\2.1\UBO3lb.js.vir"
sh=B90EEC619DE86A03385BC56DC4DA376401FBAE4B ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\abhcboegnnahoblgogedeahdhhlbilmh\219\wD34l8h5A3.js.vir"
sh=6C8008073DC9B4FC6F42623216C2ED8500D736A1 ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\eabcianhdkihpdmnfhbkamlpemmdcdkn\2.1\UBO3lb.js.vir"
sh=B90EEC619DE86A03385BC56DC4DA376401FBAE4B ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\abhcboegnnahoblgogedeahdhhlbilmh\219\wD34l8h5A3.js.vir"
sh=6C8008073DC9B4FC6F42623216C2ED8500D736A1 ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Gast\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\eabcianhdkihpdmnfhbkamlpemmdcdkn\2.1\UBO3lb.js.vir"
sh=B90EEC619DE86A03385BC56DC4DA376401FBAE4B ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\abhcboegnnahoblgogedeahdhhlbilmh\219\wD34l8h5A3.js.vir"
sh=6C8008073DC9B4FC6F42623216C2ED8500D736A1 ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\eabcianhdkihpdmnfhbkamlpemmdcdkn\2.1\UBO3lb.js.vir"
sh=B90EEC619DE86A03385BC56DC4DA376401FBAE4B ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\abhcboegnnahoblgogedeahdhhlbilmh\219\wD34l8h5A3.js.vir"
sh=6C8008073DC9B4FC6F42623216C2ED8500D736A1 ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\eabcianhdkihpdmnfhbkamlpemmdcdkn\2.1\UBO3lb.js.vir"
sh=B90EEC619DE86A03385BC56DC4DA376401FBAE4B ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\abhcboegnnahoblgogedeahdhhlbilmh\219\wD34l8h5A3.js.vir"
sh=6C8008073DC9B4FC6F42623216C2ED8500D736A1 ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\eabcianhdkihpdmnfhbkamlpemmdcdkn\2.1\UBO3lb.js.vir"
sh=B90EEC619DE86A03385BC56DC4DA376401FBAE4B ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Simon\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\abhcboegnnahoblgogedeahdhhlbilmh\219\wD34l8h5A3.js.vir"
sh=6C8008073DC9B4FC6F42623216C2ED8500D736A1 ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Simon\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\eabcianhdkihpdmnfhbkamlpemmdcdkn\2.1\UBO3lb.js.vir"
sh=B90EEC619DE86A03385BC56DC4DA376401FBAE4B ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Simon\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\abhcboegnnahoblgogedeahdhhlbilmh\219\wD34l8h5A3.js.vir"
sh=6C8008073DC9B4FC6F42623216C2ED8500D736A1 ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Simon\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\eabcianhdkihpdmnfhbkamlpemmdcdkn\2.1\UBO3lb.js.vir"
sh=929C70824D8BB6AF12B6FFB979A848CF3B497C7A ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Simon\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\okaikkjpokhnfoigeppmhiejdhgclaen\3.9\njL9Jtogw6.js.vir"
sh=B90EEC619DE86A03385BC56DC4DA376401FBAE4B ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="F:\Simon\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\abhcboegnnahoblgogedeahdhhlbilmh\219\wD34l8h5A3.js"
sh=6C8008073DC9B4FC6F42623216C2ED8500D736A1 ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="F:\Simon\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\eabcianhdkihpdmnfhbkamlpemmdcdkn\2.1\UBO3lb.js"
sh=B90EEC619DE86A03385BC56DC4DA376401FBAE4B ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="F:\Simon\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\abhcboegnnahoblgogedeahdhhlbilmh\219\wD34l8h5A3.js"
sh=6C8008073DC9B4FC6F42623216C2ED8500D736A1 ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="F:\Simon\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\eabcianhdkihpdmnfhbkamlpemmdcdkn\2.1\UBO3lb.js"
sh=929C70824D8BB6AF12B6FFB979A848CF3B497C7A ft=0 fh=0000000000000000 vn="JS/Kryptik.ATB Trojaner" ac=I fn="F:\Simon\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\okaikkjpokhnfoigeppmhiejdhgclaen\3.9\njL9Jtogw6.js"
sh=519AB947B75482CFE93D4B47C6A21566BC01563D ft=0 fh=0000000000000000 vn="JS/Adware.MultiPlug.I Anwendung" ac=I fn="F:\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\kgm45mf1.default\extensions\e3e@uaoyatwiaa.com\content\bg.js"
sh=C3937102B74AAE33C7725020F68D998A99CD044B ft=1 fh=6e4c94e4e7dedc70 vn="Win32/Somoto.Q evtl. unerwÃ¼nschte Anwendung" ac=I fn="F:\Simon\Downloads\setup Project64 2.1.exe"
sh=BC4318A39011AC2CB84AC3E5122F9094444C14CA ft=0 fh=0000000000000000 vn="Variante von Win32/InstallCore.ADV.gen evtl. unerwÃ¼nschte Anwendung" ac=I fn="F:\Simon\Downloads\unlockdtmracedriver3.ace"

deeprybka · 10.12.2015, 22:01

Gibt es jetzt noch Probleme mit dem PC? Wenn ja, welche?

09.12.2015, 22:47	#7
deeprybka /// TB-Ausbilder /// Anleitungs-Guru	Unbekannte Maleware/Virus Noch kein Fortschritt? __________________ Gruß deeprybka Lob, Kritik, Wünsche? Spende fürs trojaner-board? _______________________________________________ „Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer

10.12.2015, 22:01	#11
deeprybka /// TB-Ausbilder /// Anleitungs-Guru	Unbekannte Maleware/Virus Gibt es jetzt noch Probleme mit dem PC? Wenn ja, welche? __________________ Gruß deeprybka Lob, Kritik, Wünsche? Spende fürs trojaner-board? _______________________________________________ „Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer

Unbekannte Maleware/Virus

Plagegeister aller Art und deren Bekämpfung: Unbekannte Maleware/Virus