Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird.

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 20.10.2016, 10:30   #1
Obscura Nox
 
Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird. - Standard

Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird.



Grüße, ich beziehe mich auf einen Post den ich bereits in einer anderen Sektion gepostet habe. Ich bin daher mal so frei und zitiere mich daraus selbst, da es ein recht ungewöhnliches Problem ist.

Zitat:
Ich stehe gerade vor einem so seltsamen wie frustrierenden Problem. Jemand hat nun bereits zum dritten Mal in weniger als 4 Monaten versucht sich in meinen Steam Account einzuloggen. Glücklicherweise habe ich SteamGuard aktiviert, wodurch ein Code zum Login von Fremd PCs benötigt wird um auf den Account zuzugreifen. Der oder die Person(en) nutzen meinen korrekten Benutzernamen, welcher nicht allzu schwer zu finden ist, jedoch auch mein richtiges Passwort. Irgendwelche versehentliche "Beinahe" Logins aufgrund eines Buchstabendrehers im Benutzernamen weil die Person einen ähnlichen hat, sind also auszuschließen.

Ich habe natürlich das Passwort regelmäßig geändert, zum ersten Mal trat das Problem Ende Juli auf. Dann Ende letzten Monats, und nun schon wieder. Immer andere Passwörter, immer korrekt eingegeben, immer von anderen IP Adressen aus.

Sämtliche andere Konten sind davon nicht betroffen. Meine Email nicht, mein Battlenet oder andere Spieldienste nicht, mein Paypal nicht. Gar nichts. Suche mit Kaspersky, nichts. Suche mit Malwarebytes, nichts. Ich weiß absolut nicht mehr was ich noch machen soll.
FRST.txt :

Code:
ATTFilter
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 17-10-2016
durchgeführt von Obscura Nox (Administrator) auf OBSCURANOX-PC (20-10-2016 11:14:51)
Gestartet von A:\Benutzerdaten\Desktop
Geladene Profile: Obscura Nox (Verfügbare Profile: Obscura Nox)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
() C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\avp.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Hi-Rez Studios) A:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\avpui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Windows\system\3DG4me.exe
(Microsoft Corporation) C:\Windows\vVX1000.exe
(Valve Corporation) A:\Steam\Steam.exe
(Skype Technologies S.A.) A:\Programme\Phone\Skype.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIPDE.EXE
(Hammer & Chisel, Inc.) C:\Users\Obscura Nox\AppData\Local\Discord\app-0.0.296\Discord.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Java\jre6\bin\jusched.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(Hammer & Chisel, Inc.) C:\Users\Obscura Nox\AppData\Local\Discord\app-0.0.296\Discord.exe
(Hammer & Chisel, Inc.) C:\Users\Obscura Nox\AppData\Local\Discord\app-0.0.296\Discord.exe
(Valve Corporation) A:\Steam\bin\cef\cef.winxp\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.5220\Agent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Blizzard Entertainment) A:\Programme\Battle.net\Battle.net.8058\Battle.net.exe
() A:\Programme\Battle.net\Battle.net.8058\Battle.net Helper.exe
() A:\Programme\Battle.net\Battle.net.8058\Battle.net Helper.exe
(Blizzard Entertainment) A:\Blizzard Spiele\World of Warcraft\Wow-64.exe
(Valve Corporation) A:\Steam\bin\cef\cef.winxp\steamwebhelper.exe
(Valve Corporation) A:\Steam\bin\cef\cef.winxp\steamwebhelper.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Blizzard Entertainment) A:\Blizzard Spiele\World of Warcraft\Utils\WowBrowserProxy.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13307496 2011-10-17] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-06-15] (NVIDIA Corporation)
HKLM\...\Run: [3DG4me] => C:\Windows\System\3DG4me.exe [151552 2015-09-01] ()
HKLM\...\Run: [VX1000] => C:\Windows\vVX1000.exe [762736 2010-05-20] (Microsoft Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-26] (Intel Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2016-07-07] (Razer Inc.)
HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [119152 2010-05-20] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Java\jre6\bin\jusched.exe [136600 2016-04-14] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\Run: [Steam] => "A:\Steam\steam.exe" -silent
HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\Run: [Skype] => "A:\Programme\Phone\Skype.exe" /minimized /regrun
HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIPDE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\Run: [Discord] => C:\Users\Obscura Nox\AppData\Local\Discord\app-0.0.296\Discord.exe [62471352 2016-08-24] (Hammer & Chisel, Inc.)
HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\MountPoints2: {47ec4f20-c7f5-11e5-9822-bc5ff43a8f47} - E:\pushinst.exe
HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\MountPoints2: {7cd35693-508d-11e5-870f-806e6f6e6963} - D:\ASRSetup.exe
HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\MountPoints2: {97329b75-5097-11e5-af32-bc5ff43a8f47} - "E:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\MountPoints2: {b5cb0ad1-5095-11e5-89d1-806e6f6e6963} - D:\start.exe
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1402792 2016-08-31] (Garmin Ltd. or its subsidiaries)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
Tcpip\..\Interfaces\{FF40EB94-7802-49C5-A8D0-0973239E9DA0}: [DhcpNameServer] 192.168.2.1 192.168.2.1

Internet Explorer:
==================
BHO: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\x64\IEExt\ie_plugin.dll [2015-12-22] (AO Kaspersky Lab)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-10-08] (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (Seiko Epson Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2016-10-08] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-10-08] (Microsoft Corporation)
BHO-x32: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\IEExt\ie_plugin.dll [2015-12-22] (AO Kaspersky Lab)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-10-08] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2016-04-14] (Sun Microsystems, Inc.)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2016-10-08] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-10-08] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2016-04-14] (Sun Microsystems, Inc.)
Toolbar: HKLM - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\x64\IEExt\ie_plugin.dll [2015-12-22] (AO Kaspersky Lab)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (Seiko Epson Corporation)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\IEExt\ie_plugin.dll [2015-12-22] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-20] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-20] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-20] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-20] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Obscura Nox\AppData\Roaming\Mozilla\Firefox\Profiles\yf8e7afh.default [2016-10-20]
FF user.js: detected! => C:\Users\Obscura Nox\AppData\Roaming\Mozilla\Firefox\Profiles\yf8e7afh.default\user.js [2015-09-01]
FF Extension: (NoScript) - C:\Users\Obscura Nox\AppData\Roaming\Mozilla\Firefox\Profiles\yf8e7afh.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-08-09]
FF Extension: (Adblock Plus) - C:\Users\Obscura Nox\AppData\Roaming\Mozilla\Firefox\Profiles\yf8e7afh.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28]
FF Extension: (Java Console) - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} [2016-09-24] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_ACF0E80077C511E59DED005056C00008@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\FFExt\light_plugin_firefox\addon.xpi [2016-08-16]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2016-09-01] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_185.dll [2016-10-11] ()
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_185.dll [2016-10-11] ()
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-10-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-10-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npNxGameEU.dll [2015-10-10] (Nexon)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-09-17] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-09-17] (NVIDIA Corporation)
FF Plugin-x32: @protectdisc.com/NPMPDRM -> C:\Program Files (x86)\Common Files\mpDRM\Binaries\NPMPDRM.dll [2011-10-11] ( )
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> A:\Programme\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npdeploytk.dll [2016-04-14] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2010-12-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2010-12-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2010-12-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2010-12-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2010-12-15] (Apple Inc.)

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi
CHR HKLM-x32\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AVP16.0.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\avp.exe [236928 2015-12-22] (AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1362464 2016-05-20] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3291848 2016-10-08] (Microsoft Corporation)
S3 DAUpdaterSvc; A:\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe [25832 2015-11-28] (BioWare)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [227104 2016-08-17] (EasyAntiCheat Ltd)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2016-05-24] (Futuremark)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6943800 2015-09-08] (GOG.com)
S3 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [928272 2016-08-31] (Garmin Ltd. or its subsidiaries)
U2 HiPatchService; A:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-03-14] (Hi-Rez Studios) [Datei ist nicht signiert]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [121344 2012-02-07] () [Datei ist nicht signiert]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-07] (Intel Corporation)
S3 KAUpdateService; A:\DRM-Freie Spiele\The Book of Unwritten Tales 2\service\KAUpdateService.exe [36864 2015-01-27] () [Datei ist nicht signiert]
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\x64\vssbridge64.exe [152488 2015-12-22] (AO Kaspersky Lab)
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4362656 2016-02-24] (INCA Internet Co., Ltd.) [Datei ist nicht signiert]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-06-15] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-06-15] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-06-15] (NVIDIA Corporation)
S3 Origin Client Service; A:\Origin\OriginClientService.exe [2142728 2016-10-07] (Electronic Arts)
S2 Origin Web Helper Service; A:\Origin\OriginWebHelperService.exe [2209296 2016-10-07] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2016-05-17] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-11-05] ()
S2 SkypeUpdate; A:\Programme\Updater\Updater.exe [324224 2016-07-25] (Skype Technologies)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2011-09-21] (Asmedia Technology)
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [303616 2016-04-04] () [Datei ist nicht signiert]
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-09-11] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [79240 2015-12-01] (AO Kaspersky Lab)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [78200 2015-12-02] (AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [182152 2015-12-11] (AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [236888 2016-08-16] (AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP16.0.1\Bases\klids.sys [182360 2016-10-20] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1001304 2016-08-16] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [50776 2016-04-29] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [52608 2015-11-11] (AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [41648 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [45960 2015-12-07] (AO Kaspersky Lab)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [65208 2015-06-11] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [110424 2016-08-16] (AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [194440 2015-12-03] (AO Kaspersky Lab)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [42696 2016-02-11] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-10-20] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-06-15] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13512 2015-12-07] ()
R3 rzjstk; C:\Windows\System32\DRIVERS\rzjstk.sys [36568 2015-08-13] (Razer Inc)
R3 rzkeypadendpt; C:\Windows\System32\DRIVERS\rzkeypadendpt.sys [44760 2015-08-13] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-09-22] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [130880 2015-12-14] (Razer, Inc.)
R3 USBADVAU; C:\Windows\System32\drivers\cm11264.sys [1308160 2009-11-25] (C-Media Electronics Inc)
S3 cpuz138; \??\C:\Users\OBSCUR~1\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-10-20 11:14 - 2016-10-20 11:14 - 00000000 ____D C:\FRST
2016-10-19 15:47 - 2016-10-19 15:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Simulationcraft(x64)
2016-10-17 15:12 - 2016-10-17 17:24 - 00000000 ____D C:\Users\Obscura Nox\AppData\Roaming\discord
2016-10-17 15:12 - 2016-10-17 15:12 - 00000000 ____D C:\Users\Obscura Nox\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2016-10-17 15:12 - 2016-10-17 15:12 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\SquirrelTemp
2016-10-17 15:12 - 2016-10-17 15:12 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\Discord
2016-10-15 11:59 - 2016-10-15 11:59 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\TempOfficeC2R01B9AB5B-EA74-4975-8F22-419AB221BB60
2016-10-12 10:32 - 2016-09-30 22:13 - 00394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-10-12 10:32 - 2016-09-30 21:28 - 00346312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-10-12 10:32 - 2016-09-30 17:37 - 05548264 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-10-12 10:32 - 2016-09-30 17:20 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-10-12 10:32 - 2016-09-30 17:20 - 03944680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-10-12 10:32 - 2016-09-30 09:55 - 25765376 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-10-12 10:32 - 2016-09-30 08:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-10-12 10:32 - 2016-09-30 08:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-10-12 10:32 - 2016-09-30 08:26 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-10-12 10:32 - 2016-09-30 08:25 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-10-12 10:32 - 2016-09-30 08:25 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-10-12 10:32 - 2016-09-30 08:25 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-10-12 10:32 - 2016-09-30 08:25 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-10-12 10:32 - 2016-09-30 08:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-10-12 10:32 - 2016-09-30 08:18 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-10-12 10:32 - 2016-09-30 08:17 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-10-12 10:32 - 2016-09-30 08:14 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-10-12 10:32 - 2016-09-30 08:13 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-10-12 10:32 - 2016-09-30 08:13 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-10-12 10:32 - 2016-09-30 08:12 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-10-12 10:32 - 2016-09-30 08:12 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-10-12 10:32 - 2016-09-30 08:09 - 06048256 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-10-12 10:32 - 2016-09-30 08:05 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-10-12 10:32 - 2016-09-30 08:02 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-10-12 10:32 - 2016-09-30 07:55 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-10-12 10:32 - 2016-09-30 07:54 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-10-12 10:32 - 2016-09-30 07:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-10-12 10:32 - 2016-09-30 07:51 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-10-12 10:32 - 2016-09-30 07:50 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-10-12 10:32 - 2016-09-30 07:47 - 20306944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-10-12 10:32 - 2016-09-30 07:47 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-10-12 10:32 - 2016-09-30 07:46 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-10-12 10:32 - 2016-09-30 07:42 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-10-12 10:32 - 2016-09-30 07:42 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-10-12 10:32 - 2016-09-30 07:42 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-10-12 10:32 - 2016-09-30 07:42 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-10-12 10:32 - 2016-09-30 07:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-10-12 10:32 - 2016-09-30 07:38 - 02286592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-10-12 10:32 - 2016-09-30 07:36 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-10-12 10:32 - 2016-09-30 07:35 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-10-12 10:32 - 2016-09-30 07:35 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-10-12 10:32 - 2016-09-30 07:33 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-10-12 10:32 - 2016-09-30 07:33 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-10-12 10:32 - 2016-09-30 07:32 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-10-12 10:32 - 2016-09-30 07:32 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-10-12 10:32 - 2016-09-30 07:32 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-10-12 10:32 - 2016-09-30 07:32 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-10-12 10:32 - 2016-09-30 07:31 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-10-12 10:32 - 2016-09-30 07:31 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-10-12 10:32 - 2016-09-30 07:24 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-10-12 10:32 - 2016-09-30 07:21 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-10-12 10:32 - 2016-09-30 07:19 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-10-12 10:32 - 2016-09-30 07:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-10-12 10:32 - 2016-09-30 07:17 - 02920960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-10-12 10:32 - 2016-09-30 07:17 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-10-12 10:32 - 2016-09-30 07:15 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-10-12 10:32 - 2016-09-30 07:14 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-10-12 10:32 - 2016-09-30 07:13 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-10-12 10:32 - 2016-09-30 07:12 - 04608512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-10-12 10:32 - 2016-09-30 07:07 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-10-12 10:32 - 2016-09-30 07:05 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-10-12 10:32 - 2016-09-30 07:05 - 01544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-10-12 10:32 - 2016-09-30 07:05 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-10-12 10:32 - 2016-09-30 07:05 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-10-12 10:32 - 2016-09-30 07:03 - 13653504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-10-12 10:32 - 2016-09-30 06:54 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-10-12 10:32 - 2016-09-30 06:46 - 02444288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-10-12 10:32 - 2016-09-30 06:43 - 01312768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-10-12 10:32 - 2016-09-30 06:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-10-12 10:32 - 2016-09-15 17:30 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-10-12 10:32 - 2016-09-15 17:30 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-10-12 10:32 - 2016-09-15 17:15 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-10-12 10:32 - 2016-09-15 17:15 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2016-10-12 10:32 - 2016-09-12 23:17 - 00077032 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-10-12 10:32 - 2016-09-12 23:13 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-10-12 10:32 - 2016-09-12 23:13 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-10-12 10:32 - 2016-09-12 23:08 - 01465344 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 01226752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-10-12 10:32 - 2016-09-12 22:39 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-10-12 10:32 - 2016-09-12 22:37 - 03218944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-10-12 10:32 - 2016-09-12 22:32 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-10-12 10:32 - 2016-09-12 22:32 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-10-12 10:32 - 2016-09-12 22:32 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-10-12 10:32 - 2016-09-12 22:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-10-12 10:32 - 2016-09-12 22:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-10-12 10:32 - 2016-09-12 22:25 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-10-12 10:32 - 2016-09-12 21:08 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-10-12 10:32 - 2016-09-12 20:43 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-10-12 10:32 - 2016-09-12 20:43 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-10-12 10:32 - 2016-09-10 18:19 - 03649536 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-10-12 10:32 - 2016-09-10 17:53 - 02291712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-10-12 10:32 - 2016-09-09 20:29 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-10-12 10:32 - 2016-09-09 20:26 - 00706280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-10-12 10:32 - 2016-09-09 20:23 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:01 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-10-12 10:32 - 2016-09-09 20:00 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-10-12 10:32 - 2016-09-09 20:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-10-12 10:32 - 2016-09-09 20:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-10-12 10:32 - 2016-09-09 20:00 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:51 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-10-12 10:32 - 2016-09-09 19:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-10-12 10:32 - 2016-09-09 19:51 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-10-12 10:32 - 2016-09-09 19:48 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-10-12 10:32 - 2016-09-09 19:47 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-10-12 10:32 - 2016-09-09 19:43 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-10-12 10:32 - 2016-09-09 19:38 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-10-12 10:32 - 2016-09-09 19:38 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-10-12 10:32 - 2016-09-09 19:38 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-10-12 10:32 - 2016-09-09 19:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-10-12 10:32 - 2016-09-09 19:37 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 17:54 - 01629184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-10-12 10:32 - 2016-09-09 17:54 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-10-12 10:32 - 2016-09-09 17:54 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-10-12 10:32 - 2016-09-09 17:54 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-10-12 10:32 - 2016-09-09 17:54 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-10-12 10:32 - 2016-09-09 17:54 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-10-12 10:32 - 2016-09-09 17:54 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-10-12 10:32 - 2016-09-08 22:34 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-10-12 10:32 - 2016-09-08 22:34 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2016-10-12 10:32 - 2016-09-08 22:34 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2016-10-12 10:32 - 2016-09-08 22:34 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2016-10-12 10:32 - 2016-09-08 16:55 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-10-12 10:32 - 2016-09-08 16:55 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-10-12 10:32 - 2016-08-29 17:31 - 14183424 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-10-12 10:32 - 2016-08-29 17:31 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-10-12 10:32 - 2016-08-29 17:31 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-10-12 10:32 - 2016-08-29 17:12 - 12880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-10-12 10:32 - 2016-08-29 17:12 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-10-12 10:32 - 2016-08-29 17:12 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-10-12 10:32 - 2016-08-29 17:04 - 03229696 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-10-12 10:32 - 2016-08-29 16:55 - 02972672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-10-12 10:32 - 2016-08-16 22:40 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-10-12 10:32 - 2016-08-16 22:40 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2016-10-12 10:32 - 2016-08-16 22:40 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2016-10-12 10:32 - 2016-08-16 22:40 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2016-10-12 10:32 - 2016-08-16 22:40 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2016-10-12 10:32 - 2016-08-16 22:40 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2016-10-12 10:32 - 2016-08-16 22:40 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2016-10-12 10:32 - 2016-08-12 19:02 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-10-12 10:32 - 2016-08-12 19:02 - 12574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-10-12 10:32 - 2016-08-12 19:02 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-10-12 10:32 - 2016-08-12 19:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-10-12 10:32 - 2016-08-12 19:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-10-12 10:32 - 2016-08-12 18:47 - 12574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-10-12 10:32 - 2016-08-12 18:47 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-10-12 10:32 - 2016-08-12 18:31 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-10-12 10:32 - 2016-08-12 18:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-10-12 10:32 - 2016-08-12 18:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-10-12 10:32 - 2016-08-12 18:26 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2016-10-12 10:32 - 2016-08-06 17:31 - 02023424 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-10-12 10:32 - 2016-08-06 17:31 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2016-10-12 10:32 - 2016-08-06 17:31 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-10-12 10:32 - 2016-08-06 17:31 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-10-12 10:32 - 2016-08-06 17:31 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2016-10-12 10:32 - 2016-08-06 17:31 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2016-10-12 10:32 - 2016-08-06 17:15 - 01178112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2016-10-12 10:32 - 2016-08-06 17:15 - 00249344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2016-10-12 10:32 - 2016-08-06 17:15 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2016-10-12 10:32 - 2016-08-06 17:15 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2016-10-12 10:32 - 2016-08-06 17:15 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll
2016-10-12 10:32 - 2016-08-06 17:01 - 00266752 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2016-10-12 10:32 - 2016-08-06 17:01 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2016-10-12 10:32 - 2016-08-06 16:53 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2016-10-12 10:32 - 2016-08-06 16:53 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2016-10-12 10:32 - 2016-08-06 16:53 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2016-10-12 10:32 - 2016-07-22 16:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-10-12 10:32 - 2016-07-22 16:51 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2016-10-12 10:32 - 2016-06-14 19:21 - 00094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-10-12 10:32 - 2016-06-14 19:16 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 01483264 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-10-12 10:32 - 2016-06-14 19:11 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2016-10-12 10:32 - 2016-06-14 17:21 - 03209216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-10-12 10:32 - 2016-06-14 17:15 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2016-10-12 10:32 - 2016-06-14 17:15 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-10-12 10:32 - 2016-06-14 17:15 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-10-12 10:32 - 2016-06-14 17:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-10-12 10:32 - 2016-06-14 17:05 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-10-12 10:32 - 2016-06-14 17:00 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2016-10-12 10:32 - 2016-06-14 17:00 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2016-10-07 22:52 - 2016-10-07 22:52 - 00443632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140.dll
2016-10-07 22:52 - 2016-10-07 22:52 - 00394496 _____ (Microsoft Corporation) C:\Windows\system32\vccorlib140.dll
2016-10-07 22:52 - 2016-10-07 22:52 - 00334608 _____ (Microsoft Corporation) C:\Windows\system32\concrt140.dll
2016-10-07 22:52 - 2016-10-07 22:52 - 00089328 _____ (Microsoft Corporation) C:\Windows\system32\vcruntime140.dll
2016-10-07 22:52 - 2016-10-07 22:52 - 00085744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcruntime140.dll
2016-10-07 22:49 - 2016-10-07 22:49 - 00639728 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140.dll
2016-10-07 22:49 - 2016-10-07 22:49 - 00244504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\concrt140.dll
2016-10-07 22:45 - 2016-10-07 22:45 - 00271112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vccorlib140.dll
2016-10-07 21:09 - 2016-10-20 10:17 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-10-07 21:07 - 2016-10-07 21:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-10-07 21:07 - 2016-10-07 21:07 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-10-07 21:07 - 2016-10-07 21:07 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-10-07 21:07 - 2016-03-10 14:09 - 00064896 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-10-07 21:07 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-10-07 21:07 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-10-07 20:48 - 2016-10-07 20:48 - 00000085 _____ C:\Windows\wininit.ini
2016-10-07 20:30 - 2016-10-07 20:30 - 00000000 ____D C:\Users\Obscura Nox\.Origin
2016-10-07 20:21 - 2016-10-08 14:14 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-10-07 20:21 - 2016-10-07 20:48 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-10-07 20:21 - 2016-10-07 20:21 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2016-10-01 14:22 - 2016-10-01 14:22 - 00262144 _____ C:\Windows\Minidump\100116-14258-01.dmp
2016-10-01 09:30 - 2016-10-01 09:30 - 00000000 ____D C:\Program Files (x86)\Skype
2016-09-27 15:51 - 2016-09-27 15:51 - 00002203 _____ C:\Users\Obscura Nox\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-09-27 15:51 - 2016-09-27 15:51 - 00002124 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-09-27 15:51 - 2016-09-27 15:51 - 00002124 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-09-27 15:51 - 2016-09-27 15:51 - 00000000 ___RD C:\Users\Obscura Nox\OneDrive
2016-09-27 15:51 - 2016-09-27 15:51 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-09-27 15:51 - 2016-09-27 15:51 - 00000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2016-09-27 15:34 - 2016-09-27 15:34 - 00002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2016-09-27 15:34 - 2016-09-27 15:34 - 00002506 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2016-09-27 15:34 - 2016-09-27 15:34 - 00002502 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2016-09-27 15:34 - 2016-09-27 15:34 - 00002481 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2016-09-27 15:34 - 2016-09-27 15:34 - 00002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
2016-09-27 15:34 - 2016-09-27 15:34 - 00002456 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2016-09-27 15:34 - 2016-09-27 15:34 - 00002423 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2016-09-27 15:34 - 2016-09-27 15:34 - 00002420 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2016-09-27 15:34 - 2016-09-27 15:34 - 00002392 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2016-09-27 15:34 - 2016-09-27 15:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
2016-09-27 15:28 - 2016-10-20 10:12 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-09-27 15:28 - 2016-09-27 15:28 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-09-27 15:23 - 2016-10-20 10:11 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-09-27 15:23 - 2016-09-27 15:23 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-09-24 11:44 - 2016-09-25 08:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-09-24 00:36 - 2016-10-19 17:12 - 00000000 ____D C:\Users\Obscura Nox\AppData\Roaming\SimulationCraft
2016-09-24 00:36 - 2016-09-24 00:36 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\SimulationCraft
2016-09-24 00:36 - 2016-09-24 00:36 - 00000000 ____D C:\Users\Obscura Nox\.SimulationCraft
2016-09-24 00:36 - 2016-09-24 00:36 - 00000000 ____D C:\Users\Obscura Nox\.QtWebEngineProcess
2016-09-24 00:27 - 2016-10-19 15:47 - 00000000 ____D C:\Simulationcraft(x64)
2016-09-23 00:04 - 2016-10-20 01:36 - 00003044 _____ C:\Windows\System32\Tasks\MSIAfterburner
2016-09-22 22:39 - 2016-09-17 00:30 - 00134712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-09-22 22:38 - 2016-09-22 22:38 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-09-22 22:38 - 2016-09-09 20:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-09-22 22:38 - 2016-09-09 20:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-09-22 22:38 - 2016-09-09 20:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-09-22 22:38 - 2016-09-09 20:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-09-22 22:37 - 2016-09-20 01:09 - 00223304 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-09-22 22:37 - 2016-09-20 01:09 - 00054728 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 40070200 _____ C:\Windows\system32\nvcompiler.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 35180992 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 34809912 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 28214840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 14118336 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-09-22 22:37 - 2016-09-17 02:46 - 10868288 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 10746872 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 10287344 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 09090952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 08877480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 08684304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 03595832 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 03161024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 01922616 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437290.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 01585088 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437290.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00956864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00943672 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00895032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00688784 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00578056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00493608 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00437696 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00435904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00409296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00388544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00179952 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00157464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00131720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-09-22 22:37 - 2016-09-17 02:46 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2016-09-21 16:00 - 2016-08-05 17:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-09-21 16:00 - 2016-08-05 17:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-10-20 11:09 - 2015-09-01 13:47 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\Battle.net
2016-10-20 10:57 - 2016-03-16 15:02 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-10-20 10:47 - 2015-09-07 18:50 - 00000000 ____D C:\Users\Obscura Nox\AppData\Roaming\Skype
2016-10-20 10:31 - 2016-09-01 18:31 - 00000911 _____ C:\Windows\Tasks\EPSON XP-432 435 Series Update {D3AA24A9-3C8C-49F3-8488-C2EC6F63BD0C}.job
2016-10-20 10:03 - 2015-09-01 12:57 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-10-20 10:01 - 2009-07-14 06:45 - 00021856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-10-20 10:01 - 2009-07-14 06:45 - 00021856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-10-20 09:53 - 2011-04-12 09:43 - 00710276 _____ C:\Windows\system32\perfh007.dat
2016-10-20 09:53 - 2011-04-12 09:43 - 00154606 _____ C:\Windows\system32\perfc007.dat
2016-10-20 09:53 - 2009-07-14 07:13 - 01650838 _____ C:\Windows\system32\PerfStringBackup.INI
2016-10-20 09:53 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-10-20 09:46 - 2015-09-01 13:11 - 00000000 ____D C:\ProgramData\NVIDIA
2016-10-20 09:46 - 2015-09-01 12:41 - 00000828 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2016-10-20 09:46 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-10-19 17:47 - 2015-09-01 12:41 - 00000830 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2016-10-19 16:25 - 2016-03-25 13:07 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\CrashDumps
2016-10-19 09:43 - 2016-05-17 14:15 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2016-10-19 09:43 - 2015-09-01 13:01 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\NVIDIA Corporation
2016-10-19 09:43 - 2015-09-01 13:01 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\NVIDIA
2016-10-18 22:51 - 2015-09-01 13:00 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-10-18 22:51 - 2015-09-01 13:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-10-18 22:51 - 2015-09-01 13:00 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-10-18 22:51 - 2015-09-01 13:00 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-10-18 20:51 - 2015-09-01 21:46 - 00000000 ____D C:\Users\Obscura Nox\AppData\Roaming\TS3Client
2016-10-16 23:24 - 2015-09-01 20:35 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\Deployment
2016-10-12 12:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2016-10-12 11:05 - 2015-09-05 09:16 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-10-12 11:05 - 2015-09-05 09:16 - 00000000 ____D C:\Windows\system32\appraiser
2016-10-12 11:05 - 2009-07-14 06:45 - 00460872 _____ C:\Windows\system32\FNTCACHE.DAT
2016-10-12 11:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-10-12 11:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Dism
2016-10-12 10:51 - 2015-09-05 07:29 - 00000000 ____D C:\Windows\system32\MRT
2016-10-12 10:45 - 2015-09-05 07:29 - 143495576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-10-11 12:57 - 2016-03-16 15:02 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-10-11 12:57 - 2015-09-01 16:15 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-10-11 12:57 - 2015-09-01 16:15 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-11 12:57 - 2015-09-01 16:15 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-10-11 12:57 - 2015-09-01 16:15 - 00000000 ____D C:\Windows\system32\Macromed
2016-10-07 22:40 - 2015-10-22 15:39 - 00000000 ____D C:\ProgramData\Origin
2016-10-07 22:39 - 2015-10-22 15:42 - 00000000 ____D C:\Users\Obscura Nox\AppData\Roaming\Origin
2016-10-07 21:18 - 2016-03-15 20:08 - 00000000 ____D C:\Users\Obscura Nox\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICQ
2016-10-07 21:18 - 2016-03-15 20:08 - 00000000 ____D C:\Users\Obscura Nox\AppData\Roaming\ICQ
2016-10-07 20:34 - 2015-10-22 15:42 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\Origin
2016-10-07 20:30 - 2015-09-01 11:46 - 00000000 ____D C:\Users\Obscura Nox
2016-10-06 22:30 - 2015-09-19 07:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2016-10-06 22:30 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-10-01 14:22 - 2016-07-04 05:49 - 00000000 ____D C:\Windows\Minidump
2016-10-01 09:30 - 2015-09-07 18:50 - 00000000 ____D C:\ProgramData\Skype
2016-09-28 05:57 - 2015-09-01 11:52 - 00121088 _____ C:\Users\Obscura Nox\AppData\Local\GDIPFONTCACHEV1.DAT
2016-09-27 15:28 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-09-25 08:36 - 2015-09-01 13:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-09-22 22:20 - 2016-05-17 14:16 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2016-09-20 01:09 - 2016-07-10 14:16 - 01588688 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-10-02 19:18 - 2015-10-02 19:19 - 0002635 _____ () C:\Users\Obscura Nox\AppData\Roaming\SpeedRunnersLog.txt
2016-03-15 16:37 - 2016-05-17 10:55 - 0004608 _____ () C:\Users\Obscura Nox\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-05-17 21:59 - 2016-05-17 21:59 - 0000099 _____ () C:\Users\Obscura Nox\AppData\Local\fusioncache.dat
2015-10-14 19:32 - 2016-07-03 03:04 - 0007620 _____ () C:\Users\Obscura Nox\AppData\Local\Resmon.ResmonCfg

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-10-15 18:33

==================== Ende von FRST.txt ============================
         

Ich weiß echt nicht mehr weiter. Nicht nur weil Kaspersky und Malwarebytes nichts finden. Nicht nur weil es jetzt schon so oft vorkam. Sondern weil sämtliche anderen Konten davon völlig unbetroffen zu sein scheinen.

Geändert von Obscura Nox (20.10.2016 um 10:37 Uhr)

Alt 20.10.2016, 16:42   #2
deeprybka
/// TB-Ausbilder
/// Anleitungs-Guru
 
Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird. - Standard

Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird.





Mein Name ist Jürgen und ich werde Dir bei Deinem Problem behilflich sein. Zusammen schaffen wir das...
  • Bitte arbeite alle Schritte der Reihe nach ab.
  • Lies die Anleitungen sorgfältig durch bevor Du beginnst. Wenn es Probleme gibt oder Du etwas nicht verstehst, dann stoppe mit Deiner Ausführung und beschreibe mir das Problem.
  • Führe bitte nur Scans durch, zu denen Du von mir aufgefordert wurdest.
  • Bitte kein Crossposting (posten in mehreren Foren).
  • Installiere oder deinstalliere während der Bereinigung keine Software, außer Du wurdest dazu aufgefordert.
  • Speichere alle unsere Tools auf dem Desktop ab. Link: So ladet Ihr unsere Tools richtig
  • Poste die Logfiles direkt in Deinen Thread in Code-Tags.
  • Bedenke, dass wir hier alle während unserer Freizeit tätig sind, wenn du innerhalb von 24 Stunden nichts von mir liest, dann schreibe mir bitte eine PM.

Hinweis:
Ich kann Dir niemals eine Garantie geben, dass wir alle schädlichen Dateien finden werden.
Eine Formatierung ist meist der schnellere und immer der sicherste Weg, aber auch nur bei wirklicher Malware empfehlenswert.
Adware & Co. können wir sehr gut entfernen.
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Du mein clean bekommst.


Los geht's:

Bitte beide Logs posten.

Schritt 1



Bitte starte FRST erneut, markiere auch die checkbox und drücke auf Untersuchen.
Bitte poste mir den Inhalt der beiden Logs die erstellt werden.


Lesestoff
Posten in CODE-Tags: So gehts...
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert uns massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________

Alt 21.10.2016, 20:57   #3
Obscura Nox
 
Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird. - Standard

Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird.



@deeprybka:

Hallo! Sorry für die späte Antwort, und Danke für die Hilfe

Hier die Logsfiles:

FRST:

Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 17-10-2016
durchgeführt von Obscura Nox (Administrator) auf OBSCURANOX-PC (21-10-2016 21:46:21)
Gestartet von A:\Benutzerdaten\Desktop
Geladene Profile: Obscura Nox (Verfügbare Profile: Obscura Nox)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
() C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\ismagent.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\avp.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Hi-Rez Studios) A:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
() C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\avpui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Windows\system\3DG4me.exe
(Microsoft Corporation) C:\Windows\vVX1000.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Valve Corporation) A:\Steam\Steam.exe
(Skype Technologies S.A.) A:\Programme\Phone\Skype.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIPDE.EXE
(Hammer & Chisel, Inc.) C:\Users\Obscura Nox\AppData\Local\Discord\app-0.0.296\Discord.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Java\jre6\bin\jusched.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(Hammer & Chisel, Inc.) C:\Users\Obscura Nox\AppData\Local\Discord\app-0.0.296\Discord.exe
(Hammer & Chisel, Inc.) C:\Users\Obscura Nox\AppData\Local\Discord\app-0.0.296\Discord.exe
(Valve Corporation) A:\Steam\bin\cef\cef.winxp\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13307496 2011-10-17] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-06-15] (NVIDIA Corporation)
HKLM\...\Run: [3DG4me] => C:\Windows\System\3DG4me.exe [151552 2015-09-01] ()
HKLM\...\Run: [VX1000] => C:\Windows\vVX1000.exe [762736 2010-05-20] (Microsoft Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-26] (Intel Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2016-07-07] (Razer Inc.)
HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [119152 2010-05-20] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Java\jre6\bin\jusched.exe [136600 2016-04-14] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\Run: [Steam] => "A:\Steam\steam.exe" -silent
HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\Run: [Skype] => "A:\Programme\Phone\Skype.exe" /minimized /regrun
HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIPDE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\Run: [Discord] => C:\Users\Obscura Nox\AppData\Local\Discord\app-0.0.296\Discord.exe [62471352 2016-08-24] (Hammer & Chisel, Inc.)
HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\MountPoints2: {47ec4f20-c7f5-11e5-9822-bc5ff43a8f47} - E:\pushinst.exe
HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\MountPoints2: {7cd35693-508d-11e5-870f-806e6f6e6963} - D:\ASRSetup.exe
HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\MountPoints2: {97329b75-5097-11e5-af32-bc5ff43a8f47} - "E:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\MountPoints2: {b5cb0ad1-5095-11e5-89d1-806e6f6e6963} - D:\start.exe
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1402792 2016-08-31] (Garmin Ltd. or its subsidiaries)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
Tcpip\..\Interfaces\{FF40EB94-7802-49C5-A8D0-0973239E9DA0}: [DhcpNameServer] 192.168.2.1 192.168.2.1

Internet Explorer:
==================
BHO: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\x64\IEExt\ie_plugin.dll [2015-12-22] (AO Kaspersky Lab)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-10-08] (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (Seiko Epson Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2016-10-08] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-10-08] (Microsoft Corporation)
BHO-x32: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\IEExt\ie_plugin.dll [2015-12-22] (AO Kaspersky Lab)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-10-08] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2016-04-14] (Sun Microsystems, Inc.)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2016-10-08] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-10-08] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2016-04-14] (Sun Microsystems, Inc.)
Toolbar: HKLM - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\x64\IEExt\ie_plugin.dll [2015-12-22] (AO Kaspersky Lab)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (Seiko Epson Corporation)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\IEExt\ie_plugin.dll [2015-12-22] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-20] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-20] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-20] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-20] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Obscura Nox\AppData\Roaming\Mozilla\Firefox\Profiles\yf8e7afh.default [2016-10-21]
FF user.js: detected! => C:\Users\Obscura Nox\AppData\Roaming\Mozilla\Firefox\Profiles\yf8e7afh.default\user.js [2015-09-01]
FF Extension: (NoScript) - C:\Users\Obscura Nox\AppData\Roaming\Mozilla\Firefox\Profiles\yf8e7afh.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-08-09]
FF Extension: (Adblock Plus) - C:\Users\Obscura Nox\AppData\Roaming\Mozilla\Firefox\Profiles\yf8e7afh.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28]
FF Extension: (Java Console) - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} [2016-10-21] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_ACF0E80077C511E59DED005056C00008@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\FFExt\light_plugin_firefox\addon.xpi [2016-08-16]
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2016-09-01] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_185.dll [2016-10-11] ()
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_185.dll [2016-10-11] ()
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-10-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-10-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npNxGameEU.dll [2015-10-10] (Nexon)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-09-17] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-09-17] (NVIDIA Corporation)
FF Plugin-x32: @protectdisc.com/NPMPDRM -> C:\Program Files (x86)\Common Files\mpDRM\Binaries\NPMPDRM.dll [2011-10-11] ( )
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> A:\Programme\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npdeploytk.dll [2016-04-14] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2010-12-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2010-12-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2010-12-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2010-12-15] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2010-12-15] (Apple Inc.)

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi
CHR HKLM-x32\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AVP16.0.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\avp.exe [236928 2015-12-22] (AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1362464 2016-05-20] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3291848 2016-10-08] (Microsoft Corporation)
S3 DAUpdaterSvc; A:\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe [25832 2015-11-28] (BioWare)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [227104 2016-08-17] (EasyAntiCheat Ltd)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2016-05-24] (Futuremark)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6943800 2015-09-08] (GOG.com)
S3 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [928272 2016-08-31] (Garmin Ltd. or its subsidiaries)
U2 HiPatchService; A:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-03-14] (Hi-Rez Studios) [Datei ist nicht signiert]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [121344 2012-02-07] () [Datei ist nicht signiert]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-07] (Intel Corporation)
S3 KAUpdateService; A:\DRM-Freie Spiele\The Book of Unwritten Tales 2\service\KAUpdateService.exe [36864 2015-01-27] () [Datei ist nicht signiert]
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\x64\vssbridge64.exe [152488 2015-12-22] (AO Kaspersky Lab)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [4362656 2016-02-24] (INCA Internet Co., Ltd.) [Datei ist nicht signiert]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-06-15] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-06-15] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-06-15] (NVIDIA Corporation)
S3 Origin Client Service; A:\Origin\OriginClientService.exe [2142728 2016-10-07] (Electronic Arts)
S2 Origin Web Helper Service; A:\Origin\OriginWebHelperService.exe [2209296 2016-10-07] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2016-05-17] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-11-05] ()
S2 SkypeUpdate; A:\Programme\Updater\Updater.exe [324224 2016-07-25] (Skype Technologies)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2011-09-21] (Asmedia Technology)
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [303616 2016-04-04] () [Datei ist nicht signiert]
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-09-11] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [79240 2015-12-01] (AO Kaspersky Lab)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [78200 2015-12-02] (AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [182152 2015-12-11] (AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [236888 2016-08-16] (AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP16.0.1\Bases\klids.sys [182360 2016-10-21] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1001304 2016-08-16] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [50776 2016-04-29] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [52608 2015-11-11] (AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [41648 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [45960 2015-12-07] (AO Kaspersky Lab)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [65208 2015-06-11] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [110424 2016-08-16] (AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [194440 2015-12-03] (AO Kaspersky Lab)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [42696 2016-02-11] ()
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-10-21] (Malwarebytes)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-06-15] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13512 2015-12-07] ()
R3 rzjstk; C:\Windows\System32\DRIVERS\rzjstk.sys [36568 2015-08-13] (Razer Inc)
R3 rzkeypadendpt; C:\Windows\System32\DRIVERS\rzkeypadendpt.sys [44760 2015-08-13] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-09-22] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [130880 2015-12-14] (Razer, Inc.)
R3 USBADVAU; C:\Windows\System32\drivers\cm11264.sys [1308160 2009-11-25] (C-Media Electronics Inc)
S3 cpuz138; \??\C:\Users\OBSCUR~1\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-10-21 11:37 - 2016-10-21 21:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-10-20 11:14 - 2016-10-21 21:46 - 00000000 ____D C:\FRST
2016-10-19 15:47 - 2016-10-19 15:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Simulationcraft(x64)
2016-10-17 15:12 - 2016-10-17 17:24 - 00000000 ____D C:\Users\Obscura Nox\AppData\Roaming\discord
2016-10-17 15:12 - 2016-10-17 15:12 - 00000000 ____D C:\Users\Obscura Nox\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2016-10-17 15:12 - 2016-10-17 15:12 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\SquirrelTemp
2016-10-17 15:12 - 2016-10-17 15:12 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\Discord
2016-10-15 11:59 - 2016-10-15 11:59 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\TempOfficeC2R01B9AB5B-EA74-4975-8F22-419AB221BB60
2016-10-12 10:32 - 2016-09-30 22:13 - 00394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-10-12 10:32 - 2016-09-30 21:28 - 00346312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-10-12 10:32 - 2016-09-30 17:37 - 05548264 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-10-12 10:32 - 2016-09-30 17:20 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-10-12 10:32 - 2016-09-30 17:20 - 03944680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-10-12 10:32 - 2016-09-30 09:55 - 25765376 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-10-12 10:32 - 2016-09-30 08:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-10-12 10:32 - 2016-09-30 08:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-10-12 10:32 - 2016-09-30 08:26 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-10-12 10:32 - 2016-09-30 08:25 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-10-12 10:32 - 2016-09-30 08:25 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-10-12 10:32 - 2016-09-30 08:25 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-10-12 10:32 - 2016-09-30 08:25 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-10-12 10:32 - 2016-09-30 08:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-10-12 10:32 - 2016-09-30 08:18 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-10-12 10:32 - 2016-09-30 08:17 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-10-12 10:32 - 2016-09-30 08:14 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-10-12 10:32 - 2016-09-30 08:13 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-10-12 10:32 - 2016-09-30 08:13 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-10-12 10:32 - 2016-09-30 08:12 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-10-12 10:32 - 2016-09-30 08:12 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-10-12 10:32 - 2016-09-30 08:09 - 06048256 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-10-12 10:32 - 2016-09-30 08:05 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-10-12 10:32 - 2016-09-30 08:02 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-10-12 10:32 - 2016-09-30 07:55 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-10-12 10:32 - 2016-09-30 07:54 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-10-12 10:32 - 2016-09-30 07:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-10-12 10:32 - 2016-09-30 07:51 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-10-12 10:32 - 2016-09-30 07:50 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-10-12 10:32 - 2016-09-30 07:47 - 20306944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-10-12 10:32 - 2016-09-30 07:47 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-10-12 10:32 - 2016-09-30 07:46 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-10-12 10:32 - 2016-09-30 07:42 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-10-12 10:32 - 2016-09-30 07:42 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-10-12 10:32 - 2016-09-30 07:42 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-10-12 10:32 - 2016-09-30 07:42 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-10-12 10:32 - 2016-09-30 07:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-10-12 10:32 - 2016-09-30 07:38 - 02286592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-10-12 10:32 - 2016-09-30 07:36 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-10-12 10:32 - 2016-09-30 07:35 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-10-12 10:32 - 2016-09-30 07:35 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-10-12 10:32 - 2016-09-30 07:33 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-10-12 10:32 - 2016-09-30 07:33 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-10-12 10:32 - 2016-09-30 07:32 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-10-12 10:32 - 2016-09-30 07:32 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-10-12 10:32 - 2016-09-30 07:32 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-10-12 10:32 - 2016-09-30 07:32 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-10-12 10:32 - 2016-09-30 07:31 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-10-12 10:32 - 2016-09-30 07:31 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-10-12 10:32 - 2016-09-30 07:24 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-10-12 10:32 - 2016-09-30 07:21 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-10-12 10:32 - 2016-09-30 07:19 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-10-12 10:32 - 2016-09-30 07:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-10-12 10:32 - 2016-09-30 07:17 - 02920960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-10-12 10:32 - 2016-09-30 07:17 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-10-12 10:32 - 2016-09-30 07:15 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-10-12 10:32 - 2016-09-30 07:14 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-10-12 10:32 - 2016-09-30 07:13 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-10-12 10:32 - 2016-09-30 07:12 - 04608512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-10-12 10:32 - 2016-09-30 07:07 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-10-12 10:32 - 2016-09-30 07:05 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-10-12 10:32 - 2016-09-30 07:05 - 01544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-10-12 10:32 - 2016-09-30 07:05 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-10-12 10:32 - 2016-09-30 07:05 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-10-12 10:32 - 2016-09-30 07:03 - 13653504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-10-12 10:32 - 2016-09-30 06:54 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-10-12 10:32 - 2016-09-30 06:46 - 02444288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-10-12 10:32 - 2016-09-30 06:43 - 01312768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-10-12 10:32 - 2016-09-30 06:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-10-12 10:32 - 2016-09-15 17:30 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-10-12 10:32 - 2016-09-15 17:30 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-10-12 10:32 - 2016-09-15 17:15 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-10-12 10:32 - 2016-09-15 17:15 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2016-10-12 10:32 - 2016-09-12 23:17 - 00077032 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-10-12 10:32 - 2016-09-12 23:13 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-10-12 10:32 - 2016-09-12 23:13 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-10-12 10:32 - 2016-09-12 23:08 - 01465344 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 01226752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-10-12 10:32 - 2016-09-12 23:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-10-12 10:32 - 2016-09-12 22:49 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-10-12 10:32 - 2016-09-12 22:39 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-10-12 10:32 - 2016-09-12 22:37 - 03218944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-10-12 10:32 - 2016-09-12 22:32 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-10-12 10:32 - 2016-09-12 22:32 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-10-12 10:32 - 2016-09-12 22:32 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-10-12 10:32 - 2016-09-12 22:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-10-12 10:32 - 2016-09-12 22:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-10-12 10:32 - 2016-09-12 22:25 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-10-12 10:32 - 2016-09-12 21:08 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-10-12 10:32 - 2016-09-12 20:43 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-10-12 10:32 - 2016-09-12 20:43 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-10-12 10:32 - 2016-09-10 18:19 - 03649536 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-10-12 10:32 - 2016-09-10 17:53 - 02291712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-10-12 10:32 - 2016-09-09 20:29 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-10-12 10:32 - 2016-09-09 20:26 - 00706280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-10-12 10:32 - 2016-09-09 20:23 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 20:01 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-10-12 10:32 - 2016-09-09 20:00 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-10-12 10:32 - 2016-09-09 20:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-10-12 10:32 - 2016-09-09 20:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-10-12 10:32 - 2016-09-09 20:00 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:51 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-10-12 10:32 - 2016-09-09 19:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-10-12 10:32 - 2016-09-09 19:51 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-10-12 10:32 - 2016-09-09 19:48 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-10-12 10:32 - 2016-09-09 19:47 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-10-12 10:32 - 2016-09-09 19:43 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-10-12 10:32 - 2016-09-09 19:38 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-10-12 10:32 - 2016-09-09 19:38 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-10-12 10:32 - 2016-09-09 19:38 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-10-12 10:32 - 2016-09-09 19:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-10-12 10:32 - 2016-09-09 19:37 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 19:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-10-12 10:32 - 2016-09-09 17:54 - 01629184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-10-12 10:32 - 2016-09-09 17:54 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-10-12 10:32 - 2016-09-09 17:54 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-10-12 10:32 - 2016-09-09 17:54 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-10-12 10:32 - 2016-09-09 17:54 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-10-12 10:32 - 2016-09-09 17:54 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-10-12 10:32 - 2016-09-09 17:54 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-10-12 10:32 - 2016-09-08 22:34 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-10-12 10:32 - 2016-09-08 22:34 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2016-10-12 10:32 - 2016-09-08 22:34 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2016-10-12 10:32 - 2016-09-08 22:34 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2016-10-12 10:32 - 2016-09-08 16:55 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-10-12 10:32 - 2016-09-08 16:55 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-10-12 10:32 - 2016-08-29 17:31 - 14183424 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-10-12 10:32 - 2016-08-29 17:31 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-10-12 10:32 - 2016-08-29 17:31 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-10-12 10:32 - 2016-08-29 17:12 - 12880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-10-12 10:32 - 2016-08-29 17:12 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-10-12 10:32 - 2016-08-29 17:12 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-10-12 10:32 - 2016-08-29 17:04 - 03229696 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-10-12 10:32 - 2016-08-29 16:55 - 02972672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-10-12 10:32 - 2016-08-16 22:40 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-10-12 10:32 - 2016-08-16 22:40 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2016-10-12 10:32 - 2016-08-16 22:40 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2016-10-12 10:32 - 2016-08-16 22:40 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2016-10-12 10:32 - 2016-08-16 22:40 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2016-10-12 10:32 - 2016-08-16 22:40 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2016-10-12 10:32 - 2016-08-16 22:40 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2016-10-12 10:32 - 2016-08-12 19:02 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-10-12 10:32 - 2016-08-12 19:02 - 12574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-10-12 10:32 - 2016-08-12 19:02 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-10-12 10:32 - 2016-08-12 19:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-10-12 10:32 - 2016-08-12 19:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-10-12 10:32 - 2016-08-12 18:47 - 12574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-10-12 10:32 - 2016-08-12 18:47 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-10-12 10:32 - 2016-08-12 18:31 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-10-12 10:32 - 2016-08-12 18:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-10-12 10:32 - 2016-08-12 18:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-10-12 10:32 - 2016-08-12 18:26 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2016-10-12 10:32 - 2016-08-06 17:31 - 02023424 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-10-12 10:32 - 2016-08-06 17:31 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2016-10-12 10:32 - 2016-08-06 17:31 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-10-12 10:32 - 2016-08-06 17:31 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-10-12 10:32 - 2016-08-06 17:31 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2016-10-12 10:32 - 2016-08-06 17:31 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2016-10-12 10:32 - 2016-08-06 17:15 - 01178112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2016-10-12 10:32 - 2016-08-06 17:15 - 00249344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2016-10-12 10:32 - 2016-08-06 17:15 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2016-10-12 10:32 - 2016-08-06 17:15 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2016-10-12 10:32 - 2016-08-06 17:15 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll
2016-10-12 10:32 - 2016-08-06 17:01 - 00266752 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2016-10-12 10:32 - 2016-08-06 17:01 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2016-10-12 10:32 - 2016-08-06 16:53 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2016-10-12 10:32 - 2016-08-06 16:53 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2016-10-12 10:32 - 2016-08-06 16:53 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2016-10-12 10:32 - 2016-07-22 16:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-10-12 10:32 - 2016-07-22 16:51 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2016-10-12 10:32 - 2016-06-14 19:21 - 00094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-10-12 10:32 - 2016-06-14 19:16 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 01483264 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2016-10-12 10:32 - 2016-06-14 19:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-10-12 10:32 - 2016-06-14 19:11 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2016-10-12 10:32 - 2016-06-14 17:21 - 03209216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2016-10-12 10:32 - 2016-06-14 17:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-10-12 10:32 - 2016-06-14 17:15 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2016-10-12 10:32 - 2016-06-14 17:15 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-10-12 10:32 - 2016-06-14 17:15 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-10-12 10:32 - 2016-06-14 17:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-10-12 10:32 - 2016-06-14 17:05 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-10-12 10:32 - 2016-06-14 17:00 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2016-10-12 10:32 - 2016-06-14 17:00 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2016-10-07 22:52 - 2016-10-07 22:52 - 00443632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140.dll
2016-10-07 22:52 - 2016-10-07 22:52 - 00394496 _____ (Microsoft Corporation) C:\Windows\system32\vccorlib140.dll
2016-10-07 22:52 - 2016-10-07 22:52 - 00334608 _____ (Microsoft Corporation) C:\Windows\system32\concrt140.dll
2016-10-07 22:52 - 2016-10-07 22:52 - 00089328 _____ (Microsoft Corporation) C:\Windows\system32\vcruntime140.dll
2016-10-07 22:52 - 2016-10-07 22:52 - 00085744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcruntime140.dll
2016-10-07 22:49 - 2016-10-07 22:49 - 00639728 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140.dll
2016-10-07 22:49 - 2016-10-07 22:49 - 00244504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\concrt140.dll
2016-10-07 22:45 - 2016-10-07 22:45 - 00271112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vccorlib140.dll
2016-10-07 21:09 - 2016-10-21 21:42 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-10-07 21:07 - 2016-10-07 21:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2016-10-07 21:07 - 2016-10-07 21:07 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-10-07 21:07 - 2016-10-07 21:07 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2016-10-07 21:07 - 2016-03-10 14:09 - 00064896 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-10-07 21:07 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-10-07 21:07 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-10-07 20:48 - 2016-10-07 20:48 - 00000085 _____ C:\Windows\wininit.ini
2016-10-07 20:30 - 2016-10-07 20:30 - 00000000 ____D C:\Users\Obscura Nox\.Origin
2016-10-07 20:21 - 2016-10-08 14:14 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-10-07 20:21 - 2016-10-07 20:48 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-10-07 20:21 - 2016-10-07 20:21 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2016-10-01 14:22 - 2016-10-01 14:22 - 00262144 _____ C:\Windows\Minidump\100116-14258-01.dmp
2016-10-01 09:30 - 2016-10-01 09:30 - 00000000 ____D C:\Program Files (x86)\Skype
2016-09-27 15:51 - 2016-09-27 15:51 - 00002203 _____ C:\Users\Obscura Nox\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-09-27 15:51 - 2016-09-27 15:51 - 00002124 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-09-27 15:51 - 2016-09-27 15:51 - 00002124 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2016-09-27 15:51 - 2016-09-27 15:51 - 00000000 ___RD C:\Users\Obscura Nox\OneDrive
2016-09-27 15:51 - 2016-09-27 15:51 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-09-27 15:51 - 2016-09-27 15:51 - 00000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2016-09-27 15:34 - 2016-09-27 15:34 - 00002509 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2016-09-27 15:34 - 2016-09-27 15:34 - 00002506 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2016-09-27 15:34 - 2016-09-27 15:34 - 00002502 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2016-09-27 15:34 - 2016-09-27 15:34 - 00002481 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2016-09-27 15:34 - 2016-09-27 15:34 - 00002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
2016-09-27 15:34 - 2016-09-27 15:34 - 00002456 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2016-09-27 15:34 - 2016-09-27 15:34 - 00002423 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2016-09-27 15:34 - 2016-09-27 15:34 - 00002420 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2016-09-27 15:34 - 2016-09-27 15:34 - 00002392 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2016-09-27 15:34 - 2016-09-27 15:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
2016-09-27 15:28 - 2016-10-20 10:12 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-09-27 15:28 - 2016-09-27 15:28 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-09-27 15:23 - 2016-10-20 10:11 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-09-27 15:23 - 2016-09-27 15:23 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-09-24 00:36 - 2016-10-19 17:12 - 00000000 ____D C:\Users\Obscura Nox\AppData\Roaming\SimulationCraft
2016-09-24 00:36 - 2016-09-24 00:36 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\SimulationCraft
2016-09-24 00:36 - 2016-09-24 00:36 - 00000000 ____D C:\Users\Obscura Nox\.SimulationCraft
2016-09-24 00:36 - 2016-09-24 00:36 - 00000000 ____D C:\Users\Obscura Nox\.QtWebEngineProcess
2016-09-24 00:27 - 2016-10-19 15:47 - 00000000 ____D C:\Simulationcraft(x64)
2016-09-23 00:04 - 2016-10-21 17:15 - 00003044 _____ C:\Windows\System32\Tasks\MSIAfterburner
2016-09-22 22:39 - 2016-09-17 00:30 - 00134712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-09-22 22:38 - 2016-09-22 22:38 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-09-22 22:38 - 2016-09-09 20:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-09-22 22:38 - 2016-09-09 20:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-09-22 22:38 - 2016-09-09 20:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-09-22 22:38 - 2016-09-09 20:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-09-22 22:37 - 2016-09-20 01:09 - 00223304 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-09-22 22:37 - 2016-09-20 01:09 - 00054728 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 40070200 _____ C:\Windows\system32\nvcompiler.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 35180992 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 34809912 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 28214840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 14118336 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-09-22 22:37 - 2016-09-17 02:46 - 10868288 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 10746872 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 10287344 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 09090952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 08877480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 08684304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 03595832 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 03161024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 01922616 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437290.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 01585088 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437290.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00956864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00943672 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00895032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00688784 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00578056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00493608 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00437696 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00435904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00409296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00388544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00179952 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00157464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00131720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-09-22 22:37 - 2016-09-17 02:46 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-09-22 22:37 - 2016-09-17 02:46 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2016-09-21 16:00 - 2016-08-05 17:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-09-21 16:00 - 2016-08-05 17:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-10-21 21:42 - 2015-09-07 18:50 - 00000000 ____D C:\Users\Obscura Nox\AppData\Roaming\Skype
2016-10-21 21:42 - 2015-09-01 13:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-10-21 21:42 - 2015-09-01 12:57 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-10-21 21:41 - 2015-09-01 13:11 - 00000000 ____D C:\ProgramData\NVIDIA
2016-10-21 21:41 - 2015-09-01 12:41 - 00000828 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2016-10-21 21:41 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-10-21 17:14 - 2015-09-01 13:47 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\Battle.net
2016-10-21 16:57 - 2016-03-16 15:02 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-10-21 16:31 - 2016-09-01 18:31 - 00000911 _____ C:\Windows\Tasks\EPSON XP-432 435 Series Update {D3AA24A9-3C8C-49F3-8488-C2EC6F63BD0C}.job
2016-10-21 10:01 - 2009-07-14 06:45 - 00021856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-10-21 10:01 - 2009-07-14 06:45 - 00021856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-10-21 09:57 - 2011-04-12 09:43 - 00710276 _____ C:\Windows\system32\perfh007.dat
2016-10-21 09:57 - 2011-04-12 09:43 - 00154606 _____ C:\Windows\system32\perfc007.dat
2016-10-21 09:57 - 2009-07-14 07:13 - 01650838 _____ C:\Windows\system32\PerfStringBackup.INI
2016-10-21 09:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-10-20 17:47 - 2015-09-01 12:41 - 00000830 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2016-10-19 16:25 - 2016-03-25 13:07 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\CrashDumps
2016-10-19 09:43 - 2016-05-17 14:15 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2016-10-19 09:43 - 2015-09-01 13:01 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\NVIDIA Corporation
2016-10-19 09:43 - 2015-09-01 13:01 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\NVIDIA
2016-10-18 22:51 - 2015-09-01 13:00 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-10-18 22:51 - 2015-09-01 13:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-10-18 22:51 - 2015-09-01 13:00 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-10-18 22:51 - 2015-09-01 13:00 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-10-18 20:51 - 2015-09-01 21:46 - 00000000 ____D C:\Users\Obscura Nox\AppData\Roaming\TS3Client
2016-10-16 23:24 - 2015-09-01 20:35 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\Deployment
2016-10-12 12:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2016-10-12 11:05 - 2015-09-05 09:16 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-10-12 11:05 - 2015-09-05 09:16 - 00000000 ____D C:\Windows\system32\appraiser
2016-10-12 11:05 - 2009-07-14 06:45 - 00460872 _____ C:\Windows\system32\FNTCACHE.DAT
2016-10-12 11:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-10-12 11:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Dism
2016-10-12 10:51 - 2015-09-05 07:29 - 00000000 ____D C:\Windows\system32\MRT
2016-10-12 10:45 - 2015-09-05 07:29 - 143495576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-10-11 12:57 - 2016-03-16 15:02 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-10-11 12:57 - 2015-09-01 16:15 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-10-11 12:57 - 2015-09-01 16:15 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-11 12:57 - 2015-09-01 16:15 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-10-11 12:57 - 2015-09-01 16:15 - 00000000 ____D C:\Windows\system32\Macromed
2016-10-07 22:40 - 2015-10-22 15:39 - 00000000 ____D C:\ProgramData\Origin
2016-10-07 22:39 - 2015-10-22 15:42 - 00000000 ____D C:\Users\Obscura Nox\AppData\Roaming\Origin
2016-10-07 21:18 - 2016-03-15 20:08 - 00000000 ____D C:\Users\Obscura Nox\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICQ
2016-10-07 21:18 - 2016-03-15 20:08 - 00000000 ____D C:\Users\Obscura Nox\AppData\Roaming\ICQ
2016-10-07 20:34 - 2015-10-22 15:42 - 00000000 ____D C:\Users\Obscura Nox\AppData\Local\Origin
2016-10-07 20:30 - 2015-09-01 11:46 - 00000000 ____D C:\Users\Obscura Nox
2016-10-06 22:30 - 2015-09-19 07:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2016-10-06 22:30 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-10-01 14:22 - 2016-07-04 05:49 - 00000000 ____D C:\Windows\Minidump
2016-10-01 09:30 - 2015-09-07 18:50 - 00000000 ____D C:\ProgramData\Skype
2016-09-28 05:57 - 2015-09-01 11:52 - 00121088 _____ C:\Users\Obscura Nox\AppData\Local\GDIPFONTCACHEV1.DAT
2016-09-27 15:28 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-09-22 22:20 - 2016-05-17 14:16 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-10-02 19:18 - 2015-10-02 19:19 - 0002635 _____ () C:\Users\Obscura Nox\AppData\Roaming\SpeedRunnersLog.txt
2016-03-15 16:37 - 2016-05-17 10:55 - 0004608 _____ () C:\Users\Obscura Nox\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-05-17 21:59 - 2016-05-17 21:59 - 0000099 _____ () C:\Users\Obscura Nox\AppData\Local\fusioncache.dat
2015-10-14 19:32 - 2016-07-03 03:04 - 0007620 _____ () C:\Users\Obscura Nox\AppData\Local\Resmon.ResmonCfg

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-10-15 18:33

==================== Ende von FRST.txt ============================
         
__________________

Alt 21.10.2016, 21:00   #4
Obscura Nox
 
Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird. - Standard

Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird.



Additional (Hätte das Zeichenmaximum gesprengt, daher 2 Beiträge)

Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 17-10-2016
durchgeführt von Obscura Nox (21-10-2016 21:46:36)
Gestartet von A:\Benutzerdaten\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2015-09-01 09:46:40)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2328785784-3451381423-4003841377-500 - Administrator - Disabled)
ASPNET (S-1-5-21-2328785784-3451381423-4003841377-1004 - Limited - Enabled)
Gast (S-1-5-21-2328785784-3451381423-4003841377-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2328785784-3451381423-4003841377-1002 - Limited - Enabled)
Obscura Nox (S-1-5-21-2328785784-3451381423-4003841377-1000 - Administrator - Enabled) => C:\Users\Obscura Nox

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Kaspersky Total Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AS: Kaspersky Total Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Total Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Abyss Odyssey (HKLM-x32\...\Steam App 255070) (Version:  - ACE Team)
Adobe Flash Player 23 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 23.0.0.185 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.185 - Adobe Systems Incorporated)
Age of Wonders III - Dragon's Throne Scenario (HKLM-x32\...\Age of Wonders III: Dragon's Throne Scenario_is1) (Version: 2.6.0.21 - GOG.com)
Age of Wonders III (HKLM-x32\...\1207660893_is1) (Version: 2.6.0.21 - GOG.com)
AION Free-to-Play (HKLM\...\Steam App 261430) (Version:  - NCSOFT)
Alan Wake (HKLM\...\Steam App 108710) (Version:  - Remedy Entertainment)
Alice: Madness Returns (HKLM\...\Steam App 19680) (Version:  - Spicy Horse Games)
Alien: Isolation (HKLM-x32\...\Steam App 214490) (Version:  - Creative Assembly)
Aliens versus Predator Classic 2000 (HKLM-x32\...\Steam App 3730) (Version:  - Rebellion)
Aliens: Colonial Marines (HKLM\...\Steam App 49540) (Version:  - Gearbox Software)
Amazon Music (HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\Amazon Amazon Music) (Version: 4.3.0.1330 - Amazon Services LLC)
Amnesia: The Dark Descent (HKLM-x32\...\Steam App 57300) (Version:  - Frictional Games)
Angry Video Game Nerd Adventures (HKLM-x32\...\Steam App 237740) (Version:  - FreakZone Games)
Anna - Extended Edition (HKLM-x32\...\Steam App 217690) (Version:  - Dreampainters)
Ansel (Version: 372.90 - NVIDIA Corporation) Hidden
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Aquamarin Haushaltsbuch 2.9.2 b (HKLM-x32\...\{1E517C0C-8542-4F8C-DA23-98BCA13CD1F4}_is1) (Version:  - makasy.com)
AquaNox (HKLM-x32\...\Steam App 39630) (Version:  - Nordic Games)
AquaNox 2: Revelation (HKLM-x32\...\Steam App 39640) (Version:  - Nordic Games)
ArcaniA (HKLM-x32\...\Steam App 39690) (Version:  - Spellbound Studios)
ArcaniA: Fall of Setarrif (HKLM\...\Steam App 65610) (Version:  - Spellbound Studios)
ArcheAge (HKLM-x32\...\Steam App 304030) (Version:  - XLGAMES)
Archeblade (HKLM\...\Steam App 207230) (Version:  - CodeBrush Games)
ARK: Survival Of The Fittest (HKLM\...\Steam App 407530) (Version:  - Studio Wildcard)
Arma Tactics (HKLM-x32\...\Steam App 224860) (Version:  - Bohemia Interactive)
Arma: Cold War Assault (HKLM-x32\...\Steam App 65790) (Version:  - Bohemia Interactive)
Arx Fatalis (HKLM-x32\...\Steam App 1700) (Version:  - Arkane Studios)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.1.000 - Asmedia Technology)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
Audiosurf (HKLM-x32\...\Steam App 12900) (Version:  - Dylan Fitterer)
Axiom Verge (HKLM\...\Steam App 332200) (Version:  - Thomas Happ Games LLC)
Baldur's Gate -  The Original Saga (German) (HKLM-x32\...\GOGPACKBALDURSGATE1_is1) (Version: 2.0.0.20 - GOG.com)
Baldur's Gate - Enhanced Edition (HKLM-x32\...\1207666353_is1) (Version: 2.2.0.4 - GOG.com)
Baldur's Gate II - Enhanced Edition (HKLM-x32\...\1207666373_is1) (Version: 2.2.0.4 - GOG.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - )
Banished (HKLM-x32\...\1207660783_is1) (Version: 2.3.0.7 - GOG.com)
Bastion (HKLM-x32\...\Steam App 107100) (Version:  - Supergiant Games)
Batman: Arkham Asylum GOTY Edition (HKLM-x32\...\Steam App 35140) (Version:  - Rocksteady Studios)
Batman: Arkham City GOTY (HKLM-x32\...\Steam App 200260) (Version:  - Rocksteady Studios)
Batmanâ„¢: Arkham Origins (HKLM-x32\...\Steam App 209000) (Version:  - WB Games Montreal)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
BattleBlock Theater (HKLM-x32\...\Steam App 238460) (Version:  - The Behemoth)
Battlefield 3â„¢ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield: Bad Company 2 (HKLM-x32\...\Steam App 24960) (Version:  - DICE)
Beyond Divinity (HKLM-x32\...\GOGPACKBEYONDDIVINITY_is1) (Version: 2.0.0.9 - GOG.com)
Beyond Good & Evil (HKLM-x32\...\Steam App 15130) (Version:  - Ubisoft)
Bionic Commando (HKLM-x32\...\Steam App 21670) (Version:  - Capcom)
Bionic Commando Rearmed (HKLM-x32\...\Steam App 21680) (Version:  - Capcom)
BioShock (HKLM-x32\...\Steam App 7670) (Version:  - 2K Boston)
BioShock 2 (HKLM-x32\...\Steam App 8850) (Version:  - 2K Marin)
BioShock Infinite (HKLM-x32\...\Steam App 8870) (Version:  - Irrational Games)
Black Mirror (HKLM-x32\...\Steam App 292930) (Version:  - Future Games)
Blackguards (HKLM-x32\...\Blackguards_is1) (Version: 1.5 - Daedalic Entertainment GmbH)
Blackguards 2 (HKLM-x32\...\Blackguards2_is1) (Version: 2.3 - Daedalic Entertainment GmbH)
Blade & Soul (HKLM-x32\...\InstallShield_{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.260 - NC Interactive, LLC)
Blade & Soul (x32 Version: 1.0.63.260 - NC Interactive, LLC) Hidden
BlazBlue -  Calamity Trigger (HKLM-x32\...\GOGPACKBLAZBLUECT_is1) (Version: 2.0.0.3 - GOG.com)
Blood Bowl: Legendary Edition (HKLM-x32\...\Steam App 58520) (Version:  - Cyanide Studios)
Blood Knights (HKLM-x32\...\Steam App 258220) (Version:  - Deck 13)
Blood Omen 2: Legacy of Kain (HKLM-x32\...\Steam App 242960) (Version:  - )
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
Braid (HKLM-x32\...\Steam App 26800) (Version:  - Number None)
Brütal Legend (HKLM-x32\...\Steam App 225260) (Version:  - Double Fine Productions)
Bulletstorm (HKLM-x32\...\Steam App 99810) (Version:  - People Can Fly)
Burnout Paradise: The Ultimate Box (HKLM\...\Steam App 24740) (Version:  - Criterion Games)
CABAL Online (HKLM\...\Steam App 253490) (Version:  - ESTsoft Corp.)
Call of Cthulhu: Dark Corners of the Earth (HKLM\...\Steam App 22340) (Version:  - Headfirst Productions)
Call of Duty: Black Ops - Multiplayer (HKLM-x32\...\Steam App 42710) (Version:  - Treyarch)
Call of Duty: Black Ops (HKLM-x32\...\Steam App 42700) (Version:  - Treyarch)
Call of Duty: Modern Warfare 2 - Multiplayer (HKLM\...\Steam App 10190) (Version:  - Infinity Ward)
Call of Duty: Modern Warfare 2 (HKLM\...\Steam App 10180) (Version:  - Infinity Ward)
Call of Juarez Gunslinger (HKLM-x32\...\Steam App 204450) (Version:  - Techland)
Castle Crashers (HKLM-x32\...\Steam App 204360) (Version:  - The Behemoth)
Castle In The Darkness (HKLM-x32\...\Steam App 262960) (Version:  - Matt Kap)
Castlevania: Lords of Shadow 2 (HKLM-x32\...\Steam App 239250) (Version:  - MercurySteam)
Cave Story+ (HKLM-x32\...\Steam App 200900) (Version:  - Nicalis)
CCleaner (HKLM\...\CCleaner) (Version: 5.20 - Piriform)
Chaos on Deponia (HKLM\...\Steam App 220740) (Version:  - Daedalic Entertainment)
Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version:  - Torn Banner Studios)
Cities XL Platinum (HKLM\...\Steam App 231140) (Version:  - Focus Home Interactive)
Coin Crypt (HKLM-x32\...\Steam App 264690) (Version:  - Dumb and Fat Games)
Combined Community Codec Pack 64bit 2015-10-18 (HKLM\...\Combined Community Codec Pack 64bit_is1) (Version: 2015.10.19.0 - CCCP Project)
Company of Heroes (New Steam Version) (HKLM\...\Steam App 228200) (Version:  - Relic)
Company of Heroes 2 (HKLM\...\Steam App 231430) (Version:  - Relic Entertainment)
Company of Heroes: Opposing Fronts (HKLM\...\Steam App 9340) (Version:  - Relic Entertainment)
Company of Heroes: Tales of Valor (HKLM\...\Steam App 20540) (Version:  - Relic Entertainment)
Confrontation (HKLM-x32\...\Steam App 204560) (Version:  - Cyanide)
Contagion (HKLM-x32\...\Steam App 238430) (Version:  - Monochrome, Inc)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Counter-Strike: Source (HKLM\...\Steam App 240) (Version:  - Valve)
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
Crazy Taxi (HKLM\...\Steam App 71230) (Version:  - SEGA)
Cryostasis (HKLM\...\Steam App 7850) (Version:  - Action Forms)
Crypt of the Necrodancer (HKLM-x32\...\1432297044_is1) (Version: 2.1.0.2 - GOG.com)
Crysis (HKLM\...\Steam App 17300) (Version:  - Crytek)
Crysis 2 Maximum Edition (HKLM\...\Steam App 108800) (Version:  - Crytek Studios)
Curse Client (HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dark Fall: Lost Souls (HKLM-x32\...\Steam App 46750) (Version:  - Darkling Room)
Dark Messiah of Might & Magic Multi-Player (HKLM-x32\...\Steam App 2130) (Version:  - Arkane Studios)
Dark Messiah of Might & Magic Single Player (HKLM-x32\...\Steam App 2100) (Version:  - Arkane Studios)
DARK SOULS III (HKLM\...\Steam App 374320) (Version:  - FromSoftware, Inc.)
Dark Souls: Prepare to Die Edition (HKLM-x32\...\Steam App 211420) (Version:  - FromSoftware)
DARK SOULSâ„¢ II (HKLM-x32\...\Steam App 236430) (Version:  - FromSoftware, Inc)
Dark Void (HKLM-x32\...\Steam App 45710) (Version:  - Airtight Games)
Darkest Dungeon (HKLM-x32\...\1450711444_is1) (Version: 2.16.0.20 - GOG.com)
Darksiders (HKLM\...\Steam App 50620) (Version:  - Vigil Games)
Darksiders II (HKLM\...\Steam App 50650) (Version:  - Vigil Games)
Day of Defeat: Source (HKLM\...\Steam App 300) (Version:  - Valve)
DC Universe Online (HKLM-x32\...\Steam App 24200) (Version:  - Daybreak Games)
DC Universe Online Live (HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\DG0-DC Universe Online Live) (Version:  - Sony Online Entertainment)
Dead Island (HKLM-x32\...\Steam App 91310) (Version:  - Techland)
Dead Island Riptide (HKLM\...\Steam App 216250) (Version:  - Techland)
Dead Space (HKLM-x32\...\Steam App 17470) (Version:  - EA Redwood Shores)
Dead Spaceâ„¢ 3 (HKLM-x32\...\{D4329609-4102-4F8C-B83F-7FE024EEA314}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Deadlight (HKLM-x32\...\Steam App 211400) (Version:  - Tequila Works, S.L.)
Dementium II HD (HKLM-x32\...\Steam App 217100) (Version:  - Memetic Games)
Deus Ex: Game of the Year Edition (HKLM-x32\...\Steam App 6910) (Version:  - Ion Storm)
Deus Ex: Human Revolution - The Missing Link (HKLM-x32\...\Steam App 201280) (Version:  - Eidos Montreal)
Deus Ex: Human Revolution (HKLM-x32\...\Steam App 28050) (Version:  - Eidos Montreal)
Deus Ex: Invisible War (HKLM\...\Steam App 6920) (Version:  - Ion Storm)
Devil May Cry 3: Special Edition (HKLM\...\Steam App 6550) (Version:  - CAPCOM Co., Ltd.)
Devil May Cry 4 (HKLM\...\Steam App 45700) (Version:  - Capcom)
Diablo II (HKLM-x32\...\Diablo II) (Version: 0.0.0.0 - Blizzard Entertainment)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Discord (HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\Discord) (Version: 0.0.296 - Hammer & Chisel, Inc.)
Disgaea PC (HKLM\...\Steam App 405900) (Version:  - Nippon Ichi Software, Inc.)
Dishonored (HKLM-x32\...\Steam App 205100) (Version: 1.0 - Bethesda Softworks)
Divine Divinity (HKLM-x32\...\GOGPACKDIVINEDIVINITY_is1) (Version: 2.0.0.21 - GOG.com)
Divinity - Dragon Commander (HKLM-x32\...\1207659263_is1) (Version: 2.1.0.13 - GOG.com)
Divinity 2 Developer's Cut (HKLM-x32\...\GOGPACKDIVINITY2DCEN_is1) (Version: 2.0.0.11 - GOG.com)
Divinity: Original Sin (HKLM-x32\...\Steam App 230230) (Version:  - Larian Studios)
Divinity: Original Sin Enhanced Edition (HKLM\...\Steam App 373420) (Version:  - Larian Studios)
DOOM (HKLM\...\Steam App 379720) (Version:  - id Software)
DOOM 3: BFG Edition (HKLM-x32\...\Steam App 208200) (Version:  - id Software)
Dragon Age: Origins - Ultimate Edition (HKLM-x32\...\Steam App 47810) (Version:  - BioWare)
Dragon Ageâ„¢ II (HKLM-x32\...\{E1EB9F56-AFE2-4204-B28F-AD8DA793B9F4}) (Version: 1.04.8524.0 - Electronic Arts)
Dragon Ageâ„¢: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.12 - Electronic Arts)
DRAGON BALL XENOVERSE (HKLM\...\Steam App 323470) (Version:  - DIMPS)
Dragon's Dogma: Dark Arisen (HKLM-x32\...\Steam App 367500) (Version:  - Capcom)
Dragon's Prophet (EU) (HKLM\...\Steam App 259020) (Version:  - Runewaker)
Drakensang (HKLM\...\Steam App 12640) (Version:  - Radon Labs)
DuckTales Remastered (HKLM-x32\...\Steam App 237630) (Version:  - WayForward)
Duke Nukem 3D (HKLM-x32\...\GOGPACKDUKE3D_is1) (Version: 2.0.0.85 - GOG.com)
Duke3D (HKLM\...\{b5f456c9-720b-410c-8b24-59e92772053b}.sdb) (Version:  - )
Dungeon Fighter Online (HKLM\...\Steam App 495910) (Version:  - Neople)
Dungeon Keeper Gold (HKLM-x32\...\1207658934_is1) (Version: 2.1.0.7 - GOG.com)
Dungeon Siege (HKLM-x32\...\Steam App 39190) (Version:  - Gas Powered Games)
Dungeon Siege 2 (HKLM-x32\...\Steam App 39200) (Version:  - Gas Powered Games)
Dungeon Siege III (HKLM-x32\...\Steam App 39160) (Version:  - Obsidian Entertainment)
Dungeons & Dragons: Chronicles of Mystara Demo (HKLM\...\Steam App 231890) (Version:  - Iron Galaxy Studios)
Dust: An Elysian Tail (HKLM\...\Steam App 236090) (Version:  - Humble Hearts LLC)
Dwarfs!? (HKLM-x32\...\Steam App 35480) (Version:  - Power of 2)
Dying Light (HKLM-x32\...\1448452156_is1) (Version: 2.0.0.8 - GOG.com)
DYNASTY WARRIORS 8: Xtreme Legends Complete Edition (HKLM-x32\...\Steam App 278080) (Version:  - KOEI TECMO GAMES CO., LTD.)
Easy Photo Scan (HKLM-x32\...\{2A85E1E9-3F89-4972-A3B2-A209D8DEECE1}) (Version: 1.00.0008 - Seiko Epson Corporation)
Edna & Harvey: The Breakout (HKLM\...\Steam App 255320) (Version:  - Daedalic Entertainment)
Edna and Harvey -  Harvey's New Eyes (HKLM-x32\...\GOGPACKEDNAANDHARVEYHNE_is1) (Version: 2.0.0.3 - GOG.com)
Eets Munchies (HKLM-x32\...\Steam App 214550) (Version:  - Klei Entertainment)
Elevated Installer (x32 Version: 4.1.27.0 - Garmin Ltd or its subsidiaries) Hidden
Enclave (HKLM\...\Steam App 253980) (Version:  - Starbreeze)
Endless Space (HKLM-x32\...\Steam App 208140) (Version:  - AMPLITUDE Studios)
ENSLAVEDâ„¢: Odyssey to the Westâ„¢ Premium Edition (HKLM\...\Steam App 245280) (Version:  - Ninja Theory)
Epson Easy Photo Print 2 (HKLM-x32\...\{07AA1C7F-E8CA-4FDC-B975-BC9EBC22B6DE}) (Version: 2.7.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{9F205E94-9E42-4486-A92A-DF3F6CB85444}) (Version: 3.10.0061 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
Epson Software Updater (HKLM-x32\...\{6DBD132B-7F42-4594-BBE7-0BB677EB2926}) (Version: 4.4.2 - SEIKO EPSON CORPORATION)
EPSON XP-432 435 Series Printer Uninstall (HKLM\...\EPSON XP-432 435 Series) (Version:  - Seiko Epson Corporation)
EPSON-Handbücher (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.52.0.0 - SEIKO EPSON CORPORATION)
EpsonNet Print (HKLM\...\{0CB4EF8E-EE5B-49F6-8376-A702C222D6DA}) (Version: 3.1.3.0 - SEIKO EPSON Corporation)
F.E.A.R. (HKLM-x32\...\Steam App 21090) (Version:  - Monolith Productions, Inc.)
F.E.A.R. 2: Project Origin (HKLM-x32\...\Steam App 16450) (Version:  - Monolith)
F.E.A.R. 3 (HKLM-x32\...\Steam App 21100) (Version:  - Day 1 Studios)
F.E.A.R.: Extraction Point (HKLM-x32\...\Steam App 21110) (Version:  - Monolith )
F.E.A.R.: Perseus Mandate (HKLM-x32\...\Steam App 21120) (Version:  - Monolith )
Fable Anniversary (HKLM\...\Steam App 288470) (Version:  - Lionhead Studios)
Fallen Enchantress: Legendary Heroes (HKLM-x32\...\Steam App 228260) (Version:  - Stardock Entertainment)
Fallout (HKLM-x32\...\1_is1) (Version: 2.1.0.18 - GOG.com)
Fallout 2 (HKLM-x32\...\2_is1) (Version: 2.1.0.17 - GOG.com)
Fallout Mod Manager 0.13.21 (HKLM-x32\...\Generic Mod Manager_is1) (Version:  - Q, Timeslip)
Fallout Tactics (HKLM-x32\...\3_is1) (Version: 2.1.0.12 - GOG.com)
Fallout: New Vegas (HKLM-x32\...\Steam App 22380) (Version:  - Obsidian Entertainment)
Far Cry 3 (HKLM-x32\...\Uplay Install 46) (Version:  - Ubisoft)
Far Cry® 3 Blood Dragon (HKLM-x32\...\Steam App 233270) (Version:  - Ubisoft Montreal)
FINAL FANTASY XIV - A Realm Reborn (HKLM-x32\...\{2B41E132-07DF-4925-A3D3-F2D1765CCDFE}) (Version: 1.0.0000 - SQUARE ENIX CO., LTD.)
Fistful of Frags (HKLM-x32\...\Steam App 265630) (Version:  - Fistful of Frags Team)
FORCED (HKLM-x32\...\Steam App 249990) (Version:  - BetaDwarf)
Forsaken World  (HKLM\...\Steam App 36620) (Version:  - Perfect World Entertainment)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Freedom Planet (HKLM-x32\...\Steam App 248310) (Version:  - GalaxyTrail)
FTL -  Advanced Edition (HKLM-x32\...\GOGPACKFTL_is1) (Version: 2.3.0.13 - GOG.com)
Futuremark SystemInfo (HKLM-x32\...\{4DB65855-2E10-47A2-AC3B-F8F826840125}) (Version: 4.46.595.0 - Futuremark)
Gabriel Knight - Sins of the Fathers 20th Anniversary Edition (HKLM-x32\...\1207666433_is1) (Version: 2.2.0.4 - GOG.com)
Game of Thrones  (HKLM-x32\...\Steam App 208730) (Version:  - Cyanide Studios)
Gameforge Live 2.0.10 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.10 - Gameforge)
GameSpy Comrade (HKLM-x32\...\{5F4C776F-8CBD-4C4F-892F-B568ABDD70C8}) (Version: 1.5.0.156 - GameSpy)
Garmin BaseCamp (HKLM-x32\...\{23A4DBD1-D847-4957-995D-8B1CC527E2E2}) (Version: 4.6.2.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{5b45c228-dcb1-4a0b-a9de-3b4b683ef15d}) (Version: 4.1.27.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 4.1.27.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 4.1.27.0 - Garmin Ltd or its subsidiaries) Hidden
Garry's Mod (HKLM\...\Steam App 4000) (Version:  - Facepunch Studios)
Gauntletâ„¢  (HKLM-x32\...\Steam App 258970) (Version:  - Arrowhead Game Studios)
Giana Sisters: Twisted Dreams (HKLM\...\Steam App 223220) (Version:  - Black Forest Games)
God Mode (HKLM-x32\...\Steam App 227480) (Version:  - Old School Games)
GOG.com Planescape Torment (HKLM\...\{8f376ce2-c213-4a6c-a329-0b2a7eb2bad8}.sdb) (Version:  - )
Gone Home (HKLM\...\Steam App 232430) (Version:  - The Fullbright Company)
Goodbye Deponia (HKLM-x32\...\Deponia 3) (Version: 1.0 - Daedalic Entertainment)
Gotham City Impostors: Free To Play (HKLM\...\Steam App 206210) (Version:  - Monolith Productions, Inc.)
Gothic (HKLM-x32\...\Steam App 65540) (Version:  - Piranha – Bytes)
Gothic 3 (HKLM-x32\...\Steam App 39500) (Version:  - Piranha – Bytes)
Gothic 3 Forsaken Gods Enhanced Edition (HKLM\...\Steam App 65600) (Version:  - Trine Studios)
Gothic II: Gold Edition (HKLM-x32\...\Steam App 39510) (Version:  - Piranha – Bytes)
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version:  - Rockstar North)
Grand Theft Auto: Episodes from Liberty City (HKLM-x32\...\Steam App 12220) (Version:  - Rockstar North / Toronto)
Grand Theft Auto: San Andreas (HKLM-x32\...\Steam App 12120) (Version:  - Rockstar Games)
Grim Dawn (HKLM-x32\...\1449651388_is1) (Version: 2.0.0.5 - GOG.com)
Guacamelee! Gold Edition (HKLM-x32\...\Steam App 214770) (Version:  - DrinkBox Studios)
Guardians of Middle-earth (HKLM-x32\...\Steam App 111900) (Version:  - Zombie Studios)
Half-Life 2: Deathmatch (HKLM-x32\...\Steam App 320) (Version:  - Valve)
Half-Life 2: Lost Coast (HKLM\...\Steam App 340) (Version:  - Valve)
Hand of Fate (HKLM-x32\...\1424100574_is1) (Version: 2.5.0.9 - GOG.com)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Hitman: Absolution (HKLM-x32\...\Steam App 203140) (Version:  - IO Interactive)
Hitman: Sniper Challenge (HKLM\...\Steam App 205930) (Version:  - IO Interactive)
Hunted: The Demon's Forge (HKLM\...\Steam App 22450) (Version:  - inXile Entertainment)
I Have No Mouth, and I Must Scream (HKLM-x32\...\GOGPACKIHAVENOMOUTH_is1) (Version: 2.0.0.7 - GOG.com)
In Verbis Virtus (HKLM-x32\...\Steam App 242840) (Version:  - Indomitus Games)
Injustice: Gods Among Us Ultimate Edition (HKLM-x32\...\Steam App 242700) (Version:  - NetherRealm Studios)
Inquisitor (HKLM-x32\...\GOGPACKINQUISITOR_is1) (Version: 2.2.0.15 - GOG.com)
Insurgency (HKLM-x32\...\Steam App 222880) (Version:  - New World Interactive)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version:  - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2618 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.3.214 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
IrfanView 64 (remove only) (HKLM\...\IrfanView64) (Version: 4.41 - Irfan Skiljan)
Jade Empire: Special Edition (HKLM-x32\...\Steam App 7110) (Version:  - BioWare Corporation)
Java(TM) 6 Update 11 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216011FF}) (Version: 6.0.110 - Sun Microsystems, Inc.)
Just Cause 2 (HKLM-x32\...\Steam App 8190) (Version:  - Avalanche Studios)
Just Cause 2: Multiplayer Mod (HKLM\...\Steam App 259080) (Version:  - Avalanche Studios)
Kalonline (HKLM\...\Steam App 475100) (Version:  - Inixsoft)
Kaspersky Total Security (HKLM-x32\...\InstallWIX_{F575F386-57EF-4943-B003-A13F13B05EEB}) (Version: 16.0.1.445 - Kaspersky Lab)
Kaspersky Total Security (x32 Version: 16.0.1.445 - Kaspersky Lab) Hidden
KHOLAT (HKLM\...\Steam App 343710) (Version:  - IMGN.PRO)
Killer is Dead (HKLM-x32\...\Steam App 261110) (Version:  - KADOKAWA GAMES / GRASSHOPPER MANUFACTURE)
Killing Floor (HKLM-x32\...\Steam App 1250) (Version:  - Tripwire Interactive)
Kingdoms of Amalur: Reckoningâ„¢ (HKLM-x32\...\Steam App 102500) (Version:  - Big Huge Games)
KnightShift (Second Edition) (HKLM-x32\...\KnightShift (Second Edition)) (Version: 1.30 - ZUXXEZ Entertainment AG)
L.A. Noire (HKLM-x32\...\Steam App 110800) (Version:  - Team Bondi)
Legacy of Kain: Defiance (HKLM\...\Steam App 224300) (Version:  - Crystal Dynamics)
Legacy of Kain: Soul Reaver (HKLM\...\Steam App 224920) (Version:  - Crystal Dynamics)
Legacy of Kain: Soul Reaver 2 (HKLM\...\Steam App 224940) (Version:  - Crystal Dynamics)
LEGEND - Hand of God (HKLM-x32\...\{1ED89294-E767-49D1-81BB-4BFA76F42E5A}_is1) (Version: LEGEND - Anaconda)
Legend of Grimrock (HKLM\...\Steam App 207170) (Version:  - Almost Human Games)
Legend of Grimrock II (HKLM-x32\...\1207666193_is1) (Version: 2.1.0.5 - GOG.com)
LEGO® The Lord of the Rings™ (HKLM\...\Steam App 214510) (Version:  - Traveller's Tales)
Lichdom: Battlemage (HKLM-x32\...\Steam App 261760) (Version:  - Xaviant)
Life Is Strangeâ„¢ (HKLM\...\Steam App 319630) (Version:  - DONTNOD Entertainment)
LIMBO (HKLM\...\Steam App 48000) (Version:  - Playdead)
LOOT version 0.9.1 (HKLM-x32\...\{BF634210-A0D4-443F-A657-0DCE38040374}_is1) (Version: 0.9.1 - LOOT Team)
Lords Of The Fallen (HKLM-x32\...\Steam App 265300) (Version:  - CI Games)
Lost Planet 3 (HKLM-x32\...\Steam App 226720) (Version:  - Spark Unlimited)
Magic: The Gathering - Duels of the Planeswalkers 2013 (HKLM\...\Steam App 97330) (Version:  - Stainless Games)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Mark of the Ninja (HKLM\...\Steam App 214560) (Version:  - Klei Entertainment)
Marvel Heroes 2015 (HKLM-x32\...\Steam App 226320) (Version:  - Gazillion Entertainment)
Mass Effectâ„¢ (HKLM-x32\...\{44A570EE-FD93-4086-8997-2C38DFDE0019}) (Version: 1.2.20608.0 - Electronic Arts)
Mass Effectâ„¢ 2 (HKLM-x32\...\{E19B628D-A9BC-4519-B1D4-4C8C09074F7F}) (Version: 1.2.1604.0 - Electronic Arts)
Mass Effectâ„¢ 3 (HKLM-x32\...\{534A31BD-20F4-46b0-85CE-09778379663C}) (Version: 1.05.0.0 - Electronic Arts)
Medal of Honor - Allied Assault War Chest (HKLM-x32\...\GOGPACKMEDALOFHONORPACK_is1) (Version: 2.0.0.21 - GOG.com)
Medal of Honor(TM) Multiplayer (HKLM\...\Steam App 47830) (Version:  - Electronic Arts)
Medal of Honor(TM) Single Player (HKLM\...\Steam App 47790) (Version:  - Electronic Arts)
Medal of Honor: Pacific Assaultâ„¢ (HKLM-x32\...\{56CFA833-F44F-4199-8C58-7F8B38F2BC7B}) (Version: 1.2.1.280 - Electronic Arts)
Medieval II: Total War (HKLM-x32\...\Steam App 4700) (Version:  - The Creative Assembly)
Men of War: Assault Squad (HKLM-x32\...\Steam App 64000) (Version:  - Digitalmindsoft)
Mercenary Kings (HKLM\...\Steam App 218820) (Version:  - Tribute Games Inc.)
METAL GEAR RISING: REVENGEANCE (HKLM\...\Steam App 235460) (Version:  - PlatinumGames)
METAL GEAR SOLID V: THE PHANTOM PAIN (HKLM\...\Steam App 287700) (Version:  - Konami Digital Entertainment)
METAL SLUG 3 (HKLM\...\Steam App 250180) (Version:  - DotEmu)
Metro - Last Light Redux (HKLM-x32\...\1430740172_is1) (Version: 2.0.0.2 - GOG.com)
Metro 2033 Redux (HKLM-x32\...\1436434037_is1) (Version: 2.0.0.2 - GOG.com)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.7369.2038 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\OneDriveSetup.exe) (Version: 17.3.6390.0509 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{D285FC5F-3021-32E9-9C59-24CA325BDC5C}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{b341426f-8543-4e0d-96c3-e976f8ec5ab6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{3c3aafc8-d898-43ec-998f-965ffdae065a}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{e6e75766-da0f-4ba2-9788-6ea593ce702d}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Middle-earth: Shadow of Mordor (HKLM-x32\...\Steam App 241930) (Version:  - Monolith Productions, Inc.)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mirror's Edge (HKLM\...\Steam App 17410) (Version:  - DICE)
Mortal Kombat Kollection (HKLM\...\Steam App 205350) (Version:  - NetherRealm Studios, High Voltage)
Mount and Blade (HKLM-x32\...\1207666893_is1) (Version: 2.0.0.4 - GOG.com)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 49.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 49.0.2 (x86 de)) (Version: 49.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 49.0.2.6136 - Mozilla)
MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD)
MSI Kombustor 3.5.1 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version:  - MSI Co., LTD)
Myst Masterpiece Edition (HKLM-x32\...\GOGPACKMYST_is1) (Version: 2.0.0.22 - GOG.com)
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version:  - NCSOFT)
Necropolis (HKLM\...\Steam App 384490) (Version:  - Harebrained Schemes)
Need for Speed: Hot Pursuit (HKLM-x32\...\Steam App 47870) (Version:  - Criterion Games)
Neverwinter (HKLM-x32\...\Steam App 109600) (Version:  - Cryptic Studios)
Neverwinter Nights 2 Complete (HKLM-x32\...\1207659162_is1) (Version: 2.2.0.10 - GOG.com)
Neverwinter Nights Diamond Edition (German) (HKLM-x32\...\GOGPACKNWNDIAMOND_is1) (Version: 2.0.0.15 - GOG.com)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.61.23 - Black Tree Gaming)
NiGHTS into Dreams... (HKLM-x32\...\Steam App 219950) (Version:  - SEGA)
No More Room in Hell (HKLM-x32\...\Steam App 224260) (Version:  - No More Room in Hell Team)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.1 - Notepad++ Team)
Nox (HKLM-x32\...\GOGPACKNOX_is1) (Version: 2.0.0.20 - GOG.com)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 372.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 372.90 - NVIDIA Corporation)
NVIDIA Grafiktreiber 372.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.90 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.15 - NVIDIA Corporation)
NVIDIA PhysX (Legacy) (HKLM-x32\...\{FAAC26AD-73BA-40CE-86AA-C9213F9E064A}) (Version: 9.13.0604 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Obscure (HKLM\...\Steam App 254460) (Version:  - Hydravision Entertainment)
Obscure 2 (HKLM\...\Steam App 254480) (Version:  - Hydravision Entertainment)
Oddworld: Abe's Exoddus (HKLM-x32\...\Steam App 15710) (Version:  - Oddworld Inhabitants)
Oddworld: Abe's Oddysee (HKLM-x32\...\Steam App 15700) (Version:  - Oddworld Inhabitants)
Oddworld: Munch's Oddysee (HKLM-x32\...\Steam App 15740) (Version:  - Oddworld Inhabitants)
Oddworld: Stranger's Wrath HD (HKLM-x32\...\Steam App 15750) (Version:  - Oddworld Inhabitants)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7369.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7369.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7369.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7369.2038 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.1.2 (HKLM-x32\...\{F5CAB1AF-7B1A-4CEC-B829-A3F699473AE1}) (Version: 4.12.9782 - Apache Software Foundation)
Operation Flashpoint: Dragon Rising (HKLM\...\Steam App 12830) (Version:  - Codemasters Studios)
Operation Flashpoint: Red River (HKLM\...\Steam App 44340) (Version:  - Codemasters Action Studio)
Orcs Must Die! 2 (HKLM-x32\...\Steam App 201790) (Version:  - Robot Entertainment)
Origin (HKLM-x32\...\Origin) (Version: 9.7.2.53208 - Electronic Arts, Inc.)
Outland (HKLM-x32\...\Steam App 305050) (Version:  - Housemarque)
Outlast (HKLM\...\Steam App 238320) (Version:  - Red Barrels)
Overlord (HKLM\...\Steam App 11450) (Version:  - Triumph Studios)
Overlord II (HKLM\...\Steam App 12810) (Version:  - Triumph Studios)
Overlord: Raising Hell (HKLM\...\Steam App 12710) (Version:  - Triumph Studios)
Painkiller Black (HKLM-x32\...\1207658715_is1) (Version: 2.1.0.9 - GOG.com)
Pandemonium (HKLM\...\Steam App 243020) (Version:  - Crystal Dynamics)
Path of Exile (HKLM-x32\...\Steam App 238960) (Version:  - Grinding Gear Games)
Pathologic Classic HD (HKLM-x32\...\1444818876_is1) (Version: 2.2.0.3 - GOG.com)
Penumbra: Black Plague (HKLM-x32\...\Steam App 22120) (Version:  - Frictional Games)
Penumbra: Overture (HKLM-x32\...\Steam App 22180) (Version:  - Frictional Games)
Penumbra: Requiem (HKLM-x32\...\Steam App 22140) (Version:  - Frictional Games)
Pillars of Eternity (HKLM-x32\...\1207666813_is1) (Version: 2.4.0.9 - GOG.com)
Planescape Torment (HKLM-x32\...\GOGPACKPLANESCAPETORMENT_is1) (Version: 2.0.0.8 - GOG.com)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
POSTAL 2 (HKLM\...\Steam App 223470) (Version:  - Running With Scissors)
Prey (HKLM-x32\...\{A785BBA7-3FB9-4D81-BC35-4A2028915ACB}) (Version: 1.0 - Human Head Studios)
Prince of Persia (HKLM\...\Steam App 19980) (Version:  - Ubisoft Montreal)
Psychonauts (HKLM-x32\...\Steam App 3830) (Version:  - Double Fine Productions)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
QT Lite 4.1.0 (HKLM-x32\...\quicktime_lite_is1) (Version: 4.1.0 - )
Quake Live (HKLM-x32\...\Steam App 282440) (Version:  - id Software)
RAGE (HKLM-x32\...\Steam App 9200) (Version:  - id Software)
Ragnarok Clicker (HKLM\...\Steam App 493370) (Version:  - Playsaurus)
Ragnarok Online - Free to Play - European Version (HKLM\...\Steam App 250740) (Version:  - Gravity Europe SAS)
RAW - Realms of Ancient War (HKLM-x32\...\Steam App 209730) (Version:  - Wizarbox)
Rayman Legends (HKLM-x32\...\Uplay Install 410) (Version:  - Ubisoft)
Rayman Origins (HKLM\...\Steam App 207490) (Version:  - UBIart Montpellier)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.707 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6482 - Realtek Semiconductor Corp.)
Red Faction: Armageddon (HKLM-x32\...\Steam App 55110) (Version:  - Volition)
Red Faction: Guerrilla Steam Edition (HKLM-x32\...\Steam App 20500) (Version:  - Volition)
redist (HKLM-x32\...\{153C7D89-9CF4-4719-A551-C5BF45236DB5}) (Version: 1.0.0.0 - redist)
Remember Me (HKLM-x32\...\Steam App 228300) (Version:  - DONTNOD Entertainment)
Requiem (HKLM\...\{bf8788b0-e36e-4c5b-9520-94c3bced6456}.sdb) (Version:  - )
Resident Evil / biohazard HD REMASTER (HKLM-x32\...\Steam App 304240) (Version:  - CAPCOM Co., Ltd.)
resident evil 4 / biohazard 4 (HKLM-x32\...\Steam App 254700) (Version:  - Capcom)
Resident Evil 5 / Biohazard 5 (HKLM-x32\...\Steam App 21690) (Version:  - Capcom)
Resident Evil Revelations / Biohazard Revelations (HKLM-x32\...\Steam App 222480) (Version:  - Capcom)
Resident Evil Revelations 2 / Biohazard Revelations 2 (HKLM\...\Steam App 287290) (Version:  - CAPCOM Co., Ltd.)
RIFT (HKLM\...\Steam App 39120) (Version:  - Trion Worlds)
Rise of the Argonauts (HKLM\...\Steam App 12770) (Version:  - Liquid Entertainment)
Rise of the Triad (HKLM-x32\...\1207659244_is1) (Version: 2.5.0.23 - GOG.com)
Risen (HKLM\...\Steam App 40300) (Version:  - Piranha Bytes)
Risen 2 - Dark Waters (HKLM-x32\...\Steam App 40390) (Version:  - Piranha Bytes)
Risen 3 - Titan Lords (HKLM-x32\...\Steam App 249230) (Version:  - Piranha Bytes)
RivaTuner Statistics Server 6.4.1 (HKLM-x32\...\RTSS) (Version: 6.4.1 - Unwinder)
Rogue Legacy (HKLM-x32\...\Steam App 241600) (Version:  - Cellar Door Games)
Rome: Total War (HKLM-x32\...\Steam App 4760) (Version:  - The Creative Assembly)
Rune Classic (HKLM-x32\...\1207660013_is1) (Version: 2.1.0.10 - GOG.com)
Rust (HKLM\...\Steam App 252490) (Version:  - Facepunch Studios)
Ryse: Son of Rome (HKLM-x32\...\Steam App 302510) (Version:  - Crytek)
S.T.A.L.K.E.R.: Call of Pripyat (HKLM\...\Steam App 41700) (Version:  - GSC Game World)
S.T.A.L.K.E.R.: Clear Sky (HKLM\...\Steam App 20510) (Version:  - GSC Game World)
S.T.A.L.K.E.R.: Shadow of Chernobyl (HKLM\...\Steam App 4500) (Version:  - GSC Game World)
Sacred 2 Gold (HKLM-x32\...\Steam App 225640) (Version:  - Ascaron)
Sacred Gold (HKLM-x32\...\Steam App 12320) (Version:  - Ascaron Entertainment ltd.)
Saints Row 2 (HKLM\...\Steam App 9480) (Version:  - Volition)
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version:  - Deep Silver Volition)
Saints Row: The Third (HKLM\...\Steam App 55230) (Version:  - Volition)
Salt and Sanctuary (HKLM\...\Steam App 283640) (Version:  - Ska Studios)
Sanitarium (HKLM-x32\...\GOGPACKSANITARIUM_is1) (Version: 2.0.0.25 - GOG.com)
Savage Lands (HKLM\...\Steam App 307880) (Version:  - Signal Studios)
Screencheat (HKLM\...\Steam App 301970) (Version:  - Samurai Punk)
Scribblenauts Unlimited (HKLM\...\Steam App 218680) (Version:  - 5th Cell Media)
SEGA Bass Fishing (HKLM\...\Steam App 71240) (Version:  - SEGA)
Sennheiser 3D G4ME1 (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392DDDFB6}) (Version: 1.00.0001 - )
Serious Sam 2 (HKLM\...\Steam App 204340) (Version:  - Croteam)
Serious Sam 3: BFE (HKLM-x32\...\Steam App 41070) (Version:  - Croteam)
Serious Sam Classic: The First Encounter (HKLM\...\Steam App 41050) (Version:  - Croteam)
Serious Sam Classic: The Second Encounter (HKLM\...\Steam App 41060) (Version:  - Croteam)
Serious Sam Classics: Revolution (HKLM\...\Steam App 227780) (Version:  - Croteam)
Serious Sam Double D XXL (HKLM\...\Steam App 111600) (Version:  - Mommy's Best Games)
Serious Sam HD: The First Encounter (HKLM\...\Steam App 41000) (Version:  - Croteam)
Serious Sam HD: The Second Encounter (HKLM\...\Steam App 41010) (Version:  - Croteam)
Serious Sam: The Random Encounter (HKLM\...\Steam App 201480) (Version:  - Vlambeer)
Shadow Warrior (HKLM\...\Steam App 233130) (Version:  - Flying Wild Hog)
Shadowrun Returns (HKLM-x32\...\Steam App 234650) (Version:  - Harebrained Schemes)
Shakes and Fidget (HKLM\...\Steam App 438040) (Version:  - Playa Games GmbH)
Shelter 2 (HKLM\...\Steam App 275100) (Version:  - Might and Delight)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
SHOGUN: Total Warâ„¢ - Gold Edition (HKLM-x32\...\Steam App 345240) (Version:  - Creative Assembly)
Shovel Knight (HKLM-x32\...\Steam App 250760) (Version:  - Yacht Club Games)
Sid Meier's Civilization V (HKLM\...\Steam App 8930) (Version:  - Firaxis Games)
Sid Meier's Civilization V (HKLM-x32\...\steam app 8930) (Version:  - 2K Games, Inc.)
Simulationcraft(x64) version 7.0.3.04 (HKLM-x32\...\{AC025546-B7C5-45A7-B16A-80AE482CBB01}_is1) (Version: 7.0.3.04 - Simulationcraft)
Sine Mora (HKLM\...\Steam App 207040) (Version:  - Digital Reality)
Singularity (HKLM-x32\...\Steam App 42670) (Version:  - Raven Software)
Skullgirls (HKLM-x32\...\Steam App 245170) (Version:  - Lab Zero Games)
SkyDrift (HKLM-x32\...\Steam App 91100) (Version:  - Digital Reality)
Skypeâ„¢ 7.28 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.28.101 - Skype Technologies S.A.)
Sleeping Dogsâ„¢ (HKLM-x32\...\Steam App 202170) (Version:  - United Front Games)
SMITE (HKLM\...\Steam App 386360) (Version:  - Hi-Rez Studios)
SOMA (HKLM-x32\...\1439487606_is1) (Version: 2.2.0.5 - GOG.com)
Sonic & All-Stars Racing Transformed (HKLM-x32\...\Steam App 212480) (Version:  - Sumo Digital)
Sonic Adventure DX (HKLM\...\Steam App 71250) (Version:  - SEGA)
Space Channel 5: Part 2 (HKLM\...\Steam App 71260) (Version:  - SEGA)
Space Engineers (HKLM\...\Steam App 244850) (Version:  - Keen Software House)
Spec Ops: The Line (HKLM-x32\...\Steam App 50300) (Version:  - Yager Development)
SpellForce 2 - Faith in Destiny (HKLM-x32\...\Steam App 65530) (Version:  - Mind Over Matter Studios)
Spelunky (HKLM-x32\...\1207659257_is1) (Version: 2.1.0.9 - GOG.com)
Spore (HKLM-x32\...\Steam App 17390) (Version:  - Maxisâ„¢)
Spore: Creepy & Cute Parts Pack (HKLM-x32\...\Steam App 17440) (Version:  - Maxisâ„¢)
Spore: Galactic Adventures (HKLM-x32\...\Steam App 24720) (Version:  - EA - Maxis)
Stalker Complete 2009 (HKLM-x32\...\{Stalker Complete 2009 v1.4.4}}_is1) (Version:  - )
Stealth Inc 2 (HKLM-x32\...\Steam App 329380) (Version:  - Carbon)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Strider (HKLM-x32\...\Steam App 235210) (Version:  - Double Helix Games)
Summoner (HKLM\...\Steam App 275570) (Version:  - Volition)
Super Meat Boy (HKLM-x32\...\Steam App 40800) (Version:  - Team Meat)
Supreme Commander (HKLM-x32\...\Steam App 9350) (Version:  - Gas Powered Games)
Supreme Commander: Forged Alliance (HKLM-x32\...\Steam App 9420) (Version:  - Gas Powered Games)
System Shock 2 (HKLM-x32\...\GOGPACKSSHOCK2_is1) (Version: 2.1.0.19 - GOG.com)
System Shock Demo (HKLM-x32\...\2116300560_is1) (Version: 2.1.0.3 - GOG.com)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.17 - TeamSpeak Systems GmbH)
Teleglitch: Die More Edition (HKLM\...\Steam App 234390) (Version:  - Test3 Projects)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
Tharsis (HKLM\...\Steam App 323060) (Version:  - Choice Provisions)
The Ball (HKLM-x32\...\Steam App 35460) (Version:  - Teotl Studios)
The Bard's Tale (HKLM-x32\...\1207659164_is1) (Version: 2.1.0.9 - GOG.com)
The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version:  - Edmund McMillen and Florian Himsl)
The Binding of Isaac: Rebirth (HKLM-x32\...\Steam App 250900) (Version:  - Nicalis, Inc.)
The Book of Unwritten Tales - Critter Chronicles (HKLM-x32\...\1207659148_is1) (Version: 2.1.0.10 - GOG.com)
The Book of Unwritten Tales (German) (HKLM-x32\...\GOGPACKBOUT_is1) (Version: 2.0.0.4 - GOG.com)
The Book of Unwritten Tales 2 (HKLM-x32\...\1423758554_is1) (Version: 2.1.0.2 - GOG.com)
The Bureau: XCOM Declassified (HKLM-x32\...\Steam App 65930) (Version:  - 2K Marin)
The Chronicles of Riddick - Assault on Dark Athena (HKLM-x32\...\GOGPACKRIDDICK_is1) (Version: 2.0.0.10 - GOG.com)
The Cursed Crusade (HKLM-x32\...\Steam App 106000) (Version:  - Kylotonn Entertainment)
The Darkness II (HKLM\...\Steam App 67370) (Version:  - Digital Extremes)
The Elder Scrolls III: Morrowind (HKLM-x32\...\Steam App 22320) (Version:  - Bethesda Game Studios®)
The Elder Scrolls IV: Oblivion  (HKLM\...\Steam App 22330) (Version:  - Bethesda Game Studios)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 1.0.0.0 - Zenimax Online Studios)
The Elder Scrolls Online: Tamriel Unlimited (HKLM\...\Steam App 306130) (Version:  - Zenimax Online Studios)
The Elder Scrolls V: Skyrim (HKLM\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Evil Within Demo (HKLM\...\Steam App 329960) (Version:  - Tango Gameworks)
The Guild II (HKLM-x32\...\Steam App 39650) (Version:  - 4 Head Studios)
The Incredible Adventures of Van Helsing (HKLM\...\Steam App 215530) (Version:  - NeocoreGames)
The Incredible Adventures of Van Helsing II (HKLM-x32\...\Steam App 272470) (Version:  - NeocoreGames)
The Last Remnant (HKLM-x32\...\Steam App 23310) (Version:  - SQUARE ENIX)
The Lord of the Rings: War in the North (HKLM-x32\...\Steam App 32800) (Version:  - Snowblind Studios)
The Stanley Parable (HKLM\...\Steam App 221910) (Version:  - Galactic Cafe)
The Swapper (HKLM-x32\...\Steam App 231160) (Version:  - Olli Harjola, Otto Hantula, Tom Jubert, Carlo Castellano)
The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version:  - CD PROJEKT RED)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.10.0.0 - GOG.com)
The Witcher: Enhanced Edition (HKLM-x32\...\Steam App 20900) (Version:  - CD PROJEKT RED)
Thief 2 (HKLM-x32\...\Steam App 211740) (Version:  - Looking Glass Studios)
Thief Gold (HKLM-x32\...\Steam App 211600) (Version:  - Looking Glass Studios)
Thief: Deadly Shadows (HKLM-x32\...\Steam App 6980) (Version:  - Ion Storm)
Titan Quest (HKLM-x32\...\Steam App 4540) (Version:  - Iron Lore Entertainment)
Titan Quest: Immortal Throne (HKLM-x32\...\Steam App 4550) (Version:  - Iron Lore Entertainment)
Titan Souls (HKLM\...\Steam App 297130) (Version:  - Acid Nerve)
Tomb Raider (VI): The Angel of Darkness (HKLM-x32\...\Steam App 225020) (Version:  - Core Design)
Tomb Raider: Anniversary (HKLM-x32\...\Steam App 8000) (Version:  - Crystal Dynamics)
Tomb Raider: Chronicles (HKLM-x32\...\Steam App 225000) (Version:  - Core Design)
Tomb Raider: Legend (HKLM-x32\...\Steam App 7000) (Version:  - Crystal Dynamics)
Tomb Raider: The Last Revelation (HKLM-x32\...\Steam App 224980) (Version:  - Core Design)
Tomb Raider: Underworld (HKLM-x32\...\Steam App 8140) (Version:  - Crystal Dynamics)
Torchlight (HKLM-x32\...\GOGPACKTORCHLIGHT_is1) (Version: 2.0.0.12 - GOG.com)
Torchlight II (HKLM-x32\...\Steam App 200710) (Version:  - Runic Games)
Total War: Arena (HKLM-x32\...\Steam App 227520) (Version:  - Creative Assembly)
Total War: SHOGUN 2 (HKLM-x32\...\Steam App 34330) (Version:  - The Creative Assembly)
Transformers: War for Cybertron (HKLM-x32\...\Steam App 42650) (Version:  - High Moon Studios)
Trine (HKLM-x32\...\Steam App 35700) (Version:  - Frozenbyte)
Trine 2 (HKLM-x32\...\Steam App 35720) (Version:  - Frozenbyte)
Tropico 3 - Steam Special Edition (HKLM\...\Steam App 23490) (Version:  - Haemimont Games)
Two Worlds II (HKLM-x32\...\Steam App 7520) (Version:  - Reality Pump Studios)
Two Worlds II Castle Defense (HKLM\...\Steam App 7530) (Version:  - Reality Pump Studios)
Two Worlds: Epic Edition (HKLM-x32\...\Steam App 1930) (Version:  - Reality Pump Studios)
UltimateDefrag V1 FREE Public Domain Version (HKLM-x32\...\UltimateDefrag V1 FREE Public Domain Version) (Version: 1.72 - DiskTrix)
Ultra Street Fighter IV (HKLM-x32\...\Steam App 45760) (Version:  - Capcom)
Uplay (HKLM-x32\...\Uplay) (Version: 12.0 - Ubisoft)
Valkyria Chroniclesâ„¢ (HKLM-x32\...\Steam App 294860) (Version:  - SEGA)
Vampire - The Masquerade - Bloodlines (HKLM-x32\...\1207659240_is1) (Version: 2.0.0.7 - GOG.com)
Vampires Dawn: Reign of Blood (HKLM-x32\...\{CF55095E-07AA-432E-8376-CEF71D70746A}_is1) (Version: Vampires Dawn: Reign of Blood 1.31 - Brianum)
Viking: Battle for Asgard (HKLM-x32\...\Steam App 211160) (Version:  - Creative Assembly, PC Port - Hardlight)
Vindictus EU (HKLM-x32\...\Vindictus EU) (Version:  - )
Viscera Cleanup Detail: Shadow Warrior (HKLM\...\Steam App 255520) (Version:  - RuneStorm)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Volgarr the Viking (HKLM-x32\...\Steam App 247240) (Version:  - Crazy Viking Studios)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Warframe (HKLM\...\Steam App 230410) (Version:  - Digital Extremes)
Warhammer 40,000 Space Marine (HKLM-x32\...\Steam App 55150) (Version:  - Relic)
Warhammer 40,000: Dawn of War – Dark Crusade (HKLM-x32\...\Steam App 4580) (Version:  - Relic Entertainment)
Warhammer 40,000: Dawn of War - Game of the Year Edition (HKLM-x32\...\Steam App 4570) (Version:  - Relic Entertainment)
Warhammer 40,000: Dawn of War – Soulstorm (HKLM-x32\...\Steam App 9450) (Version:  - Relic Entertainment)
Warhammer 40,000: Dawn of War – Winter Assault (HKLM-x32\...\Steam App 9310) (Version:  - Relic Entertainment)
Warhammer® 40,000™: Dawn of War® II - Chaos Rising™ (HKLM-x32\...\Steam App 20570) (Version:  - Relic Entertainment)
Warhammer® 40,000™: Dawn of War® II – Retribution™ (HKLM-x32\...\Steam App 56400) (Version:  - Relic Entertainment)
Warhammer® 40,000™: Dawn of War® II (HKLM-x32\...\Steam App 15620) (Version:  - Relic Entertainment)
Warlock - Master of the Arcane (HKLM-x32\...\Steam App 203630) (Version:  - Ino-Co Plus)
Way of the Samurai 4 (HKLM-x32\...\1443083988_is1) (Version: 2.1.0.3 - GOG.com)
WildStar (HKLM-x32\...\WildStar) (Version:  - NCSOFT)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows-Treiberpaket - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows-Treiberpaket - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
WinFunktion Mathematik plus 22 (HKLM-x32\...\{9D1DA6F3-BA26-4D96-A406-9ECF2A5AF1B4}) (Version: 22.00.0000 - bhv Publishing GmbH)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
Zeno Clash (HKLM-x32\...\Steam App 22200) (Version:  - ACE Team)
Zeno Clash 2 (HKLM-x32\...\Steam App 215690) (Version:  - ACE Team)
Ziggurat (HKLM-x32\...\1437564865_is1) (Version: 2.2.0.4 - GOG.com)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2328785784-3451381423-4003841377-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Obscura Nox\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileCoAuthLib64.dll ()
CustomCLSID: HKU\S-1-5-21-2328785784-3451381423-4003841377-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Obscura Nox\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {05605B8F-C186-453C-A4C3-0633250EFB43} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {0D1922F6-6AB8-488A-B1A2-926CEC485514} - System32\Tasks\{C2BA4EFD-3B76-410A-A770-913B1EAF17E2} => A:\DRM-Freie Spiele\Pathologic Classic HD\bin\Final\Game.exe [2016-01-18] ()
Task: {1BC6AEE6-E3AB-400B-AA10-101FA6638322} - System32\Tasks\EPSON XP-432 435 Series Update {D3AA24A9-3C8C-49F3-8488-C2EC6F63BD0C} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE [2013-11-21] (SEIKO EPSON CORPORATION)
Task: {3E212EF7-7671-4997-96A2-03472B311CD6} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-08] (Microsoft Corporation)
Task: {4352AD6F-E6B6-46CF-9D3B-C80F5B83B243} - System32\Tasks\{49F55D16-5A24-4473-8DE4-7C6C599A1F11} => pcalua.exe -a "A:\Steam\steamapps\common\FE Legendary Heroes\GDF_FallenEnchantress_Install.exe" -d "A:\Steam\steamapps\common\FE Legendary Heroes"
Task: {453DB052-3229-4F4C-A927-01FFDB383ED4} - System32\Tasks\{F9A050C5-A60C-4467-A61F-3D21FB29FD90} => pcalua.exe -a A:\Benutzerdaten\Downloads\wmp6cdcs.EXE -d A:\Benutzerdaten\Downloads
Task: {4B0122B3-839E-4308-B847-D6FDE8CF07C6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-07-13] (Piriform Ltd)
Task: {5CF817BC-4ECD-4EBF-BDCA-7A02CD269108} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-08] (Microsoft Corporation)
Task: {63244DD6-BB3C-4E65-B061-2FC7E69BF7C9} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {6B0B5DE3-6AE0-4A1F-AFA9-43BA7F1B41C6} - System32\Tasks\{86F9E181-2825-4FBC-BDB9-AC4FB98E7DDE} => Firefox.exe hxxp://ui.skype.com/ui/0/7.9.0.103/de/abandoninstall?source=lightinstaller&page=tsInstall
Task: {7764C4D4-FC14-406B-93A2-3E0CA2CDEF6F} - System32\Tasks\{42BFB499-A2DB-4F5F-8B5A-79B6C327C260} => A:\DRM-Freie Spiele\Pathologic Classic HD\bin\Final\Game.exe [2016-01-18] ()
Task: {8939677F-B3A2-4F88-80A9-CF9D8CA6DE56} - System32\Tasks\{94C74C47-9664-423A-92C9-F6C32252DE33} => A:\Steam\steamapps\common\FE Legendary Heroes\LegendaryHeroes.exe [2016-09-29] (Stardock Entertainment, Inc.)
Task: {8F3B808A-4171-47DC-BEB2-BEBF7789422A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-10-09] (Microsoft Corporation)
Task: {A526B5C7-7F00-40CC-85E2-92DC0C9909DB} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2015-12-07] ()
Task: {A6E21A94-8391-4758-A3F8-3CCB0C96D5FE} - System32\Tasks\RTSS => C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe [2015-12-02] ()
Task: {A9712443-851C-45A4-84D5-94EEAC3C0F98} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2016-08-31] ()
Task: {C7E3D779-69E1-4C33-92A5-948E8D3BDFA6} - System32\Tasks\{3DC458C0-B73C-4DFB-A304-B87ACA55A91B} => pcalua.exe -a "A:\Steam\steamapps\common\FE Legendary Heroes\_CommonRedist\vcredist\2008\vcredist_x64.exe" -d "A:\Steam\steamapps\common\FE Legendary Heroes\_CommonRedist\vcredist\2008"
Task: {C8DB7E8A-9680-4FFF-BC90-0AC7562B66EC} - System32\Tasks\{DCA59AED-2C6B-431C-B91B-AB3A91E1694B} => A:\Steam\steamapps\common\Singularity\Binaries\Singularity.exe [2015-10-27] (Raven Software)
Task: {C9095A28-8F62-4D9C-AED1-DF11542B4242} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-11] (Adobe Systems Incorporated)
Task: {D2F93C64-DFFD-4993-B6DE-C270C1FB8895} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-10-09] (Microsoft Corporation)
Task: {DD44A993-C472-4FFA-BF58-40E87F74BBE8} - System32\Tasks\{0AE80723-358E-484F-BCEA-8FB20DA6F802} => A:\Steam\steamapps\common\FE Legendary Heroes\LegendaryHeroes.exe [2016-09-29] (Stardock Entertainment, Inc.)
Task: {E1815E88-2362-4A6F-AA2F-E65D5BE70ED6} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-10-09] (Microsoft Corporation)
Task: {EF923AB4-3939-40A6-88D6-1AB7322AC284} - System32\Tasks\{8CE806A9-4F10-43A0-861C-635CCE96CB7A} => pcalua.exe -a "A:\DRM-Freie Spiele\The Bards Tale\Config\The Bard's Setup.exe" -d "A:\DRM-Freie Spiele\The Bards Tale\Config"
Task: {F65CBA23-178B-4887-BBEE-AF0710521362} - System32\Tasks\{AC2BC997-FB6F-45EB-81F1-FBF9EA3796A6} => A:\DRM-Freie Spiele\Pathologic Classic HD\bin\Final\Game.exe [2016-01-18] ()

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\EPSON XP-432 435 Series Update {D3AA24A9-3C8C-49F3-8488-C2EC6F63BD0C}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSPDE.EXE:/EXE:{D3AA24A9-3C8C-49F3-8488-C2EC6F63BD0C} /F:Update SYSTEMÄŠSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-09-01 13:10 - 2016-09-17 00:57 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-11-23 18:44 - 2015-11-23 18:44 - 00403456 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooks64.dll
2015-12-07 04:37 - 2015-12-07 04:37 - 00580296 _____ () C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
2015-12-02 11:19 - 2015-12-02 11:19 - 00205000 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSS.exe
2015-09-01 12:41 - 2012-02-07 17:27 - 00121344 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
2016-03-21 23:05 - 2016-06-15 03:14 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-05-02 18:30 - 2016-06-15 03:14 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-03-21 23:05 - 2016-06-15 03:14 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-03-19 12:58 - 2016-06-15 03:14 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2015-11-23 18:43 - 2015-11-23 18:43 - 00026112 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\EncoderServer.exe
2015-11-23 18:44 - 2015-11-23 18:44 - 00088576 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooksLoader64.exe
2016-09-27 15:51 - 2016-09-27 15:51 - 00959168 _____ () C:\Users\Obscura Nox\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2015-12-05 13:00 - 2016-05-17 21:37 - 00066872 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2015-11-05 01:11 - 2015-11-05 01:12 - 00188072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2016-05-02 18:30 - 2016-06-15 03:14 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-05-02 18:30 - 2016-06-15 03:14 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-05-02 18:30 - 2016-06-15 03:14 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-03-19 12:58 - 2016-06-15 03:14 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2015-09-01 12:33 - 2012-01-05 11:24 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2015-09-01 21:37 - 2015-09-01 21:40 - 00151552 _____ () C:\Windows\system\3DG4me.exe
2016-05-02 18:30 - 2016-06-15 03:14 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-05-02 18:30 - 2016-06-15 03:14 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2015-12-06 08:55 - 2015-12-06 08:55 - 00071680 _____ () C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2015-12-06 08:55 - 2015-12-06 08:55 - 00057856 _____ () C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2015-12-06 08:55 - 2015-12-06 08:55 - 00225792 _____ () C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2015-12-06 08:55 - 2015-12-06 08:55 - 00357888 _____ () C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2015-12-06 08:55 - 2015-12-06 08:55 - 00657408 _____ () C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2015-11-23 18:43 - 2015-11-23 18:43 - 00356864 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTSSHooks.dll
2015-11-23 18:43 - 2015-11-23 18:43 - 00056832 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTFC.dll
2015-11-23 18:43 - 2015-11-23 18:43 - 00353792 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTUI.dll
2015-11-23 18:43 - 2015-11-23 18:43 - 00071680 _____ () C:\Program Files (x86)\RivaTuner Statistics Server\RTMUI.dll
2011-08-15 20:12 - 2011-08-15 20:12 - 02603520 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtCore4.dll
2011-08-15 20:15 - 2011-08-15 20:15 - 00382464 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtXml4.dll
2011-08-17 16:41 - 2011-08-17 16:41 - 00400384 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\sqlite3.dll
2011-08-17 16:48 - 2011-08-17 16:48 - 00322048 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\log4cplus.dll
2011-11-25 13:29 - 2011-11-25 13:29 - 00015872 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\featureController.dll
2011-08-15 20:12 - 2011-08-15 20:12 - 01006592 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtNetwork4.dll
2011-08-17 16:48 - 2011-08-17 16:48 - 00195584 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\libgsoap.dll
2011-08-15 19:23 - 2011-08-15 19:23 - 00062464 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\zlib1.dll
2011-11-25 13:28 - 2011-11-25 13:28 - 00484352 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\DeviceProfile.dll
2011-11-25 13:42 - 2011-11-25 13:42 - 00499976 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\plugin\PServerPlugin.dll
2011-11-25 13:26 - 2011-11-25 13:26 - 00013824 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\eventsSender.dll
2015-12-22 02:47 - 2015-12-22 02:47 - 00794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\kpcengine.2.3.dll
2015-09-01 13:00 - 2016-06-15 03:14 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-09-01 21:37 - 2015-09-01 21:40 - 00143360 _____ () C:\Windows\system\3DG4me.dll
2015-09-01 15:58 - 2016-09-08 05:14 - 00784672 _____ () A:\Steam\SDL2.dll
2015-09-01 15:58 - 2016-09-01 03:02 - 04969248 _____ () A:\Steam\v8.dll
2015-09-01 15:58 - 2016-09-01 03:02 - 01563936 _____ () A:\Steam\icui18n.dll
2015-09-01 15:58 - 2016-09-01 03:02 - 01195296 _____ () A:\Steam\icuuc.dll
2015-09-01 15:58 - 2016-10-13 03:58 - 02321696 _____ () A:\Steam\video.dll
2015-09-01 15:58 - 2016-01-27 09:49 - 02549760 _____ () A:\Steam\libavcodec-56.dll
2015-09-01 15:58 - 2016-01-27 09:49 - 00442880 _____ () A:\Steam\libavutil-54.dll
2015-09-01 15:58 - 2016-01-27 09:49 - 00491008 _____ () A:\Steam\libavformat-56.dll
2015-09-01 15:58 - 2016-01-27 09:49 - 00332800 _____ () A:\Steam\libavresample-2.dll
2015-09-01 15:58 - 2016-01-27 09:49 - 00485888 _____ () A:\Steam\libswscale-3.dll
2015-09-01 15:58 - 2016-10-13 03:58 - 00836896 _____ () A:\Steam\bin\chromehtml.DLL
2016-03-09 15:58 - 2016-07-05 00:17 - 00266560 _____ () A:\Steam\openvr_api.dll
2016-09-27 15:51 - 2016-09-27 15:51 - 00679624 _____ () C:\Users\Obscura Nox\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2016-10-17 15:12 - 2016-08-24 17:49 - 01950392 _____ () C:\Users\Obscura Nox\AppData\Local\Discord\app-0.0.296\ffmpeg.dll
2016-10-17 15:12 - 2016-10-17 15:12 - 01050296 _____ () \\?\C:\Users\Obscura Nox\AppData\Roaming\discord\0.0.296\modules\discord_voice\discord_voice.node
2016-10-17 15:12 - 2016-10-17 15:12 - 03793080 _____ () \\?\C:\Users\Obscura Nox\AppData\Roaming\discord\0.0.296\modules\discord_voice\libdiscord.dll
2016-10-17 15:12 - 2016-10-17 15:12 - 00894136 _____ () \\?\C:\Users\Obscura Nox\AppData\Roaming\discord\0.0.296\modules\discord_utils\discord_utils.node
2016-06-23 04:34 - 2016-06-23 04:34 - 00143824 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2016-10-17 15:12 - 2016-08-24 17:49 - 02230456 _____ () C:\Users\Obscura Nox\AppData\Local\Discord\app-0.0.296\libglesv2.dll
2016-10-17 15:12 - 2016-08-24 17:49 - 00088760 _____ () C:\Users\Obscura Nox\AppData\Local\Discord\app-0.0.296\libegl.dll
2016-10-21 21:42 - 2016-10-21 21:42 - 00170496 _____ () \\?\C:\Users\Obscura Nox\AppData\Local\Temp\F6DC.tmp.node
2016-10-17 15:12 - 2016-10-17 15:12 - 02658304 _____ () \\?\C:\Users\Obscura Nox\AppData\Roaming\discord\0.0.296\modules\discord_rpc\discord_rpc.node
2016-10-17 15:13 - 2016-10-17 15:13 - 02147328 _____ () \\?\C:\Users\Obscura Nox\AppData\Roaming\discord\0.0.296\modules\discord_contact_import\discord_contact_import.node
2016-10-15 01:50 - 2016-08-04 22:56 - 49825056 _____ () A:\Steam\bin\cef\cef.winxp\libcef.dll
2016-05-12 16:16 - 2016-05-12 16:16 - 00172032 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\5a8eeeddc97028a9f94d0518c22f4c2c\IsdiInterop.ni.dll
2015-09-01 12:38 - 2011-11-29 20:00 - 00059392 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2015-09-01 12:40 - 2012-02-07 17:39 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE restricted site: HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\...\skype.com -> hxxps://apps.skype.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2328785784-3451381423-4003841377-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Obscura Nox\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Obscura Nox\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: Amazon Music => "C:\Users\Obscura Nox\AppData\Local\Amazon Music\Amazon Music Helper.exe"
MSCONFIG\startupreg: Comrade.exe => C:\Program Files (x86)\GameSpy\Comrade\Comrade.exe
MSCONFIG\startupreg: GarminExpressTrayApp => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{A7153CC7-A575-45D5-A994-8198E71000C8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{0C81E450-8FFB-4960-8BE9-57751A06A9D0}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{9D0119D4-27E8-42BB-9F4F-87C1F54A5820}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{7E8DF626-596F-4123-838F-6B5BBFEBEC08}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{97C30730-0FD4-49C0-84AD-CA1D90BADDB4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{4C867B93-A8C0-4657-BCAD-FD3591EDFF4E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B102651B-B802-4026-B5D8-ABC6AC85C093}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{873F6AEA-C7C4-446B-BE0E-5EF5C03940BF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{809B1E1D-4023-4582-A249-FD81CD0AC4D4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{31DC90D6-9C04-4F57-9D3F-1B759730EE48}] => (Allow) A:\Programme\Battle.net\Battle.net.exe
FirewallRules: [{ED73B72E-D2F2-4019-8266-4AE500D94BC9}] => (Allow) A:\Programme\Battle.net\Battle.net.exe
FirewallRules: [{6AC4D3F2-5564-443B-9991-DC656AF7B8EB}] => (Allow) A:\Steam\Steam.exe
FirewallRules: [{CD2DD5E2-83CC-457F-B6D2-C8CFA1619B1A}] => (Allow) A:\Steam\Steam.exe
FirewallRules: [{A69EFF00-4437-4682-87C4-C4403A39677D}] => (Allow) A:\Steam\steamapps\common\Skullgirls\SkullGirls.exe
FirewallRules: [{D821AF94-CF94-4ED1-A016-CA315D4A9E38}] => (Allow) A:\Steam\steamapps\common\Skullgirls\SkullGirls.exe
FirewallRules: [{D47E724A-73DB-4AD4-BEC3-7734F502FDD9}] => (Allow) A:\Steam\steamapps\common\Fistful of Frags\sdk\hl2.exe
FirewallRules: [{CAE21EFF-2240-4F9F-93BD-A8FFF13A111B}] => (Allow) A:\Steam\steamapps\common\Fistful of Frags\sdk\hl2.exe
FirewallRules: [{0C09BEEC-7514-4657-B7C1-8784CCC419FF}] => (Allow) A:\Steam\steamapps\common\Warlock - Master of the Arcane\Game.exe
FirewallRules: [{F0E68E11-8164-4B43-8A35-D1D12AAC7264}] => (Allow) A:\Steam\steamapps\common\Warlock - Master of the Arcane\Game.exe
FirewallRules: [{ED392565-3657-4F81-8595-4CF796AF40C4}] => (Allow) A:\Steam\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\Injustice.exe
FirewallRules: [{B72AB7D8-94BC-43E7-8E7C-8B5D099AE742}] => (Allow) A:\Steam\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\Injustice.exe
FirewallRules: [{2E291990-334A-45D8-A4BE-3E95291B3719}] => (Allow) A:\Steam\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\InjusticeLauncher.exe
FirewallRules: [{CB1ED689-0018-4E14-B74E-FEA99F72672B}] => (Allow) A:\Steam\steamapps\common\InjusticeGodsAmongUs_UltimateEdition\DiscContentPCG\InjusticeLauncher.exe
FirewallRules: [{8F7041B1-E62D-4E1C-BA16-CE6E69CE05FE}] => (Allow) A:\Steam\steamapps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{4D122C3D-3904-499C-A20A-13C65F8C197D}] => (Allow) A:\Steam\steamapps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{925E0645-F395-4EAD-81C2-D8A31BBCC0E7}] => (Allow) A:\Steam\steamapps\common\Super Street Fighter IV - Arcade Edition\SSFIV.exe
FirewallRules: [{112B0579-A14E-4933-9C1C-A9828314B838}] => (Allow) A:\Steam\steamapps\common\Super Street Fighter IV - Arcade Edition\SSFIV.exe
FirewallRules: [{47DEC4FB-A1C5-40B9-BCA5-161F669E5D03}] => (Allow) A:\Steam\steamapps\common\KOAReckoning\Reckoning.exe
FirewallRules: [{55B3DAAD-05FF-4B3D-B7B1-F62375D4D2BA}] => (Allow) A:\Steam\steamapps\common\KOAReckoning\Reckoning.exe
FirewallRules: [{2C352B1B-3605-478C-847B-ADCE79577A44}] => (Allow) A:\Steam\steamapps\common\Dawn of War Gold\W40kWA.exe
FirewallRules: [{1FD22E81-E3A9-47DB-8A1C-9C6BA9FB6C57}] => (Allow) A:\Steam\steamapps\common\Dawn of War Gold\W40kWA.exe
FirewallRules: [{33CBAA0D-4045-4A29-A17D-62B4C6198D46}] => (Allow) A:\Steam\steamapps\common\Dawn of War Gold\W40k.exe
FirewallRules: [{02E56291-CE4B-4BBA-9CB6-C5F044CF3401}] => (Allow) A:\Steam\steamapps\common\Dawn of War Gold\W40k.exe
FirewallRules: [{BF70D19E-08B1-4FE0-B278-5AD4411C0956}] => (Allow) A:\Programme\Phone\Skype.exe
FirewallRules: [{8CC738C3-08B6-49F3-9744-BA19F4BDBDF3}] => (Allow) A:\Steam\steamapps\common\Dawn of War Dark Crusade\darkcrusade.exe
FirewallRules: [{CF10594D-8391-4D52-8A76-533200311252}] => (Allow) A:\Steam\steamapps\common\Dawn of War Dark Crusade\darkcrusade.exe
FirewallRules: [{368F367E-4049-41B7-85C9-0B6922D88473}] => (Allow) A:\Steam\steamapps\common\Dawn of War Soulstorm\Soulstorm.exe
FirewallRules: [{8ABA6E4A-A696-48CE-A3A3-79104BA4DBFC}] => (Allow) A:\Steam\steamapps\common\Dawn of War Soulstorm\Soulstorm.exe
FirewallRules: [{33BBD946-DA86-4BC1-BFBC-A7BECEC02812}] => (Allow) A:\Steam\steamapps\common\Blood Knights\BloodKnights.exe
FirewallRules: [{C4E0265C-48F0-480E-9BE4-AFCB8AEB2F5D}] => (Allow) A:\Steam\steamapps\common\Blood Knights\BloodKnights.exe
FirewallRules: [{73A1AE98-2390-4F0B-ADAE-00FDD6E58926}] => (Allow) A:\Steam\steamapps\common\Beyond Good and Evil\CheckApplication.exe
FirewallRules: [{BF5266BD-D04A-4BA9-B0B8-DA08B23E3502}] => (Allow) A:\Steam\steamapps\common\Beyond Good and Evil\CheckApplication.exe
FirewallRules: [{2689606B-D594-474A-9364-618B663D877D}] => (Allow) A:\Steam\steamapps\common\Rome Total War Gold\RomeTW.exe
FirewallRules: [{37D763FD-FD1E-4D1A-8B54-C9D9B61237D3}] => (Allow) A:\Steam\steamapps\common\Rome Total War Gold\RomeTW.exe
FirewallRules: [{F14EC401-6A94-4BA8-858F-5CFAEE009E71}] => (Allow) A:\Steam\steamapps\common\Rome Total War Gold\RomeTW-BI.exe
FirewallRules: [{3722A2DE-B5B2-43A2-800A-C1F0250C4E14}] => (Allow) A:\Steam\steamapps\common\Rome Total War Gold\RomeTW-BI.exe
FirewallRules: [{D5C2F2F7-D8A5-4196-BB14-DE08F278494A}] => (Allow) A:\Steam\steamapps\common\The Last Remnant\Binaries\TLR.exe
FirewallRules: [{756AF126-60D0-4AA1-A1E3-2E1DFA0C1702}] => (Allow) A:\Steam\steamapps\common\The Last Remnant\Binaries\TLR.exe
FirewallRules: [{5A5DE089-97EB-4858-9D94-200DAE5EC3B5}] => (Allow) A:\Steam\steamapps\common\Dawn of War 2\DOW2.exe
FirewallRules: [{7463EB0E-6B4B-438C-9EA4-6BF08538C797}] => (Allow) A:\Steam\steamapps\common\Dawn of War 2\DOW2.exe
FirewallRules: [{33466157-08D4-4EAF-BA3B-60112725F0D0}] => (Allow) A:\Steam\steamapps\common\Alien Isolation\AI.exe
FirewallRules: [{2A854316-331D-455D-BC64-27076F2C87C4}] => (Allow) A:\Steam\steamapps\common\Alien Isolation\AI.exe
FirewallRules: [{43BEDFFA-CC83-415F-8B8B-0363851BCB16}] => (Allow) C:\Users\Obscura Nox\AppData\Local\Apps\2.0\3CG9PD41.ZOD\29414AQX.87L\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\CurseClient.exe
FirewallRules: [{177C70E8-5060-4592-9440-7918795F656C}] => (Allow) C:\Users\Obscura Nox\AppData\Local\Apps\2.0\3CG9PD41.ZOD\29414AQX.87L\curs..tion_9e9e83ddf3ed3ead_0005.0001_fb8944c2684f5b6c\CurseClient.exe
FirewallRules: [{775C98A4-2579-4B6D-B936-E144016BE60B}] => (Allow) A:\Steam\steamapps\common\Morrowind\Morrowind Launcher.exe
FirewallRules: [{748344FF-C80C-4F54-A28E-1291063A4CE8}] => (Allow) A:\Steam\steamapps\common\Morrowind\Morrowind Launcher.exe
FirewallRules: [{E4AF96D4-8399-46B0-B05A-14F0471D94FF}] => (Allow) A:\Steam\steamapps\common\Warhammer 40,000 Space Marine\SpaceMarine.exe
FirewallRules: [{036451C3-68DD-4954-BB24-E5CD8F69C1EF}] => (Allow) A:\Steam\steamapps\common\Warhammer 40,000 Space Marine\SpaceMarine.exe
FirewallRules: [{2EBC2255-AEE1-4C94-A72D-1BB7CE6B4F61}] => (Allow) A:\Steam\steamapps\common\Dawn of War II - Retribution\DOW2.exe
FirewallRules: [{EE5682EA-D617-48DD-92E0-4D68393E3382}] => (Allow) A:\Steam\steamapps\common\Dawn of War II - Retribution\DOW2.exe
FirewallRules: [{A3D9560E-305D-47A2-9138-65D21386D50C}] => (Allow) A:\Steam\steamapps\common\CoJ Gunslinger\CoJGunslinger.exe
FirewallRules: [{4E16B280-6E41-4B96-835C-B7A439818DE4}] => (Allow) A:\Steam\steamapps\common\CoJ Gunslinger\CoJGunslinger.exe
FirewallRules: [{85625E2E-9805-4FAC-8AAD-1056D59EFCFD}] => (Allow) A:\Steam\steamapps\common\Orcs Must Die 2\build\release\OrcsMustDie2.exe
FirewallRules: [{FA3EED13-1E9C-4582-8A94-6977BFCAADC3}] => (Allow) A:\Steam\steamapps\common\Orcs Must Die 2\build\release\OrcsMustDie2.exe
FirewallRules: [{C7E4CA2D-1156-4B20-9471-E2AB1AB11E01}] => (Allow) A:\Steam\steamapps\common\Risen 2\system\Risen2.exe
FirewallRules: [{CE5B1BC3-E6BB-4108-9C1C-61FD1473A60A}] => (Allow) A:\Steam\steamapps\common\Risen 2\system\Risen2.exe
FirewallRules: [{EA9858D2-BEE6-4EA4-98A9-467CDD3CB04A}] => (Allow) A:\Steam\steamapps\common\BrutalLegend\BrutalLegend.exe
FirewallRules: [{F349A18E-316F-42FB-B1DE-5A6A364942F0}] => (Allow) A:\Steam\steamapps\common\BrutalLegend\BrutalLegend.exe
FirewallRules: [{65F62285-DF56-457A-943A-E59DA4A4B59E}] => (Allow) A:\Steam\steamapps\common\Valkyria Chronicles\Launcher.exe
FirewallRules: [{7C36E5CB-B72E-490F-A8EE-18FA6D73C24F}] => (Allow) A:\Steam\steamapps\common\Valkyria Chronicles\Launcher.exe
FirewallRules: [{D2AE3734-BE5F-4CED-B47E-CB90EE806224}] => (Allow) A:\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{512F4939-5719-409D-B6E8-7EC675CA06B7}] => (Allow) A:\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{027EA636-1C87-493A-BAF9-847A29DC77D8}] => (Allow) A:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [{56538F1B-3614-458A-BB97-FE0D109B6B0A}] => (Allow) A:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [{E1C9439A-3EC3-4CA8-8F7E-58FFF2812394}] => (Allow) A:\Steam\steamapps\common\chivalrymedievalwarfare\CDW\Binaries\Win64\CDW.exe
FirewallRules: [{368800B4-075C-408E-B054-59273E858091}] => (Allow) A:\Steam\steamapps\common\chivalrymedievalwarfare\CDW\Binaries\Win64\CDW.exe
FirewallRules: [{CC8E57E0-658A-496E-B45A-F0312EFCF3FC}] => (Allow) A:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{3C4DDF73-6034-4B7E-BDD0-D80D6091917C}] => (Allow) A:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{D7272D08-EDD4-4354-8A32-5362C5412C5F}] => (Allow) A:\Steam\steamapps\common\chivalrymedievalwarfare\CDW\Binaries\Win32\CDW.exe
FirewallRules: [{23230ECB-6AB1-4925-B039-C4BCD6781F39}] => (Allow) A:\Steam\steamapps\common\chivalrymedievalwarfare\CDW\Binaries\Win32\CDW.exe
FirewallRules: [{EE4A78A4-D8B5-4C73-9682-CFCE856D0965}] => (Allow) A:\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{11280C42-93D4-477D-B015-635F9C76FBF3}] => (Allow) A:\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{14AAC5CE-A63D-449B-AAEA-16A04FC00C73}] => (Allow) A:\Steam\steamapps\common\Risen 3\system\Risen3.exe
FirewallRules: [{3D934E32-64E5-4585-9AE5-851CD9D059D7}] => (Allow) A:\Steam\steamapps\common\Risen 3\system\Risen3.exe
FirewallRules: [{D3F0F981-7B26-42A5-BF3F-B32A42EE129F}] => (Allow) A:\Steam\steamapps\common\Dungeon Siege 1\DungeonSiege.exe
FirewallRules: [{D6629626-BC5F-48F8-B363-6EB3F5ADFDA5}] => (Allow) A:\Steam\steamapps\common\Dungeon Siege 1\DungeonSiege.exe
FirewallRules: [{6A896C0B-E0A3-4A77-903C-261C78CA3610}] => (Allow) A:\Steam\steamapps\common\Dungeon Siege 2\DungeonSiege2.exe
FirewallRules: [{AE1BC49C-DE07-473C-9EE4-75864853D994}] => (Allow) A:\Steam\steamapps\common\Dungeon Siege 2\DungeonSiege2.exe
FirewallRules: [{EDBC1900-3424-447F-8C6B-327AE69DC1BB}] => (Allow) A:\Steam\steamapps\common\Gothic\system\GOTHIC.EXE
FirewallRules: [{126E3EE4-512F-4ADB-8F95-507A32238A04}] => (Allow) A:\Steam\steamapps\common\Gothic\system\GOTHIC.EXE
FirewallRules: [{5B4656ED-3572-47BC-BC65-CD082F4D169D}] => (Allow) A:\Steam\steamapps\common\Gothic II\system\Gothic2.exe
FirewallRules: [{0917616D-699E-4D2D-80B0-57D7D29658EB}] => (Allow) A:\Steam\steamapps\common\Gothic II\system\Gothic2.exe
FirewallRules: [{700D56BF-2CF0-4C46-8272-9B2DE1A86FE7}] => (Allow) A:\Steam\steamapps\common\DuckTales Remastered\executable\DuckTales.exe
FirewallRules: [{FF2B5215-EBE6-4CED-BB79-D30BA8AB9835}] => (Allow) A:\Steam\steamapps\common\DuckTales Remastered\executable\DuckTales.exe
FirewallRules: [{E8B1D3E8-EEBB-4868-9E86-43999D59BF80}] => (Allow) A:\Steam\steamapps\common\Viking Battle for Asgard\viking.exe
FirewallRules: [{9F1F6854-CAC6-4C58-BD6E-704CE74F3F25}] => (Allow) A:\Steam\steamapps\common\Viking Battle for Asgard\viking.exe
FirewallRules: [{3741C8AB-2C87-4174-8BA6-F2D9A9F254D2}] => (Allow) A:\Steam\steamapps\common\Viking Battle for Asgard\ConfigTool.exe
FirewallRules: [{98E560F6-C25D-433A-84C1-061718C817C0}] => (Allow) A:\Steam\steamapps\common\Viking Battle for Asgard\ConfigTool.exe
FirewallRules: [{A6841F67-92C2-439A-9268-08D0977D4A12}] => (Allow) A:\Steam\steamapps\common\FEAR Ultimate Shooter Edition\FEAR.exe
FirewallRules: [{314B8798-A2DF-4C47-A587-528D2BD3FA78}] => (Allow) A:\Steam\steamapps\common\FEAR Ultimate Shooter Edition\FEAR.exe
FirewallRules: [{525FC5DD-DB99-4231-9419-A6A6DD886E4D}] => (Allow) A:\Steam\steamapps\common\Medieval II Total War\medieval2.exe
FirewallRules: [{AAB271C3-7523-4841-B06B-C273BBDAD6D7}] => (Allow) A:\Steam\steamapps\common\Medieval II Total War\medieval2.exe
FirewallRules: [{31872BD0-8AB2-4789-B901-C000383E8B1B}] => (Allow) A:\Steam\steamapps\common\Gothic 3\Gothic3.exe
FirewallRules: [{4B330B31-B840-4980-874B-EF31A773BF01}] => (Allow) A:\Steam\steamapps\common\Gothic 3\Gothic3.exe
FirewallRules: [{BC18EFC0-D04E-4E8C-AAD0-75A7C7539BF0}] => (Allow) A:\Steam\steamapps\common\FEAR2\FEAR2.exe
FirewallRules: [{E8DCC4B7-3485-4AD8-A9EC-3B03B17FA270}] => (Allow) A:\Steam\steamapps\common\FEAR2\FEAR2.exe
FirewallRules: [{96B724B0-71F2-436D-BFB9-5817700A20A5}] => (Allow) A:\Steam\steamapps\common\F.E.A.R. 3\F.E.A.R. 3.exe
FirewallRules: [{513AEC63-FCFD-4AE0-A3E7-9E9178BAD871}] => (Allow) A:\Steam\steamapps\common\F.E.A.R. 3\F.E.A.R. 3.exe
FirewallRules: [{BA783F7C-01B1-42A9-A944-19951D8D71AC}] => (Allow) A:\Steam\steamapps\common\Quake Live\quakelive_steam.exe
FirewallRules: [{8AE5D6FD-5B4C-425F-822F-FB1E473272DC}] => (Allow) A:\Steam\steamapps\common\Quake Live\quakelive_steam.exe
FirewallRules: [{97EF4C63-2893-47CC-B4F2-AD11CBABF2A9}] => (Allow) A:\Steam\steamapps\common\Need for Speed Hot Pursuit\NFS11.exe
FirewallRules: [{52FD48A2-13F6-4BBA-82B4-D92C23B522D4}] => (Allow) A:\Steam\steamapps\common\Need for Speed Hot Pursuit\NFS11.exe
FirewallRules: [{640BA20A-2E5E-4E6C-B974-5D3EFA30824A}] => (Allow) A:\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{531E74A2-2FFA-4AA4-BAC7-D772F975B4AB}] => (Allow) A:\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{4F4EC224-CE4D-42DA-BC12-4DE9A18C57D5}] => (Allow) A:\Steam\steamapps\common\nmrih\sdk\hl2.exe
FirewallRules: [{CB0102F1-E6EA-4AF2-987A-A25DF542CBAA}] => (Allow) A:\Steam\steamapps\common\nmrih\sdk\hl2.exe
FirewallRules: [{3B19A732-A6AC-4CD7-B10A-B252A0ED1548}] => (Allow) A:\Steam\steamapps\common\Total War SHOGUN 2\Shogun2.exe
FirewallRules: [{2BF43D78-07EB-40EA-95AE-DBE019037E50}] => (Allow) A:\Steam\steamapps\common\Total War SHOGUN 2\Shogun2.exe
FirewallRules: [{D15DFE16-2A08-4ECD-B27D-8D1CED618AD6}] => (Allow) A:\Steam\steamapps\common\Call of Duty Black Ops\BlackOpsMP.exe
FirewallRules: [{B708B8B4-228E-4B2C-9275-1F61BDF5DC2B}] => (Allow) A:\Steam\steamapps\common\Call of Duty Black Ops\BlackOpsMP.exe
FirewallRules: [{8507EC82-4353-4958-874C-AA060D8B3F9D}] => (Allow) A:\Steam\steamapps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{7E07A933-73E3-4782-A433-77393545F39A}] => (Allow) A:\Steam\steamapps\common\Call of Duty Black Ops\BlackOps.exe
FirewallRules: [{082D0DA8-5AAC-48ED-926B-731FF2BC3943}] => (Allow) A:\Steam\steamapps\common\DC Universe Online\LaunchPad.exe
FirewallRules: [{163BECC5-55EF-4319-BC08-E00E37306B52}] => (Allow) A:\Steam\steamapps\common\DC Universe Online\LaunchPad.exe
FirewallRules: [{B439E8CD-288F-4C88-9EE6-C64F40A15019}] => (Allow) A:\Steam\steamapps\common\Volgarr\Volgarr.exe
FirewallRules: [{6D9A86F8-9734-4A4F-91E8-B51C25537A3A}] => (Allow) A:\Steam\steamapps\common\Volgarr\Volgarr.exe
FirewallRules: [{EA42D8E8-E70F-45F5-A4C6-64859B8CE975}] => (Allow) A:\Steam\steamapps\common\Penumbra Black Plague\redist\Penumbra.exe
FirewallRules: [{F1579EEF-14D4-4AFA-AB63-42C7A676B182}] => (Allow) A:\Steam\steamapps\common\Penumbra Black Plague\redist\Penumbra.exe
FirewallRules: [{59860B4F-BD37-41DE-AB7F-0D0EC7892CA0}] => (Allow) A:\Steam\steamapps\common\Penumbra Overture\redist\Penumbra.exe
FirewallRules: [{9798DD48-E5E6-4ACE-8990-45364DEADB8C}] => (Allow) A:\Steam\steamapps\common\Penumbra Overture\redist\Penumbra.exe
FirewallRules: [{BA932A57-D4B2-4343-B32F-4EB35C750A33}] => (Allow) A:\Steam\steamapps\common\Penumbra Black Plague\redist\Requiem.exe
FirewallRules: [{72F4123A-7D09-40C6-9067-D60FCA385DD4}] => (Allow) A:\Steam\steamapps\common\Penumbra Black Plague\redist\Requiem.exe
FirewallRules: [{ED39082D-A54A-4DE5-93FB-17752356691D}] => (Allow) A:\Steam\steamapps\common\Deus Ex\System\DeusEx.exe
FirewallRules: [{608649B0-C1E3-4E65-AC41-A4B34949C50F}] => (Allow) A:\Steam\steamapps\common\Deus Ex\System\DeusEx.exe
FirewallRules: [{FE53F1A4-AE2A-4DAD-A01C-AA6077C06845}] => (Allow) A:\Steam\steamapps\common\Oddworld Abes Exoddus\Exoddus.exe
FirewallRules: [{118FD04B-657A-4F5F-AF94-5F7B25692C52}] => (Allow) A:\Steam\steamapps\common\Oddworld Abes Exoddus\Exoddus.exe
FirewallRules: [{DC658BC5-4F31-43E6-9643-45EEA701F7FB}] => (Allow) A:\Steam\steamapps\common\Oddworld Abes Oddysee\AbeWin.exe
FirewallRules: [{4A643BA6-C4F1-4E92-AF54-C4994BE306BC}] => (Allow) A:\Steam\steamapps\common\Oddworld Abes Oddysee\AbeWin.exe
FirewallRules: [{901392EB-6453-463B-A515-1F771AF83B49}] => (Allow) A:\Steam\steamapps\common\Stranger's Wrath\Launcher.exe
FirewallRules: [{F1482002-53CE-4750-93D1-0299E2782D41}] => (Allow) A:\Steam\steamapps\common\Stranger's Wrath\Launcher.exe
FirewallRules: [{DFDD910E-10F6-4C93-AACA-C391EF920382}] => (Allow) A:\Steam\steamapps\common\Titan Quest\Titan Quest.exe
FirewallRules: [{B3EDCD63-2C6A-4F3D-B123-26D734D1259B}] => (Allow) A:\Steam\steamapps\common\Titan Quest\Titan Quest.exe
FirewallRules: [{EEA010F2-F22A-4425-82F5-6D2B07E4DC9A}] => (Allow) A:\Steam\steamapps\common\Titan Quest Immortal Throne\Tqit.exe
FirewallRules: [{C71DB45F-AFEF-4858-B6BD-71FE95F85338}] => (Allow) A:\Steam\steamapps\common\Titan Quest Immortal Throne\Tqit.exe
FirewallRules: [{34D45625-20A7-4734-9DF5-85D5F4EDBC47}] => (Allow) A:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{F781B151-15BC-4B69-8716-07F60ABF0A6F}] => (Allow) A:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{A749EF6F-EBD2-4093-A417-CE423F0B00C7}] => (Allow) A:\Steam\steamapps\common\FE Legendary Heroes\LegendaryHeroes.exe
FirewallRules: [{1785D315-BE80-491E-B3DD-0D5D7C4477E0}] => (Allow) A:\Steam\steamapps\common\FE Legendary Heroes\LegendaryHeroes.exe
FirewallRules: [{9B2E14C5-7A41-4C1F-80BA-1D35DA62FC4A}] => (Allow) A:\Steam\steamapps\common\Jade Empire\JadeEmpireLauncher.exe
FirewallRules: [{C6E4EA9A-0D60-4D6A-8F4D-4A969A07EB0E}] => (Allow) A:\Steam\steamapps\common\Jade Empire\JadeEmpireLauncher.exe
FirewallRules: [{F4AF55E2-89C8-4325-90DD-FB9D7AA5E4A8}] => (Allow) A:\Steam\steamapps\common\Jade Empire\JadeEmpireConfig.exe
FirewallRules: [{7B8A1D74-1C8B-48B7-AA80-9416D044F34B}] => (Allow) A:\Steam\steamapps\common\Jade Empire\JadeEmpireConfig.exe
FirewallRules: [{18990B5C-B5C6-47AC-ABF6-83ECE91EB792}] => (Allow) A:\Steam\steamapps\common\DOOM 3 BFG Edition\Doom3BFG.exe
FirewallRules: [{D586ABDC-B367-42A4-B38E-2988D59B643B}] => (Allow) A:\Steam\steamapps\common\DOOM 3 BFG Edition\Doom3BFG.exe
FirewallRules: [{EB1F4DCA-01A7-4E71-8478-04083D2434DD}] => (Allow) A:\Steam\steamapps\common\Dungeon Siege III\Dungeon Siege III.exe
FirewallRules: [{DA9D89D7-4DF4-4B85-89EB-A478F7CAF65A}] => (Allow) A:\Steam\steamapps\common\Dungeon Siege III\Dungeon Siege III.exe
FirewallRules: [{8FB1E5CB-383C-43D3-928E-7D5B71E8D22B}] => (Allow) A:\Steam\steamapps\common\Supreme Commander\bin\SupremeCommander.exe
FirewallRules: [{E6D2BD89-5B33-45EB-93A4-BC453E6087B6}] => (Allow) A:\Steam\steamapps\common\Supreme Commander\bin\SupremeCommander.exe
FirewallRules: [{B9A41186-E9E1-4899-8C26-AFEEA1982613}] => (Allow) A:\Steam\steamapps\common\Ryse Son of Rome\Bin64\Ryse.exe
FirewallRules: [{6876F345-53EA-40E7-97A6-238AE77F2AFB}] => (Allow) A:\Steam\steamapps\common\Ryse Son of Rome\Bin64\Ryse.exe
FirewallRules: [{F2985EA3-6021-4580-B2BC-9CC3B0C0259A}] => (Allow) A:\Steam\steamapps\common\Supreme Commander Forged Alliance\bin\SupremeCommander.exe
FirewallRules: [{25FA0BCF-8A7A-4900-9DC5-15292F08B9D9}] => (Allow) A:\Steam\steamapps\common\Supreme Commander Forged Alliance\bin\SupremeCommander.exe
FirewallRules: [{3541433B-501B-4F36-821D-36EFE120A80F}] => (Allow) A:\Steam\steamapps\common\Oddworld Munchs Oddysee\bin\launcher.exe
FirewallRules: [{B2ECAD23-F584-42A0-B4B8-3D1E13DE85CF}] => (Allow) A:\Steam\steamapps\common\Oddworld Munchs Oddysee\bin\launcher.exe
FirewallRules: [{9059095E-1D63-4063-AA47-D3762D1079B9}] => (Allow) A:\Steam\steamapps\common\Dead Space\Dead Space.exe
FirewallRules: [{DB0BCD98-B1C0-4346-A382-ABA98E4C2148}] => (Allow) A:\Steam\steamapps\common\Dead Space\Dead Space.exe
FirewallRules: [{98E5D80C-FE2C-4754-8BF7-AE3661DEB0A6}] => (Allow) A:\Steam\steamapps\common\Dead Island\DeadIslandGame.exe
FirewallRules: [{5DEE43E0-267C-4C90-8E00-4F7907D2EC5B}] => (Allow) A:\Steam\steamapps\common\Dead Island\DeadIslandGame.exe
FirewallRules: [{5A8B6A9B-2980-4B5B-A143-8D883F8D0B26}] => (Allow) A:\Steam\steamapps\common\TombRaider (III)\tomb3.exe
FirewallRules: [{FF24A6FD-3EE1-4424-B14C-427414EC9889}] => (Allow) A:\Steam\steamapps\common\TombRaider (III)\tomb3.exe
FirewallRules: [{085B5142-A71C-4451-A7B4-E35F9A988ADA}] => (Allow) A:\Steam\steamapps\common\Tomb Raider (II)\Tomb2.exe
FirewallRules: [{F7B7700B-8F45-49AE-B466-46DC4EE68B9A}] => (Allow) A:\Steam\steamapps\common\Tomb Raider (II)\Tomb2.exe
FirewallRules: [{6FA75DE2-2881-461E-A4C0-B82179797B73}] => (Allow) A:\Steam\steamapps\common\Tomb Raider (I)\dosbox.exe
FirewallRules: [{B383B080-ABDA-4642-89D2-7A3DB2FA75A0}] => (Allow) A:\Steam\steamapps\common\Tomb Raider (I)\dosbox.exe
FirewallRules: [{68606721-4EBE-47AC-A684-7008645C776D}] => (Allow) A:\Steam\steamapps\common\Dark Void\Launcher.exe
FirewallRules: [{B35690B6-7A96-43CA-BEF3-5A9D0B3E8F89}] => (Allow) A:\Steam\steamapps\common\Dark Void\Launcher.exe
FirewallRules: [{80226B98-04A0-4A59-9956-AC90485F4C40}] => (Allow) A:\Steam\steamapps\common\Tomb Raider (V) Chronicles\PCTomb5.exe
FirewallRules: [{258843BE-3F87-47B2-AD29-A926A68BD385}] => (Allow) A:\Steam\steamapps\common\Tomb Raider (V) Chronicles\PCTomb5.exe
FirewallRules: [{45EC60ED-68C9-415A-B1A8-2C5F2592A1F4}] => (Allow) A:\Steam\steamapps\common\Tomb Raider (VI) The Angel of Darkness\Launcher.exe
FirewallRules: [{B91E2D0B-6A04-46D2-A75D-7B45A1EFD596}] => (Allow) A:\Steam\steamapps\common\Tomb Raider (VI) The Angel of Darkness\Launcher.exe
FirewallRules: [{F5F056E5-C93F-4B37-B879-D83DC3BB6F53}] => (Allow) A:\Steam\steamapps\common\Tomb Raider (IV) The Last Revelation\tomb4.exe
FirewallRules: [{C0CEEEC5-E4FB-4E5F-8C1A-A429C0B2803B}] => (Allow) A:\Steam\steamapps\common\Tomb Raider (IV) The Last Revelation\tomb4.exe
FirewallRules: [{72FEF800-5487-4D11-A617-4FF59FF4418F}] => (Allow) A:\Steam\steamapps\common\Sniper Elite\SniperElite.exe
FirewallRules: [{1A5BE172-C725-4BA0-BACE-6A676590AA8D}] => (Allow) A:\Steam\steamapps\common\Sniper Elite\SniperElite.exe
FirewallRules: [{AC2F5CDB-A613-4CE9-92A5-269076DDBFFD}] => (Allow) A:\Steam\steamapps\common\Tomb Raider Legend\trl.exe
FirewallRules: [{0CDE7545-BA61-4CB3-B8FD-2EA2BF34CD2A}] => (Allow) A:\Steam\steamapps\common\Tomb Raider Legend\trl.exe
FirewallRules: [{4429B2CA-25F1-49A9-95A8-5BC985FFF9E2}] => (Allow) A:\Steam\steamapps\common\Tomb Raider Anniversary\tra.exe
FirewallRules: [{4461074B-6783-437E-AAC0-24FC7D7C23F3}] => (Allow) A:\Steam\steamapps\common\Tomb Raider Anniversary\tra.exe
FirewallRules: [{C24CC582-8E4C-4D7B-BA34-1354A3675304}] => (Allow) A:\Steam\steamapps\common\Tomb Raider Underworld\tru.exe
FirewallRules: [{3566F875-599E-4978-92E2-EC62575E2943}] => (Allow) A:\Steam\steamapps\common\Tomb Raider Underworld\tru.exe
FirewallRules: [{E9382867-1A4C-44F3-8E84-F224F4AB3B36}] => (Allow) A:\Steam\steamapps\common\Fallout New Vegas\FalloutNVLauncher.exe
FirewallRules: [{0082D60A-0B1A-4EC9-A091-0504F2453669}] => (Allow) A:\Steam\steamapps\common\Fallout New Vegas\FalloutNVLauncher.exe
FirewallRules: [{6E819BFE-AAF6-4238-A589-6BE903DD59CC}] => (Allow) A:\Steam\steamapps\common\Lara Croft and the Guardian of Light\lcgol.exe
FirewallRules: [{7502AC32-CFAB-4224-9038-05CC73D52B1B}] => (Allow) A:\Steam\steamapps\common\Lara Croft and the Guardian of Light\lcgol.exe
FirewallRules: [{D1B72E52-DEB7-4B17-8463-95DA3D232FDC}] => (Allow) A:\Steam\steamapps\common\Lichdom Battlemage\Bin64\LichdomBattlemage.exe
FirewallRules: [{A8913CCD-0D8E-41FF-BD0F-B2EAD4AE0CBE}] => (Allow) A:\Steam\steamapps\common\Lichdom Battlemage\Bin64\LichdomBattlemage.exe
FirewallRules: [{A2FD04F3-9019-4D47-B92D-9C57ED332637}] => (Allow) A:\Steam\steamapps\common\Deus Ex - Human Revolution\dxhr.exe
FirewallRules: [{C2A6E245-30C2-49BE-BCA1-1FB234B5587E}] => (Allow) A:\Steam\steamapps\common\Deus Ex - Human Revolution\dxhr.exe
FirewallRules: [{EADA72E9-3A67-4A83-A962-8BBE5D358A8A}] => (Allow) A:\Steam\steamapps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{B0C3A6BF-EBB1-49AF-A205-A6753DA4AFB3}] => (Allow) A:\Steam\steamapps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{747A49AA-C089-4184-9D5F-9DA7C4841128}] => (Allow) A:\Steam\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{570FF714-EDBA-4216-9685-18F1654BBBDC}] => (Allow) A:\Steam\steamapps\common\Stealth Inc 2\settings\settings.exe
FirewallRules: [{0148C507-E258-4A95-82FF-D960E66BA493}] => (Allow) A:\Steam\steamapps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe
FirewallRules: [{5DAEEC61-BB85-4137-AF02-FA4A6853BC97}] => (Allow) A:\Steam\steamapps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe
FirewallRules: [{DB364DD5-4F0B-4FF4-8869-C9D8CE1AF985}] => (Allow) A:\Steam\steamapps\common\thief_2\thief2.exe
FirewallRules: [{EFA6419A-3983-4C98-AED5-4B50A456C10E}] => (Allow) A:\Steam\steamapps\common\thief_2\thief2.exe
FirewallRules: [{DC49CDE1-9E7A-4339-BA1F-4E328044B6F1}] => (Allow) A:\Steam\steamapps\common\thief_gold\THIEF.EXE
FirewallRules: [{EB8EAB43-3E02-4A42-9E5D-BDAD0F35BB44}] => (Allow) A:\Steam\steamapps\common\thief_gold\THIEF.EXE
FirewallRules: [{3592FDB4-5381-4E76-8E80-1E98BF7786FF}] => (Allow) A:\Steam\steamapps\common\Thief Deadly Shadows\System\runme.exe
FirewallRules: [{1B0D76B9-3927-437B-BD2B-FACCB12BEAA1}] => (Allow) A:\Steam\steamapps\common\Thief Deadly Shadows\System\runme.exe
FirewallRules: [{48C25477-EAAA-47B5-AEC3-44B7DEADA5BB}] => (Allow) A:\Steam\steamapps\common\Batman Arkham Asylum GOTY\Binaries\BmLauncher.exe
FirewallRules: [{63C36F18-133A-4587-B69F-709B11EDFE18}] => (Allow) A:\Steam\steamapps\common\Batman Arkham Asylum GOTY\Binaries\BmLauncher.exe
FirewallRules: [{57C3F1F4-6DE4-4342-961F-CC7E54F19218}] => (Allow) A:\Steam\steamapps\common\Spellforce 2 - Faith in Destiny\SpellForce2FaithInDestiny.exe
FirewallRules: [{2A6CB923-DEE3-4469-BA60-0C9178B1C52F}] => (Allow) A:\Steam\steamapps\common\Spellforce 2 - Faith in Destiny\SpellForce2FaithInDestiny.exe
FirewallRules: [{EB407D1C-1D2A-47D0-AAEC-C7359FCCBF34}] => (Allow) A:\Steam\steamapps\common\Spellforce 2 - Faith in Destiny\SpellForce2FaithinDestinyEditor.exe
FirewallRules: [{42239D74-3FA0-4E3B-8B67-AC0C9D9E79B9}] => (Allow) A:\Steam\steamapps\common\Spellforce 2 - Faith in Destiny\SpellForce2FaithinDestinyEditor.exe
FirewallRules: [{9C93E8AB-FE6A-454F-80FE-D8E7EFCDF162}] => (Allow) A:\Steam\steamapps\common\Two Worlds - Epic Edition\TwoWorlds.exe
FirewallRules: [{1F4EEBA5-79B7-4720-BF3E-947DAAAECCA2}] => (Allow) A:\Steam\steamapps\common\Two Worlds - Epic Edition\TwoWorlds.exe
FirewallRules: [{505E7732-3DC2-4AAF-8492-BE23D80DA14E}] => (Allow) A:\Steam\steamapps\common\Two Worlds - Epic Edition\TwoWorlds_RADEON.exe
FirewallRules: [{626A4C7B-3971-4A9A-B221-53F60213042F}] => (Allow) A:\Steam\steamapps\common\Two Worlds - Epic Edition\TwoWorlds_RADEON.exe
FirewallRules: [{774C3B79-8D34-4CF3-BDCE-DD0309003A9C}] => (Allow) A:\Steam\steamapps\common\Dynasty Warriors 8\Launch.exe
FirewallRules: [{B76F518D-D446-4440-ADBA-313345C92BFA}] => (Allow) A:\Steam\steamapps\common\Dynasty Warriors 8\Launch.exe
FirewallRules: [{E5CC95D4-168C-4041-AEDD-AEE46849E156}] => (Allow) A:\Steam\steamapps\common\Dynasty Warriors 8\Config.exe
FirewallRules: [{8A6ED93D-E141-429E-B63A-C7B6E2FC5FC8}] => (Allow) A:\Steam\steamapps\common\Dynasty Warriors 8\Config.exe
FirewallRules: [{57CF7DEB-873A-4F15-B694-FBE0C801192E}] => (Allow) A:\Steam\steamapps\common\Resident Evil Biohazard HD REMASTER\bhd.exe
FirewallRules: [{9024E591-98FB-41F8-9317-4FE1E321D037}] => (Allow) A:\Steam\steamapps\common\Resident Evil Biohazard HD REMASTER\bhd.exe
FirewallRules: [{3CD8869D-6BBC-465F-B665-C941B9F76D9C}] => (Allow) A:\Steam\steamapps\common\Lords Of The Fallen\bin\LordsOfTheFallen.exe
FirewallRules: [{6317AE15-A9BD-4D0E-AB7A-D06294590348}] => (Allow) A:\Steam\steamapps\common\Lords Of The Fallen\bin\LordsOfTheFallen.exe
FirewallRules: [{58814496-B7A1-480A-A7D3-DE2E4BF4A39B}] => (Allow) A:\Steam\steamapps\common\RAGE\Rage.exe
FirewallRules: [{64AD5725-8762-415D-89FB-22D9BC34B470}] => (Allow) A:\Steam\steamapps\common\RAGE\Rage.exe
FirewallRules: [{74520FA1-658A-47E5-A6C7-FA97C8DD029C}] => (Allow) A:\Steam\steamapps\common\RAGE\Rage64.exe
FirewallRules: [{0242427F-481A-4E32-B6D7-6837093EF405}] => (Allow) A:\Steam\steamapps\common\RAGE\Rage64.exe
FirewallRules: [{E4D9E3E1-5569-4856-B789-2F0C72241309}] => (Allow) A:\Steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [{2D44206E-47C9-4224-84E8-7F0B40BF3ADB}] => (Allow) A:\Steam\steamapps\common\Hitman Absolution\HMA.exe
FirewallRules: [{30673130-B6AE-406A-9F14-7AE171599D0C}] => (Allow) A:\Steam\steamapps\common\Guacamelee\Guac.exe
FirewallRules: [{958FD845-8618-42FE-ABED-C106B32F601A}] => (Allow) A:\Steam\steamapps\common\Guacamelee\Guac.exe
FirewallRules: [{87792B9D-5BB8-4715-B3CF-B1D0624DF1E9}] => (Allow) A:\Steam\steamapps\common\The Guild II\GuildII.exe
FirewallRules: [{0805CDBF-20EB-4D97-AEFE-C33B690A9127}] => (Allow) A:\Steam\steamapps\common\The Guild II\GuildII.exe
FirewallRules: [{D7804DEC-4522-4306-960B-E9778385278E}] => (Allow) A:\Steam\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{7E64179D-AD2F-406B-95BC-D7F28D0F1D89}] => (Allow) A:\Steam\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{FCCB765E-97E5-41B6-8873-9676742AA577}] => (Allow) A:\Steam\steamapps\common\Sacred Gold\Sacred.exe
FirewallRules: [{4C0EACFC-CA94-4334-BD4F-0E6A09437610}] => (Allow) A:\Steam\steamapps\common\Sacred Gold\Sacred.exe
FirewallRules: [{172191BC-54FF-49D3-8FBD-C0BE96347998}] => (Allow) A:\Steam\steamapps\common\Shadowrun Returns\Shadowrun.exe
FirewallRules: [{987C8229-AF1B-4AE2-80C7-75B06FF1BD00}] => (Allow) A:\Steam\steamapps\common\Shadowrun Returns\Shadowrun.exe
FirewallRules: [{1F5BF3E5-C322-40E2-8502-7E6F20BEAD3D}] => (Allow) A:\Steam\steamapps\common\Bastion\Bastion.exe
FirewallRules: [{6997B0AD-B00E-41F6-A363-CE8CCD327371}] => (Allow) A:\Steam\steamapps\common\Bastion\Bastion.exe
FirewallRules: [{6FA0F80E-19D4-4FED-B3F2-5EC7EF56AEB2}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{6899F919-4C0E-4076-989F-9BE39927CEC3}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{FEC53DC6-E085-49CE-B804-C72F8C3387C5}] => (Allow) A:\Vindictus EU\en-EU\NMService.exe
FirewallRules: [{1EB0E1DE-5721-4C0B-9CB1-54F0292B3629}] => (Allow) A:\Vindictus EU\en-EU\NMService.exe
         

Alt 21.10.2016, 21:01   #5
Obscura Nox
 
Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird. - Standard

Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird.



Code:
ATTFilter
FirewallRules: [{181113F1-872B-4C3F-87E7-7E7174044EDE}] => (Allow) A:\Steam\steamapps\common\ArcheAge\GlyphClient.exe
FirewallRules: [{FBCBF903-874F-4F8C-AE6B-F8E77F09F3E5}] => (Allow) A:\Steam\steamapps\common\ArcheAge\GlyphClient.exe
FirewallRules: [{777479CF-E600-476F-B914-8F668AF2916A}] => (Allow) A:\Steam\steamapps\common\Guardians of Middle-earth\x86\GOME.exe
FirewallRules: [{F2F0EFFC-DCF2-4EF8-A75C-1D1A68FF77DB}] => (Allow) A:\Steam\steamapps\common\Guardians of Middle-earth\x86\GOME.exe
FirewallRules: [{4105DD78-0324-4C3E-9287-E37530C35A05}] => (Allow) A:\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe
FirewallRules: [{7AA22A55-47DB-4919-86CF-72385AAA40B0}] => (Allow) A:\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe
FirewallRules: [{6BE9AC76-7697-41C2-AD5F-45969849F471}] => (Allow) A:\GameforgeLive\gfl_client.exe
FirewallRules: [{769D32C1-586E-4364-BAAD-28C56533118C}] => (Allow) A:\Steam\steamapps\common\Arcania Gothic 4\Arcania.exe
FirewallRules: [{F2D92226-2AED-4726-9A79-73C2F1E25F66}] => (Allow) A:\Steam\steamapps\common\Arcania Gothic 4\Arcania.exe
FirewallRules: [{26DB1547-FC31-4C09-8518-8423F9E3C1C1}] => (Allow) A:\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{058ED23B-5914-4EEA-8AD7-8651E6B28378}] => (Allow) A:\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{D2C5D719-E70A-4D7A-A9D3-44C6BC6248E7}] => (Allow) A:\Steam\steamapps\common\Castlevania Lords of Shadow 2\bin\CLOS2.exe
FirewallRules: [{AF591C08-FEE2-4C43-9197-B77218111A75}] => (Allow) A:\Steam\steamapps\common\Castlevania Lords of Shadow 2\bin\CLOS2.exe
FirewallRules: [{93ECAA2F-4BB7-4662-8CF0-472E9894EA63}] => (Allow) A:\Steam\steamapps\common\In Verbis Virtus\Binaries\Win32\IVV.exe
FirewallRules: [{C389070B-A5BE-4A0B-A223-2246C6ECE733}] => (Allow) A:\Steam\steamapps\common\In Verbis Virtus\Binaries\Win32\IVV.exe
FirewallRules: [{E4C517CE-12A4-4B9F-9A27-CD7098B38F44}] => (Allow) A:\Steam\steamapps\common\ZenoClash\ZenoClash.exe
FirewallRules: [{60247C7C-C85C-4270-8AC3-D0DD68E4D11A}] => (Allow) A:\Steam\steamapps\common\ZenoClash\ZenoClash.exe
FirewallRules: [{AC0D89B1-7C87-4207-BBD5-532ADAB178BD}] => (Allow) A:\Steam\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{989A1071-556E-458C-A14F-F4B89C731903}] => (Allow) A:\Steam\steamapps\common\Grand Theft Auto San Andreas\gta-sa.exe
FirewallRules: [{CBDA4AA2-C8E6-48C5-B5A8-C9541ECC71C1}] => (Allow) A:\Steam\steamapps\common\The Ball\Binaries\Win32\TheBall.exe
FirewallRules: [{7B8BBACE-1C57-40AF-9C06-2FE1E2C912CF}] => (Allow) A:\Steam\steamapps\common\The Ball\Binaries\Win32\TheBall.exe
FirewallRules: [{E6626873-6BC6-45B3-82A6-F71FF3A523BA}] => (Allow) A:\Steam\steamapps\common\Resident Evil 4\Bin32\bio4.exe
FirewallRules: [{0C3CBCE7-4BCD-4861-AFEB-30BD15170E1E}] => (Allow) A:\Steam\steamapps\common\Resident Evil 4\Bin32\bio4.exe
FirewallRules: [{201298B3-AA55-4C69-B78A-F5668B881A81}] => (Allow) A:\Steam\steamapps\common\Strider\Strider.exe
FirewallRules: [{08ABE7D9-CBA1-455B-8968-98A566B0E91B}] => (Allow) A:\Steam\steamapps\common\Strider\Strider.exe
FirewallRules: [{484D1198-6C24-46F8-BBBB-408CD53C7C03}] => (Allow) A:\Steam\steamapps\common\NiGHTS Into Dreams\Launcher.exe
FirewallRules: [{7E989FD1-D4B5-4F9D-965C-CFEE45DE3948}] => (Allow) A:\Steam\steamapps\common\NiGHTS Into Dreams\Launcher.exe
FirewallRules: [{BA70B67B-CEFB-40B9-AC01-9FDBB385211F}] => (Allow) A:\Steam\steamapps\common\Resident Evil 5\Launcher.exe
FirewallRules: [{E49E5FC0-1199-40A9-B701-7FC2FEFA366C}] => (Allow) A:\Steam\steamapps\common\Resident Evil 5\Launcher.exe
FirewallRules: [{F5FD891A-2210-4572-8265-1D34F6FA846B}] => (Allow) A:\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{00317C74-F086-4016-8F28-1E5115226327}] => (Allow) A:\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{DF6E6175-FF82-4004-B2D2-EAC424E4CBE1}] => (Allow) A:\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{4742151F-ACF6-4035-BA8F-F697752FD3BF}] => (Allow) A:\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{036555AD-612D-4E0B-B4BF-6931A6A79B18}] => (Allow) A:\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{7F7C0C27-FC12-444A-8336-558DA44D83D9}] => (Allow) A:\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{94AA065B-F8CB-43F9-B9E3-C8ABEE2DB21C}] => (Allow) A:\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [{34539D13-85E8-4CA3-AE19-BFE5CEE006E0}] => (Allow) A:\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [{8EC72A7A-9C68-407B-A4A8-E09FFFE3F2B9}] => (Allow) A:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{DABA5ACF-2FD7-4538-BA91-73DF826A31AA}] => (Allow) A:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{95C21F6A-DDD0-4234-A812-02B4E156844C}] => (Allow) A:\Steam\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [{58985EE9-93BB-48AA-8589-939BC1CED94F}] => (Allow) A:\Steam\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [{C18867FE-E2F7-4508-BA5A-B45AEC827F7C}] => (Allow) A:\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{4283F5EF-A0FF-43BE-AE41-91E4A54669C0}] => (Allow) A:\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{E3D0DAF3-8F17-4128-B1AD-B10F705C5BFE}] => (Allow) A:\Steam\steamapps\common\Shovel Knight\ShovelKnight.exe
FirewallRules: [{EC6E3CA6-A565-4EA2-BA17-6EB8E62332B9}] => (Allow) A:\Steam\steamapps\common\Shovel Knight\ShovelKnight.exe
FirewallRules: [{27E4D64F-5CAF-4069-AB37-AE7206B0C37D}] => (Allow) A:\Steam\steamapps\common\Coin Crypt\PC\CoinCrypt-win.exe
FirewallRules: [{91C33CDF-C5EA-413B-8D09-54984E60A2AF}] => (Allow) A:\Steam\steamapps\common\Coin Crypt\PC\CoinCrypt-win.exe
FirewallRules: [{8C81EB4B-3434-47E4-AD2E-F4D8E54B9CDC}] => (Allow) A:\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\ASN_App_PcDx9_Final.exe
FirewallRules: [{9DF766BC-F05D-48AC-9653-9363A28A1092}] => (Allow) A:\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\ASN_App_PcDx9_Final.exe
FirewallRules: [{F9308BAF-711A-4B65-B092-1844417F998B}] => (Allow) A:\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\Launcher.exe
FirewallRules: [{3F72DCD1-6893-4D9E-A2D3-BDE5779138BF}] => (Allow) A:\Steam\steamapps\common\Sonic & All-Stars Racing Transformed\Launcher.exe
FirewallRules: [{0177BF12-8572-4135-BFC0-7E20EA7D1F78}] => (Allow) A:\Steam\steamapps\common\War in the North\witn.exe
FirewallRules: [{D31E8D68-4F85-4F34-99A5-C05AB5774563}] => (Allow) A:\Steam\steamapps\common\War in the North\witn.exe
FirewallRules: [{306E9165-5CCA-4C59-933B-5AB6238AC0BF}] => (Allow) A:\Steam\steamapps\common\Confrontation\Confrontation.exe
FirewallRules: [{0DF60E48-8FB3-447F-A2D9-E06AB67976DD}] => (Allow) A:\Steam\steamapps\common\Confrontation\Confrontation.exe
FirewallRules: [{C6BD7290-9AFA-4168-A824-2BECC0A54522}] => (Allow) A:\Steam\steamapps\common\Singularity\Binaries\Singularity.exe
FirewallRules: [{C8428C55-E5C7-458D-AD64-2F5923BF6FFC}] => (Allow) A:\Steam\steamapps\common\Singularity\Binaries\Singularity.exe
FirewallRules: [{E2F44569-2948-40CA-AB6B-F594FD195A14}] => (Allow) A:\Steam\steamapps\common\Contagion\contagion.exe
FirewallRules: [{CF2E7B48-6365-4442-8E78-C5FAED6A2F6E}] => (Allow) A:\Steam\steamapps\common\Contagion\contagion.exe
FirewallRules: [{F86D9653-4AC2-4B49-8470-03E84C2E9DD9}] => (Allow) A:\Steam\steamapps\common\Men of War Assault Squad\mow_assault_squad.exe
FirewallRules: [{6DB774A7-6095-4892-9C69-697C9FCCF3A6}] => (Allow) A:\Steam\steamapps\common\Men of War Assault Squad\mow_assault_squad.exe
FirewallRules: [{74626FE1-5CBA-475E-A92E-43EE0792531C}] => (Allow) A:\Steam\steamapps\common\abyss_odyssey\Binaries\Win32\AO.exe
FirewallRules: [{30752A80-9ECE-4B24-86F3-1115F012981E}] => (Allow) A:\Steam\steamapps\common\abyss_odyssey\Binaries\Win32\AO.exe
FirewallRules: [{6B2B7BA6-2C04-4706-90D2-E057AEF348ED}] => (Allow) A:\Steam\steamapps\common\Two Worlds II\TwoWorlds2.exe
FirewallRules: [{4E0CDC69-1DD2-4F4E-8999-98CCF6F150E4}] => (Allow) A:\Steam\steamapps\common\Two Worlds II\TwoWorlds2.exe
FirewallRules: [{91BF50D6-EE3E-4632-9824-D7B3DC56DE50}] => (Allow) A:\Steam\steamapps\common\Two Worlds II\TwoWorlds2_DX10.exe
FirewallRules: [{F6D54890-FB76-4CED-9089-DF736EF706C5}] => (Allow) A:\Steam\steamapps\common\Two Worlds II\TwoWorlds2_DX10.exe
FirewallRules: [{C48EB4C6-061E-4EAC-B376-C7538933CB3C}] => (Allow) A:\Steam\steamapps\common\Serious Sam 3\Bin\Sam3.exe
FirewallRules: [{72E7ABE5-083A-483F-800E-D73471ACD62A}] => (Allow) A:\Steam\steamapps\common\Serious Sam 3\Bin\Sam3.exe
FirewallRules: [{ABCB3DC9-9EFF-4530-BA0D-809CDCD8F89A}] => (Allow) A:\Steam\steamapps\common\Serious Sam 3\Bin\Sam3_Unrestricted.exe
FirewallRules: [{0BCDF81E-3A3F-400C-B16F-2894B4DBEB0A}] => (Allow) A:\Steam\steamapps\common\Serious Sam 3\Bin\Sam3_Unrestricted.exe
FirewallRules: [{53F295F8-EF94-4A5B-BAFE-45D31B855EC8}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{88C80A93-68E6-40FD-8A01-0BEA1B566B15}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{32AD8C5F-8BE4-4EB5-A7D4-DD83B083AFD3}] => (Allow) A:\Steam\bin\steamwebhelper.exe
FirewallRules: [{3F942A09-E90C-4E33-87E6-920EED8D3919}] => (Allow) A:\Steam\bin\steamwebhelper.exe
FirewallRules: [{A2ABFEA3-DD7B-4E80-919F-E4072FE5B111}] => (Allow) A:\Steam\steamapps\common\Sacred 2 Gold\system\sacred2.exe
FirewallRules: [{0AB0AA2E-762B-4723-BF34-FA13D9D03F99}] => (Allow) A:\Steam\steamapps\common\Sacred 2 Gold\system\sacred2.exe
FirewallRules: [{7DDEE1AE-F368-41C9-AFA0-96CA757F2236}] => (Allow) A:\Steam\steamapps\common\The Swapper\TheSwapper.exe
FirewallRules: [{534D8303-C633-475D-B0C3-AFF57CAA4EEF}] => (Allow) A:\Steam\steamapps\common\The Swapper\TheSwapper.exe
FirewallRules: [{098DA377-1C65-41CF-831F-94D0F4DEA95C}] => (Allow) A:\Steam\steamapps\common\Zeno Clash 2\Binaries\Win32\ZC2.exe
FirewallRules: [{CC8A1665-08B6-4E9E-BDE2-439E2073163C}] => (Allow) A:\Steam\steamapps\common\Zeno Clash 2\Binaries\Win32\ZC2.exe
FirewallRules: [{19C0F7A5-67CE-45DA-B9AB-087F52FDBF64}] => (Allow) A:\Steam\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe
FirewallRules: [{DF7461DE-97CD-4D9C-969F-2C418C54DB21}] => (Allow) A:\Steam\steamapps\common\SpecOps_TheLine\Binaries\Win32\SpecOpsTheLine.exe
FirewallRules: [{73AFCD02-6141-40BE-88B5-A713CB557294}] => (Allow) A:\Steam\steamapps\common\Red Faction Guerrilla\rfg_launcher.exe
FirewallRules: [{D3147D46-6556-474A-A839-D1304623925E}] => (Allow) A:\Steam\steamapps\common\Red Faction Guerrilla\rfg_launcher.exe
FirewallRules: [{99861B14-4D0C-4003-B10C-9A1515ADD0A7}] => (Allow) A:\Steam\steamapps\common\Red Faction Guerrilla\rfg.exe
FirewallRules: [{5A2355BC-9DEE-49A0-889C-0D18F3E49574}] => (Allow) A:\Steam\steamapps\common\Red Faction Guerrilla\rfg.exe
FirewallRules: [{E50EC16C-88BB-4A05-8166-9D9AA86793CE}] => (Allow) A:\Steam\steamapps\common\Transformers War for Cybertron\Binaries\TWFC.exe
FirewallRules: [{EA4B30CD-9F9A-45C8-B936-7076C0782A65}] => (Allow) A:\Steam\steamapps\common\Transformers War for Cybertron\Binaries\TWFC.exe
FirewallRules: [{BB44AC48-783F-4684-A404-049EB0200D41}] => (Allow) A:\Steam\steamapps\common\Lost Planet 3\Binaries\Win32\LP3Launcher.exe
FirewallRules: [{12922AD1-D400-4216-8C0F-4E38DB6C02A2}] => (Allow) A:\Steam\steamapps\common\Lost Planet 3\Binaries\Win32\LP3Launcher.exe
FirewallRules: [{47B2B96B-E3D4-4A80-8C78-3E07BD201C59}] => (Allow) A:\Steam\steamapps\common\Blood Bowl Legendary Edition\BB_LE.exe
FirewallRules: [{C8ABDACC-44EE-4429-8109-C233F37C323F}] => (Allow) A:\Steam\steamapps\common\Blood Bowl Legendary Edition\BB_LE.exe
FirewallRules: [{02A49201-5065-436A-94FD-86F2BAECA1A5}] => (Allow) A:\Steam\steamapps\common\Remember Me\Binaries\Win32\RememberMe.exe
FirewallRules: [{41E93696-0252-4E94-9BA5-ED9D3BC4B10A}] => (Allow) A:\Steam\steamapps\common\Remember Me\Binaries\Win32\RememberMe.exe
FirewallRules: [{6B9029B1-98D4-46D9-BBAD-42F9CCADD735}] => (Allow) A:\Steam\steamapps\common\RESIDENT EVIL REVELATIONS\rerev.exe
FirewallRules: [{418EF4D9-9002-4895-AC83-84E05771ABAB}] => (Allow) A:\Steam\steamapps\common\RESIDENT EVIL REVELATIONS\rerev.exe
FirewallRules: [{7E90BE75-9BBE-44A0-B9CA-55E4479E3447}] => (Allow) A:\Steam\steamapps\common\The Cursed Crusade\TCC.exe
FirewallRules: [{C1E4DFC2-ED89-40D2-A15A-971B7E01BDCE}] => (Allow) A:\Steam\steamapps\common\The Cursed Crusade\TCC.exe
FirewallRules: [{4FA6308D-79EF-4D49-A283-8B6D07E2BAD1}] => (Allow) A:\DRM-Freie Spiele\Age of Wonders III\AoW3.exe
FirewallRules: [{A9B7E75A-1F40-4129-BB74-D1E1245DC068}] => (Allow) A:\DRM-Freie Spiele\Age of Wonders III\AoW3_Debug.exe
FirewallRules: [{061D3D66-1B51-46AC-B66B-BD25249B52D4}] => (Allow) A:\DRM-Freie Spiele\Age of Wonders III\AoW3Launcher.exe
FirewallRules: [{CBBD5EDE-26EB-4A74-B8CE-3DD1E1AD47B8}] => (Allow) A:\Steam\steamapps\common\Amnesia The Dark Descent\Amnesia.exe
FirewallRules: [{91BF1689-DF78-417A-A7CC-58217D9FF238}] => (Allow) A:\Steam\steamapps\common\Amnesia The Dark Descent\Amnesia.exe
FirewallRules: [{80C1DB7F-E218-46B0-91B2-CE26712A0216}] => (Allow) A:\Steam\steamapps\common\Amnesia The Dark Descent\Launcher.exe
FirewallRules: [{6224FD62-A769-4483-987A-1DF54F262047}] => (Allow) A:\Steam\steamapps\common\Amnesia The Dark Descent\Launcher.exe
FirewallRules: [{1251A6B3-E782-4EB0-AFED-8726C9536D3D}] => (Allow) A:\Steam\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{489DFA7F-EF63-4F79-98A3-D0D13E7E7262}] => (Allow) A:\Steam\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{28C5FEF0-61CF-4226-BFFD-BAC733ADD2B6}] => (Allow) A:\Steam\steamapps\common\eets_munchies\eets2.exe
FirewallRules: [{91F1536A-2106-4CAE-A065-2D2B97C04468}] => (Allow) A:\Steam\steamapps\common\eets_munchies\eets2.exe
FirewallRules: [{9CBD948E-F6D5-451A-9C58-D05158E3046C}] => (Allow) A:\Steam\steamapps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{0E68465D-5805-4EEF-95F0-61AD02E76062}] => (Allow) A:\Steam\steamapps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{CF14AEEA-2965-43C3-BE90-C6253A368054}] => (Allow) A:\Steam\steamapps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [{E3087E72-151F-475E-BEE4-86412EBA1D03}] => (Allow) A:\Steam\steamapps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
FirewallRules: [{5198D632-8EB9-4868-B115-50389DFF349E}] => (Allow) A:\Steam\steamapps\common\Just Cause 2\JustCause2.exe
FirewallRules: [{57425E35-DC91-4B75-A175-022A434F7BED}] => (Allow) A:\Steam\steamapps\common\Just Cause 2\JustCause2.exe
FirewallRules: [{7CCB1F05-A4B8-4906-A68B-701F30DAECF0}] => (Allow) A:\Steam\steamapps\common\CastleCrashers\castle.exe
FirewallRules: [{01BA1D81-DF1D-461E-8724-F85AB196F60B}] => (Allow) A:\Steam\steamapps\common\CastleCrashers\castle.exe
FirewallRules: [{1893B61D-B242-4619-A379-D0E01C64BD74}] => (Allow) A:\Steam\steamapps\common\Spore\SporeBin\SporeApp.exe
FirewallRules: [{8CBA2928-A366-462A-99DE-4A672EE3A4A0}] => (Allow) A:\Steam\steamapps\common\Spore\SporeBin\SporeApp.exe
FirewallRules: [{6D39132D-E308-4AFE-894B-00F820E31163}] => (Allow) A:\Steam\steamapps\common\Spore\runme.exe
FirewallRules: [{8E884556-6C20-4F78-AF15-73F249E0DD0A}] => (Allow) A:\Steam\steamapps\common\Spore\runme.exe
FirewallRules: [{B70B3819-4754-4507-8A54-E1102E031D2F}] => (Allow) A:\Steam\steamapps\common\Spore\SporebinEP1\SporeApp.exe
FirewallRules: [{7D9EAAE4-7ADD-4A17-BA70-06F70294B870}] => (Allow) A:\Steam\steamapps\common\Spore\SporebinEP1\SporeApp.exe
FirewallRules: [{80119D22-28AC-429A-BEDD-327E086393B6}] => (Allow) A:\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{472F68A3-C4DF-45F1-BA4F-BBBFF226CD71}] => (Allow) A:\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{D912F9D6-7B5D-49E4-A4EA-154BB61C5D85}] => (Allow) A:\Steam\steamapps\common\Cave Story+\CaveStory+.exe
FirewallRules: [{34036AF3-D511-47E0-AF50-1F23C8AE6B92}] => (Allow) A:\Steam\steamapps\common\Cave Story+\CaveStory+.exe
FirewallRules: [{2324359F-B217-4050-A2B3-896EE38C0E71}] => (Allow) A:\Steam\steamapps\common\Super Meat Boy\SuperMeatBoy.exe
FirewallRules: [{922D4DDA-6DCF-4A56-8C58-4EF20783B80A}] => (Allow) A:\Steam\steamapps\common\Super Meat Boy\SuperMeatBoy.exe
FirewallRules: [{A0EF96B8-AA8B-4D23-8034-47DC3F95FC97}] => (Allow) A:\Steam\steamapps\common\red faction armageddon\rf4_launcher.exe
FirewallRules: [{EDBA33C5-0516-42DD-8AFE-5A92EB29AEB5}] => (Allow) A:\Steam\steamapps\common\red faction armageddon\rf4_launcher.exe
FirewallRules: [{E7F726B5-0FC1-4A01-B642-1669AD509F4A}] => (Allow) A:\Steam\steamapps\common\Arx Fatalis\arx.exe
FirewallRules: [{EB66E7A1-C820-4BD1-AD17-99AC2813C6E3}] => (Allow) A:\Steam\steamapps\common\Arx Fatalis\arx.exe
FirewallRules: [{8F86E8E6-8124-4F5E-9688-E90BB7E5642F}] => (Allow) A:\Steam\steamapps\common\Trine\_enchanted_edition_\trine1_launcher.exe
FirewallRules: [{AD8075F5-134B-423A-BEAB-DB9C517D287A}] => (Allow) A:\Steam\steamapps\common\Trine\_enchanted_edition_\trine1_launcher.exe
FirewallRules: [{B214DDD6-FE28-4BF3-BA11-D9A17BCAAB66}] => (Allow) A:\Steam\steamapps\common\Rogue Legacy\RogueLegacy.exe
FirewallRules: [{A753380D-DEF7-4E9B-9FB2-0088119CE457}] => (Allow) A:\Steam\steamapps\common\Rogue Legacy\RogueLegacy.exe
FirewallRules: [{48F37138-D873-4325-91FF-08538E61064A}] => (Allow) A:\Steam\steamapps\common\R.A.W. Realms of Ancient War\Realms Of Ancient War.exe
FirewallRules: [{BC34709C-34FC-49A2-94AE-C4D7FA048CD0}] => (Allow) A:\Steam\steamapps\common\R.A.W. Realms of Ancient War\Realms Of Ancient War.exe
FirewallRules: [{2F83A863-BB00-4355-BC62-02C486C350C7}] => (Allow) A:\Steam\steamapps\common\R.A.W. Realms of Ancient War\Realms Of Ancient War - Config.exe
FirewallRules: [{06D0E1B7-785D-4792-9CCB-77B790C42DC1}] => (Allow) A:\Steam\steamapps\common\R.A.W. Realms of Ancient War\Realms Of Ancient War - Config.exe
FirewallRules: [{485C9367-7BBE-4C3D-A77A-344641B4B61D}] => (Allow) A:\Steam\steamapps\common\Endless Space\EndlessSpace.exe
FirewallRules: [{7DD497C4-5CB9-4D29-AD66-B2BBFB48F70C}] => (Allow) A:\Steam\steamapps\common\Endless Space\EndlessSpace.exe
FirewallRules: [{9601D778-85B3-485B-9D1F-083FA17BD2A1}] => (Allow) A:\Steam\steamapps\common\Psychonauts\Psychonauts.exe
FirewallRules: [{C2715979-F970-4CFF-AD84-6B0715258F41}] => (Allow) A:\Steam\steamapps\common\Psychonauts\Psychonauts.exe
FirewallRules: [{77929AA5-8000-4805-B6E6-85D192BE40E8}] => (Allow) A:\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{7B7D7AF7-D631-47E7-A6A8-AFC461AADEA0}] => (Allow) A:\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{921D4964-B04E-4E5A-ADA6-7F63A5E5B3D0}] => (Allow) A:\Steam\steamapps\common\Dragon Age Ultimate Edition\DAOriginsLauncher.exe
FirewallRules: [{87F1E1EC-6901-4E63-913B-CC2414279A5F}] => (Allow) A:\Steam\steamapps\common\Dragon Age Ultimate Edition\DAOriginsLauncher.exe
FirewallRules: [{CC091D12-FC9B-4C64-94F3-E25BF4161ADC}] => (Allow) A:\Steam\steamapps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{E5B1376F-C5FB-49FC-949B-61BC5D584187}] => (Allow) A:\Steam\steamapps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{71E24B49-E347-4E1C-A0F1-2B5A75FA497E}] => (Allow) A:\Program Files (x86)\Origin Games\Mass Effect\Binaries\MassEffect.exe
FirewallRules: [{D2B0C548-AEC9-425A-BF3D-BAD530E12A05}] => (Allow) A:\Program Files (x86)\Origin Games\Mass Effect\Binaries\MassEffect.exe
FirewallRules: [{D42C3EBD-3E6D-413E-BD85-49AFB6215861}] => (Allow) A:\Steam\steamapps\common\Dementium 2\DII_Beta.exe
FirewallRules: [{3141DB30-E3B9-41CD-B83A-D3D06BC35435}] => (Allow) A:\Steam\steamapps\common\Dementium 2\DII_Beta.exe
FirewallRules: [{8E54D8CA-A87E-4393-B80F-A26828CC1F6C}] => (Allow) A:\Program Files (x86)\Origin Games\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{BDD44378-19C1-4C57-9833-F994B151F527}] => (Allow) A:\Program Files (x86)\Origin Games\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{5D9A96FC-55B1-4331-B2D7-5B9E8A5F1A98}] => (Allow) A:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe
FirewallRules: [{9170ED38-16E2-43FA-B5C8-3AA9802146D6}] => (Allow) A:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe
FirewallRules: [{4814294E-1451-4927-B5FA-50817B024A1F}] => (Allow) A:\Program Files (x86)\Origin Games\Mass Effect 3\Binaries\Win32\MassEffect3.exe
FirewallRules: [{33286153-FEE9-4695-8C76-77A3B093B4D2}] => (Allow) A:\Program Files (x86)\Origin Games\Mass Effect 3\Binaries\Win32\MassEffect3.exe
FirewallRules: [{D708DCC2-44DE-414C-BA24-A5E7C13B30A5}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{4AC16AA3-3B98-402E-9547-84C421FA8D6A}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{D4AE969B-30EA-4E7B-8A2B-E526B9520C40}] => (Allow) A:\Steam\steamapps\common\The Bureau\Binaries\Win32\TheBureau.exe
FirewallRules: [{87588B9C-1749-4892-B759-AC6FF00EF697}] => (Allow) A:\Steam\steamapps\common\The Bureau\Binaries\Win32\TheBureau.exe
FirewallRules: [{AB8558D8-58ED-4B56-B8B9-C55405EF4DBA}] => (Allow) A:\Steam\steamapps\common\DXHRML\dxhrml.exe
FirewallRules: [{C9F4CDB7-B3FC-4788-A9F5-E726156DE68B}] => (Allow) A:\Steam\steamapps\common\DXHRML\dxhrml.exe
FirewallRules: [{59230D92-5788-4A17-B469-1285F786F507}] => (Allow) A:\Steam\steamapps\common\SkyDrift\SkyDrift.exe
FirewallRules: [{254DEA23-FC23-4779-9FAD-5A5FEAB8CF24}] => (Allow) A:\Steam\steamapps\common\SkyDrift\SkyDrift.exe
FirewallRules: [{FD0D2491-6AA5-446F-AB2F-6304D9BEE732}] => (Allow) A:\Steam\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{DAF8864D-B6B4-4217-A943-0C400FC28255}] => (Allow) A:\Steam\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{724501A3-C17F-4F98-A2BC-D04E81E14760}] => (Allow) A:\Steam\steamapps\common\Trine 2\trine2_launcher.exe
FirewallRules: [{FF8C60A5-12AC-4722-A416-E65C78F1EF55}] => (Allow) A:\Steam\steamapps\common\Trine 2\trine2_launcher.exe
FirewallRules: [{C7F9C9C8-69ED-460E-88F0-AEB6F77C529A}] => (Allow) A:\Steam\steamapps\common\The Incredible Adventures of Van Helsing II\VanHelsing.exe
FirewallRules: [{199CB087-01BA-45B3-A426-5D5E1B7F1C6D}] => (Allow) A:\Steam\steamapps\common\The Incredible Adventures of Van Helsing II\VanHelsing.exe
FirewallRules: [{CEFC9217-A638-4EDE-B3D0-4D0571F943F8}] => (Allow) A:\Steam\steamapps\common\Angry Video Game Nerd Adventures\avgn.exe
FirewallRules: [{CEA748D3-D398-4A1C-9DD3-23606DFF72E6}] => (Allow) A:\Steam\steamapps\common\Angry Video Game Nerd Adventures\avgn.exe
FirewallRules: [{87C860FD-5FF0-42A5-BAC8-D4D7B09A185A}] => (Allow) A:\Steam\steamapps\common\Aliens versus Predator Classic\Launcher\AvpGoldLauncher.exe
FirewallRules: [{365B3068-7F60-4708-AEF7-2A1F4F207038}] => (Allow) A:\Steam\steamapps\common\Aliens versus Predator Classic\Launcher\AvpGoldLauncher.exe
FirewallRules: [{C7D5991F-6319-4190-A640-3D4F0A70DC3B}] => (Allow) A:\Steam\steamapps\common\Anna\Anna.exe
FirewallRules: [{A573C38F-0859-4BAE-B346-AEE49BB4D759}] => (Allow) A:\Steam\steamapps\common\Anna\Anna.exe
FirewallRules: [{25AC2ACD-A24C-4AEA-A943-67BF18B72374}] => (Allow) A:\Steam\steamapps\common\AquaNox\Aqua.exe
FirewallRules: [{7681CA43-C2FD-4BE7-ADB3-22A0169BB0B6}] => (Allow) A:\Steam\steamapps\common\AquaNox\Aqua.exe
FirewallRules: [{20B88CC0-737E-4D3D-80F7-8FE069658516}] => (Allow) A:\Steam\steamapps\common\AquaNox 2 Revelation\AquaNox 2 Revelation.exe
FirewallRules: [{8F8F7B73-9088-46FE-86B3-8C8B5119FAE2}] => (Allow) A:\Steam\steamapps\common\AquaNox 2 Revelation\AquaNox 2 Revelation.exe
FirewallRules: [{00DEF343-06BF-465F-A5A5-655DADA11AFD}] => (Allow) A:\Steam\steamapps\common\ArmaTactics\ArmaTactics.exe
FirewallRules: [{096D0442-3646-49F7-B787-1B9A54940ADD}] => (Allow) A:\Steam\steamapps\common\ArmaTactics\ArmaTactics.exe
FirewallRules: [{76DE0EAF-A958-4A89-AD81-18E0CC75057A}] => (Allow) A:\Steam\steamapps\common\ARMA Cold War Assault\ColdWarAssault.exe
FirewallRules: [{4D642167-75AD-40E5-8768-53A3A66EB5E7}] => (Allow) A:\Steam\steamapps\common\ARMA Cold War Assault\ColdWarAssault.exe
FirewallRules: [{EBAC936F-E374-41AC-B8A1-4AE08032B7A6}] => (Allow) A:\Steam\steamapps\common\ARMA Cold War Assault\ColdWarAssaultPreferences.exe
FirewallRules: [{CFDC1942-AC19-4C68-B297-C9A6BF12FB3A}] => (Allow) A:\Steam\steamapps\common\ARMA Cold War Assault\ColdWarAssaultPreferences.exe
FirewallRules: [{08DDE5AA-B7D9-4AE0-B30F-B4C7961519C6}] => (Allow) A:\Steam\steamapps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{387FD096-4EE9-499E-8C19-F541F4917232}] => (Allow) A:\Steam\steamapps\common\Audiosurf\engine\QuestViewer.exe
FirewallRules: [{FCC94DEE-ABAC-4643-A58A-458D4D915A85}] => (Allow) A:\Steam\steamapps\common\Bioshock\Builds\Release\Bioshock.exe
FirewallRules: [{8F0F5DD8-95C1-4A94-8259-6122C7A5A2D6}] => (Allow) A:\Steam\steamapps\common\Bioshock\Builds\Release\Bioshock.exe
FirewallRules: [{EEF994E7-5B66-4C6E-8D1D-B42AC4993954}] => (Allow) A:\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe
FirewallRules: [{2E2AE457-0102-41D7-9BB7-85079C427064}] => (Allow) A:\Steam\steamapps\common\BioShock 2\SP\Builds\Binaries\Bioshock2Launcher.exe
FirewallRules: [{3CE66C18-4976-4C60-A0FD-717B0D40CCF7}] => (Allow) A:\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe
FirewallRules: [{9B737124-5926-453D-892B-9C7E269BB508}] => (Allow) A:\Steam\steamapps\common\BioShock 2\MP\Builds\Binaries\Bioshock2Launcher.exe
FirewallRules: [{CAEBD981-8F83-4105-A33A-C1149F66BFA7}] => (Allow) A:\Steam\steamapps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{55AE4B38-0148-4B5D-900E-35D1E26E2CAF}] => (Allow) A:\Steam\steamapps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{F688A173-FF8A-4028-BB90-C1E0C0D3F6E5}] => (Allow) A:\Steam\steamapps\common\Bionic Commando\bionic_commando.exe
FirewallRules: [{C872C798-6FB6-480D-932E-C4E5D898E234}] => (Allow) A:\Steam\steamapps\common\Bionic Commando\bionic_commando.exe
FirewallRules: [{C2AD4653-D342-46A2-9825-F93E632A54A1}] => (Allow) A:\Steam\steamapps\common\Bionic Commando Rearmed\bcr.exe
FirewallRules: [{50E1BE4E-8E5A-4E16-A4D6-5166D6E83EDC}] => (Allow) A:\Steam\steamapps\common\Bionic Commando Rearmed\bcr.exe
FirewallRules: [{F4B204B9-1FFB-48E2-A4A8-9AD0256DD115}] => (Allow) A:\Steam\steamapps\common\Battlefield Bad Company 2\BFBC2Game.exe
FirewallRules: [{F49655B5-6326-4625-8264-B6CB70C1121E}] => (Allow) A:\Steam\steamapps\common\Battlefield Bad Company 2\BFBC2Game.exe
FirewallRules: [{BE7C4922-F5FE-4C64-8BE0-7E540FEC4FA3}] => (Allow) A:\Steam\steamapps\common\Braid\braid.exe
FirewallRules: [{80FE8A76-398F-4DC9-8D69-512604043B39}] => (Allow) A:\Steam\steamapps\common\Braid\braid.exe
FirewallRules: [{9B425F3E-F2F1-47DA-9DB0-D9E45E5FB841}] => (Allow) A:\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{08A197A4-FB43-4922-8DC6-2DA8B6A6E90C}] => (Allow) A:\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{7755EF71-5B76-4CFB-97B6-B918F4D87EE3}] => (Allow) A:\Steam\steamapps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe
FirewallRules: [{E93A3861-CB87-46DA-B94E-C1E0F9C54A05}] => (Allow) A:\Steam\steamapps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe
FirewallRules: [{75076A94-5EEC-4AEA-AD89-F53D107E5F02}] => (Allow) A:\Steam\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe
FirewallRules: [{EA7227D4-4799-4EC9-AE0D-AE3B79A882C0}] => (Allow) A:\Steam\steamapps\common\Batman Arkham Origins\SinglePlayer\Binaries\Win32\BatmanOrigins.exe
FirewallRules: [{64853021-6714-46FA-9698-D54A0628D3E1}] => (Allow) A:\Steam\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe
FirewallRules: [{19C5BB50-EE16-4639-B6B3-D0A4AFA0CC3D}] => (Allow) A:\Steam\steamapps\common\Batman Arkham Origins\Online\Binaries\Win32\BatmanOriginsOnline.exe
FirewallRules: [{055C41B8-356C-4100-B69C-AD35A7252136}] => (Allow) A:\Steam\steamapps\common\BattleBlock Theater\BattleBlockTheater.exe
FirewallRules: [{DF8A6B68-D0D3-487A-BBF0-1CCE428CA3FD}] => (Allow) A:\Steam\steamapps\common\BattleBlock Theater\BattleBlockTheater.exe
FirewallRules: [{D703D232-DD3E-4C2A-853B-6A71E591C5D0}] => (Allow) A:\Steam\steamapps\common\Blood Omen 2 Legacy of Kain\bo2.exe
FirewallRules: [{222B2954-1DF8-488E-96E4-DEF7081190AE}] => (Allow) A:\Steam\steamapps\common\Blood Omen 2 Legacy of Kain\bo2.exe
FirewallRules: [{062D9A26-5D28-4DBC-959C-89747A5F73FF}] => (Allow) A:\Steam\steamapps\common\Black Mirror\agds.exe
FirewallRules: [{3B9C2C16-2996-4BC0-B8D4-8D062E49562E}] => (Allow) A:\Steam\steamapps\common\Black Mirror\agds.exe
FirewallRules: [{6EDFBCDB-983F-4002-A9F6-C7881E76EC1A}] => (Allow) A:\Steam\steamapps\common\Half-Life 2 Deathmatch\hl2.exe
FirewallRules: [{65DD5EBD-D4D2-4293-B4B1-65EF31152F5A}] => (Allow) A:\Steam\steamapps\common\Half-Life 2 Deathmatch\hl2.exe
FirewallRules: [{1C1CCAE6-62A7-478E-8C17-D9FAD9ED060D}] => (Allow) A:\Steam\steamapps\common\L.A.Noire\LANLauncher.exe
FirewallRules: [{FF88A812-B646-4796-B844-D7F7E1AE12E8}] => (Allow) A:\Steam\steamapps\common\L.A.Noire\LANLauncher.exe
FirewallRules: [{63A5575E-BEE7-4773-8CD5-EE8591BCE772}] => (Allow) A:\Steam\steamapps\common\SleepingDogs\HKShip.exe
FirewallRules: [{C0ADA5F2-BBBF-49CB-973D-65FD5DC815A3}] => (Allow) A:\Steam\steamapps\common\SleepingDogs\HKShip.exe
FirewallRules: [{E3D6D71C-1F63-4F8A-8440-E0FA86DF9368}] => (Allow) A:\Steam\steamapps\common\Castle In The Darkness\CastleInTheDarkness.exe
FirewallRules: [{FD5B9311-8966-43AD-8140-B02B4536F9BA}] => (Allow) A:\Steam\steamapps\common\Castle In The Darkness\CastleInTheDarkness.exe
FirewallRules: [{3A97241F-9F97-4972-8406-4EE8FBB89EC8}] => (Allow) A:\Steam\steamapps\common\Dark Messiah Might and Magic Single Player\mm.exe
FirewallRules: [{04F3C896-8CF1-4636-8C5D-525E928B8D91}] => (Allow) A:\Steam\steamapps\common\Dark Messiah Might and Magic Single Player\mm.exe
FirewallRules: [{D02C14D4-B1F5-49F7-A066-0049E39AAF2E}] => (Allow) A:\Steam\steamapps\common\FORCED\FORCED.exe
FirewallRules: [{E34E9955-962F-4157-8283-6040C13C46E7}] => (Allow) A:\Steam\steamapps\common\FORCED\FORCED.exe
FirewallRules: [{3C6C4D88-1FE6-459A-B2D4-673F0805A911}] => (Allow) A:\Steam\steamapps\common\Gauntlet\binaries\gauntlet.exe
FirewallRules: [{378A623A-9577-4D44-8B0F-C3721D62387D}] => (Allow) A:\Steam\steamapps\common\Gauntlet\binaries\gauntlet.exe
FirewallRules: [{F5160973-EE51-4B4F-A459-66CAA26268FC}] => (Allow) A:\Steam\steamapps\common\Grand Theft Auto IV Episodes from Liberty City\EFLC\LaunchEFLC.exe
FirewallRules: [{4575E2A7-3D57-48EA-BE2D-58CCA288F62D}] => (Allow) A:\Steam\steamapps\common\Grand Theft Auto IV Episodes from Liberty City\EFLC\LaunchEFLC.exe
FirewallRules: [{60C5EC7C-1F96-4ECB-9C5D-6627608A5F4F}] => (Allow) A:\Steam\steamapps\common\Dark Messiah Might and Magic Multi-Player\runme.exe
FirewallRules: [{6931A542-49CE-4869-9E10-F3FDF9D9F68E}] => (Allow) A:\Steam\steamapps\common\Dark Messiah Might and Magic Multi-Player\runme.exe
FirewallRules: [{5C28CC7F-92D8-4F87-9B74-7BC38DA8EBC3}] => (Allow) A:\Steam\steamapps\common\Dark Fall Lost Souls\DarkFallLostSouls.exe
FirewallRules: [{804ABA66-4676-4524-8C84-F4B63E39DB2B}] => (Allow) A:\Steam\steamapps\common\Dark Fall Lost Souls\DarkFallLostSouls.exe
FirewallRules: [{97109B5A-BEAA-4C87-AECE-C471737882B5}] => (Allow) A:\Steam\steamapps\common\Freedom Planet\FP.exe
FirewallRules: [{E8C7B2DA-280B-4333-8903-4DEBB23159A7}] => (Allow) A:\Steam\steamapps\common\Freedom Planet\FP.exe
FirewallRules: [{C2369C62-D721-45D0-B883-B8F8F61B6C56}] => (Allow) A:\Steam\steamapps\common\Bulletstorm\Binaries\Win32\ShippingPC-StormGame.exe
FirewallRules: [{3DB770FA-43D6-4D12-AC12-E47D9A0D1051}] => (Allow) A:\Steam\steamapps\common\Bulletstorm\Binaries\Win32\ShippingPC-StormGame.exe
FirewallRules: [{7557855C-6DD1-4C54-913A-E9C86F19FA8E}] => (Allow) A:\Steam\steamapps\common\Deadlight\Binaries\Win32\LOTDGame.exe
FirewallRules: [{CFB4D2AE-35B4-4D8D-AE6E-F6D20B7E12B4}] => (Allow) A:\Steam\steamapps\common\Deadlight\Binaries\Win32\LOTDGame.exe
FirewallRules: [{6BA7BEF6-05D4-469A-9884-765C9DE077DF}] => (Allow) A:\Steam\steamapps\common\Dwarfs\Dwarfs.exe
FirewallRules: [{704D69D3-C548-41B2-870B-BE9BEB18E205}] => (Allow) A:\Steam\steamapps\common\Dwarfs\Dwarfs.exe
FirewallRules: [{89E2EB2F-4C9A-4D93-A864-F144982E9B4F}] => (Allow) A:\Steam\steamapps\common\GodMode\bin\GodMode.exe
FirewallRules: [{5FE09B0E-505C-4C0A-923D-0C993F0F0FCF}] => (Allow) A:\Steam\steamapps\common\GodMode\bin\GodMode.exe
FirewallRules: [{38AC0ED9-D1C8-4235-85E1-15ECEC265622}] => (Allow) A:\Steam\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [{12C87279-101C-44ED-9777-7CDF112BA85E}] => (Allow) A:\Steam\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [{00F8F80B-5FFE-4284-A424-0824E711C34D}] => (Allow) A:\Steam\steamapps\common\KillingFloor\System\KillingFloor.exe
FirewallRules: [{27CF9A92-168E-4232-AA2D-CE90977982D8}] => (Allow) A:\Steam\steamapps\common\KillingFloor\System\KillingFloor.exe
FirewallRules: [{B5B5166E-1984-4F88-8027-36020FB87668}] => (Allow) A:\Steam\steamapps\common\Far Cry 3 Blood Dragon\bin\FC3BDUpdaterSteam.exe
FirewallRules: [{54FBB71E-E2B9-4365-8BA1-8343541DF915}] => (Allow) A:\Steam\steamapps\common\Far Cry 3 Blood Dragon\bin\FC3BDUpdaterSteam.exe
FirewallRules: [{75CD30FC-B711-4514-989E-829C84DA28B8}] => (Allow) A:\Steam\steamapps\common\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe
FirewallRules: [{EA42E0B7-682D-42F0-A852-1F173395C266}] => (Allow) A:\Steam\steamapps\common\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe
FirewallRules: [{04DF3CF5-ADE9-4A89-9B70-6BC7AD9D5BD2}] => (Allow) A:\Steam\steamapps\common\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe
FirewallRules: [{4F0D1A1A-B6EE-4A95-8BA8-3EFE24BDEF47}] => (Allow) A:\Steam\steamapps\common\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe
FirewallRules: [{B64B686E-6745-468F-88A3-2F8F04B13D9E}] => (Allow) A:\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe
FirewallRules: [{BC97552D-CAD3-4187-800F-704B272F3172}] => (Allow) A:\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe
FirewallRules: [{535AF935-0803-48DF-8F23-986E4524B991}] => (Allow) A:\Steam\steamapps\common\DDDA\DDDA.exe
FirewallRules: [{7E054E24-9476-4B06-B1C4-D8789C8B488E}] => (Allow) A:\Steam\steamapps\common\DDDA\DDDA.exe
FirewallRules: [{E584AD6F-03F4-42DA-B471-96392FF3479A}] => (Allow) A:\Steam\steamapps\common\Outland\Outland.exe
FirewallRules: [{60E67C03-0DD2-4583-B745-6B9FA97FB3F7}] => (Allow) A:\Steam\steamapps\common\Outland\Outland.exe
FirewallRules: [{6A7ACFE4-7880-4E56-B3F9-2383FF458DE5}] => (Allow) A:\Steam\steamapps\common\Game of Thrones\Binaries\Win32\ShippingPC-AGOTGame.exe
FirewallRules: [{A00504D9-9C28-4433-A7B6-4D616825B8A4}] => (Allow) A:\Steam\steamapps\common\Game of Thrones\Binaries\Win32\ShippingPC-AGOTGame.exe
FirewallRules: [{C0B7214D-18B8-4FE7-9DFB-C2CF30286C03}] => (Allow) A:\Steam\steamapps\common\Total War Arena\launcher\launcher.exe
FirewallRules: [{AD89EE48-932F-4EF6-A23C-2AD6B2B4B951}] => (Allow) A:\Steam\steamapps\common\Total War Arena\launcher\launcher.exe
FirewallRules: [{6259A7CC-4D6F-4697-8A71-B1EEA1A282FD}] => (Allow) A:\Steam\steamapps\common\Marvel Heroes\UnrealEngine3\Binaries\Win64\MarvelHeroes2016.exe
FirewallRules: [{5E9558DE-2E54-458F-9D25-8408AB3933A6}] => (Allow) A:\Steam\steamapps\common\Marvel Heroes\UnrealEngine3\Binaries\Win64\MarvelHeroes2016.exe
FirewallRules: [{632EC807-DFEF-4B37-80B1-8A9285EBBBE9}] => (Allow) A:\Steam\steamapps\common\LEGO Lord of the Rings\LEGOLOTR.exe
FirewallRules: [{FD92EB3C-DFD9-4B94-BCE0-9373193457C8}] => (Allow) A:\Steam\steamapps\common\LEGO Lord of the Rings\LEGOLOTR.exe
FirewallRules: [{01DED0CD-70A1-4252-8515-1353D4257167}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{61AA0E87-679E-4CD5-A77A-15FD19D82D56}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{AB99BDEF-B7D5-407E-8152-A811A3979862}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{80C57EB2-16F6-431E-8418-E5FC0B625E0A}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{B87B2DA4-9666-4BDD-A6E2-6C2C3AA3736C}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{C0567413-D440-4194-B90E-1FB186455E8D}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{B03FD584-81D4-4C31-9D49-FF0D16869DDB}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{F1A4A385-18FC-41F7-9A55-9B54C0A7E108}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{6C057F85-D8C0-4157-A91E-C8674CF4AA1B}] => (Allow) A:\Steam\steamapps\common\Titan Souls\TITAN.exe
FirewallRules: [{BCF7F224-BA1D-497D-BC7E-35F3CEACD296}] => (Allow) A:\Steam\steamapps\common\Titan Souls\TITAN.exe
FirewallRules: [{937862BA-A0B9-4465-AA64-6E417EE86800}] => (Allow) A:\Steam\steamapps\common\Alice Madness Returns\Binaries\Win32\AliceMadnessReturns.exe
FirewallRules: [{16B2578B-34B5-48E8-8881-7BA2765CA779}] => (Allow) A:\Steam\steamapps\common\Alice Madness Returns\Binaries\Win32\AliceMadnessReturns.exe
FirewallRules: [{D915DBDE-4027-4F1F-87B6-F5CE2E2C474A}] => (Allow) A:\Steam\steamapps\common\Aliens Colonial Marines\Binaries\Win32\ACM.exe
FirewallRules: [{548D1837-C092-48FA-A991-E087138D92E0}] => (Allow) A:\Steam\steamapps\common\Aliens Colonial Marines\Binaries\Win32\ACM.exe
FirewallRules: [{C37C4E39-788B-4A73-9019-D9B7D44A0824}] => (Allow) A:\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{FA933B55-AA96-4B77-8110-89F68B6B6A72}] => (Allow) A:\Steam\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{26DF480B-1186-4D4C-85E8-5031A30874C7}] => (Allow) A:\Steam\steamapps\common\Day of Defeat Source\hl2.exe
FirewallRules: [{E8E1B389-ACF7-4255-ACF5-9B8FF4D338A1}] => (Allow) A:\Steam\steamapps\common\Day of Defeat Source\hl2.exe
FirewallRules: [{1B2F5E9A-E6E5-4C03-BC68-1C3898CD31D3}] => (Allow) A:\Steam\steamapps\common\Half-Life 2\hl2.exe
FirewallRules: [{11AC52CA-EE4E-41BB-B914-EEED7E4D0624}] => (Allow) A:\Steam\steamapps\common\Half-Life 2\hl2.exe
FirewallRules: [{C3156910-6C1C-4F1B-8D8D-1F85B6B3DB1A}] => (Allow) A:\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{F749BF3C-9B75-4B0A-B672-07A5288B2E5B}] => (Allow) A:\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{C75FDAE3-F1B9-4074-B05F-6DEB33AA9C03}] => (Allow) A:\Steam\steamapps\common\STALKER Shadow of Chernobyl\bin\XR_3DA.exe
FirewallRules: [{22331BB5-3F3A-4736-8B76-A6CF0AE9BE2C}] => (Allow) A:\Steam\steamapps\common\STALKER Shadow of Chernobyl\bin\XR_3DA.exe
FirewallRules: [{9E100942-314A-4568-9420-A8545A0412E5}] => (Allow) A:\Steam\steamapps\common\Devil May Cry 3\dmc3se.exe
FirewallRules: [{D29BF745-9E7F-4155-8440-75FF3C5E9B88}] => (Allow) A:\Steam\steamapps\common\Devil May Cry 3\dmc3se.exe
FirewallRules: [{442555EE-A674-4D05-B5D4-69C53BD0DF5C}] => (Allow) A:\Steam\steamapps\common\Devil May Cry 3\GPadCfg.exe
FirewallRules: [{51F31CD6-4AAE-414A-AC74-67D11C2F001A}] => (Allow) A:\Steam\steamapps\common\Devil May Cry 3\GPadCfg.exe
FirewallRules: [{1EB23C36-914C-4BCF-B51A-F802099F927B}] => (Allow) A:\Steam\steamapps\common\Deus Ex Invisible War\System\dx2.exe
FirewallRules: [{3FCDF600-8353-456C-ACEA-BCE4B845DF2C}] => (Allow) A:\Steam\steamapps\common\Deus Ex Invisible War\System\dx2.exe
FirewallRules: [{D34CDE24-9AB7-41C5-AED9-EBDF84B123C9}] => (Allow) A:\Steam\steamapps\common\Two Worlds II Castle Defense\TW2CD.exe
FirewallRules: [{4765E131-6612-439C-B85F-37FF8CA77780}] => (Allow) A:\Steam\steamapps\common\Two Worlds II Castle Defense\TW2CD.exe
FirewallRules: [{F8C04729-8C1B-4DE5-8ED5-A1E075A847AD}] => (Allow) A:\Steam\steamapps\common\Cryostasis\Cryostasis.exe
FirewallRules: [{92F4DD2A-50BD-4D4F-A1EB-2EC5A4125364}] => (Allow) A:\Steam\steamapps\common\Cryostasis\Cryostasis.exe
FirewallRules: [{643623BD-F474-48E2-994B-FB8203811B5A}] => (Allow) A:\Steam\steamapps\common\Saints Row 2\SR2_pc.exe
FirewallRules: [{847794D2-B479-4A82-98C0-F472EFCE9F6A}] => (Allow) A:\Steam\steamapps\common\Saints Row 2\SR2_pc.exe
FirewallRules: [{EA9DBA6D-09AA-496F-885F-30B119C8699B}] => (Allow) A:\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe
FirewallRules: [{D34EA67F-2B29-4D1D-8FFC-B2D5F39B6F8D}] => (Allow) A:\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe
FirewallRules: [{A116A998-2D19-4D5B-AD66-F9ACFDC9FA1A}] => (Allow) A:\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4mp.exe
FirewallRules: [{1C38F325-DBCD-4EFD-A08C-7763EF1132D4}] => (Allow) A:\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4mp.exe
FirewallRules: [{34C3CA3C-D2AD-4C6C-BB0E-0BD615A11C0D}] => (Allow) A:\Steam\steamapps\common\Overlord\Overlord.exe
FirewallRules: [{63203E53-3058-4958-9AFB-F1A1B4639957}] => (Allow) A:\Steam\steamapps\common\Overlord\Overlord.exe
FirewallRules: [{8EE199D1-F873-4D92-9006-35D005FA3F1B}] => (Allow) A:\Steam\steamapps\common\Overlord\Config.exe
FirewallRules: [{19E35FA1-6C98-4A61-91D1-AA117A7E55CC}] => (Allow) A:\Steam\steamapps\common\Overlord\Config.exe
FirewallRules: [{FAE0BC2D-CAF0-42CB-9BB4-F1780CB6D3C9}] => (Allow) A:\Steam\steamapps\common\Rise of the Argonauts\Binaries\RiseOfTheArgonauts.exe
FirewallRules: [{A01589CA-BC3C-4EE9-8C3F-F0BD04C50FAC}] => (Allow) A:\Steam\steamapps\common\Rise of the Argonauts\Binaries\RiseOfTheArgonauts.exe
FirewallRules: [{ADE3822A-9AA2-44E8-BBA6-941FABCA631C}] => (Allow) A:\Steam\steamapps\common\Overlord II\Overlord2.exe
FirewallRules: [{2C5E0887-06B7-4AAF-9295-4BF0DFF86B12}] => (Allow) A:\Steam\steamapps\common\Overlord II\Overlord2.exe
FirewallRules: [{CEBB6AE3-C713-4366-B923-5CFD6DD80D95}] => (Allow) A:\Steam\steamapps\common\Overlord II\Config.exe
FirewallRules: [{EA45E103-E0FB-46C9-9AFD-E65A444242A1}] => (Allow) A:\Steam\steamapps\common\Overlord II\Config.exe
FirewallRules: [{FE4831F3-4154-4824-81C5-3F89558130C8}] => (Allow) A:\Steam\steamapps\common\mark_of_the_ninja\bin\game.exe
FirewallRules: [{56116015-9A0A-427F-875A-21FF20E80E77}] => (Allow) A:\Steam\steamapps\common\mark_of_the_ninja\bin\game.exe
FirewallRules: [{87A6617A-D5FC-4B3A-9884-F676C9EC3B6C}] => (Allow) A:\Steam\steamapps\common\Screencheat\screencheat.exe
FirewallRules: [{56A45FFC-29DF-4856-9CEF-6613E7758C67}] => (Allow) A:\Steam\steamapps\common\Screencheat\screencheat.exe
FirewallRules: [{7F4D2F72-5D98-4505-A950-1760D8092CE4}] => (Allow) A:\Steam\steamapps\common\Summoner\Summoner.exe
FirewallRules: [{3098269B-64F5-4C9E-BEA9-50AF75193091}] => (Allow) A:\Steam\steamapps\common\Summoner\Summoner.exe
FirewallRules: [{EBE611F2-183C-4C70-981B-4B3B9719E4D1}] => (Allow) A:\Steam\steamapps\common\TeleglitchDME\Teleglitch.exe
FirewallRules: [{0F74DEAA-ACF3-4A37-BDFF-69EF39E1F8B2}] => (Allow) A:\Steam\steamapps\common\TeleglitchDME\Teleglitch.exe
FirewallRules: [{A7E513B3-9491-4805-ACA0-8557676F6D43}] => (Allow) A:\Steam\steamapps\common\Gone Home\GoneHome.exe
FirewallRules: [{859F2F42-358D-4D74-BDCF-75755E6A2CEA}] => (Allow) A:\Steam\steamapps\common\Gone Home\GoneHome.exe
FirewallRules: [{7C73FF17-1820-440C-93C2-1EDC374325CA}] => (Allow) A:\Steam\steamapps\common\Legacy of Kain Soul Reaver 2\sr2.exe
FirewallRules: [{69C08CAC-3F2E-449D-AE3B-190269BB40DA}] => (Allow) A:\Steam\steamapps\common\Legacy of Kain Soul Reaver 2\sr2.exe
FirewallRules: [{897F49D8-2D2A-405A-98A9-2A954B35A80E}] => (Allow) A:\Steam\steamapps\common\Chaos on Deponia\deponia2.exe
FirewallRules: [{BEA5D48D-52A9-4831-9780-E3C9F307B36E}] => (Allow) A:\Steam\steamapps\common\Chaos on Deponia\deponia2.exe
FirewallRules: [{F82AC0A3-8149-4B16-BAA2-7D3627720FC4}] => (Allow) A:\Steam\steamapps\common\Chaos on Deponia\VisionaireConfigurationTool.exe
FirewallRules: [{6C292E4E-93F7-4565-96E7-EB2E22BE8BC3}] => (Allow) A:\Steam\steamapps\common\Chaos on Deponia\VisionaireConfigurationTool.exe
FirewallRules: [{7E052073-E4A4-4571-81B1-4C6940C68298}] => (Allow) A:\Steam\steamapps\common\Scribblenauts\Scribble.exe
FirewallRules: [{53351E4E-0453-4EF8-982B-8B853F6BBC29}] => (Allow) A:\Steam\steamapps\common\Scribblenauts\Scribble.exe
FirewallRules: [{7B6D6C09-B68A-4E99-95B7-92BE2B99920F}] => (Allow) A:\Steam\steamapps\common\diriptide\DeadIslandGame_x86_rwdi.exe
FirewallRules: [{53CA9585-69B5-473C-91DD-B7ADB5D6DE55}] => (Allow) A:\Steam\steamapps\common\diriptide\DeadIslandGame_x86_rwdi.exe
FirewallRules: [{1D78A6D6-46C4-4921-BA1F-98A6D9010FB4}] => (Allow) A:\Steam\steamapps\common\The Incredible Adventures of Van Helsing\VanHelsing.exe
FirewallRules: [{167533FD-708C-41B9-BD22-C679F5A810E3}] => (Allow) A:\Steam\steamapps\common\The Incredible Adventures of Van Helsing\VanHelsing.exe
FirewallRules: [{BDB43B50-484E-48B8-AF1B-DC4D616F1C2F}] => (Allow) A:\Steam\steamapps\common\Sine Mora\SineMora.exe
FirewallRules: [{DB2A085F-6C54-40C9-B127-3B744555E1F1}] => (Allow) A:\Steam\steamapps\common\Sine Mora\SineMora.exe
FirewallRules: [{9D548C04-B8AA-46EC-81E3-9E05CD4E9FA9}] => (Allow) A:\Steam\steamapps\common\Mortal Kombat Arcade Kollection\BINARIES\WIN32\MKHDGame.exe
FirewallRules: [{45F120B1-420B-4ADC-988B-0C7A3723FEC3}] => (Allow) A:\Steam\steamapps\common\Mortal Kombat Arcade Kollection\BINARIES\WIN32\MKHDGame.exe
FirewallRules: [{CCD0BCE1-2BC5-4DA1-A36F-30A87BDCFB81}] => (Allow) A:\Steam\steamapps\common\SeriousSamDoubleD\SSLauncher.exe
FirewallRules: [{9906E104-F36D-4264-859A-9E6500E4E5F1}] => (Allow) A:\Steam\steamapps\common\SeriousSamDoubleD\SSLauncher.exe
FirewallRules: [{EA2CD51F-17FE-49B9-809F-C35196FAED88}] => (Allow) A:\Steam\steamapps\common\SEGA Bass Fishing\AppLauncher.exe
FirewallRules: [{DD133586-0E49-41E0-8D0F-81E59F880906}] => (Allow) A:\Steam\steamapps\common\SEGA Bass Fishing\AppLauncher.exe
FirewallRules: [{E73531AA-5D3B-4CAB-9897-424F36BE5EFC}] => (Allow) A:\Steam\steamapps\common\Crazy Taxi\AppLauncher.exe
FirewallRules: [{225B34F1-AE8F-4CA5-AF1C-CE792DBA28F3}] => (Allow) A:\Steam\steamapps\common\Crazy Taxi\AppLauncher.exe
FirewallRules: [{6E4F8842-CEF2-4BCF-9E8A-24CF1D085167}] => (Allow) A:\Steam\steamapps\common\Serious Sam Classic The Second Encounter\Bin\SeriousSam.exe
FirewallRules: [{871650EC-57ED-4308-A381-AF04D94CD587}] => (Allow) A:\Steam\steamapps\common\Serious Sam Classic The Second Encounter\Bin\SeriousSam.exe
FirewallRules: [{70E7632D-DF1C-4949-8695-332207F29381}] => (Allow) A:\Steam\steamapps\common\Serious Sam Classic The Second Encounter\Bin\SeriousEditor.exe
FirewallRules: [{7056DCF4-3499-4273-861D-0E8F13AF000B}] => (Allow) A:\Steam\steamapps\common\Serious Sam Classic The Second Encounter\Bin\SeriousEditor.exe
FirewallRules: [{761D4A46-FEB7-4485-8D43-61120009F122}] => (Allow) A:\Steam\steamapps\common\Serious Sam Classic The Second Encounter\Bin\SeriousModeler.exe
FirewallRules: [{A781E1DC-D278-45DF-A525-07020EE86AEF}] => (Allow) A:\Steam\steamapps\common\Serious Sam Classic The Second Encounter\Bin\SeriousModeler.exe
FirewallRules: [{573B392E-ECDF-4F17-BD0F-D286AC9613F3}] => (Allow) A:\Steam\steamapps\common\Serious Sam Classic The First Encounter\Bin\SeriousSam.exe
FirewallRules: [{E3BC7F0F-C6FC-46C6-8051-1A9C5B535402}] => (Allow) A:\Steam\steamapps\common\Serious Sam Classic The First Encounter\Bin\SeriousSam.exe
FirewallRules: [{C3D65EEC-9826-4D6D-974F-2D8B2A186C6E}] => (Allow) A:\Steam\steamapps\common\Serious Sam Classic The First Encounter\Bin\SeriousEditor.exe
FirewallRules: [{FE5E06A4-37D8-4808-BABE-23102A760EAD}] => (Allow) A:\Steam\steamapps\common\Serious Sam Classic The First Encounter\Bin\SeriousEditor.exe
FirewallRules: [{A5A93AE7-57A3-4F52-B08D-ECDC0F912E42}] => (Allow) A:\Steam\steamapps\common\Serious Sam Classic The First Encounter\Bin\SeriousModeler.exe
FirewallRules: [{1DF85A5E-1973-41F0-A1BC-6A22D2A1389C}] => (Allow) A:\Steam\steamapps\common\Serious Sam Classic The First Encounter\Bin\SeriousModeler.exe
FirewallRules: [{C3902D8C-7E3B-4BF3-8A90-63349A3D9DE6}] => (Allow) A:\Steam\steamapps\common\Serious Sam The Random Encounter\sstre.exe
FirewallRules: [{8822A04F-2D63-499D-B6A6-EABBA96AE0D5}] => (Allow) A:\Steam\steamapps\common\Serious Sam The Random Encounter\sstre.exe
FirewallRules: [{0E457B20-17F4-46C1-8654-F7CD0AFD3E3A}] => (Allow) A:\Steam\steamapps\common\Enclave\Enclave.exe
FirewallRules: [{083050AA-8992-461E-A29D-857799B8BB56}] => (Allow) A:\Steam\steamapps\common\Enclave\Enclave.exe
FirewallRules: [{575FE1B8-85CC-4FE1-BCE5-25735473355A}] => (Allow) A:\Steam\steamapps\common\Pandemonium\PANDY3.EXE
FirewallRules: [{59BB38FC-42FE-44D6-8792-2452C5FEDF6A}] => (Allow) A:\Steam\steamapps\common\Pandemonium\PANDY3.EXE
FirewallRules: [{A435A84F-722A-4C57-9BF0-EC2B3186D62E}] => (Allow) A:\Steam\steamapps\common\Legend of Grimrock\grimrock.exe
FirewallRules: [{18FDE36C-DE73-4920-BFCF-6818284A99CF}] => (Allow) A:\Steam\steamapps\common\Legend of Grimrock\grimrock.exe
FirewallRules: [{51AF9680-89C4-4C9F-9ECF-2708E15DC20E}] => (Allow) A:\Steam\steamapps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
FirewallRules: [{8B71AF4F-5766-4DA9-A183-D9C222473A00}] => (Allow) A:\Steam\steamapps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe
FirewallRules: [{89BDAC00-4105-4185-A960-67059BCC75C9}] => (Allow) A:\Steam\steamapps\common\Legacy of Kain Soul Reaver\kain2.exe
FirewallRules: [{7CC04BE7-2ED9-45C7-985B-96B76EC879A1}] => (Allow) A:\Steam\steamapps\common\Legacy of Kain Soul Reaver\kain2.exe
FirewallRules: [{1DBFD604-D1C8-4A1C-B92E-72F2B7D5A24D}] => (Allow) A:\Steam\steamapps\common\Operation Flashpoint Dragon Rising\OFDR.exe
FirewallRules: [{0E74516E-3C5A-4CF7-87A9-13DDA3715C36}] => (Allow) A:\Steam\steamapps\common\Operation Flashpoint Dragon Rising\OFDR.exe
FirewallRules: [{9930671C-51ED-4F4E-8B60-BE2128503E5E}] => (Allow) A:\Steam\steamapps\common\Crysis\Bin32\Crysis.exe
FirewallRules: [{BCCB1FD7-6FE1-41F7-87C2-F9C83AB091C1}] => (Allow) A:\Steam\steamapps\common\Crysis\Bin32\Crysis.exe
FirewallRules: [{13422BEA-C267-4624-9EDC-E054B07529BF}] => (Allow) A:\Steam\steamapps\common\mirrors edge\Binaries\MirrorsEdge.exe
FirewallRules: [{DB153073-F2CE-4F87-ACE5-281086DC928C}] => (Allow) A:\Steam\steamapps\common\mirrors edge\Binaries\MirrorsEdge.exe
FirewallRules: [{758B9AD3-3C5D-473A-8640-E82D0B7376F0}] => (Allow) A:\Steam\steamapps\common\Prince of Persia\Launcher\Launcher.exe
FirewallRules: [{58882E63-7408-4E18-9E04-8B8D4D22D4E6}] => (Allow) A:\Steam\steamapps\common\Prince of Persia\Launcher\Launcher.exe
FirewallRules: [{254D6CEE-1BB7-492C-A6C6-CAE57202AC85}] => (Allow) A:\Steam\steamapps\common\STALKER Clear Sky\bin\xrEngine.exe
FirewallRules: [{DDFD8211-C874-47C0-89CC-ED30E30A7763}] => (Allow) A:\Steam\steamapps\common\STALKER Clear Sky\bin\xrEngine.exe
FirewallRules: [{0BD59BDF-685E-498B-AC05-32B787514B47}] => (Allow) A:\Steam\steamapps\common\Tropico 3\tropico3.exe
FirewallRules: [{B6889E76-631D-4BA8-A1B5-DD6EA10CE6D7}] => (Allow) A:\Steam\steamapps\common\Tropico 3\tropico3.exe
FirewallRules: [{F0CA29F0-47C6-4B6E-8466-F1E582404181}] => (Allow) A:\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [{AB6D3268-BFD2-450D-A0E1-6F14A6484EF7}] => (Allow) A:\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutParadise.exe
FirewallRules: [{87A2A963-8D76-4C04-A329-9D7AD2B148E0}] => (Allow) A:\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
FirewallRules: [{3A47D48B-B9CB-4ED4-A10A-6A56D06226BB}] => (Allow) A:\Steam\steamapps\common\Burnout(TM) Paradise The Ultimate Box\BurnoutConfigTool.exe
FirewallRules: [{8E8EC19E-2BCA-42C3-AB77-530B799382F0}] => (Allow) A:\Steam\steamapps\common\Risen\bin\Risen.exe
FirewallRules: [{731B2FBA-340A-423E-9972-F93864514C2B}] => (Allow) A:\Steam\steamapps\common\Risen\bin\Risen.exe
FirewallRules: [{CF31A3CA-027B-4917-A2CD-0E9A904908EF}] => (Allow) A:\Steam\steamapps\common\Serious Sam HD The First Encounter\Bin\SamHD.exe
FirewallRules: [{4D5B17D2-F64A-4767-9DA0-B0BE890BCDE8}] => (Allow) A:\Steam\steamapps\common\Serious Sam HD The First Encounter\Bin\SamHD.exe
FirewallRules: [{50F394E5-F541-4B76-B663-0BB372DA5151}] => (Allow) A:\Steam\steamapps\common\Serious Sam HD The Second Encounter\Bin\SamHD_TSE.exe
FirewallRules: [{636E2E68-DC34-47B2-83E0-BD3AF07D7648}] => (Allow) A:\Steam\steamapps\common\Serious Sam HD The Second Encounter\Bin\SamHD_TSE.exe
FirewallRules: [{A038109B-57BE-4514-8BD9-A31800E4DF1A}] => (Allow) A:\Steam\steamapps\common\Serious Sam HD The Second Encounter\Bin\SamHD_TSE_Unrestricted.exe
FirewallRules: [{1DCF80E5-FA9A-480E-B85A-52FF72562D6F}] => (Allow) A:\Steam\steamapps\common\Serious Sam HD The Second Encounter\Bin\SamHD_TSE_Unrestricted.exe
FirewallRules: [{7D34F6DF-24FE-421E-961E-67E63886C105}] => (Allow) A:\Steam\steamapps\common\Stalker Call of Pripyat\bin\xrEngine.exe
FirewallRules: [{5038C6EA-48B8-4200-B85F-823C8A2EA86F}] => (Allow) A:\Steam\steamapps\common\Stalker Call of Pripyat\bin\xrEngine.exe
FirewallRules: [{28E1CF16-F83F-45E3-BE2E-C8534F0F0570}] => (Allow) A:\Steam\steamapps\common\Operation Flashpoint Red River\RedRiverLauncher.exe
FirewallRules: [{54BE867E-E872-4716-B552-E931A17EC082}] => (Allow) A:\Steam\steamapps\common\Operation Flashpoint Red River\RedRiverLauncher.exe
FirewallRules: [{3040DB70-3BB4-442B-93B4-CCABFAD48CC5}] => (Allow) A:\Steam\steamapps\common\Devil May Cry 4\DevilMayCry4_DX9.exe
FirewallRules: [{45425687-0A02-480C-9520-DF0D628EC455}] => (Allow) A:\Steam\steamapps\common\Devil May Cry 4\DevilMayCry4_DX9.exe
FirewallRules: [{9BAF566E-6831-42CE-B475-DD7AE92639FD}] => (Allow) A:\Steam\steamapps\common\Devil May Cry 4\DevilMayCry4_DX10.exe
FirewallRules: [{0DC542BA-DC65-476F-ACB8-0832667AB744}] => (Allow) A:\Steam\steamapps\common\Devil May Cry 4\DevilMayCry4_DX10.exe
FirewallRules: [{AA681A3D-6C93-4509-8B13-19DCA220E9C6}] => (Allow) A:\Steam\steamapps\common\Medal of Honor\Binaries\moh.exe
FirewallRules: [{050A2A6E-59B7-4E22-95B2-7ED8F1E701E8}] => (Allow) A:\Steam\steamapps\common\Medal of Honor\Binaries\moh.exe
FirewallRules: [{6B96E609-DD1C-4A17-BCD3-BF16B9937024}] => (Allow) A:\Steam\steamapps\common\Medal of Honor\MP\mohmpgame.exe
FirewallRules: [{7688C2F4-5231-490D-A119-E24F8A689810}] => (Allow) A:\Steam\steamapps\common\Medal of Honor\MP\mohmpgame.exe
FirewallRules: [{A6AF01BB-FAA9-4BCF-92CF-BADAF519D11C}] => (Allow) A:\Steam\steamapps\common\Darksiders\DarksidersPC.exe
FirewallRules: [{62080266-1239-4555-A716-17E93FFB6EEC}] => (Allow) A:\Steam\steamapps\common\Darksiders\DarksidersPC.exe
FirewallRules: [{ED7BF44D-B238-47C2-9443-4E054DF0F61B}] => (Allow) A:\Steam\steamapps\common\Darksiders 2\Darksiders2.exe
FirewallRules: [{BA482E11-5CDD-4B41-847D-88DEC97A14E5}] => (Allow) A:\Steam\steamapps\common\Darksiders 2\Darksiders2.exe
FirewallRules: [{BF015FBE-3C05-4A36-9693-39F5AF3D4968}] => (Allow) A:\Steam\steamapps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{1C7E8F13-408B-447C-8B24-A867E80D9441}] => (Allow) A:\Steam\steamapps\common\Saints Row the Third\game_launcher.exe
FirewallRules: [{6CD55DB9-A2A8-4154-8752-7BD5E9291B1E}] => (Allow) A:\Steam\steamapps\common\Gothic 3 Forsaken Gods\Gothic III Forsaken Gods.exe
FirewallRules: [{74756EF7-7EA5-414D-92F3-62B9FFEFD316}] => (Allow) A:\Steam\steamapps\common\Gothic 3 Forsaken Gods\Gothic III Forsaken Gods.exe
FirewallRules: [{F7C7A08D-CCC6-418E-8E66-AB8BA7DE53D0}] => (Allow) A:\Steam\steamapps\common\Arcania Fall of Setarrif\Arcania Addon.exe
FirewallRules: [{45B4FD56-5EEB-45E7-977A-C8F899DD27A8}] => (Allow) A:\Steam\steamapps\common\Arcania Fall of Setarrif\Arcania Addon.exe
FirewallRules: [{9D8F8617-A01C-4133-A01A-C9D8B5EA824B}] => (Allow) A:\Steam\steamapps\common\Edna & Harvey The Breakout\Edna.exe
FirewallRules: [{75D9572D-A5BD-472E-99FD-18E8C51ABF07}] => (Allow) A:\Steam\steamapps\common\Edna & Harvey The Breakout\Edna.exe
FirewallRules: [{1270F8B2-67BD-4004-94B2-36E0D2F3A17C}] => (Allow) A:\Steam\steamapps\common\Metal Slug 3\mslug3.exe
FirewallRules: [{C4BDCAF2-94DC-40F0-9963-40E60C418CCC}] => (Allow) A:\Steam\steamapps\common\Metal Slug 3\mslug3.exe
FirewallRules: [{C0B51CF4-C467-445D-BF68-CB8A8D578ED5}] => (Allow) A:\Steam\steamapps\common\Darkness II\DarknessII.exe
FirewallRules: [{A6B99313-A198-47AB-8688-E269A671C626}] => (Allow) A:\Steam\steamapps\common\Darkness II\DarknessII.exe
FirewallRules: [{280C35BA-DB08-496D-85A2-9AE36BC4978D}] => (Allow) A:\Steam\steamapps\common\Sonic Adventure DX\AppLauncher.exe
FirewallRules: [{B912216D-19B2-4076-BBF7-82DB90A7D7A6}] => (Allow) A:\Steam\steamapps\common\Sonic Adventure DX\AppLauncher.exe
FirewallRules: [{152975E1-8D97-4633-BC29-00BFE79B9F5B}] => (Allow) A:\Steam\steamapps\common\Space Channel 5 Part 2\AppLauncher.exe
FirewallRules: [{137A1C81-E762-4CEC-A64C-81F7F0C78FF5}] => (Allow) A:\Steam\steamapps\common\Space Channel 5 Part 2\AppLauncher.exe
FirewallRules: [{37CF226A-8420-4786-B440-DE26381A8CDE}] => (Allow) A:\Steam\steamapps\common\Magic 2013\DotP_D13.exe
FirewallRules: [{17A1D312-D5CC-47AC-A936-F004312DCBD9}] => (Allow) A:\Steam\steamapps\common\Magic 2013\DotP_D13.exe
FirewallRules: [{5E90A909-7799-4C73-ACA2-B2B9B5640002}] => (Allow) A:\Steam\steamapps\common\Alan Wake\AlanWake.exe
FirewallRules: [{634C2E7D-C4C3-4F13-9777-F1966A1A7CDA}] => (Allow) A:\Steam\steamapps\common\Alan Wake\AlanWake.exe
FirewallRules: [{19E54393-4796-4DCF-B29C-07E9242827E1}] => (Allow) A:\Steam\steamapps\common\Crysis 2 Game of the Year\bin32\Crysis2Launcher.exe
FirewallRules: [{B72A35E6-FCDC-4E3B-B339-0B17D399C74A}] => (Allow) A:\Steam\steamapps\common\Crysis 2 Game of the Year\bin32\Crysis2Launcher.exe
FirewallRules: [{6D4B8922-E3AA-4255-A2F2-22F6DE912C2B}] => (Allow) A:\Steam\steamapps\common\Serious Sam 2\Bin\Sam2.exe
FirewallRules: [{7ADD045D-5CAD-4643-800A-8327F5AC60C5}] => (Allow) A:\Steam\steamapps\common\Serious Sam 2\Bin\Sam2.exe
FirewallRules: [{CA093842-A801-4C34-8922-63FEAF3329A5}] => (Allow) A:\Steam\steamapps\common\Hitman Sniper Challenge\HMSC.exe
FirewallRules: [{6FFE4315-914C-43D0-99C7-A81910268772}] => (Allow) A:\Steam\steamapps\common\Hitman Sniper Challenge\HMSC.exe
FirewallRules: [{702D4667-743A-43AD-AC29-AC7BFAFAA41C}] => (Allow) A:\Steam\steamapps\common\ValveTestApp207490\Rayman Origins.exe
FirewallRules: [{86E1AC25-9107-40A4-BE14-96FAEADEF441}] => (Allow) A:\Steam\steamapps\common\ValveTestApp207490\Rayman Origins.exe
FirewallRules: [{885C4BA8-1E81-471E-9FB8-1D8888BF46B5}] => (Allow) A:\Steam\steamapps\common\mercenary_kings\MercenaryKings.exe
FirewallRules: [{B5AD95A3-FB11-438E-BD4D-19C43C733502}] => (Allow) A:\Steam\steamapps\common\mercenary_kings\MercenaryKings.exe
FirewallRules: [{7FF7F970-494A-44C6-87A4-DD7FCD520391}] => (Allow) A:\Steam\steamapps\common\The Stanley Parable\stanley.exe
FirewallRules: [{F99620C2-FD52-49AD-B138-819B19D4FC9B}] => (Allow) A:\Steam\steamapps\common\The Stanley Parable\stanley.exe
FirewallRules: [{5C473AC9-DE15-4DE9-A270-2F29B9437C0C}] => (Allow) A:\Steam\steamapps\common\Giana Sisters Twisted Dreams\launcher\GSLauncher.exe
FirewallRules: [{79EF73E2-0757-4D98-B988-72A945035777}] => (Allow) A:\Steam\steamapps\common\Giana Sisters Twisted Dreams\launcher\GSLauncher.exe
FirewallRules: [{EC674E64-593A-4BE3-9AFB-8C7EB988E359}] => (Allow) A:\Steam\steamapps\common\POSTAL2Complete\System\Postal2.exe
FirewallRules: [{8E107847-12A1-4237-A5D3-8AF3B0D5C5FE}] => (Allow) A:\Steam\steamapps\common\POSTAL2Complete\System\Postal2.exe
FirewallRules: [{9E060F25-2488-4AF7-B803-5EA41966FE4B}] => (Allow) A:\Steam\steamapps\common\POSTAL2Complete\ShareThePain\System\Postal2MP.exe
FirewallRules: [{BFA33DE4-A80F-4B3A-A14A-306EAC9F2302}] => (Allow) A:\Steam\steamapps\common\POSTAL2Complete\ShareThePain\System\Postal2MP.exe
FirewallRules: [{ABE24211-B416-4505-8F8B-A12F42F1EAEA}] => (Allow) A:\Steam\steamapps\common\legacy_kain_defiance\defiance.exe
FirewallRules: [{4144D48F-A648-4DA3-AB1F-1911D8450B92}] => (Allow) A:\Steam\steamapps\common\legacy_kain_defiance\defiance.exe
FirewallRules: [{A0B99AF5-A546-490D-B38F-C91D012C96E5}] => (Allow) A:\Steam\steamapps\common\Cities XL Platinum\CitiesXL_Platinum.exe
FirewallRules: [{17110000-CE6B-4B9C-B90A-8608C743E1F6}] => (Allow) A:\Steam\steamapps\common\Cities XL Platinum\CitiesXL_Platinum.exe
FirewallRules: [{0F3753AA-F92E-45EA-9FC0-1A147A7DD09A}] => (Allow) A:\Steam\steamapps\common\Dust An Elysian Tail\DustAET.exe
FirewallRules: [{7FA4E321-D2F6-4D28-9847-CDDC57E0ED4A}] => (Allow) A:\Steam\steamapps\common\Dust An Elysian Tail\DustAET.exe
FirewallRules: [{04152373-42E0-487C-A1F7-FD7B53435C1C}] => (Allow) A:\Steam\steamapps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{B2E150C7-50DC-42E9-A67E-4B5E4F7293B6}] => (Allow) A:\Steam\steamapps\common\Shadow Warrior\dx11\launcher.exe
FirewallRules: [{81F227D5-CCA7-4E04-9AF0-A715128D65D4}] => (Allow) A:\Steam\steamapps\common\Shadow Warrior\sw.exe
FirewallRules: [{9F843A61-CC40-480A-B407-14FC1B1BC4EB}] => (Allow) A:\Steam\steamapps\common\Shadow Warrior\sw.exe
FirewallRules: [{E4F686F6-C1AD-4EC6-AC4E-FD306AED4C85}] => (Allow) A:\Steam\steamapps\common\Outlast\OutlastLauncher.exe
FirewallRules: [{A45C3AC4-F2AC-4416-AB32-F4E7A3499041}] => (Allow) A:\Steam\steamapps\common\Outlast\OutlastLauncher.exe
FirewallRules: [{02F270FC-4853-4423-8BDE-AA5C70D562AB}] => (Allow) A:\Steam\steamapps\common\Enslaved\Binaries\Win32\Enslaved.exe
FirewallRules: [{8D7454A3-2BAC-44C8-9B4A-2D3641E4FACE}] => (Allow) A:\Steam\steamapps\common\Enslaved\Binaries\Win32\Enslaved.exe
FirewallRules: [{CC5AACE2-6438-408C-AA0D-1B1D3495DAE3}] => (Allow) A:\Steam\steamapps\common\RESIDENT EVIL REVELATIONS 2\rerev2.exe
FirewallRules: [{C363692A-7D72-4746-9B69-A7F022954220}] => (Allow) A:\Steam\steamapps\common\RESIDENT EVIL REVELATIONS 2\rerev2.exe
FirewallRules: [{08FE1C0B-BE0F-4C37-8D4D-95DB0B78D150}] => (Allow) A:\Steam\steamapps\common\Dragon's Prophet (EU)\dplogin.exe
FirewallRules: [{775A039C-92F6-4E4A-9E9A-1EC62D57A4E6}] => (Allow) A:\Steam\steamapps\common\Dragon's Prophet (EU)\dplogin.exe
FirewallRules: [{8967F2E0-907E-4F00-B043-A17520FB7CFE}] => (Allow) A:\Program Files (x86)\Origin Games\Dragon Age II\bin_ship\DragonAge2.exe
FirewallRules: [{4274D5B6-1151-4A2A-8E30-E0BC2F1038B8}] => (Allow) A:\Program Files (x86)\Origin Games\Dragon Age II\bin_ship\DragonAge2.exe
FirewallRules: [{179E289A-5DB1-4CA9-9A10-6C64393A5B45}] => (Allow) A:\Program Files (x86)\Origin Games\Medal of Honor Pacific Assault\mohpa.exe
FirewallRules: [{0BA0C777-6B35-4739-A7F4-9FB458DF9B68}] => (Allow) A:\Program Files (x86)\Origin Games\Medal of Honor Pacific Assault\mohpa.exe
FirewallRules: [{246CD5CE-A7A0-4A9A-A7D5-84F8C8CF7F26}] => (Allow) A:\Program Files (x86)\Origin Games\Medal of Honor Pacific Assault\mohpa_setup.exe
FirewallRules: [{8266B04B-62A9-4486-8E4C-A186E4695B5E}] => (Allow) A:\Program Files (x86)\Origin Games\Medal of Honor Pacific Assault\mohpa_setup.exe
FirewallRules: [{ECC3B888-DC0F-4859-80D4-B84ECC566CDE}] => (Allow) A:\Steam\steamapps\common\RIFT\riftpatchlive.exe
FirewallRules: [{2457BCD1-FD17-4C3C-9086-9A766FA1C3EF}] => (Allow) A:\Steam\steamapps\common\RIFT\riftpatchlive.exe
FirewallRules: [{DDACCFFF-A0E2-4147-833D-14A81EE3FCE0}] => (Allow) A:\Steam\steamapps\common\Ragnarok_Europe\Registration.exe
FirewallRules: [{FDE8E373-FF9C-47BC-ACDA-23004849A07B}] => (Allow) A:\Steam\steamapps\common\Ragnarok_Europe\Registration.exe
FirewallRules: [{B4A92405-8F91-4CAA-9633-2768EC0779A9}] => (Allow) A:\Steam\steamapps\common\Ragnarok_Europe\Setup.exe
FirewallRules: [{367C1CDB-A8C9-4201-96B3-00EB4A6BC793}] => (Allow) A:\Steam\steamapps\common\Ragnarok_Europe\Setup.exe
FirewallRules: [{4239F16A-15AC-4D40-AD1D-93ACE41B233E}] => (Allow) A:\Steam\steamapps\common\SMITE\Binaries\Win32\HirezBridge.exe
FirewallRules: [{FC9EB323-96CB-4CA5-AAE1-6D61CBE7F41C}] => (Allow) A:\Steam\steamapps\common\SMITE\Binaries\Win32\HirezBridge.exe
FirewallRules: [{4988350B-DAE1-4752-9D41-229C62BA1C20}] => (Allow) A:\Steam\steamapps\common\Dragon's Prophet (EU)\launcher.exe
FirewallRules: [{7C65D5A3-211A-469E-9C4E-48B6C82CFDFB}] => (Allow) A:\Steam\steamapps\common\Dragon's Prophet (EU)\launcher.exe
FirewallRules: [{1034A3C4-23BC-4747-B80C-FA52D288B25F}] => (Allow) A:\Steam\steamapps\common\Dragon's Prophet (EU)\dp_x86.exe
FirewallRules: [{9B8E57AF-E6B6-47EF-8BD1-BF91CD1630ED}] => (Allow) A:\Steam\steamapps\common\Dragon's Prophet (EU)\dp_x86.exe
FirewallRules: [{6AE57997-B2F5-4D11-B8B5-ABA07E448D9A}] => (Allow) A:\Steam\steamapps\common\Dragon's Prophet (EU)\dp_x64.exe
FirewallRules: [{6562E942-4269-455E-9CF7-AEEA064B74A1}] => (Allow) A:\Steam\steamapps\common\Dragon's Prophet (EU)\dp_x64.exe
FirewallRules: [{8F942E06-A644-45AB-976C-B594C3E582DE}] => (Allow) A:\Steam\steamapps\common\SteamCabal\cabal.exe
FirewallRules: [{C5B7EC10-0496-47A6-897F-2370830845D8}] => (Allow) A:\Steam\steamapps\common\SteamCabal\cabal.exe
FirewallRules: [{678B7610-4C30-4811-B855-11EEF457EF27}] => (Allow) A:\Steam\steamapps\common\Shakes & Fidget\Shakes and Fidget.exe
FirewallRules: [{58AB245A-AB27-4610-A361-78AE9319924B}] => (Allow) A:\Steam\steamapps\common\Shakes & Fidget\Shakes and Fidget.exe
FirewallRules: [{345E6250-8DE2-48C1-BA04-F9DB54F6B4DC}] => (Allow) A:\Steam\steamapps\common\ArcheBlade\Binaries\Win32\Archeblade.exe
FirewallRules: [{A46F01D3-A2A6-42F5-9367-34F3F617DBE4}] => (Allow) A:\Steam\steamapps\common\ArcheBlade\Binaries\Win32\Archeblade.exe
FirewallRules: [{75B8C690-7B59-470C-8390-F475985946EC}] => (Allow) A:\Steam\steamapps\common\AION\NCLauncher.exe
FirewallRules: [{8D6EC266-2066-4F57-89A9-3117AE30F807}] => (Allow) A:\Steam\steamapps\common\AION\NCLauncher.exe
FirewallRules: [{0F658BF2-7DB9-49EB-8B20-5A2240ACB3B0}] => (Allow) A:\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{449C78C3-1E67-4A5A-8033-84CBC8777BA8}] => (Allow) A:\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{E94D1DEE-4F5A-4704-A1D3-04D706C7516E}] => (Allow) A:\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{71EF7867-AB03-47BB-910C-E3EDF25A47E7}] => (Allow) A:\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{C71C41BA-72A4-46C3-BC02-28BAFA6B7812}] => (Allow) A:\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{4ED29E50-7597-4233-BEDD-A9D799441E29}] => (Allow) A:\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{8295FFBA-6471-47BD-9A7C-E7AB746A26D8}] => (Allow) A:\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{EEFC1D43-9707-4F72-B093-DFCDB707D387}] => (Allow) A:\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{E63780AD-D3BB-415B-A668-17D50D4C3501}] => (Allow) A:\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{617E5B2A-70D6-4794-922D-BAF928D00372}] => (Allow) A:\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{3E90D583-B638-44B0-B037-D66FC3BF8AF9}] => (Allow) A:\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{F8373695-026D-47AD-9166-6353EAB48188}] => (Allow) A:\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{C561E98B-CCFC-401D-AFDD-544FB8BC984F}] => (Allow) A:\Steam\steamapps\common\Obscure2\Obscure2.exe
FirewallRules: [{4CB56907-B82E-4569-BE98-3C73D41225E9}] => (Allow) A:\Steam\steamapps\common\Obscure2\Obscure2.exe
FirewallRules: [{D6093B37-D4E1-4C55-BA54-80332C88F6C3}] => (Allow) A:\Steam\steamapps\common\Obscure\Obscure.exe
FirewallRules: [{739B49EB-49D5-414E-ACDC-40F89F18C87D}] => (Allow) A:\Steam\steamapps\common\Obscure\Obscure.exe
FirewallRules: [{CF712556-25ED-44FB-B69C-98BC8AE0B337}] => (Allow) A:\Steam\steamapps\common\Two Worlds - Epic Edition\2WSG.exe
FirewallRules: [{9DE401E0-8297-4C30-B049-5C846AED1964}] => (Allow) A:\Steam\steamapps\common\Two Worlds - Epic Edition\2WSG.exe
FirewallRules: [{8C9DCB0E-CE8C-4BF3-ABC0-273E1957EC41}] => (Allow) A:\Steam\steamapps\common\Forsaken World\patcher.exe
FirewallRules: [{1C037AE3-EC69-4F20-A6D7-B8ED2BF000A7}] => (Allow) A:\Steam\steamapps\common\Forsaken World\patcher.exe
FirewallRules: [{607D5A6B-31AA-4C06-B2F6-798DDFB965A6}] => (Allow) A:\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{A72E1A4F-E1B0-4AAB-83C5-BAB9D2B7B5CD}] => (Allow) A:\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{E4F45EEA-A7F4-4592-9A29-A2368FA81544}] => (Allow) A:\Steam\steamapps\common\Gotham City Impostors F2P\Impostors.exe
FirewallRules: [{A717FB74-05EA-4C7E-B375-3AFEFAD67061}] => (Allow) A:\Steam\steamapps\common\Gotham City Impostors F2P\Impostors.exe
FirewallRules: [{BB1A9F88-C496-4E63-904E-54BEF0A5A718}] => (Allow) A:\Steam\steamapps\common\Gotham City Impostors F2P\Engine.exe
FirewallRules: [{FF923DC2-C5C0-4E4C-B55E-E61E6C789F10}] => (Allow) A:\Steam\steamapps\common\Gotham City Impostors F2P\Engine.exe
FirewallRules: [{4A8A2896-5FC7-433E-B92D-5B53DAED8CCC}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{0E69EA37-E8F1-4428-899A-E874A5FF0B10}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{3831091E-7303-481A-A764-69D61D1557C3}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{15F183E9-6A67-486D-8C83-F81560BFD012}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{C00A0ECC-885F-417B-903E-B6EC2D6D66E3}] => (Allow) A:\Steam\steamapps\common\The Evil Within Demo\EvilWithinDemo.exe
FirewallRules: [{9CC5C908-8E86-49F8-852B-3B9F887CE82F}] => (Allow) A:\Steam\steamapps\common\The Evil Within Demo\EvilWithinDemo.exe
FirewallRules: [{A5153879-08B1-4273-9197-A0979621B453}] => (Allow) A:\Steam\steamapps\common\ARK SOTF\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{4269BA78-957B-4C2D-A4CB-77BEB50C78EF}] => (Allow) A:\Steam\steamapps\common\ARK SOTF\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{89682C25-A1A7-413A-A905-E0E3C24C78FD}] => (Allow) A:\Steam\steamapps\common\METAL GEAR RISING REVENGEANCE\METAL GEAR RISING REVENGEANCE.exe
FirewallRules: [{CEF62E04-048D-4A4F-B6C0-436B01E492F5}] => (Allow) A:\Steam\steamapps\common\METAL GEAR RISING REVENGEANCE\METAL GEAR RISING REVENGEANCE.exe
FirewallRules: [{275B3A29-E5EF-4563-BC2F-97099B81E5A1}] => (Allow) A:\Steam\steamapps\common\MGS_TPP\mgsvtpp.exe
FirewallRules: [{0524A310-E0F4-4D38-9957-7F9EF09DBB9F}] => (Allow) A:\Steam\steamapps\common\MGS_TPP\mgsvtpp.exe
FirewallRules: [{723BF0BF-6E1B-4C94-88E5-240C164B3D07}] => (Allow) A:\Steam\steamapps\common\Limbo\limbo.exe
FirewallRules: [{51FAD046-B9CF-429E-B670-2D4C627722CD}] => (Allow) A:\Steam\steamapps\common\Limbo\limbo.exe
FirewallRules: [{0489CBC8-41D6-4784-AFB0-D639172D1712}] => (Allow) A:\Steam\steamapps\common\Drakensang\drakensang.exe
FirewallRules: [{7EDE4CB0-3DD0-4626-A8D5-60F0CDA518CD}] => (Allow) A:\Steam\steamapps\common\Drakensang\drakensang.exe
FirewallRules: [{7E9980FE-5E13-4090-93C1-8618B2CBB792}] => (Allow) A:\Steam\steamapps\common\DB Xenoverse\DBXV.exe
FirewallRules: [{62241AFB-1B25-4A0F-809C-D324BA44C8E0}] => (Allow) A:\Steam\steamapps\common\DB Xenoverse\DBXV.exe
FirewallRules: [{97DAE2A5-248E-4205-92D1-EF69C1E1B51F}] => (Allow) A:\Steam\steamapps\common\DOOM\DOOMx64.exe
FirewallRules: [{32E7CCB9-8B18-443D-8391-7739CDBD5E1C}] => (Allow) A:\Steam\steamapps\common\DOOM\DOOMx64.exe
FirewallRules: [{A78FF5A8-F744-4B84-B3D3-A2533F95AD61}] => (Allow) A:\Steam\steamapps\common\Serious Sam Revolution\Bin\SeriousSam.exe
FirewallRules: [{A8A66480-0D14-4523-B727-22D5CC174A74}] => (Allow) A:\Steam\steamapps\common\Serious Sam Revolution\Bin\SeriousSam.exe
FirewallRules: [{4691DCB9-0AB5-4968-AEDE-BCBB3DC38C40}] => (Allow) A:\Steam\steamapps\common\Total War Shogun 1 Gold\launcher\launcher.exe
FirewallRules: [{13B0DE70-047C-4E23-99D6-113BFEC36185}] => (Allow) A:\Steam\steamapps\common\Total War Shogun 1 Gold\launcher\launcher.exe
FirewallRules: [{F11C8056-0F0E-4405-9536-98B2EED20378}] => (Allow) A:\Steam\steamapps\common\Axiom Verge\AxiomVerge.exe
FirewallRules: [{8DE2926A-1FF9-43F4-AFF6-83DF2A6061AC}] => (Allow) A:\Steam\steamapps\common\Axiom Verge\AxiomVerge.exe
FirewallRules: [{DE0AF8A2-8314-4AF5-943C-301576F1F2ED}] => (Allow) A:\Steam\steamapps\common\Disgaea PC\dis1_st.exe
FirewallRules: [{B715A296-B5E1-4193-AF2B-7AB1781199BC}] => (Allow) A:\Steam\steamapps\common\Disgaea PC\dis1_st.exe
FirewallRules: [{6312D807-A7C3-4338-9360-E60920318501}] => (Allow) A:\Steam\steamapps\common\Fable Anniversary\Binaries\Win32\Fable Anniversary.exe
FirewallRules: [{27E6ED46-7D5C-4A01-98C0-4850AFA7D271}] => (Allow) A:\Steam\steamapps\common\Fable Anniversary\Binaries\Win32\Fable Anniversary.exe
FirewallRules: [{7D24EAF9-CF78-49A4-9042-E8A9EE4F7340}] => (Allow) A:\Steam\steamapps\common\Oblivion\OblivionLauncher.exe
FirewallRules: [{B095554F-372D-4B33-92AC-22AF160ABD43}] => (Allow) A:\Steam\steamapps\common\Oblivion\OblivionLauncher.exe
FirewallRules: [{7F9BA826-F4DF-4559-A27A-79E4C68F6750}] => (Allow) A:\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{E9A9E9FF-7D7F-4F47-9E25-AA0EBD27CECC}] => (Allow) A:\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{55265F23-1D51-4463-8B22-C42C6A687E50}] => (Allow) A:\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{ACA0AFEC-E95B-442A-892E-A4DFC75ADE0F}] => (Allow) A:\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{B7BCE6B6-2EA5-429A-9662-B30F1DD724B9}] => (Allow) A:\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [{6E4B30D5-1944-4F3F-BFBB-32AE2534EBFE}] => (Allow) A:\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [{709B0388-85EA-4861-A8A0-91B9A6903466}] => (Allow) A:\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe
FirewallRules: [{4A282D31-D0A7-4661-B7BC-DB09601E6A3D}] => (Allow) A:\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe
FirewallRules: [{184482FB-97FD-4102-9CCD-04317B99C6FC}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{59DD1EC8-FB0A-40D2-B705-550A360A3958}] => (Allow) LPort=2869
FirewallRules: [{DF5F7576-7CFA-4A3E-BAF5-2B0B97960682}] => (Allow) LPort=1900
FirewallRules: [{4DFCAEFF-E9E0-49BB-A76D-0B7D3913BA28}] => (Allow) A:\Steam\steamapps\common\Call of Cthulhu\Engine\CoCDCoTELauncher.exe
FirewallRules: [{C129F7E4-2D87-4C62-8BB2-37EDF518C2BC}] => (Allow) A:\Steam\steamapps\common\Call of Cthulhu\Engine\CoCDCoTELauncher.exe
FirewallRules: [{124B197D-3467-40A8-8111-7D4E6ADA783C}] => (Allow) A:\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe
FirewallRules: [{35F88501-6284-4D1A-9DB6-4B0E33444152}] => (Allow) A:\Steam\steamapps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe
FirewallRules: [{0FC18262-4235-464C-8917-DEF9398E8462}] => (Allow) A:\Steam\steamapps\common\Zenimax Online\zosSteamStarter.exe
FirewallRules: [{5B327622-4FE1-46DB-8F15-AEE9FE746420}] => (Allow) A:\Steam\steamapps\common\Zenimax Online\zosSteamStarter.exe
FirewallRules: [{07877BBB-2B8E-48A3-AC5C-A4A058A0281F}] => (Allow) A:\Steam\steamapps\common\Hunted\BINARIES\WIN32\HUNTED.EXE
FirewallRules: [{9F6D4193-D60A-491C-A994-154F8ED90EAB}] => (Allow) A:\Steam\steamapps\common\Hunted\BINARIES\WIN32\HUNTED.EXE
FirewallRules: [{7B2F2857-ED13-46CD-BAAB-FC83097D727E}] => (Allow) A:\Steam\steamapps\common\Savage Lands\SavageLands.exe
FirewallRules: [{3F4B4B5F-8E51-41C3-B037-651B1104A0D7}] => (Allow) A:\Steam\steamapps\common\Savage Lands\SavageLands.exe
FirewallRules: [{C8DE607B-15C3-4B7A-9AEF-DC8BF8FE7C80}] => (Allow) A:\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
FirewallRules: [{FE048E63-1088-4C0E-98B8-E6A3050E9C56}] => (Allow) A:\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe
FirewallRules: [{838FA2CE-27CA-4B62-B185-A982A7E26D0A}] => (Allow) A:\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{F1F181A8-D0CB-4FD3-B04C-FACBDD34A7E2}] => (Allow) A:\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{EC0D0061-512D-4B6B-BE91-9E8ED15B8352}] => (Allow) A:\Steam\steamapps\common\KHOLAT\Kholat.exe
FirewallRules: [{B214020E-2FD6-4263-9805-F51BCC97F23A}] => (Allow) A:\Steam\steamapps\common\KHOLAT\Kholat.exe
FirewallRules: [{1D5FB60B-45C7-4EFE-A465-870C024BDF5E}] => (Allow) A:\Steam\steamapps\common\Tharsis\tharsis.exe
FirewallRules: [{1CF0EB73-5C2F-4952-A36C-38D3180EBB47}] => (Allow) A:\Steam\steamapps\common\Tharsis\tharsis.exe
FirewallRules: [{594B5206-04D9-484B-B8E2-CD5016BF0976}] => (Allow) A:\Steam\steamapps\common\Shelter2\Shelter2.exe
FirewallRules: [{0DC051FE-5928-4D52-A4E2-16ACA89189E8}] => (Allow) A:\Steam\steamapps\common\Shelter2\Shelter2.exe
FirewallRules: [{2311A660-2F68-48A5-BAFC-5CC284F51463}] => (Allow) A:\Steam\steamapps\common\DFO\NeopleLauncher.exe
FirewallRules: [{32D0E3F3-CDA4-40AB-A55E-143DCE9B7A6D}] => (Allow) A:\Steam\steamapps\common\DFO\NeopleLauncher.exe
FirewallRules: [{AF81E12F-7224-460A-883C-B1A33D107D19}] => (Allow) A:\Steam\steamapps\common\Ragnarok Clicker Heroes\Ragnarok Clicker.exe
FirewallRules: [{B04965CF-4569-4CA3-BEA2-D0897A28D7F4}] => (Allow) A:\Steam\steamapps\common\Ragnarok Clicker Heroes\Ragnarok Clicker.exe
FirewallRules: [{F048BCE9-9738-4854-B7D7-571EF7213152}] => (Allow) A:\Steam\steamapps\common\Dungeons & Dragons Chronicles of Mystara Demo\ManaGame.exe
FirewallRules: [{94026DAD-DC2B-47B5-B22F-ED6CB27637B8}] => (Allow) A:\Steam\steamapps\common\Dungeons & Dragons Chronicles of Mystara Demo\ManaGame.exe
FirewallRules: [{F77B66DA-19D9-49BF-B6A0-6C3522365260}] => (Allow) A:\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe
FirewallRules: [{EC3D0C35-5E49-4E7B-86DE-6B9A8210C0D4}] => (Allow) A:\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe
FirewallRules: [{69BB9F51-B1A2-442B-825E-73EC2A485986}] => (Allow) C:\Users\Obscura Nox\AppData\Local\Temp\EpInsNav\DL\3013\Network\EpsonNetSetup\EpsonNetSetup\Data\ENEasyApp.exe
FirewallRules: [{083CDA99-1114-4273-8366-03FD01691F7F}] => (Allow) C:\Users\Obscura Nox\AppData\Local\Temp\EpInsNav\DL\3013\Network\EpsonNetSetup\EpsonNetSetup\Data\ENEasyApp.exe
FirewallRules: [{83AFF917-7B3B-42FF-BAAC-20C2E9B4EB0A}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
FirewallRules: [{444F7F17-0843-4AA9-B549-891F98858F21}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
FirewallRules: [{A566DBFA-EFE2-4669-83E1-6022532918B2}] => (Allow) A:\Steam\steamapps\common\Necropolis\Necropolis.exe
FirewallRules: [{43653E9A-B1B5-4CC9-A288-2EB2D8718EFB}] => (Allow) A:\Steam\steamapps\common\Necropolis\Necropolis.exe
FirewallRules: [{FB207941-E425-4BA8-8BAA-BC1E495F46B8}] => (Allow) A:\Steam\steamapps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win32\UDK.exe
FirewallRules: [{4CCBDE0B-15D2-452A-912A-B0C4E9A0AE04}] => (Allow) A:\Steam\steamapps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win32\UDK.exe
FirewallRules: [{60161A8C-F821-4C0F-8F05-22D04074C0F2}] => (Allow) A:\Steam\steamapps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win64\UDK.exe
FirewallRules: [{DFF76149-440B-40B9-A8A4-0F98BD9FFC43}] => (Allow) A:\Steam\steamapps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win64\UDK.exe
FirewallRules: [{6F14546E-3037-4087-9535-F590080D6FB6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{F7DD5763-A239-40A9-8056-32BCAA949598}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{D15C5BDC-312D-4218-B858-7DB1EC304821}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{54D81FD1-F086-459E-8F79-14859B8AD6FE}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{B41787F3-CA67-4BC4-A717-23E7216E9288}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{13FF3A52-A754-41BF-8BED-F6AABE600241}] => (Allow) A:\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{266EB581-EEFA-4B51-885E-6717950E50C0}] => (Allow) A:\Steam\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{8E81D692-0574-49D4-BDB9-2B72025F1385}] => (Allow) A:\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{C6BD140B-2B34-4C85-983F-77FB3A749AA0}] => (Allow) A:\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{DDF4C16A-476A-48BF-AAFC-AF8EF847D67D}] => (Allow) A:\Steam\steamapps\common\Company of Heroes\RelicCOH.exe
FirewallRules: [{ACC26F98-6238-4CAF-B48A-268A7C2FD088}] => (Allow) A:\Steam\steamapps\common\Company of Heroes\RelicCOH.exe

==================== Wiederherstellungspunkte =========================

16-10-2016 15:42:00 Geplanter Prüfpunkt
19-10-2016 02:04:47 Windows Update

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: HID-konformer Gamecontroller
Description: HID-konformer Gamecontroller
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standardsystemgeräte)
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (10/21/2016 09:43:10 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (10/21/2016 09:52:16 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (10/20/2016 10:12:34 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (10/20/2016 09:48:41 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (10/19/2016 04:25:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SimulationCraft.exe, Version: 0.0.0.0, Zeitstempel: 0x58067ad8
Name des fehlerhaften Moduls: nvoglv64.DLL, Version: 21.21.13.7290, Zeitstempel: 0x57dc6f62
Ausnahmecode: 0x40000015
Fehleroffset: 0x00000000015cf842
ID des fehlerhaften Prozesses: 0x2bb0
Startzeit der fehlerhaften Anwendung: 0x01d22a0f5d8187ca
Pfad der fehlerhaften Anwendung: C:\Simulationcraft(x64)\703-04\SimulationCraft.exe
Pfad des fehlerhaften Moduls: C:\Windows\system32\nvoglv64.DLL
Berichtskennung: e38a0491-9607-11e6-ba85-bc5ff43a8f47

Error: (10/19/2016 04:25:31 PM) (Source: NVIDIA OpenGL Driver) (EventID: 1) (User: )
Description: Unable to recover from a kernel exception. The application must close.


Error code: 3 (subcode 2)
 (pid=11184 tid=10036 simulationcraft.exe 64bit)

Visit hxxp://www.nvidia.com/page/support.html for more information.

Error: (10/19/2016 09:44:16 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (10/18/2016 11:01:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: setup.exe_unknown, Version: 0.0.0.0, Zeitstempel: 0x57d87fc5
Name des fehlerhaften Moduls: NVI2.DLL, Version: 2.1002.224.1962, Zeitstempel: 0x57d880dc
Ausnahmecode: 0x40000015
Fehleroffset: 0x00278476
ID des fehlerhaften Prozesses: 0x2928
Startzeit der fehlerhaften Anwendung: 0x01d229814408835f
Pfad der fehlerhaften Anwendung: C:\ProgramData\NVIDIA Corporation\GeForce Experience\Update\setup.exe
Pfad des fehlerhaften Moduls: C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{ACC2E0DC-BD97-4F3E-9754-9AB6484728AB}\NVI2.DLL
Berichtskennung: 146c00b6-9576-11e6-a032-bc5ff43a8f47

Error: (10/18/2016 10:57:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (10/17/2016 01:32:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: EPSDNAVI.EXE, Version: 4.4.2.0, Zeitstempel: 0x577605de
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000002
ID des fehlerhaften Prozesses: 0x16c8
Startzeit der fehlerhaften Anwendung: 0x01d22869f0bd251d
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNAVI.EXE
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: 54eba48e-945d-11e6-bab5-bc5ff43a8f47


Systemfehler:
=============
Error: (10/21/2016 09:42:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Origin Web Helper Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (10/21/2016 09:42:01 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Origin Web Helper Service erreicht.

Error: (10/21/2016 09:41:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "atksgt" wurde aufgrund folgenden Fehlers nicht gestartet: 
Die digitale Signatur dieser Datei kann nicht überprüft werden. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um böswillige Software aus einer unbekannten Quelle handelt, installiert.

Error: (10/21/2016 05:15:36 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{F9717507-6651-4EDB-BFF7-AE615179BCCF}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (10/21/2016 09:51:07 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Origin Web Helper Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (10/21/2016 09:51:07 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Origin Web Helper Service erreicht.

Error: (10/21/2016 09:50:36 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "atksgt" wurde aufgrund folgenden Fehlers nicht gestartet: 
Die digitale Signatur dieser Datei kann nicht überprüft werden. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um böswillige Software aus einer unbekannten Quelle handelt, installiert.

Error: (10/20/2016 10:50:09 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{F9717507-6651-4EDB-BFF7-AE615179BCCF}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (10/20/2016 09:47:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Origin Web Helper Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (10/20/2016 09:47:32 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Origin Web Helper Service erreicht.


CodeIntegrity:
===================================
  Date: 2016-10-21 21:41:30.672
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\atksgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-10-21 21:41:30.635
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\atksgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-10-21 09:50:36.556
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\atksgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-10-21 09:50:36.521
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\atksgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-10-20 09:47:01.624
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\atksgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-10-20 09:47:01.588
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\atksgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-10-19 09:42:38.267
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\atksgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-10-19 09:42:38.217
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\atksgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-10-18 10:55:53.550
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\atksgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-10-18 10:55:53.513
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\drivers\atksgt.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 27%
Installierter physikalischer RAM: 16277.43 MB
Verfügbarer physikalischer RAM: 11767.24 MB
Summe virtueller Speicher: 32553.04 MB
Verfügbarer virtueller Speicher: 27860.77 MB

==================== Laufwerke ================================

Drive a: (Volume) (Fixed) (Total:3725.9 GB) (Free:633.5 GB) NTFS
Drive b: (Volume) (Fixed) (Total:931.51 GB) (Free:927.33 GB) NTFS
Drive c: () (Fixed) (Total:119.14 GB) (Free:35.36 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (FC_S2) (CDROM) (Total:0.62 GB) (Free:0 GB) CDFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 3726 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: 6BD1FFF1)
Partition 1: (Active) - (Size=119.1 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: D67308B3)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         


Alt 22.10.2016, 11:14   #6
deeprybka
/// TB-Ausbilder
/// Anleitungs-Guru
 
Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird. - Standard

Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird.



Schritt 1
Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.
__________________
--> Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird.

Alt 22.10.2016, 15:59   #7
Obscura Nox
 
Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird. - Standard

Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird.



Hat 2 Sachen gefunden:

Code:
ATTFilter
16:56:54.0098 0x2270  TDSS rootkit removing tool 3.1.0.11 Aug  5 2016 12:13:31
16:56:58.0790 0x2270  ============================================================
16:56:58.0790 0x2270  Current date / time: 2016/10/22 16:56:58.0790
16:56:58.0790 0x2270  SystemInfo:
16:56:58.0790 0x2270  
16:56:58.0790 0x2270  OS Version: 6.1.7601 ServicePack: 1.0
16:56:58.0790 0x2270  Product type: Workstation
16:56:58.0790 0x2270  ComputerName: OBSCURANOX-PC
16:56:58.0791 0x2270  UserName: Obscura Nox
16:56:58.0791 0x2270  Windows directory: C:\Windows
16:56:58.0791 0x2270  System windows directory: C:\Windows
16:56:58.0791 0x2270  Running under WOW64
16:56:58.0791 0x2270  Processor architecture: Intel x64
16:56:58.0791 0x2270  Number of processors: 8
16:56:58.0791 0x2270  Page size: 0x1000
16:56:58.0791 0x2270  Boot type: Normal boot
16:56:58.0791 0x2270  CodeIntegrityOptions = 0x00000001
16:56:58.0791 0x2270  ============================================================
16:57:06.0128 0x2270  KLMD registered as C:\Windows\system32\drivers\29017285.sys
16:57:06.0128 0x2270  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23564, osProperties = 0x1
16:57:06.0232 0x2270  System UUID: {E9A55594-C1D1-A15F-FC12-9F7C671800BD}
16:57:06.0602 0x2270  Drive \Device\Harddisk0\DR0 - Size: 0x3A3817D6000 ( 3726.02 Gb ), SectorSize: 0x200, Cylinders: 0x76C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:57:06.0604 0x2270  Drive \Device\Harddisk1\DR1 - Size: 0x1DCF856000 ( 119.24 Gb ), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:57:06.0604 0x2270  Drive \Device\Harddisk2\DR2 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:57:06.0607 0x2270  ============================================================
16:57:06.0607 0x2270  \Device\Harddisk0\DR0:
16:57:06.0607 0x2270  GPT partitions:
16:57:06.0608 0x2270  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {47552510-FA9F-4A97-B8A9-3C5AC940A383}, Name: Microsoft reserved partition, StartLBA 0x22, BlocksNum 0x40000
16:57:06.0608 0x2270  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {5B335F10-0C89-4E5B-9ABE-3F8AAE57A1D8}, Name: Basic data partition, StartLBA 0x40800, BlocksNum 0xD1BCB000
16:57:06.0608 0x2270  MBR partitions:
16:57:06.0608 0x2270  \Device\Harddisk1\DR1:
16:57:06.0608 0x2270  MBR partitions:
16:57:06.0608 0x2270  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xEE49000
16:57:06.0608 0x2270  \Device\Harddisk2\DR2:
16:57:06.0608 0x2270  MBR partitions:
16:57:06.0608 0x2270  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
16:57:06.0608 0x2270  ============================================================
16:57:06.0609 0x2270  C: <-> \Device\Harddisk1\DR1\Partition1
16:57:06.0611 0x2270  A: <-> \Device\Harddisk0\DR0\Partition2
16:57:06.0839 0x2270  B: <-> \Device\Harddisk2\DR2\Partition1
16:57:06.0839 0x2270  ============================================================
16:57:06.0839 0x2270  Initialize success
16:57:06.0839 0x2270  ============================================================
16:57:35.0927 0x2964  ============================================================
16:57:35.0927 0x2964  Scan started
16:57:35.0927 0x2964  Mode: Manual; SigCheck; TDLFS; 
16:57:35.0927 0x2964  ============================================================
16:57:35.0927 0x2964  KSN ping started
16:57:36.0026 0x2964  KSN ping finished: true
16:57:36.0493 0x2964  ================ Scan system memory ========================
16:57:36.0494 0x2964  System memory - ok
16:57:36.0494 0x2964  ================ Scan services =============================
16:57:36.0519 0x2964  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
16:57:36.0558 0x2964  1394ohci - ok
16:57:36.0572 0x2964  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:57:36.0586 0x2964  ACPI - ok
16:57:36.0589 0x2964  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
16:57:36.0606 0x2964  AcpiPmi - ok
16:57:36.0624 0x2964  [ 1E30AB3A4D3EB916FF6C1B71B9F2331A, 4D1D703CD16FAE5096A8897DDC69C925FA3BFF1F45E1EA55898BF251AF0D3E9A ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:57:36.0635 0x2964  AdobeFlashPlayerUpdateSvc - ok
16:57:36.0646 0x2964  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
16:57:36.0664 0x2964  adp94xx - ok
16:57:36.0672 0x2964  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
16:57:36.0686 0x2964  adpahci - ok
16:57:36.0692 0x2964  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
16:57:36.0703 0x2964  adpu320 - ok
16:57:36.0707 0x2964  [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:57:36.0718 0x2964  AeLookupSvc - ok
16:57:36.0729 0x2964  [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD             C:\Windows\system32\drivers\afd.sys
16:57:36.0748 0x2964  AFD - ok
16:57:36.0751 0x2964  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
16:57:36.0761 0x2964  agp440 - ok
16:57:36.0764 0x2964  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
16:57:36.0778 0x2964  ALG - ok
16:57:36.0780 0x2964  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
16:57:36.0788 0x2964  aliide - ok
16:57:36.0790 0x2964  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
16:57:36.0798 0x2964  amdide - ok
16:57:36.0801 0x2964  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
16:57:36.0811 0x2964  AmdK8 - ok
16:57:36.0814 0x2964  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
16:57:36.0824 0x2964  AmdPPM - ok
16:57:36.0828 0x2964  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:57:36.0837 0x2964  amdsata - ok
16:57:36.0843 0x2964  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
16:57:36.0855 0x2964  amdsbs - ok
16:57:36.0857 0x2964  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:57:36.0865 0x2964  amdxata - ok
16:57:36.0868 0x2964  [ 8B73FEE96B60EE597CBCAA735A842A36, AB3FC01FEC62AC115EC766770D8694DEDA2FF2286E0199DC238ABF2493EC1A22 ] AppID           C:\Windows\system32\drivers\appid.sys
16:57:36.0879 0x2964  AppID - ok
16:57:36.0882 0x2964  [ F5800413C0DF45C2CA15FD3ACBB1365F, 741E09EED0FF0152B59704729BD700E7D7A671C88F0708884AAB7A56ECCBD8AB ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:57:36.0891 0x2964  AppIDSvc - ok
16:57:36.0894 0x2964  [ B46099A534B7989D80330EA82D9092D6, 0CAC09732FAFAE805E55428B6BE001DCC39EBC599539FADE7AA68571A8A554E5 ] Appinfo         C:\Windows\System32\appinfo.dll
16:57:36.0904 0x2964  Appinfo - ok
16:57:36.0908 0x2964  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
16:57:36.0917 0x2964  arc - ok
16:57:36.0922 0x2964  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
16:57:36.0931 0x2964  arcsas - ok
16:57:36.0934 0x2964  [ 4DFF4312661F54EE87DC9A13CAEE60E0, 8821D2CA4036E764EFF71108735148FF54D3275DDCE1860EC7D67B2355E8DF82 ] asahci64        C:\Windows\system32\DRIVERS\asahci64.sys
16:57:36.0946 0x2964  asahci64 - ok
16:57:36.0955 0x2964  [ 660D597B7A78256734D7F3230B21B355, CAA19E8EFAD63B8975A4CD8EFD5CE5F21E056856D36BC5A9E48517F1E574ABBA ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:57:36.0965 0x2964  aspnet_state - ok
16:57:36.0967 0x2964  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:57:37.0011 0x2964  AsyncMac - ok
16:57:37.0013 0x2964  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
16:57:37.0021 0x2964  atapi - ok
16:57:37.0028 0x2964  [ 4AEF9EC86818375495FB78CA58DF4E18, 0565888F798FAB86091E7A7D8E1D583DF3CC5756A12ACF04987C67C14E360DFB ] atksgt          C:\Windows\system32\DRIVERS\atksgt.sys
16:57:37.0038 0x2964  atksgt - detected UnsignedFile.Multi.Generic ( 1 )
16:57:37.0145 0x2964  Detect skipped due to KSN trusted
16:57:37.0146 0x2964  atksgt - ok
16:57:37.0161 0x2964  [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:57:37.0182 0x2964  AudioEndpointBuilder - ok
16:57:37.0197 0x2964  [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
16:57:37.0216 0x2964  AudioSrv - ok
16:57:37.0227 0x2964  [ 09F0E4D1F66C40AB770AD1540758C59E, 78591F6B94B5A5B9A6D434AC54A0BD5D606099A6FE48B25D17B2E01942CAEAE3 ] AVP16.0.1       C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\avp.exe
16:57:37.0240 0x2964  AVP16.0.1 - ok
16:57:37.0244 0x2964  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:57:37.0264 0x2964  AxInstSV - ok
16:57:37.0275 0x2964  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
16:57:37.0294 0x2964  b06bdrv - ok
16:57:37.0301 0x2964  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
16:57:37.0315 0x2964  b57nd60a - ok
16:57:37.0320 0x2964  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
16:57:37.0332 0x2964  BDESVC - ok
16:57:37.0334 0x2964  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
16:57:37.0356 0x2964  Beep - ok
16:57:37.0383 0x2964  [ 34E728ACD12ACC3C8502F437DF4D6601, 025B8A3C463ADEA72FB0A3F70B148547E45091F54A2040E3B07E82EC37430D7E ] BEService       C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
16:57:37.0412 0x2964  BEService - ok
16:57:37.0429 0x2964  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
16:57:37.0453 0x2964  BFE - ok
16:57:37.0471 0x2964  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
16:57:37.0543 0x2964  BITS - ok
16:57:37.0546 0x2964  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
16:57:37.0555 0x2964  blbdrive - ok
16:57:37.0560 0x2964  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:57:37.0571 0x2964  bowser - ok
16:57:37.0573 0x2964  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
16:57:37.0583 0x2964  BrFiltLo - ok
16:57:37.0586 0x2964  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
16:57:37.0595 0x2964  BrFiltUp - ok
16:57:37.0600 0x2964  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
16:57:37.0612 0x2964  Browser - ok
16:57:37.0620 0x2964  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
16:57:37.0635 0x2964  Brserid - ok
16:57:37.0639 0x2964  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
16:57:37.0650 0x2964  BrSerWdm - ok
16:57:37.0652 0x2964  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
16:57:37.0662 0x2964  BrUsbMdm - ok
16:57:37.0665 0x2964  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
16:57:37.0673 0x2964  BrUsbSer - ok
16:57:37.0677 0x2964  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
16:57:37.0688 0x2964  BTHMODEM - ok
16:57:37.0693 0x2964  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
16:57:37.0718 0x2964  bthserv - ok
16:57:37.0722 0x2964  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:57:37.0747 0x2964  cdfs - ok
16:57:37.0751 0x2964  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
16:57:37.0763 0x2964  cdrom - ok
16:57:37.0766 0x2964  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
16:57:37.0791 0x2964  CertPropSvc - ok
16:57:37.0794 0x2964  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
16:57:37.0804 0x2964  circlass - ok
16:57:37.0813 0x2964  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
16:57:37.0828 0x2964  CLFS - ok
16:57:37.0894 0x2964  [ 2FFC3A679CF4FF05AA762E2B8D095574, 5CA2B9898E7493AF71B7D3A35FFB5D9F072DD0381AF89B0F47158895FBF58772 ] ClickToRunSvc   C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
16:57:37.0957 0x2964  ClickToRunSvc - ok
16:57:37.0964 0x2964  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:57:37.0990 0x2964  clr_optimization_v2.0.50727_32 - ok
16:57:37.0995 0x2964  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:57:38.0012 0x2964  clr_optimization_v2.0.50727_64 - ok
16:57:38.0020 0x2964  [ AB4CD527BEFCC43EE441E6C50CCE54C8, 13B776AE63049FFBA7E35EA0A4C26EBB57B10D973E05C4CF1214249754DC46E4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:57:38.0031 0x2964  clr_optimization_v4.0.30319_32 - ok
16:57:38.0035 0x2964  [ 1400C75FF021D6CFACE46AC41B60770E, 3FCB8D7714A79522F2738037D559F1FFFB2F05C5406D2A038EF5DDB4629CA1CE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:57:38.0045 0x2964  clr_optimization_v4.0.30319_64 - ok
16:57:38.0048 0x2964  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
16:57:38.0057 0x2964  CmBatt - ok
16:57:38.0060 0x2964  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
16:57:38.0068 0x2964  cmdide - ok
16:57:38.0077 0x2964  [ B2A6D2A30E93B6F215F74AC7E1733C9C, 960299F7BF2501B46296EDEA050BF30313C17A9B785574B56B79C070BD1B6E1A ] cm_km           C:\Windows\system32\DRIVERS\cm_km.sys
16:57:38.0093 0x2964  cm_km - ok
16:57:38.0104 0x2964  [ 3323F76352B0AF14B2CDC4DFBF3E980A, F8E3C3508C37E647497B6889F26819B1DB30275F48A994D1BBFBAA9454E5FD70 ] CNG             C:\Windows\system32\Drivers\cng.sys
16:57:38.0124 0x2964  CNG - ok
16:57:38.0127 0x2964  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
16:57:38.0134 0x2964  Compbatt - ok
16:57:38.0138 0x2964  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
16:57:38.0148 0x2964  CompositeBus - ok
16:57:38.0150 0x2964  COMSysApp - ok
16:57:38.0169 0x2964  [ DB84D759193FDEDF82144E565108037E, 34568245095CFB2482C4E5BDFF94E5A213F81EE1813A18EF35867EDB32BC0B59 ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
16:57:38.0220 0x2964  cphs - ok
16:57:38.0241 0x2964  cpuz138 - ok
16:57:38.0257 0x2964  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
16:57:38.0265 0x2964  crcdisk - ok
16:57:38.0271 0x2964  [ BB724567892383010B8436DCC0A84628, 2768F5FD7A096CB1CEA33F8818EF16F9F5E3E07BB8442949A49A9CF24B62C6E6 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:57:38.0286 0x2964  CryptSvc - ok
16:57:38.0359 0x2964  [ 914A7156B0C0F10BE645A02E13F576B2, C8686CE4DD9C457D56D5535307FD210AE057BFF94AC59665681DA6CF46DBE2E8 ] DAUpdaterSvc    A:\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe
16:57:38.0365 0x2964  DAUpdaterSvc - ok
16:57:38.0378 0x2964  [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:57:38.0398 0x2964  DcomLaunch - ok
16:57:38.0406 0x2964  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
16:57:38.0435 0x2964  defragsvc - ok
16:57:38.0440 0x2964  [ 9B38580063D281A99E68EF5813022A5F, D91676B0E0A8E2A090E3E5DD340ABCFC20AE0F55B4C82869D6CFB34239BD27DA ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
16:57:38.0450 0x2964  DfsC - ok
16:57:38.0459 0x2964  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
16:57:38.0475 0x2964  Dhcp - ok
16:57:38.0503 0x2964  [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack       C:\Windows\system32\diagtrack.dll
16:57:38.0541 0x2964  DiagTrack - ok
16:57:38.0546 0x2964  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
16:57:38.0570 0x2964  discache - ok
16:57:38.0573 0x2964  [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk            C:\Windows\system32\drivers\disk.sys
16:57:38.0582 0x2964  Disk - ok
16:57:38.0588 0x2964  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:57:38.0601 0x2964  Dnscache - ok
16:57:38.0608 0x2964  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
16:57:38.0636 0x2964  dot3svc - ok
16:57:38.0641 0x2964  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
16:57:38.0666 0x2964  DPS - ok
16:57:38.0668 0x2964  [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:57:38.0681 0x2964  drmkaud - ok
16:57:38.0702 0x2964  [ 3A9D7D464BDB3B70D7ECF689ADABBD4D, B4F5B23705EA1BA453FE30791CA245E1A5F7FBEABAD026E4A8A15A9FC44E8C9C ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:57:38.0730 0x2964  DXGKrnl - ok
16:57:38.0733 0x2964  EagleX64 - ok
16:57:38.0738 0x2964  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
16:57:38.0767 0x2964  EapHost - ok
16:57:38.0769 0x2964  EasyAntiCheat - ok
16:57:38.0831 0x2964  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
16:57:38.0908 0x2964  ebdrv - ok
16:57:38.0913 0x2964  [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] EFS             C:\Windows\System32\lsass.exe
16:57:38.0922 0x2964  EFS - ok
16:57:38.0938 0x2964  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
16:57:38.0963 0x2964  ehRecvr - ok
16:57:38.0968 0x2964  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
16:57:38.0979 0x2964  ehSched - ok
16:57:38.0991 0x2964  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
16:57:39.0010 0x2964  elxstor - ok
16:57:39.0015 0x2964  [ D315FF43E23DF424ECEC2F6C930203E4, 68940EDA34DC4945CDD0D8018D96A0DA8F99F16A930946D14E4FECEE033FCB80 ] EpsonScanSvc    C:\Windows\system32\EscSvc64.exe
16:57:39.0025 0x2964  EpsonScanSvc - ok
16:57:39.0027 0x2964  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
16:57:39.0036 0x2964  ErrDev - ok
16:57:39.0047 0x2964  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
16:57:39.0078 0x2964  EventSystem - ok
16:57:39.0084 0x2964  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
16:57:39.0121 0x2964  exfat - ok
16:57:39.0127 0x2964  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:57:39.0164 0x2964  fastfat - ok
16:57:39.0179 0x2964  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
16:57:39.0203 0x2964  Fax - ok
16:57:39.0206 0x2964  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
16:57:39.0215 0x2964  fdc - ok
16:57:39.0218 0x2964  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
16:57:39.0241 0x2964  fdPHost - ok
16:57:39.0244 0x2964  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
16:57:39.0268 0x2964  FDResPub - ok
16:57:39.0272 0x2964  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:57:39.0281 0x2964  FileInfo - ok
16:57:39.0283 0x2964  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:57:39.0308 0x2964  Filetrace - ok
16:57:39.0310 0x2964  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
16:57:39.0319 0x2964  flpydisk - ok
16:57:39.0326 0x2964  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:57:39.0339 0x2964  FltMgr - ok
16:57:39.0363 0x2964  [ 700A5373FA66F1DAAECBD2CFB88C73ED, D6C1C4C846BC24EB6539ECC701A456FA53BB6679C79391F5B70580D47B6CE395 ] FontCache       C:\Windows\system32\FntCache.dll
16:57:39.0396 0x2964  FontCache - ok
16:57:39.0401 0x2964  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:57:39.0415 0x2964  FontCache3.0.0.0 - ok
16:57:39.0418 0x2964  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
16:57:39.0427 0x2964  FsDepends - ok
16:57:39.0430 0x2964  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:57:39.0438 0x2964  Fs_Rec - ok
16:57:39.0447 0x2964  [ F8BD0A78C55306F3A0DE34F7B3814B7F, 7183C7C35E1F157180668B0E02F6CDC35A70CEC6C1FECCA15BF1EE6039FF5D3A ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
16:57:39.0464 0x2964  Futuremark SystemInfo Service - ok
16:57:39.0471 0x2964  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
16:57:39.0484 0x2964  fvevol - ok
16:57:39.0488 0x2964  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
16:57:39.0496 0x2964  gagp30kx - ok
16:57:39.0624 0x2964  [ 661C2F50A63A5786601B078B39B4F5E1, 81EA89CF75225591348515733AF8971E7C8519414E11DF8EAB8CE225D095204F ] GalaxyCommunication C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
16:57:39.0803 0x2964  GalaxyCommunication - ok
16:57:39.0828 0x2964  [ C1D839D6279966F4DF4066472AC116DB, 1A46AC04B75230AF0E64626682AD080802528DB96AA2F4FD8ADF5B0D3AD44417 ] Garmin Device Interaction Service C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
16:57:39.0853 0x2964  Garmin Device Interaction Service - ok
16:57:39.0871 0x2964  [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc           C:\Windows\System32\gpsvc.dll
16:57:39.0897 0x2964  gpsvc - ok
16:57:39.0900 0x2964  [ B9893A68032A6D9ADDB5B98287C630F7, F0280764D7B31F1EA634E91397229B1C064A7C1B3A77A6BBD123CEA74180789F ] grmnusb         C:\Windows\system32\drivers\grmnusb.sys
16:57:39.0907 0x2964  grmnusb - ok
16:57:39.0909 0x2964  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
16:57:39.0920 0x2964  hcw85cir - ok
16:57:39.0928 0x2964  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:57:39.0945 0x2964  HdAudAddService - ok
16:57:39.0950 0x2964  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
16:57:39.0963 0x2964  HDAudBus - ok
16:57:39.0966 0x2964  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
16:57:39.0976 0x2964  HidBatt - ok
16:57:39.0980 0x2964  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
16:57:39.0994 0x2964  HidBth - ok
16:57:39.0997 0x2964  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
16:57:40.0008 0x2964  HidIr - ok
16:57:40.0011 0x2964  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
16:57:40.0035 0x2964  hidserv - ok
16:57:40.0038 0x2964  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
16:57:40.0048 0x2964  HidUsb - ok
16:57:40.0085 0x2964  [ 492572D5C65636F598739552EBA3D3C1, 866C4683007E0DA2AD2B219A80B6EF34EE6972F8B5A248605AB39F735F0FF6DC ] HiPatchService  A:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
16:57:40.0088 0x2964  HiPatchService - detected UnsignedFile.Multi.Generic ( 1 )
16:57:40.0219 0x2964  Detect skipped due to KSN trusted
16:57:40.0219 0x2964  HiPatchService - ok
16:57:40.0222 0x2964  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:57:40.0248 0x2964  hkmsvc - ok
16:57:40.0254 0x2964  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:57:40.0269 0x2964  HomeGroupListener - ok
16:57:40.0274 0x2964  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:57:40.0287 0x2964  HomeGroupProvider - ok
16:57:40.0290 0x2964  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
16:57:40.0299 0x2964  HpSAMD - ok
16:57:40.0315 0x2964  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:57:40.0341 0x2964  HTTP - ok
16:57:40.0343 0x2964  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
16:57:40.0351 0x2964  hwpolicy - ok
16:57:40.0355 0x2964  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
16:57:40.0366 0x2964  i8042prt - ok
16:57:40.0379 0x2964  [ C224331A54571C8C9162F7714400BBBD, C2CA4881ACD46071E67435BE5E3DB133D0743B026FD20D6D6E26B2FE7A03FCAA ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
16:57:40.0394 0x2964  iaStor - ok
16:57:40.0398 0x2964  [ 7D4B9A48430ED57ACA6373B71D5904CA, 6ED72DAA7A4951142F036364E8F237E74246EF3E9EA089448DEF15380DAB0DB3 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
16:57:40.0404 0x2964  IAStorDataMgrSvc - ok
16:57:40.0414 0x2964  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
16:57:40.0430 0x2964  iaStorV - ok
16:57:40.0447 0x2964  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:57:40.0473 0x2964  idsvc - ok
16:57:40.0475 0x2964  IEEtwCollectorService - ok
16:57:40.0740 0x2964  [ 54E37A4E66B2CA1C38E9728FAD5F9822, C53500674DD96909A34C3975C81D9325E4DAC0753A3E99535246BF7BADF19EF4 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
16:57:41.0065 0x2964  igfx - ok
16:57:41.0080 0x2964  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
16:57:41.0088 0x2964  iirsp - ok
16:57:41.0106 0x2964  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
16:57:41.0132 0x2964  IKEEXT - ok
16:57:41.0190 0x2964  [ F2744FD54BE1580BE05916D1C755C92A, 27FAC146876B6C6EBE0C00CDEC3E01C69DACB2584BEC85DD0FE5B55AD2157452 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:57:41.0256 0x2964  IntcAzAudAddService - ok
16:57:41.0267 0x2964  [ 6C9FFFECA9FED31347D211C5D1FFBD2D, 36CF8B847FAED0D978B3169ED550CC958025902CAC1D7D304E2684B2483E72B8 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
16:57:41.0282 0x2964  IntcDAud - ok
16:57:41.0296 0x2964  [ 832CE330DD987227B7DEA8C03F22AEFA, 3DE64D9519D9D865D4C1AA7483D846F0154392B6685BDC451DEC7DA5EA0E2B2E ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
16:57:41.0315 0x2964  Intel(R) Capability Licensing Service Interface - ok
16:57:41.0319 0x2964  [ 709C8623721A1F1EF388EA75A07EC33B, 8F3046F1699E7B560827A965C66F3FCACDE24CD451829D4D2218038830344867 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
16:57:41.0325 0x2964  Intel(R) ME Service - detected UnsignedFile.Multi.Generic ( 1 )
16:57:41.0382 0x2964  Detect skipped due to KSN trusted
16:57:41.0382 0x2964  Intel(R) ME Service - ok
16:57:41.0385 0x2964  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
16:57:41.0393 0x2964  intelide - ok
16:57:41.0396 0x2964  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
16:57:41.0406 0x2964  intelppm - ok
16:57:41.0410 0x2964  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
16:57:41.0436 0x2964  IPBusEnum - ok
16:57:41.0439 0x2964  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:57:41.0465 0x2964  IpFilterDriver - ok
16:57:41.0477 0x2964  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:57:41.0498 0x2964  iphlpsvc - ok
16:57:41.0503 0x2964  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
16:57:41.0513 0x2964  IPMIDRV - ok
16:57:41.0517 0x2964  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
16:57:41.0543 0x2964  IPNAT - ok
16:57:41.0546 0x2964  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:57:41.0559 0x2964  IRENUM - ok
16:57:41.0561 0x2964  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:57:41.0570 0x2964  isapnp - ok
16:57:41.0578 0x2964  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
16:57:41.0591 0x2964  iScsiPrt - ok
16:57:41.0593 0x2964  [ 6BCEF45131C8B8E1C558BE540B190B3C, DFFED7FD9DCC15808184E65065DE6138FE010AC01217E5016B2D20A5B89AC570 ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
16:57:41.0600 0x2964  iusb3hcs - ok
16:57:41.0609 0x2964  [ F080EADA8715F811B58BD35BB774F2F9, 06D5A70CBA89561A71B9CB64D7A298767F098395411A7022F414C7D0AC89A44D ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
16:57:41.0622 0x2964  iusb3hub - ok
16:57:41.0638 0x2964  [ 0F1756D9396740F053221FA6260FCE66, 0B722BF6BCF66BBD49DE0E92555742976AB33319CF504461A50181BF7A77E886 ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
16:57:41.0660 0x2964  iusb3xhc - ok
16:57:41.0666 0x2964  [ C44B44E24B929631D9D7368F5B2B40CF, A7F11A5A970FA30CC358B9A0FE8163B686208E424C6682AEA45C06B1E7E11963 ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
16:57:41.0675 0x2964  jhi_service - ok
16:57:41.0729 0x2964  [ 46B7EA2287A704359EF2D39B79A6AC07, FB291798B7BB74F9335518307654DDD813DAFD5B2C9C4F9B37494FD9005D0278 ] KAUpdateService A:\DRM-Freie Spiele\The Book of Unwritten Tales 2\service\KAUpdateService.exe
16:57:41.0733 0x2964  KAUpdateService - detected UnsignedFile.Multi.Generic ( 1 )
16:57:41.0896 0x2964  KAUpdateService ( UnsignedFile.Multi.Generic ) - warning
16:57:42.0003 0x2964  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
16:57:42.0011 0x2964  kbdclass - ok
16:57:42.0014 0x2964  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
16:57:42.0023 0x2964  kbdhid - ok
16:57:42.0026 0x2964  [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] KeyIso          C:\Windows\system32\lsass.exe
16:57:42.0034 0x2964  KeyIso - ok
16:57:42.0045 0x2964  [ 62EBD4202B505ACADE2FBC56CC73E0A2, 2FCA80096B7DB5B42E76F527D9ABCF29AF7D52FC60BED6DD4C11C1BACA0D63F1 ] kl1             C:\Windows\system32\DRIVERS\kl1.sys
16:57:42.0062 0x2964  kl1 - ok
16:57:42.0065 0x2964  [ 86F40D79CE80ACBE6BEBAC8CE89D75A0, 8B800425160D1AF3C32EF7B5CA794658EE09CD3EE782473D8D38E1C7706076B3 ] klbackupdisk    C:\Windows\system32\DRIVERS\klbackupdisk.sys
16:57:42.0074 0x2964  klbackupdisk - ok
16:57:42.0078 0x2964  [ D3BEF82D7A5A1560F667D5FCC0E90387, 35473F72346DBAA02EB98319B4AD587550B996607B8B714D356D04A4B28E2F09 ] klbackupflt     C:\Windows\system32\DRIVERS\klbackupflt.sys
16:57:42.0088 0x2964  klbackupflt - ok
16:57:42.0092 0x2964  [ B12242478186B62B2E214288B7DB3612, D3381C6B95A27D75348DC51411BABE144A4C333E1441077C4BF13A3BFBB4CA06 ] kldisk          C:\Windows\system32\DRIVERS\kldisk.sys
16:57:42.0102 0x2964  kldisk - ok
16:57:42.0107 0x2964  [ 3025DB68C9BFFF3EA67986C91340EC12, 74E61837A0EEA5F56104F0FFC7B8FEFB7BFB7A22D7F0903C4A7AEAE1E1532920 ] klflt           C:\Windows\system32\DRIVERS\klflt.sys
16:57:42.0120 0x2964  klflt - ok
16:57:42.0126 0x2964  [ 3FB2C5652E191BCFDE3AA9FC8D043A32, 6800063888828345D25898CE71742D4EF097A18AFED5DDF3824CC8F1B57EA24C ] klhk            C:\Windows\system32\DRIVERS\klhk.sys
16:57:42.0139 0x2964  klhk - ok
16:57:42.0147 0x2964  [ 7796EAD58D8C1A42AAB6B6CA9A3F106C, 7DA8A05A0210F63C7D120DCF0101AD895D53368C0DED23E275F2BA79239FCE28 ] klids           C:\ProgramData\Kaspersky Lab\AVP16.0.1\Bases\klids.sys
16:57:42.0159 0x2964  klids - ok
16:57:42.0180 0x2964  [ D90C2622A2D717704C0AA33134BAA07E, 5DE2FCBE4043DD79F472C99FED8A8189A0AD231F9DB7453F1781775CE67CBF47 ] KLIF            C:\Windows\system32\DRIVERS\klif.sys
16:57:42.0208 0x2964  KLIF - ok
16:57:42.0212 0x2964  [ E540E1C90970FAFEBCCCE3EEC3B8673F, BA2229A237A5088D3FBAA567069C56CDE7EBB4B37D5FB24F691BFF6FE1B0BD69 ] KLIM6           C:\Windows\system32\DRIVERS\klim6.sys
16:57:42.0223 0x2964  KLIM6 - ok
16:57:42.0226 0x2964  [ 0D5E3D54FDFE598CF570312310C0D8E5, B1DAF9B19531D4C9CB7584D90341C429E3A3793B9A6FEDCC5CF8B70508240FE7 ] klkbdflt        C:\Windows\system32\DRIVERS\klkbdflt.sys
16:57:42.0235 0x2964  klkbdflt - ok
16:57:42.0239 0x2964  [ D792857D47B8DF5BFEC02534C1933BE2, BDD483FA8E2DC50DB4E54D475867455F0D7E115494E2A31CD27A065C7EC26951 ] klmouflt        C:\Windows\system32\DRIVERS\klmouflt.sys
16:57:42.0248 0x2964  klmouflt - ok
16:57:42.0251 0x2964  [ 26E1917517E613D07F2A122CEEBB8161, A03C4F9FA37DBB48AB00330A4F0ACC7841D425DAE7E374508AD53BC010C0F746 ] klpd            C:\Windows\system32\DRIVERS\klpd.sys
16:57:42.0261 0x2964  klpd - ok
16:57:42.0264 0x2964  [ B36DEE2A91F9388C4D3ED744592DE81D, 78D64539A375C80250FB9FA5E1DDA208B331A85916E19ED1353623DDF750EC58 ] kltdi           C:\Windows\system32\DRIVERS\kltdi.sys
16:57:42.0273 0x2964  kltdi - ok
16:57:42.0281 0x2964  [ B48F79A7B58EB9A5E4894A96453C6957, B05176A40DA7321409866D77DA03A36B44DA386C45C6AF149B14F65C2B9C8A6B ] klvssbrigde64   C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\x64\vssbridge64.exe
16:57:42.0291 0x2964  klvssbrigde64 - ok
16:57:42.0295 0x2964  [ 7FAE98B11E1218C707A28F993CFE271C, 7BD94243B7004C8A719733A03BB1320FCDF9F53FB7240058F7006C1DFE9E59B0 ] Klwtp           C:\Windows\system32\DRIVERS\klwtp.sys
16:57:42.0306 0x2964  Klwtp - ok
16:57:42.0311 0x2964  [ 58CD685752080EDAEB4EEC7E6428546D, 59E280A025A91BCEC029D21B4DCC6342F354B9D6592C0EE14217BF5B32FB259B ] kneps           C:\Windows\system32\DRIVERS\kneps.sys
16:57:42.0323 0x2964  kneps - ok
16:57:42.0327 0x2964  [ CF11CC2B73D5155533C67354F9188E09, D59C30B9651F8E0952DFF34A010BC60A1D27AE10F5705C54424BF6BB7ADF9F62 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:57:42.0337 0x2964  KSecDD - ok
16:57:42.0342 0x2964  [ 2E56D51B184EFB8E353B7AF446299DC8, CE7AAFF89F3A0BFE191DE90430A04C7FB899F5CF3B704AA5A96F47D5F37192B2 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
16:57:42.0352 0x2964  KSecPkg - ok
16:57:42.0355 0x2964  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
16:57:42.0378 0x2964  ksthunk - ok
16:57:42.0387 0x2964  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:57:42.0441 0x2964  KtmRm - ok
16:57:42.0447 0x2964  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
16:57:42.0475 0x2964  LanmanServer - ok
16:57:42.0479 0x2964  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:57:42.0505 0x2964  LanmanWorkstation - ok
16:57:42.0509 0x2964  [ 8E4CA9AFD55EF6B509C80A8715ABF8C6, 45698605D17285D346D2052607AEF492EBD89E9625367C31584C7C84757EEFE0 ] lirsgt          C:\Windows\system32\DRIVERS\lirsgt.sys
16:57:42.0517 0x2964  lirsgt - ok
16:57:42.0520 0x2964  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:57:42.0545 0x2964  lltdio - ok
16:57:42.0552 0x2964  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:57:42.0583 0x2964  lltdsvc - ok
16:57:42.0585 0x2964  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:57:42.0609 0x2964  lmhosts - ok
16:57:42.0616 0x2964  [ 75F29D77B0540FCF47EE3BE000BBABDA, 3FFDDC42D51FABAA7F3BFD088F008DE39F3479B25214260D98336F00B6336BFA ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
16:57:42.0627 0x2964  LMS - ok
16:57:42.0632 0x2964  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
16:57:42.0642 0x2964  LSI_FC - ok
16:57:42.0646 0x2964  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
16:57:42.0655 0x2964  LSI_SAS - ok
16:57:42.0658 0x2964  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
16:57:42.0667 0x2964  LSI_SAS2 - ok
16:57:42.0671 0x2964  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
16:57:42.0681 0x2964  LSI_SCSI - ok
16:57:42.0685 0x2964  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
16:57:42.0711 0x2964  luafv - ok
16:57:42.0717 0x2964  [ 78488AF2AB2111D67B3C4044707A519B, 7AA71B9C4C7949A1A21F60EF7CCEDE0079794990696B60557B5DC86F4D47223A ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
16:57:42.0728 0x2964  MBAMSwissArmy - ok
16:57:42.0731 0x2964  [ 8FF2D95CBA49B405C5DE27039FF0BF35, 03BF7FC7F1C2C76EDB583BA342EA1C325DB8058517744EF2A78529D3938F4DC1 ] MBfilt          C:\Windows\system32\drivers\MBfilt64.sys
16:57:42.0738 0x2964  MBfilt - ok
16:57:42.0741 0x2964  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
16:57:42.0759 0x2964  Mcx2Svc - ok
16:57:42.0761 0x2964  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
16:57:42.0770 0x2964  megasas - ok
16:57:42.0777 0x2964  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
16:57:42.0790 0x2964  MegaSR - ok
16:57:42.0794 0x2964  [ 6B01B7414A105B9E51652089A03027CF, 9B113DC22F7D0D0B376E577C6D7083F9EDC09BBFE47726393E16D4FDAAAE21FE ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
16:57:42.0801 0x2964  MEIx64 - ok
16:57:42.0804 0x2964  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
16:57:42.0828 0x2964  MMCSS - ok
16:57:42.0831 0x2964  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
16:57:42.0855 0x2964  Modem - ok
16:57:42.0858 0x2964  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
16:57:42.0869 0x2964  monitor - ok
16:57:42.0872 0x2964  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
16:57:42.0880 0x2964  mouclass - ok
16:57:42.0883 0x2964  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
16:57:42.0893 0x2964  mouhid - ok
16:57:42.0896 0x2964  [ 8ADB5445B29941CB41AF2846FD5C93C7, 689582430FE29EC0845B1DB841D3CC49D5D09DE264586E3999EEFE616986D12B ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
16:57:42.0905 0x2964  mountmgr - ok
16:57:42.0910 0x2964  [ 572BD5A99648652147A5D3C6DA946C99, FFDAD4A5682864977C926A5DDDB632CDB2A166BF025757801CC56F2828720023 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:57:42.0920 0x2964  MozillaMaintenance - ok
16:57:42.0925 0x2964  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
16:57:42.0935 0x2964  mpio - ok
16:57:42.0939 0x2964  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:57:42.0962 0x2964  mpsdrv - ok
16:57:42.0980 0x2964  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:57:43.0019 0x2964  MpsSvc - ok
16:57:43.0024 0x2964  [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:57:43.0035 0x2964  MRxDAV - ok
16:57:43.0040 0x2964  [ FCA01B0C70DAE9BE557577E719469D17, F9868B7B50EF6323BF6690F087A83928A1E82B96A19B27F344E10BF11E520C32 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:57:43.0052 0x2964  mrxsmb - ok
16:57:43.0059 0x2964  [ 386BE96797C5B480AD31E8B50CEE337C, 88E826F42BEB38CAA7C84AE6ED4D8EBC4D382A8A37CF9F7B8517B297F168F1B3 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:57:43.0073 0x2964  mrxsmb10 - ok
16:57:43.0078 0x2964  [ 841474CF2EB14F826038FBCC7D85B857, 4B1BC8AFDA54D1F16AC2AAB7EDDAE07FBF1E3B65D1658F8901A3E3175AF72800 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:57:43.0089 0x2964  mrxsmb20 - ok
16:57:43.0091 0x2964  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
16:57:43.0099 0x2964  msahci - ok
16:57:43.0105 0x2964  [ A592A054D78750B4D73ABAA4C94DECDF, 40B135C9F9EE698EC78BD19BD18353AE2CF4D020DDB9CFC37CD2FDBF7602614A ] MSCamSvc        C:\Program Files\Microsoft LifeCam\MSCamS64.exe
16:57:43.0115 0x2964  MSCamSvc - ok
16:57:43.0120 0x2964  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
16:57:43.0130 0x2964  msdsm - ok
16:57:43.0136 0x2964  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
16:57:43.0156 0x2964  MSDTC - ok
16:57:43.0161 0x2964  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:57:43.0186 0x2964  Msfs - ok
16:57:43.0188 0x2964  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
16:57:43.0211 0x2964  mshidkmdf - ok
16:57:43.0214 0x2964  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:57:43.0221 0x2964  msisadrv - ok
16:57:43.0226 0x2964  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:57:43.0253 0x2964  MSiSCSI - ok
16:57:43.0255 0x2964  msiserver - ok
16:57:43.0257 0x2964  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:57:43.0280 0x2964  MSKSSRV - ok
16:57:43.0283 0x2964  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:57:43.0306 0x2964  MSPCLOCK - ok
16:57:43.0308 0x2964  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:57:43.0331 0x2964  MSPQM - ok
16:57:43.0340 0x2964  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:57:43.0354 0x2964  MsRPC - ok
16:57:43.0358 0x2964  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
16:57:43.0366 0x2964  mssmbios - ok
16:57:43.0368 0x2964  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:57:43.0392 0x2964  MSTEE - ok
16:57:43.0394 0x2964  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
16:57:43.0403 0x2964  MTConfig - ok
16:57:43.0406 0x2964  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
16:57:43.0415 0x2964  Mup - ok
16:57:43.0425 0x2964  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
16:57:43.0458 0x2964  napagent - ok
16:57:43.0468 0x2964  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:57:43.0488 0x2964  NativeWifiP - ok
16:57:43.0509 0x2964  [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:57:43.0536 0x2964  NDIS - ok
16:57:43.0539 0x2964  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
16:57:43.0563 0x2964  NdisCap - ok
16:57:43.0566 0x2964  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:57:43.0591 0x2964  NdisTapi - ok
16:57:43.0594 0x2964  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:57:43.0617 0x2964  Ndisuio - ok
16:57:43.0623 0x2964  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:57:43.0648 0x2964  NdisWan - ok
16:57:43.0652 0x2964  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:57:43.0676 0x2964  NDProxy - ok
16:57:43.0679 0x2964  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:57:43.0702 0x2964  NetBIOS - ok
16:57:43.0709 0x2964  [ E47D571FEC2C76E867935109AB2A770C, F349D25890B6F476B106FD75BFB081DB737CA9B224D95E44927942FFF2DF82CD ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
16:57:43.0724 0x2964  NetBT - ok
16:57:43.0727 0x2964  [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] Netlogon        C:\Windows\system32\lsass.exe
16:57:43.0735 0x2964  Netlogon - ok
16:57:43.0743 0x2964  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
16:57:43.0774 0x2964  Netman - ok
16:57:43.0782 0x2964  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:57:43.0793 0x2964  NetMsmqActivator - ok
16:57:43.0797 0x2964  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:57:43.0807 0x2964  NetPipeActivator - ok
16:57:43.0817 0x2964  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
16:57:43.0850 0x2964  netprofm - ok
16:57:43.0855 0x2964  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:57:43.0865 0x2964  NetTcpActivator - ok
16:57:43.0869 0x2964  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:57:43.0878 0x2964  NetTcpPortSharing - ok
16:57:43.0882 0x2964  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
16:57:43.0890 0x2964  nfrd960 - ok
16:57:43.0898 0x2964  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:57:43.0914 0x2964  NlaSvc - ok
16:57:43.0918 0x2964  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:57:43.0941 0x2964  Npfs - ok
16:57:43.0944 0x2964  npggsvc - ok
16:57:43.0947 0x2964  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
16:57:43.0972 0x2964  nsi - ok
16:57:43.0974 0x2964  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:57:43.0998 0x2964  nsiproxy - ok
16:57:44.0031 0x2964  [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:57:44.0073 0x2964  Ntfs - ok
16:57:44.0076 0x2964  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
16:57:44.0099 0x2964  Null - ok
16:57:44.0106 0x2964  [ 67B51A97733B10D716B366C2ED126763, C34B889D39A4443A82BCDF6B9A0BF637D2ECC37BBB1AAE21143EC9E3DC495D90 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
16:57:44.0120 0x2964  NVHDA - ok
16:57:44.0378 0x2964  [ 71CF83223F3ADC2EC9DC0FDA8702E312, A76E94F73CD1EAB5D49EF8A206B1E4BC141620B482236E0FD17F5FA0CAD05863 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:57:44.0674 0x2964  nvlddmkm - ok
16:57:44.0720 0x2964  [ A6102293847A7A2DF01E7BF7AC1C1F12, 14E4E75711C00DA826136FB531E9AD53787502F441103386C5CD37EEFCE27AFC ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
16:57:44.0768 0x2964  NvNetworkService - ok
16:57:44.0775 0x2964  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:57:44.0785 0x2964  nvraid - ok
16:57:44.0790 0x2964  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:57:44.0801 0x2964  nvstor - ok
16:57:44.0804 0x2964  [ 99D42078C9596A20A7B3419159265A25, E9F5380E6597C79B26B2CBAAC534F31C5027F32AAA0FD5876CF7E9BB6658F30C ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
16:57:44.0812 0x2964  NvStreamKms - ok
16:57:44.0878 0x2964  [ E6A64322EB213AEACBB61584AA6FB032, FA91C89B81DD7F3EC22DF71FFC3A506AD40AE76EC91F1115CCAB6ED39431369D ] NvStreamNetworkSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
16:57:44.0960 0x2964  NvStreamNetworkSvc - ok
16:57:45.0009 0x2964  [ A8213BF32D2E75ADD362E118AD164749, 6F35210ED11088FE64F13DD63053FFDA4628A5F6397DA33A345970962AB83499 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
16:57:45.0067 0x2964  NvStreamSvc - ok
16:57:45.0097 0x2964  [ F07CC5C6A71B002C50D74FD611F44538, 85A341530740A71768947E721B0A979DEE328348F3083806A367DAA0CD628CB4 ] nvsvc           C:\Windows\system32\nvvsvc.exe
16:57:45.0133 0x2964  nvsvc - ok
16:57:45.0137 0x2964  [ F37FE6B15A987AEEC08EEF531F2FAED7, CC768E7DE80C7A8CB2392F9BC528212B8A3A35A30A222ED0B0B959051E6F8065 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
16:57:45.0147 0x2964  nvvad_WaveExtensible - ok
16:57:45.0152 0x2964  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:57:45.0161 0x2964  nv_agp - ok
16:57:45.0164 0x2964  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
16:57:45.0175 0x2964  ohci1394 - ok
16:57:45.0248 0x2964  [ 066AFC68E4368A4CF1D40F4094A8D0BC, D87E3CDC3A7BB66C41D60DF165DF811072035C2C4B1AC3989E00324AAFC74745 ] Origin Client Service A:\Origin\OriginClientService.exe
16:57:45.0305 0x2964  Origin Client Service - ok
16:57:45.0377 0x2964  [ 713A2D93E845ACE1DF2E9F4AA47B5686, 64D4CA5538FD19C384D7A7F15520A71171EB84427682A67A972A6DE5D3F079AB ] Origin Web Helper Service A:\Origin\OriginWebHelperService.exe
16:57:45.0444 0x2964  Origin Web Helper Service - ok
16:57:45.0452 0x2964  [ 63511820A101C1C5DB95B9ECFFEDA089, AD517FFE1FFD103FF1F371A0406CA8CDCAD762CE4DDC829759BE1914F4DF0675 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:57:45.0463 0x2964  ose - ok
16:57:45.0558 0x2964  [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:57:45.0670 0x2964  osppsvc - ok
16:57:45.0681 0x2964  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
16:57:45.0697 0x2964  p2pimsvc - ok
16:57:45.0707 0x2964  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
16:57:45.0725 0x2964  p2psvc - ok
16:57:45.0729 0x2964  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
16:57:45.0740 0x2964  Parport - ok
16:57:45.0743 0x2964  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:57:45.0752 0x2964  partmgr - ok
16:57:45.0757 0x2964  [ 3CD83692C43D87088E85E3C916146FFB, 9E812535E8FBA045FDA30F68E9EB2031132C37721D542A2DC9D4C33E2B137FCF ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:57:45.0770 0x2964  PcaSvc - ok
16:57:45.0776 0x2964  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
16:57:45.0787 0x2964  pci - ok
16:57:45.0789 0x2964  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
16:57:45.0797 0x2964  pciide - ok
16:57:45.0803 0x2964  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
16:57:45.0815 0x2964  pcmcia - ok
16:57:45.0818 0x2964  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
16:57:45.0826 0x2964  pcw - ok
16:57:45.0840 0x2964  [ EA4D67448BE493D543F1730D6CD04694, 24717C5E41B7CA522F3330EF2228B6685E710A5259396E9887A1C1E7A413F8CA ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:57:45.0862 0x2964  PEAUTH - ok
16:57:45.0876 0x2964  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
16:57:45.0885 0x2964  PerfHost - ok
16:57:45.0916 0x2964  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
16:57:45.0967 0x2964  pla - ok
16:57:45.0977 0x2964  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:57:45.0996 0x2964  PlugPlay - ok
16:57:45.0999 0x2964  PnkBstrA - ok
16:57:46.0002 0x2964  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:57:46.0011 0x2964  PNRPAutoReg - ok
16:57:46.0019 0x2964  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
16:57:46.0031 0x2964  PNRPsvc - ok
16:57:46.0043 0x2964  [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:57:46.0062 0x2964  PolicyAgent - ok
16:57:46.0069 0x2964  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
16:57:46.0096 0x2964  Power - ok
16:57:46.0100 0x2964  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
16:57:46.0124 0x2964  PptpMiniport - ok
16:57:46.0127 0x2964  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
16:57:46.0137 0x2964  Processor - ok
16:57:46.0143 0x2964  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
16:57:46.0157 0x2964  ProfSvc - ok
16:57:46.0159 0x2964  [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:57:46.0167 0x2964  ProtectedStorage - ok
16:57:46.0172 0x2964  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
16:57:46.0196 0x2964  Psched - ok
16:57:46.0226 0x2964  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
16:57:46.0264 0x2964  ql2300 - ok
16:57:46.0269 0x2964  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
16:57:46.0279 0x2964  ql40xx - ok
16:57:46.0285 0x2964  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
16:57:46.0303 0x2964  QWAVE - ok
16:57:46.0306 0x2964  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:57:46.0318 0x2964  QWAVEdrv - ok
16:57:46.0320 0x2964  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:57:46.0343 0x2964  RasAcd - ok
16:57:46.0347 0x2964  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
16:57:46.0372 0x2964  RasAgileVpn - ok
16:57:46.0376 0x2964  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
16:57:46.0401 0x2964  RasAuto - ok
16:57:46.0405 0x2964  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
16:57:46.0430 0x2964  Rasl2tp - ok
16:57:46.0438 0x2964  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
16:57:46.0469 0x2964  RasMan - ok
16:57:46.0473 0x2964  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:57:46.0497 0x2964  RasPppoe - ok
16:57:46.0501 0x2964  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
16:57:46.0526 0x2964  RasSstp - ok
16:57:46.0532 0x2964  [ 5332223C0D4CEC95787607906B53E861, EA1FB6373EFA303D0A69DB49D4B05BA489D1FB428E9AF948FA4FAFB94264AE4E ] Razer Game Scanner Service C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
16:57:46.0542 0x2964  Razer Game Scanner Service - ok
16:57:46.0550 0x2964  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:57:46.0578 0x2964  rdbss - ok
16:57:46.0581 0x2964  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
16:57:46.0591 0x2964  rdpbus - ok
16:57:46.0594 0x2964  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
16:57:46.0616 0x2964  RDPCDD - ok
16:57:46.0620 0x2964  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
16:57:46.0642 0x2964  RDPENCDD - ok
16:57:46.0645 0x2964  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
16:57:46.0667 0x2964  RDPREFMP - ok
16:57:46.0673 0x2964  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
16:57:46.0697 0x2964  RDPWD - ok
16:57:46.0703 0x2964  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:57:46.0715 0x2964  rdyboost - ok
16:57:46.0719 0x2964  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:57:46.0743 0x2964  RemoteAccess - ok
16:57:46.0748 0x2964  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:57:46.0776 0x2964  RemoteRegistry - ok
16:57:46.0779 0x2964  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
16:57:46.0803 0x2964  RpcEptMapper - ok
16:57:46.0806 0x2964  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
16:57:46.0815 0x2964  RpcLocator - ok
16:57:46.0826 0x2964  [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] RpcSs           C:\Windows\system32\rpcss.dll
16:57:46.0842 0x2964  RpcSs - ok
16:57:46.0846 0x2964  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:57:46.0870 0x2964  rspndr - ok
16:57:46.0877 0x2964  [ DDB7DA975D90B2A9C9C58E1AF55F0285, D9A3DC47699949C8EC0C704346FB2EE86FF9010DAA0DBAC953CFA5F76B52FCD1 ] RTCore64        C:\Program Files (x86)\MSI Afterburner\RTCore64.sys
16:57:46.0883 0x2964  RTCore64 - ok
16:57:46.0896 0x2964  [ 9140DB0911DE035FED0A9A77A2D156EA, 07C9D7E2978062ABD84B58B390360D4C0F72C6A5A2310444579DC095943BD008 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
16:57:46.0914 0x2964  RTL8167 - ok
16:57:46.0918 0x2964  [ EAF3FD708E67D45D397610E9C476AEE8, 8C1144A833C93761EAAEB78356922A3DB6B08C078847DFC4010BE26A73F695DA ] rzjstk          C:\Windows\system32\DRIVERS\rzjstk.sys
16:57:46.0926 0x2964  rzjstk - ok
16:57:46.0929 0x2964  [ 87CCED5B8235426BAE7F6120DBCB5291, 322840CF149B6A4E5C824913B490ACD18BF08A50FCD5BF92AE547131DA96D6A8 ] rzkeypadendpt   C:\Windows\system32\DRIVERS\rzkeypadendpt.sys
16:57:46.0937 0x2964  rzkeypadendpt - ok
16:57:46.0940 0x2964  [ 434A22267365AEF88B3AD451B65988AE, 75EFCFF52501E7E3E7B50C4D793DD55F085E378DA1C78772244AB27708409900 ] rzpmgrk         C:\Windows\system32\drivers\rzpmgrk.sys
16:57:46.0947 0x2964  rzpmgrk - ok
16:57:46.0952 0x2964  [ F8A13D4413A93DD005FAD116CBD6B6F7, 8ED0C00920CE76E832701D45117ED00B12E20588CB6FE8039FBCCDFEF9841047 ] rzpnk           C:\Windows\system32\drivers\rzpnk.sys
16:57:46.0961 0x2964  rzpnk - ok
16:57:46.0967 0x2964  [ E7E36EA112048AC5AC8AA15B6EC35109, 75AC0FF6E939FFCA1DB3E12E1CA2725AF9527867A25B3938AC5DF20620352F22 ] rzudd           C:\Windows\system32\DRIVERS\rzudd.sys
16:57:46.0978 0x2964  rzudd - ok
16:57:46.0981 0x2964  [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] SamSs           C:\Windows\system32\lsass.exe
16:57:46.0989 0x2964  SamSs - ok
16:57:46.0993 0x2964  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:57:47.0002 0x2964  sbp2port - ok
16:57:47.0008 0x2964  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:57:47.0035 0x2964  SCardSvr - ok
16:57:47.0038 0x2964  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:57:47.0061 0x2964  scfilter - ok
16:57:47.0083 0x2964  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
16:57:47.0119 0x2964  Schedule - ok
16:57:47.0123 0x2964  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:57:47.0146 0x2964  SCPolicySvc - ok
16:57:47.0151 0x2964  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:57:47.0179 0x2964  SDRSVC - ok
16:57:47.0182 0x2964  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:57:47.0197 0x2964  secdrv - ok
16:57:47.0200 0x2964  [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon        C:\Windows\system32\seclogon.dll
16:57:47.0210 0x2964  seclogon - ok
16:57:47.0214 0x2964  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
16:57:47.0239 0x2964  SENS - ok
16:57:47.0242 0x2964  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:57:47.0254 0x2964  SensrSvc - ok
16:57:47.0257 0x2964  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
16:57:47.0265 0x2964  Serenum - ok
16:57:47.0269 0x2964  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
16:57:47.0278 0x2964  Serial - ok
16:57:47.0281 0x2964  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
16:57:47.0290 0x2964  sermouse - ok
16:57:47.0298 0x2964  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
16:57:47.0323 0x2964  SessionEnv - ok
16:57:47.0326 0x2964  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
16:57:47.0336 0x2964  sffdisk - ok
16:57:47.0338 0x2964  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
16:57:47.0348 0x2964  sffp_mmc - ok
16:57:47.0351 0x2964  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
16:57:47.0361 0x2964  sffp_sd - ok
16:57:47.0363 0x2964  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
16:57:47.0372 0x2964  sfloppy - ok
16:57:47.0381 0x2964  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:57:47.0412 0x2964  SharedAccess - ok
16:57:47.0420 0x2964  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:57:47.0451 0x2964  ShellHWDetection - ok
16:57:47.0454 0x2964  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
16:57:47.0461 0x2964  SiSRaid2 - ok
16:57:47.0465 0x2964  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
16:57:47.0474 0x2964  SiSRaid4 - ok
16:57:47.0515 0x2964  [ 4E6FAEE3F259DAC82213D935785991FB, ADA019AD261BBEAE78495B508B4D375BEC1005DF119F20897D29C3C613A0CA46 ] SkypeUpdate     A:\Programme\Updater\Updater.exe
16:57:47.0531 0x2964  SkypeUpdate - ok
16:57:47.0535 0x2964  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
16:57:47.0561 0x2964  Smb - ok
16:57:47.0565 0x2964  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:57:47.0575 0x2964  SNMPTRAP - ok
16:57:47.0578 0x2964  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
16:57:47.0586 0x2964  spldr - ok
16:57:47.0598 0x2964  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
16:57:47.0619 0x2964  Spooler - ok
16:57:47.0685 0x2964  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
16:57:47.0780 0x2964  sppsvc - ok
16:57:47.0786 0x2964  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
16:57:47.0811 0x2964  sppuinotify - ok
16:57:47.0822 0x2964  [ EC666682FE8344CF7E6ED69E74FA9F4F, DCD2A1C046425630689E2C9A6A6E356FE5A2A6664D12C20CFE236FCB32240DF9 ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:57:47.0841 0x2964  srv - ok
16:57:47.0851 0x2964  [ E450C0318DCE8ED28ED272C8806B8495, D2FD459F8C5E42103EF2F71421FA175A4F0821F8C2A3763093122D433D1C50FB ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:57:47.0868 0x2964  srv2 - ok
16:57:47.0874 0x2964  [ 9C12C78AD36C23D925711A4640228225, FF72C23F2A08EDF0C41BAF1EB0245AB44FF91365C5466F09C47A8F0928D20994 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:57:47.0885 0x2964  srvnet - ok
16:57:47.0891 0x2964  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:57:47.0919 0x2964  SSDPSRV - ok
16:57:47.0922 0x2964  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:57:47.0947 0x2964  SstpSvc - ok
16:57:47.0975 0x2964  [ 90E22D7CDE08E07446D238A569BCAB7C, 3D4F413D0B0C9CF28D06E0476F24AC6441C8678DF786D9971B39C91C9F9B8020 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
16:57:48.0011 0x2964  Steam Client Service - ok
16:57:48.0022 0x2964  [ 4AD54C2E540F2364607A26F3585A509F, AB453222A1F9C906478AFA9460C4687F4D40B504C2F29E68F047D2D38A2BFBB8 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
16:57:48.0038 0x2964  Stereo Service - ok
16:57:48.0041 0x2964  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
16:57:48.0048 0x2964  stexstor - ok
16:57:48.0062 0x2964  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
16:57:48.0086 0x2964  stisvc - ok
16:57:48.0089 0x2964  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
16:57:48.0096 0x2964  swenum - ok
16:57:48.0107 0x2964  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
16:57:48.0141 0x2964  swprv - ok
16:57:48.0175 0x2964  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
16:57:48.0220 0x2964  SysMain - ok
16:57:48.0226 0x2964  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:57:48.0240 0x2964  TabletInputService - ok
16:57:48.0248 0x2964  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:57:48.0277 0x2964  TapiSrv - ok
16:57:48.0313 0x2964  [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:57:48.0359 0x2964  Tcpip - ok
16:57:48.0397 0x2964  [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
16:57:48.0435 0x2964  TCPIP6 - ok
16:57:48.0441 0x2964  [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:57:48.0450 0x2964  tcpipreg - ok
16:57:48.0454 0x2964  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
16:57:48.0463 0x2964  TDPIPE - ok
16:57:48.0465 0x2964  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
16:57:48.0473 0x2964  TDTCP - ok
16:57:48.0478 0x2964  [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:57:48.0489 0x2964  tdx - ok
16:57:48.0492 0x2964  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
16:57:48.0501 0x2964  TermDD - ok
16:57:48.0516 0x2964  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
16:57:48.0553 0x2964  TermService - ok
16:57:48.0557 0x2964  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
16:57:48.0570 0x2964  Themes - ok
16:57:48.0574 0x2964  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
16:57:48.0596 0x2964  THREADORDER - ok
16:57:48.0602 0x2964  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
16:57:48.0627 0x2964  TrkWks - ok
16:57:48.0633 0x2964  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:57:48.0659 0x2964  TrustedInstaller - ok
16:57:48.0662 0x2964  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
16:57:48.0672 0x2964  tssecsrv - ok
16:57:48.0675 0x2964  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
16:57:48.0685 0x2964  TsUsbFlt - ok
16:57:48.0687 0x2964  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
16:57:48.0696 0x2964  TsUsbGD - ok
16:57:48.0700 0x2964  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:57:48.0725 0x2964  tunnel - ok
16:57:48.0728 0x2964  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
16:57:48.0736 0x2964  uagp35 - ok
16:57:48.0745 0x2964  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:57:48.0774 0x2964  udfs - ok
16:57:48.0779 0x2964  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:57:48.0789 0x2964  UI0Detect - ok
16:57:48.0792 0x2964  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:57:48.0801 0x2964  uliagpkx - ok
16:57:48.0804 0x2964  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
16:57:48.0813 0x2964  umbus - ok
16:57:48.0816 0x2964  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
16:57:48.0824 0x2964  UmPass - ok
16:57:48.0834 0x2964  [ 193AD338F2A64D17300AD640ADFA5D0A, DABFFFE66CE7335F477C14C1D95AB9DB3C2EA3155ACBE41049FE217532E731C0 ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
16:57:48.0847 0x2964  UNS - ok
16:57:48.0856 0x2964  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
16:57:48.0886 0x2964  upnphost - ok
16:57:48.0912 0x2964  [ 842B334B1F1FDF631F43AD70C3DB9401, CD2FD5B86417101C3C88B105D0F25FD517E22C4EE44EDE01E4E267842CCF8FF6 ] USBADVAU        C:\Windows\system32\drivers\cm11264.sys
16:57:48.0947 0x2964  USBADVAU - ok
16:57:48.0952 0x2964  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
16:57:48.0963 0x2964  usbaudio - ok
16:57:48.0968 0x2964  [ 28B81917A195B67617AF7DCF4DFE5736, 40A4D2AAE1BDE5ABA8708ED150396E913C566ECD5CDA40D6C6DB256F1B9FD4A9 ] usbccgp         C:\Windows\system32\drivers\usbccgp.sys
16:57:48.0978 0x2964  usbccgp - ok
16:57:48.0982 0x2964  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
16:57:48.0993 0x2964  usbcir - ok
16:57:48.0996 0x2964  [ B626F048318DAE65A3317F0592BE592C, 284D8FFE1D35F852EFDA182A72288AC3A10D6ED825FE2CC5812497D3FE291AF1 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
16:57:49.0007 0x2964  usbehci - ok
16:57:49.0015 0x2964  [ 390109E8E05BA00375DCB1ED64DC60AF, B8628502590B423BEFB6F7C8C69FAD0667AD0746FF6B444EE02016E8E1052B78 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
16:57:49.0031 0x2964  usbhub - ok
16:57:49.0033 0x2964  [ B4DF0F4C1D9D25DFE1DAD1D8670F1D4F, 4317C2DEDC639527B53864BAEC46CBE022D298C0503E29E1072DD1C851D92BFC ] usbohci         C:\Windows\system32\drivers\usbohci.sys
16:57:49.0042 0x2964  usbohci - ok
16:57:49.0044 0x2964  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
16:57:49.0055 0x2964  usbprint - ok
16:57:49.0058 0x2964  [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:57:49.0069 0x2964  USBSTOR - ok
16:57:49.0072 0x2964  [ CFEAAF96E666E3DCBD8F6DFF516784AE, 006218A3DB5851790CC0A7F3DCD7B3AF82F624DA679296DE507AFD36C5468317 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
16:57:49.0081 0x2964  usbuhci - ok
16:57:49.0084 0x2964  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
16:57:49.0107 0x2964  UxSms - ok
16:57:49.0110 0x2964  [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] VaultSvc        C:\Windows\system32\lsass.exe
16:57:49.0119 0x2964  VaultSvc - ok
16:57:49.0121 0x2964  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
16:57:49.0129 0x2964  vdrvroot - ok
16:57:49.0142 0x2964  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
16:57:49.0176 0x2964  vds - ok
16:57:49.0179 0x2964  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
16:57:49.0190 0x2964  vga - ok
16:57:49.0193 0x2964  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
16:57:49.0216 0x2964  VgaSave - ok
16:57:49.0222 0x2964  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
16:57:49.0234 0x2964  vhdmp - ok
16:57:49.0236 0x2964  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
16:57:49.0244 0x2964  viaide - ok
16:57:49.0247 0x2964  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:57:49.0256 0x2964  volmgr - ok
16:57:49.0264 0x2964  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:57:49.0280 0x2964  volmgrx - ok
16:57:49.0287 0x2964  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:57:49.0301 0x2964  volsnap - ok
16:57:49.0306 0x2964  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
16:57:49.0316 0x2964  vsmraid - ok
16:57:49.0348 0x2964  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
16:57:49.0403 0x2964  VSS - ok
16:57:49.0406 0x2964  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
16:57:49.0417 0x2964  vwifibus - ok
16:57:49.0456 0x2964  [ CE6C085771812D5EE863CC7EF93CAEF2, 40CBE5D2A88A1DB412ED22F15B68D0D5BF1090E909DCC65946178BB1AB782248 ] VX1000          C:\Windows\system32\DRIVERS\VX1000.sys
16:57:49.0505 0x2964  VX1000 - ok
16:57:49.0516 0x2964  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
16:57:49.0548 0x2964  W32Time - ok
16:57:49.0552 0x2964  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
16:57:49.0562 0x2964  WacomPen - ok
16:57:49.0566 0x2964  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
16:57:49.0591 0x2964  WANARP - ok
16:57:49.0594 0x2964  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
16:57:49.0617 0x2964  Wanarpv6 - ok
16:57:49.0647 0x2964  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
16:57:49.0689 0x2964  wbengine - ok
16:57:49.0696 0x2964  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:57:49.0712 0x2964  WbioSrvc - ok
16:57:49.0721 0x2964  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:57:49.0741 0x2964  wcncsvc - ok
16:57:49.0744 0x2964  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:57:49.0755 0x2964  WcsPlugInService - ok
16:57:49.0757 0x2964  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
16:57:49.0765 0x2964  Wd - ok
16:57:49.0768 0x2964  [ D0335A55E5C3F812548E18300C2ACB62, 7EF7C3A21E97197E1A6D2956D0F5A7C23F2D590C9709708394426031634990A5 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam64.sys
16:57:49.0779 0x2964  WDC_SAM - ok
16:57:49.0795 0x2964  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:57:49.0820 0x2964  Wdf01000 - ok
16:57:49.0824 0x2964  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:57:49.0836 0x2964  WdiServiceHost - ok
16:57:49.0840 0x2964  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:57:49.0850 0x2964  WdiSystemHost - ok
16:57:49.0857 0x2964  [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient       C:\Windows\System32\webclnt.dll
16:57:49.0872 0x2964  WebClient - ok
16:57:49.0878 0x2964  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:57:49.0906 0x2964  Wecsvc - ok
16:57:49.0910 0x2964  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:57:49.0935 0x2964  wercplsupport - ok
16:57:49.0939 0x2964  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
16:57:49.0964 0x2964  WerSvc - ok
16:57:49.0967 0x2964  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
16:57:49.0990 0x2964  WfpLwf - ok
16:57:49.0993 0x2964  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
16:57:50.0000 0x2964  WIMMount - ok
16:57:50.0002 0x2964  WinDefend - ok
16:57:50.0006 0x2964  WinHttpAutoProxySvc - ok
16:57:50.0014 0x2964  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:57:50.0042 0x2964  Winmgmt - ok
16:57:50.0080 0x2964  [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM           C:\Windows\system32\WsmSvc.dll
16:57:50.0131 0x2964  WinRM - ok
16:57:50.0137 0x2964  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
16:57:50.0148 0x2964  WinUsb - ok
16:57:50.0166 0x2964  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
16:57:50.0197 0x2964  Wlansvc - ok
16:57:50.0241 0x2964  [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:57:50.0294 0x2964  wlidsvc - ok
16:57:50.0298 0x2964  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
16:57:50.0307 0x2964  WmiAcpi - ok
16:57:50.0314 0x2964  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:57:50.0326 0x2964  wmiApSrv - ok
16:57:50.0328 0x2964  WMPNetworkSvc - ok
16:57:50.0330 0x2964  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:57:50.0340 0x2964  WPCSvc - ok
16:57:50.0345 0x2964  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:57:50.0360 0x2964  WPDBusEnum - ok
16:57:50.0362 0x2964  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:57:50.0386 0x2964  ws2ifsl - ok
16:57:50.0390 0x2964  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
16:57:50.0404 0x2964  wscsvc - ok
16:57:50.0405 0x2964  WSearch - ok
16:57:50.0456 0x2964  [ 31F32E0C1A8BA9A37EEC23DE5F27F847, 0180832BC6172C9A4C32B5B222BB3F91EA615A5EBDA98DB79ED4FED258C2D257 ] wuauserv        C:\Windows\system32\wuaueng.dll
16:57:50.0520 0x2964  wuauserv - ok
16:57:50.0526 0x2964  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:57:50.0536 0x2964  WudfPf - ok
16:57:50.0542 0x2964  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
16:57:50.0554 0x2964  WUDFRd - ok
16:57:50.0559 0x2964  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:57:50.0569 0x2964  wudfsvc - ok
16:57:50.0576 0x2964  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:57:50.0591 0x2964  WwanSvc - ok
16:57:50.0593 0x2964  xhunter1 - ok
16:57:50.0598 0x2964  [ 2C6BC21B2D5B58D8B1D638C1704CB494, 0AABCEB627E274E338DDD9BA664BAA128D7C00AF04C95C776C2AFFA6BB17F680 ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
16:57:50.0606 0x2964  xusb21 - ok
16:57:50.0608 0x2964  ================ Scan global ===============================
16:57:50.0610 0x2964  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
16:57:50.0617 0x2964  [ 20EBCFD94E5F9C801354062991E7257B, 9CD497241559A5D6A8C2C77F1109B6D512BFFA8CC154480A3CDC36B7BB68BFAB ] C:\Windows\system32\winsrv.dll
16:57:50.0628 0x2964  [ 20EBCFD94E5F9C801354062991E7257B, 9CD497241559A5D6A8C2C77F1109B6D512BFFA8CC154480A3CDC36B7BB68BFAB ] C:\Windows\system32\winsrv.dll
16:57:50.0634 0x2964  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
16:57:50.0644 0x2964  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
16:57:50.0651 0x2964  [ Global ] - ok
16:57:50.0651 0x2964  ================ Scan MBR ==================================
16:57:50.0676 0x2964  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:57:50.0729 0x2964  \Device\Harddisk0\DR0 - ok
16:57:50.0731 0x2964  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
16:57:50.0781 0x2964  \Device\Harddisk1\DR1 - ok
16:57:50.0783 0x2964  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
16:57:50.0819 0x2964  \Device\Harddisk2\DR2 - ok
16:57:50.0820 0x2964  ================ Scan VBR ==================================
16:57:50.0821 0x2964  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition1
16:57:50.0822 0x2964  \Device\Harddisk0\DR0\Partition1 - ok
16:57:50.0823 0x2964  [ BDB9E7580C0ACF0F5DF179964D5826FD ] \Device\Harddisk0\DR0\Partition2
16:57:50.0824 0x2964  \Device\Harddisk0\DR0\Partition2 - ok
16:57:50.0826 0x2964  [ 76A786E6DC9B5B59966E7BA6735CBE85 ] \Device\Harddisk1\DR1\Partition1
16:57:50.0826 0x2964  \Device\Harddisk1\DR1\Partition1 - ok
16:57:50.0828 0x2964  [ F00366A12289C93098A39F826D9EC54B ] \Device\Harddisk2\DR2\Partition1
16:57:50.0828 0x2964  \Device\Harddisk2\DR2\Partition1 - ok
16:57:50.0829 0x2964  ================ Scan generic autorun ======================
16:57:50.0833 0x2964  [ E800FE44562B1872F617C87AD8F20225, E357389586F5D3E97B43432CCDD57D485F2F3AD694B29A936DDF9502824DD0C0 ] C:\Windows\system32\igfxtray.exe
16:57:50.0842 0x2964  IgfxTray - ok
16:57:50.0851 0x2964  [ 5D3342A551557882AF07A4861C11C70E, 0B65A3CE37A517A6CAB36F3BC3BA5893112F9F90DB336269CDB15CD195BADC52 ] C:\Windows\system32\hkcmd.exe
16:57:50.0865 0x2964  HotKeysCmds - ok
16:57:50.0876 0x2964  [ FAE1F99BB09C4D3A6F914669C37FCB65, AABD1B917D253D74FE62B182CFBC20F0CE234E9A5A7A0EEB7EB607E5B96422C0 ] C:\Windows\system32\igfxpers.exe
16:57:50.0890 0x2964  Persistence - ok
16:57:51.0134 0x2964  [ C43D50453404EF1C6801EFFC2492A202, 1D4142E49B2F8129C5643A3B6AD3BA93520FA008D9382EFA60CCDC6172F48D43 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
16:57:51.0406 0x2964  RTHDVCPL - ok
16:57:51.0460 0x2964  [ BE586B5D1D73E1F07ED5AADDEFBCAA47, 68D957EBE01DD369BF4E2D5D07A7EDF9408066E61056A1C4968DBF8CE5841BBE ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
16:57:51.0514 0x2964  NvBackend - ok
16:57:51.0521 0x2964  [ F7ED64C9765A92B65F2E1868CFF7431A, 5EEFDB3B2C8CEF2C96BF39DE3E527D7D59845250B3861F6D42D7CC3CDA7C6769 ] C:\Windows\System\3DG4me.exe
16:57:51.0526 0x2964  3DG4me - detected UnsignedFile.Multi.Generic ( 1 )
16:57:51.0583 0x2964  3DG4me ( UnsignedFile.Multi.Generic ) - warning
16:57:51.0583 0x2964  Force sending object to P2P due to detect: C:\Windows\System\3DG4me.exe
16:57:51.0736 0x2964  Object send P2P result: true
16:57:51.0835 0x2964  [ 9EC9218D94DB00C67BBB28DC62B8A46B, DF799C4CEBA4E4B6159BBD68A99B8D493A249107E9177F82684BA3E022EAEE81 ] C:\Windows\vVX1000.exe
16:57:51.0856 0x2964  VX1000 - ok
16:57:51.0863 0x2964  [ 766AE515B1749F2141E418CC6C08515B, 02DDB5A7DB8278AA47A951604818E73DB69155DBF1ECD06B6E11926204EADAE7 ] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
16:57:51.0875 0x2964  IAStorIcon - ok
16:57:51.0883 0x2964  [ 4D241A6A8F6BA9FA32FF836551FFDCEA, DEE87DFB6A8E87D40E3653435223B54AF2AB232DDC02D22468C126C54096F006 ] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
16:57:51.0894 0x2964  USB3MON - ok
16:57:51.0917 0x2964  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
16:57:51.0959 0x2964  Sidebar - ok
16:57:51.0963 0x2964  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
16:57:51.0984 0x2964  mctadmin - ok
16:57:52.0008 0x2964  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
16:57:52.0036 0x2964  Sidebar - ok
16:57:52.0040 0x2964  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
16:57:52.0053 0x2964  mctadmin - ok
16:57:52.0147 0x2964  [ D2CE6EA0E9F641D7153462D40C6B4193, 3AAE5239F951E29497D759326BDC23E19644B763DC5661CA4E4980418195C37D ] A:\Steam\steam.exe
16:57:52.0200 0x2964  Steam - ok
16:57:52.0221 0x2964  Skype - ok
16:57:52.0235 0x2964  [ 97BFD4C3591EDD7A9EA1772DBE0202E6, 31DA37709522C8B8DE2784B3AA3C1A8503E92D084E2C695A303D4D09D5FD2C88 ] C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIPDE.EXE
16:57:52.0250 0x2964  EPLTarget\P0000000000000000 - ok
16:57:52.0254 0x2964  Discord - ok
16:57:52.0257 0x2964  Waiting for KSN requests completion. In queue: 147
16:57:53.0272 0x2964  AV detected via SS2: Kaspersky Total Security, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\wmiav.exe ( 16.0.1.445 ), 0x41000 ( enabled : updated )
16:57:53.0273 0x2964  FW detected via SS2: Kaspersky Total Security, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\wmiav.exe ( 16.0.1.445 ), 0x41010 ( enabled )
16:57:53.0384 0x2964  ============================================================
16:57:53.0384 0x2964  Scan finished
16:57:53.0384 0x2964  ============================================================
16:57:53.0389 0x25e0  Detected object count: 2
16:57:53.0389 0x25e0  Actual detected object count: 2
16:58:24.0141 0x25e0  KAUpdateService ( UnsignedFile.Multi.Generic ) - skipped by user
16:58:24.0141 0x25e0  KAUpdateService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:58:24.0142 0x25e0  3DG4me ( UnsignedFile.Multi.Generic ) - skipped by user
16:58:24.0142 0x25e0  3DG4me ( UnsignedFile.Multi.Generic ) - User select action: Skip
         

Alt 23.10.2016, 12:55   #8
deeprybka
/// TB-Ausbilder
/// Anleitungs-Guru
 
Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird. - Standard

Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird.



Sind keine Funde:
https://www.virustotal.com/en/file/5eefdb3b2c8cef2c96bf39de3e527d7d59845250b3861f6d42d7cc3cda7c6769/analysis/
https://www.virustotal.com/en/file/f...0278/analysis/

Zitat:
Zitat von Obscura Nox Beitrag anzeigen
Ich weiß echt nicht mehr weiter. Nicht nur weil Kaspersky und Malwarebytes nichts finden. Nicht nur weil es jetzt schon so oft vorkam. Sondern weil sämtliche anderen Konten davon völlig unbetroffen zu sein scheinen.
Wäre es Dir lieber wenn auch die anderen Konten betroffen sind?

Welche IPs wurden beim Login verwendet?

Schritt 1



Bitte lade Dir herdprotect von Reason Software (portable edition) auf Deinen Desktop.
  • Mit Rechts-Klick als Administrator starten.
  • Wähle als Installationspfad den vorgegebenen. (%ProgramFiles%)
  • Bestätige die Bedingungen und starte herdprotect durch Klick auf Finish.
  • Klicke auf Scan und warte geduldig bis der Scan beendet wurde.
  • Keine Funde entfernen lassen und Logdatei über Save Results abspeichern.
  • Poste bitte den Inhalt der Log-Datei.

Jetzt bitte Suchscan durchführen:

Schritt 2

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

__________________
Gruß
deeprybka

Lob, Kritik, Wünsche?

Spende fürs trojaner-board?
_______________________________________________
„Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer

Alt 23.10.2016, 14:52   #9
Obscura Nox
 
Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird. - Standard

Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird.



Zitat:
Zitat von deeprybka Beitrag anzeigen


Wäre es Dir lieber wenn auch die anderen Konten betroffen sind?

Welche IPs wurden beim Login verwendet?

Natürlich nicht, ich finde es nur verwunderlich. Eine der IP Adressen war zum Beispiel 167.61.164.209, eine andere 202.67.46.18. Die Dritte weiß ich leider nicht mehr.

Beim Versuch mein System mit Herd Protect zu scannen, bleibt das Programm ab der Hälfte hängen:


Alt 23.10.2016, 14:55   #10
deeprybka
/// TB-Ausbilder
/// Anleitungs-Guru
 
Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird. - Standard

Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird.



Indonesien und Uruguay...

Warte mal noch...
__________________
Gruß
deeprybka

Lob, Kritik, Wünsche?

Spende fürs trojaner-board?
_______________________________________________
„Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer

Alt 23.10.2016, 15:43   #11
Obscura Nox
 
Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird. - Standard

Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird.



Habe es jetzt noch immer laufen, aber es bewegt sich leider keinen Millimeter.

Alt 23.10.2016, 16:22   #12
deeprybka
/// TB-Ausbilder
/// Anleitungs-Guru
 
Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird. - Standard

Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird.



Bleibt er immer an der gleichen Stelle hängen? Wenn ja, weiter mit ESET...
__________________
Gruß
deeprybka

Lob, Kritik, Wünsche?

Spende fürs trojaner-board?
_______________________________________________
„Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer

Alt 25.10.2016, 13:10   #13
Obscura Nox
 
Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird. - Standard

Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird.



Bleibt immer noch hängen. Nach etwas über 6 Stunden war ESET fertig - Ebenfalls absolut nichts gefunden. Steam Support vergewissert mir, es wären nur Versuche gewesen, die aber nie erfolgreich waren. Dennoch wurde Passwort immer korrekt eingegeben, und just in diesem Moment spiele ich auf meinem Steam Account angeblich ein Spiel namens "Dragons Prophet"...Ein Spiel welches ich seit Monaten nicht angerührt habe, und das obwohl man nicht gleichzeitig mit 2 Geräten bzw unterschiedlichen IPs eingeloggt sein kann. Ich verstehs einfach nicht was da los ist.

Alt 25.10.2016, 18:50   #14
deeprybka
/// TB-Ausbilder
/// Anleitungs-Guru
 
Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird. - Standard

Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird.



Zitat:
Zitat von Obscura Nox Beitrag anzeigen
Ein Spiel welches ich seit Monaten nicht angerührt habe, und das obwohl man nicht gleichzeitig mit 2 Geräten bzw unterschiedlichen IPs eingeloggt sein kann. Ich verstehs einfach nicht was da los ist.
Kenne mich bei steam nicht aus. Aber wenn Malware auf dem PC wäre die alle Passwörter loggt, warum soll die sich nur auf den steamaccount beschränken?
__________________
Gruß
deeprybka

Lob, Kritik, Wünsche?

Spende fürs trojaner-board?
_______________________________________________
„Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer

Alt 25.10.2016, 18:55   #15
Obscura Nox
 
Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird. - Standard

Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird.



Zitat:
Zitat von deeprybka Beitrag anzeigen
Kenne mich bei steam nicht aus. Aber wenn Malware auf dem PC wäre die alle Passwörter loggt, warum soll die sich nur auf den steamaccount beschränken?
Das ist es ja was mich so fuchst.

Antwort

Themen zu Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird.
administrator, defender, email, excel, explorer, firefox, flash player, home, kaspersky, mozilla, problem, prozesse, realtek, registry, scan, security, server, services.exe, software, svchost.exe, system, temp, usb, windows, winlogon.exe



Ähnliche Themen: Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird.


  1. Kaspersky/Emsisoft ausreichend oder zusätzlich Malwarebytes notwendig ?
    Antiviren-, Firewall- und andere Schutzprogramme - 15.03.2016 (6)
  2. rpcss.dll von Malwarebytes als Malware erkannt. Fehler oder akute bedrohung?
    Plagegeister aller Art und deren Bekämpfung - 26.04.2015 (15)
  3. Dell System Detect wird als PUP von Malwarebytes erkannt Bereinigung erforderlich
    Plagegeister aller Art und deren Bekämpfung - 06.04.2015 (7)
  4. Java wird nicht erkannt
    Alles rund um Windows - 09.02.2015 (11)
  5. AIVCUPlugin - Schadsoftware, oder nicht?
    Plagegeister aller Art und deren Bekämpfung - 12.09.2014 (2)
  6. USB on board wird nicht erkannt
    Plagegeister aller Art und deren Bekämpfung - 08.02.2014 (5)
  7. Grafikkarte wird nicht erkannt
    Netzwerk und Hardware - 25.07.2013 (12)
  8. SoftwareUpdater.Bootstrapper wird von Kaspersky PURE 3.0 erkannt
    Log-Analyse und Auswertung - 11.07.2013 (18)
  9. Bildschirm wird weiß, Festplatte wird mit Reatogo-X-Pe nicht erkannt
    Plagegeister aller Art und deren Bekämpfung - 07.05.2013 (1)
  10. Festplatte wird nicht erkannt.
    Netzwerk und Hardware - 12.01.2013 (6)
  11. Schadsoftware eingefangen (Vermutlich noch nicht erkannt)
    Plagegeister aller Art und deren Bekämpfung - 26.07.2012 (3)
  12. Unbekannte Vireninfektion (möglicherweise Smart Fortress 2012) - Gelöst oder nicht?
    Plagegeister aller Art und deren Bekämpfung - 30.05.2012 (3)
  13. BKA-Virus nicht durch Kaspersky Rescue Disk erkannt
    Plagegeister aller Art und deren Bekämpfung - 16.09.2011 (14)
  14. CD wird nicht erkannt
    Alles rund um Windows - 22.02.2010 (0)
  15. AV startet nicht, Brenner wird nicht erkannt, Malware wird nicht installiert, usw.
    Log-Analyse und Auswertung - 11.01.2010 (1)
  16. audiogerät wird nicht erkannt
    Alles rund um Windows - 04.04.2009 (5)
  17. Trojaner/Virus/Malware von Kaspersky u.a. nicht erkannt!
    Log-Analyse und Auswertung - 02.12.2007 (7)

Zum Thema Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird. - Grüße, ich beziehe mich auf einen Post den ich bereits in einer anderen Sektion gepostet habe. Ich bin daher mal so frei und zitiere mich daraus selbst, da es ein - Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird....
Archiv
Du betrachtest: Möglicherweise Schadsoftware auf PC, die nicht von Kaspersky oder Malwarebytes erkannt wird. auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.