Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: browsermodifier:win32 suptab!blnk Win 7

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 06.11.2016, 16:32   #1
asgahrn
 
browsermodifier:win32 suptab!blnk Win 7 - Standard

browsermodifier:win32 suptab!blnk Win 7



Hi, wie bei einigen anderen hier im Forum sind auch bei mir Probleme mit dem browsermodifier:win32 suptab!blnk aufgetaucht.
Windowsdefender meldete auf einmal die bereits erwähnte schädliche Software, allerdings konnten weder ein Scan mit Kaspersky noch Adwcleaner etwas finden.

FRST.txt:
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 04-11-2016
durchgeführt von Hamsterkäfig (Administrator) auf HAMSTERKÄFIG-PC (06-11-2016 16:10:51)
Gestartet von C:\Users\Hamsterkäfig\Desktop
Geladene Profile: Hamsterkäfig (Verfügbare Profile: Hamsterkäfig)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\avp.exe
(Dassault Systemes) D:\Studium\CATIA V5-R2016\win_b64\code\bin\CATSysDemon.exe
(Chip Digital GmbH) C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(Hi-Rez Studios) E:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\avpui.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Nuance Communications, Inc.) D:\Paperport\Programm\PaperPort\pptd40nt.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Viewer Plus\PdfPro7Hook.exe
(Nuance Communications, Inc.) D:\Paperport\Programm\PDFCreate\PdfCreate7Hook.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\TITANWOLF\GAUNTLET GAMING MOUSE\TTFMon.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Nuance Communications, Inc.) D:\Paperport\Programm\PaperPort\PDFProFiltSrvPP.exe
() C:\Windows\System32\PnkBstrA.exe
() C:\Program Files (x86)\NETGEAR\A6200\WifiService.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Black Tree Gaming) E:\Nexus Mod Manager\NexusClient.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(VS Revo Group) C:\Program Files\VS Revo Group\Revo Uninstaller\RevoUnin.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7632088 2014-06-10] (Realtek Semiconductor)
HKLM\...\Run: [GENIE] => C:\Program Files (x86)\NETGEAR\A6200\A6200.exe [348888 2013-02-18] (NETGEAR,Inc.)
HKLM\...\Run: [LanuchApp] => C:\Program Files (x86)\NETGEAR\A6200\LanuchApp.exe [15136 2012-07-11] ()
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1844280 2016-09-30] (NVIDIA Corporation)
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [324976 2010-05-21] (Flexera Software, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] => D:\Paperport\Programm\PaperPort\pptd40nt.exe [38824 2011-10-28] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [IndexSearch] => D:\Paperport\Programm\PaperPort\IndexSearch.exe [51120 2011-10-28] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PPort14reminder] => "D:\Paperport\Programm\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\14\Config\Ereg\Ereg.ini"
HKLM-x32\...\Run: [PDFProHook] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro7hook.exe [607592 2011-07-01] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDFCreHook] => D:\Paperport\Programm\PDFCreate\pdfcreate7hook.exe [605032 2011-06-28] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDF7 Registry Controller] => D:\Paperport\Programm\PDFCreate\RegistryController.exe [140136 2011-06-28] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [598552 2016-06-22] (Oracle Corporation)
HKLM-x32\...\Run: [ttwgmmouse-Run] => C:\Program Files (x86)\TITANWOLF\GAUNTLET GAMING MOUSE\ttfmon.exe [3317248 2015-08-10] ()
HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8721624 2016-05-13] (Piriform Ltd)
HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\...\Policies\Explorer: [] 
HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\...\MountPoints2: {25f9b9bd-3b7a-11e5-bffa-806e6f6e6963} - F:\AUTORUN.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2015-08-06] (Microsoft Corporation)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 149.205.5.81 149.205.5.82
Tcpip\..\Interfaces\{DD4A37AB-73AE-445C-AA17-68F4D1BAC14D}: [DhcpNameServer] 149.205.5.81 149.205.5.82
Tcpip\..\Interfaces\{F57C8397-C0C8-4262-974A-BE6328DAF6F7}: [DhcpNameServer] 149.205.5.81 149.205.5.82

Internet Explorer:
==================
BHO: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\x64\IEExt\ie_plugin.dll [2015-12-22] (AO Kaspersky Lab)
BHO-x32: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\IEExt\ie_plugin.dll [2015-12-22] (AO Kaspersky Lab)
BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll [2011-06-30] (Zeon Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-10-11] (Oracle Corporation)
BHO-x32: ZeonIEEventHelper Class -> {DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9} -> D:\Paperport\Programm\PDFCreate\Bin\ZeonIEFavClient.dll [2011-03-25] (Zeon Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-10-11] (Oracle Corporation)
Toolbar: HKLM - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\x64\IEExt\ie_plugin.dll [2015-12-22] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - DocuCom PDF - {E3286BF1-E654-42FF-B4A6-5E111731DF6B} - D:\Paperport\Programm\PDFCreate\Bin\ZeonIEFavClient.dll [2011-03-25] (Zeon Corporation)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\IEExt\ie_plugin.dll [2015-12-22] (AO Kaspersky Lab)

FireFox:
========
FF DefaultProfile: i1mpk6is.default
FF ProfilePath: C:\Users\Hamsterkäfig\AppData\Roaming\Mozilla\Firefox\Profiles\i1mpk6is.default [2016-11-06]
FF user.js: detected! => C:\Users\Hamsterkäfig\AppData\Roaming\Mozilla\Firefox\Profiles\i1mpk6is.default\user.js [2015-08-05]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\i1mpk6is.default -> Startpage HTTPS - Deutsch
FF Homepage: Mozilla\Firefox\Profiles\i1mpk6is.default -> hxxp://fallout.wikia.com/wiki/The_Lost_Patrol
hxxp://fallout.wikia.com/wiki/Steadfast_BOS_combat_armor_chest_piece
hxxp://warframe.wikia.com/wiki/Frost/Prime
hxxps://warframe.market/
hxxp://www.nexusmods.com/fallout4/mods/191/?tab=3&selected_game=1151&navtag=http%3A%2F%2Fwww.nexusmods.com%2Ffallout4%2Fajax%2Fmodimages%2F%3Fid%3D191%26user%3D1%26gid%3D1151&pUp=1
hxxp://www.nexusmods.com/fallout4/mods/9253/?tab=3&selected_game=1151&navtag=http%3A%2F%2Fwww.nexusmods.com%2Ffallout4%2Fajax%2Fmodimages%2F%3Fid%3D9253%26user%3D1%26gid%3D1151&pUp=1
hxxps://help.libreoffice.org/Impress/Changing_the_Slide_Background_Fill/de
hxxp://web.hs-merseburg.de/~merkling/projektmechatronikbeispiele.php
hxxps://www.kaercher.com/de/professional/waschanlagen/pkw-waschanlagen.html
hxxps://www.startpage.com/do/search
hxxps://ixquick-proxy.com/do/spg/show_picture.pl?l=deutsch&rais=1&oiu=http%3A%2F%2Fautomotiva.com.ar%2Fwp-content%2Fuploads%2F2014%2F07%2FVolkswagen-Passat-2015-4.jpg&sp=5238237d3518c12a5872cf5c7ffad28b
hxxps://ixquick-proxy.com/do/spg/show_picture.pl?l=deutsch&rais=1&oiu=https%3A%2F%2Fs-media-cache-ak0.pinimg.com%2F736x%2F81%2Fbd%2Faa%2F81bdaaa47525869ef55b2c261b0e13f1.jpg&sp=4b4b2d273a161c54f6411cb15143c457
hxxps://ixquick-proxy.com/do/spg/show_picture.pl?l=deutsch&rais=1&oiu=http%3A%2F%2Fgtspirit.com%2Fwp-content%2Fuploads%2F2015%2F08%2FLUMMA_Design_CLR_G800_4_01.jpg&sp=7f63169bd46a14873e9497f2c4f7342b
hxxp://battlelog.battlefield.com/bf4/soldier/asgahrn/weapons/1253661174/1/#acw-r
FF Extension: (Firefox Hotfix) - C:\Users\Hamsterkäfig\AppData\Roaming\Mozilla\Firefox\Profiles\i1mpk6is.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-08-30]
FF Extension: (Ghostery) - C:\Users\Hamsterkäfig\AppData\Roaming\Mozilla\Firefox\Profiles\i1mpk6is.default\Extensions\firefox@ghostery.com.xpi [2016-09-21]
FF Extension: (AdBlocker for YouTube™) - C:\Users\Hamsterkäfig\AppData\Roaming\Mozilla\Firefox\Profiles\i1mpk6is.default\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2016-09-18]
FF Extension: (Adblock Plus) - C:\Users\Hamsterkäfig\AppData\Roaming\Mozilla\Firefox\Profiles\i1mpk6is.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-10-29]
FF SearchPlugin: C:\Users\Hamsterkäfig\AppData\Roaming\Mozilla\Firefox\Profiles\i1mpk6is.default\searchplugins\startpage-https---deutsch.xml [2016-03-20]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_ACF0E80077C511E59DED005056C00008@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\FFExt\light_plugin_firefox\addon.xpi [2016-08-16]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_205.dll [2016-10-26] ()
FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_205.dll [2016-10-26] ()
FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> D:\FoxitReader\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> D:\FoxitReader\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> D:\FoxitReader\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> D:\FoxitReader\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-10-11] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-10-11] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-10-18] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-10-18] (NVIDIA Corporation)
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Viewer Plus\bin\nppdf.dll [2011-02-16] (Zeon Corporation)

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AVP16.0.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\avp.exe [236928 2015-12-22] (AO Kaspersky Lab)
R2 BBDemon; D:\Studium\CATIA V5-R2016\win_b64\code\bin\CATSysDemon.exe [53520 2015-09-18] (Dassault Systemes)
R2 chip1click; C:\Program Files (x86)\Chip Digital GmbH\chip1click\chip 1-click installer.exe [91136 2016-08-29] (Chip Digital GmbH) [Datei ist nicht signiert]
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [388968 2016-03-28] (Digital Wave Ltd.)
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [216576 2015-11-24] () [Datei ist nicht signiert]
U2 HiPatchService; E:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-10-10] (Hi-Rez Studios) [Datei ist nicht signiert]
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\x64\vssbridge64.exe [152488 2015-12-22] (AO Kaspersky Lab)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [457272 2016-09-30] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [457272 2016-09-30] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-10-18] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1165368 2016-09-30] (NVIDIA Corporation)
S3 Origin Client Service; E:\Origin\OriginClientService.exe [2142728 2016-10-25] (Electronic Arts)
S2 Origin Web Helper Service; E:\Origin\OriginWebHelperService.exe [2209296 2016-10-25] (Electronic Arts)
R2 PDFProFiltSrvPP; D:\Paperport\Programm\PaperPort\PDFProFiltSrvPP.exe [219496 2011-10-28] (Nuance Communications, Inc.)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-08-06] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-08-06] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WNDA6200; C:\Program Files (x86)\NETGEAR\A6200\WifiService.exe [29984 2012-09-24] ()

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 A6200; C:\Windows\System32\DRIVERS\bcmwlhigh664.sys [2567984 2013-02-28] (Broadcom Corporation)
R3 atmelwindrvr; C:\Windows\System32\drivers\atmelwindrvr.sys [300488 2015-08-12] (Jungo Connectivity)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-05] (Kaspersky Lab ZAO)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [487704 2014-03-14] (Intel Corporation)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-09-11] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [79240 2015-12-01] (AO Kaspersky Lab)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [78200 2015-12-01] (AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [182152 2015-12-11] (AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [236888 2016-08-16] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1001304 2016-08-16] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [50776 2016-04-29] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [52608 2015-11-11] (AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [41648 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [45960 2015-12-07] (AO Kaspersky Lab)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [65208 2015-06-11] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [110424 2016-08-16] (AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [194440 2015-12-02] (AO Kaspersky Lab)
S4 LMIRfsClientNP; kein ImagePath
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R1 NPF; C:\Windows\System32\drivers\npf.sys [35344 2010-06-26] (CACE Technologies, Inc.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [29240 2016-09-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47672 2016-09-30] (NVIDIA Corporation)
R3 WinDriver6; C:\Windows\System32\drivers\windrvr6.sys [268800 2014-01-28] (Jungo Connectivity)
S3 BCM42RLY; system32\drivers\BCM42RLY.sys [X]
S2 LMIInfo; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-06 16:10 - 2016-11-06 16:11 - 00019083 _____ C:\Users\Hamsterkäfig\Desktop\FRST.txt
2016-11-06 16:10 - 2016-11-06 16:10 - 00000000 ____D C:\FRST
2016-11-06 16:09 - 2016-11-06 16:09 - 02410496 _____ (Farbar) C:\Users\Hamsterkäfig\Downloads\FRST64.exe
2016-11-06 16:09 - 2016-11-06 16:09 - 02410496 _____ (Farbar) C:\Users\Hamsterkäfig\Desktop\FRST64.exe
2016-11-06 15:20 - 2016-11-06 16:03 - 00000000 ____D C:\AdwCleaner
2016-11-06 15:20 - 2016-11-06 15:20 - 03910208 _____ C:\Users\Hamsterkäfig\Downloads\adwcleaner_6.030.exe
2016-11-06 12:31 - 2016-11-06 12:31 - 00732864 _____ C:\Windows\Minidump\110616-11216-01.dmp
2016-11-06 11:45 - 2016-11-06 11:46 - 00000000 ____D C:\Users\Hamsterkäfig\Desktop\Skriptmerger
2016-11-06 10:35 - 2016-11-06 10:35 - 01514932 _____ C:\Users\Hamsterkäfig\Desktop\MSproject.pdf
2016-11-06 10:31 - 2016-11-06 10:31 - 05588788 _____ C:\Users\Hamsterkäfig\Downloads\VDI_Lastenheft_fein.pdf
2016-11-06 10:05 - 2016-11-06 15:22 - 00000022 _____ C:\Windows\S.dirmngr
2016-11-05 18:05 - 2016-11-06 10:45 - 00043185 _____ C:\Users\Hamsterkäfig\Documents\project1.pod
2016-11-04 17:52 - 2016-11-04 17:52 - 00000201 _____ C:\Users\Hamsterkäfig\Desktop\Borderlands 2.url
2016-11-03 20:49 - 2016-11-03 20:49 - 12892255 _____ C:\Users\Hamsterkäfig\Downloads\Grundlagen S7 Graph.pdf
2016-11-03 20:49 - 2016-11-03 20:49 - 04787779 _____ C:\Users\Hamsterkäfig\Downloads\Test und Online.pdf
2016-11-03 20:49 - 2016-11-03 20:49 - 04332613 _____ C:\Users\Hamsterkäfig\Downloads\Fehlersuche Diagnose.pdf
2016-11-03 20:49 - 2016-11-03 20:49 - 01789024 _____ C:\Users\Hamsterkäfig\Downloads\Speichern.pdf
2016-11-03 20:49 - 2016-11-03 20:49 - 01542109 _____ C:\Users\Hamsterkäfig\Downloads\CPU 314c-DP.pdf
2016-11-03 20:49 - 2016-11-03 20:49 - 01412591 _____ C:\Users\Hamsterkäfig\Downloads\Grundlagen S7 SCL.pdf
2016-11-03 20:49 - 2016-11-03 20:49 - 01222967 _____ C:\Users\Hamsterkäfig\Downloads\Hardwaresimulation mit PlcSim.pdf
2016-11-03 20:49 - 2016-11-03 20:49 - 01154676 _____ C:\Users\Hamsterkäfig\Downloads\Strukturierte Programmierung.pdf
2016-11-03 20:49 - 2016-11-03 20:49 - 00689517 _____ C:\Users\Hamsterkäfig\Downloads\Analogwerte.pdf
2016-11-02 20:41 - 2016-11-02 20:41 - 00000202 _____ C:\Users\Hamsterkäfig\Desktop\SMITE.url
2016-11-01 13:51 - 2016-11-02 13:21 - 02796994 _____ C:\Users\Hamsterkäfig\Desktop\Aufgabenstellung.odp
2016-10-31 21:09 - 2016-10-31 21:09 - 17252915 _____ C:\Users\Hamsterkäfig\Downloads\Elektrische Energieversorung dry.pdf
2016-10-31 13:37 - 2016-10-31 13:37 - 00362812 _____ C:\Users\Hamsterkäfig\Downloads\skse_1_07_03_installer.exe
2016-10-31 13:37 - 2016-10-31 13:37 - 00000958 _____ C:\Users\Hamsterkäfig\Desktop\Skyrim (SKSE).lnk
2016-10-31 12:41 - 2016-10-31 12:49 - 00381258 _____ C:\Users\Hamsterkäfig\Desktop\passat.odg
2016-10-31 12:20 - 2016-11-01 13:42 - 00458216 _____ C:\Users\Hamsterkäfig\Desktop\simca1000.odg
2016-10-28 14:03 - 2016-10-28 14:03 - 00000905 _____ C:\Users\Public\Desktop\Octave-4.0.3 (GUI).lnk
2016-10-28 14:03 - 2016-10-28 14:03 - 00000899 _____ C:\Users\Public\Desktop\Octave-4.0.3 (CLI).lnk
2016-10-28 14:03 - 2016-10-28 14:03 - 00000078 _____ C:\Users\Hamsterkäfig\.octave_hist
2016-10-28 14:03 - 2016-10-28 14:03 - 00000000 ____D C:\Users\Hamsterkäfig\.config
2016-10-28 14:03 - 2016-10-28 14:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Octave-4.0.3
2016-10-28 13:56 - 2016-10-28 13:58 - 159117969 _____ (GNU Project) C:\Users\Hamsterkäfig\Downloads\octave-4.0.3-installer.exe
2016-10-27 08:31 - 2016-10-27 08:32 - 221679616 _____ C:\Users\Hamsterkäfig\Downloads\LibreOffice_5.1.5_Win_x86.msi
2016-10-26 12:37 - 2016-11-06 14:30 - 00000000 ____D C:\Users\Hamsterkäfig\Documents\The Witcher 3
2016-10-26 11:00 - 2016-10-26 11:00 - 00000202 _____ C:\Users\Hamsterkäfig\Desktop\The Witcher 3 Wild Hunt.url
2016-10-23 15:27 - 2016-10-23 15:27 - 00264229 _____ C:\Users\Hamsterkäfig\Downloads\Immatrikulationsbescheinigung WS1617.pdf
2016-10-23 09:49 - 2016-11-03 08:20 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\HirezLauncherUI
2016-10-23 09:48 - 2016-10-23 10:15 - 00000000 ____D C:\ProgramData\Hi-Rez Studios
2016-10-23 09:48 - 2016-10-23 09:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
2016-10-23 09:37 - 2016-10-23 09:37 - 00000202 _____ C:\Users\Hamsterkäfig\Desktop\Paladins.url
2016-10-22 13:59 - 2016-10-22 13:59 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-10-22 13:59 - 2016-10-18 20:31 - 00134712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-10-22 13:59 - 2016-09-09 19:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-10-22 13:59 - 2016-09-09 19:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2016-10-22 13:59 - 2016-09-09 19:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-10-22 13:59 - 2016-09-09 19:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2016-10-22 13:58 - 2016-10-19 23:48 - 00212936 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-10-22 13:58 - 2016-10-19 23:48 - 00046024 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 40125496 _____ C:\Windows\system32\nvcompiler.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 35222464 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 34699712 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 28167616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 17426520 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 14018496 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-10-22 13:58 - 2016-10-18 22:23 - 10910184 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 10754624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 10295048 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 09099400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 08912488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 08692872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 03629624 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 03191744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 01951680 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437557.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437557.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 00973760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 00942528 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 00894400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 00683640 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 00572888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 00520912 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 00492560 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 00439864 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 00436088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 00407248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 00388544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 00170688 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 00153368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 00131720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-10-22 13:58 - 2016-10-18 22:23 - 00000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-10-22 13:58 - 2016-10-18 22:23 - 00000669 _____ C:\Windows\system32\nv-vk64.json
2016-10-22 13:57 - 2016-10-29 13:17 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\VisualAssistAtmel
2016-10-22 13:57 - 2016-10-29 13:17 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\VisualAssistAtmel
2016-10-22 13:57 - 2016-10-22 13:57 - 00000000 ____D C:\Users\Hamsterkäfig\Documents\Atmel Studio
2016-10-22 13:57 - 2016-10-22 13:57 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\IsolatedStorage
2016-10-22 13:04 - 2016-10-22 14:10 - 00000000 ____D C:\Users\Hamsterkäfig\Documents\Visual Studio 2015
2016-10-22 13:04 - 2016-10-22 13:04 - 00000795 _____ C:\Users\Public\Desktop\Atmel Studio 7.0.lnk
2016-10-22 13:04 - 2016-10-22 13:04 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\SEGGER
2016-10-22 13:04 - 2016-10-22 13:04 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\Atmel
2016-10-22 13:04 - 2016-10-22 13:04 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\Atmel
2016-10-22 13:04 - 2016-10-22 13:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atmel Studio 7.0
2016-10-22 13:02 - 2015-08-12 09:04 - 00162816 _____ (Jungo Connectivity) C:\Windows\SysWOW64\wdapi1200_x64.dll
2016-10-22 13:02 - 2015-08-12 09:04 - 00151552 _____ (Jungo Connectivity) C:\Windows\SysWOW64\wdapi1200.dll
2016-10-22 13:02 - 2014-01-28 06:59 - 00151552 _____ (Jungo Connectivity) C:\Windows\SysWOW64\wdapi1150.dll
2016-10-22 13:02 - 2013-11-11 07:42 - 00151552 _____ (Jungo Connectivity) C:\Windows\SysWOW64\wdapi1140.dll
2016-10-22 13:02 - 2013-11-11 07:42 - 00147456 _____ (Jungo) C:\Windows\SysWOW64\wdapi1021.dll
2016-10-22 13:02 - 2013-11-11 07:42 - 00143360 _____ (Jungo) C:\Windows\SysWOW64\wdapi1010.dll
2016-10-22 13:02 - 2013-11-11 07:42 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi1100.dll
2016-10-22 13:02 - 2013-11-11 07:42 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi102.dll
2016-10-22 13:02 - 2013-11-11 07:42 - 00110592 _____ (Jungo) C:\Windows\SysWOW64\wdapi1011.dll
2016-10-22 13:01 - 2016-10-22 13:01 - 00000000 ____D C:\Windows\SysWOW64\1033
2016-10-22 13:00 - 2016-10-22 13:01 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 14.0
2016-10-22 13:00 - 2016-10-22 13:00 - 00000000 ____D C:\Windows\system32\1033
2016-10-22 13:00 - 2016-10-22 13:00 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2016-10-22 13:00 - 2016-10-22 13:00 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2016-10-22 13:00 - 2016-10-22 13:00 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2016-10-22 13:00 - 2016-10-22 13:00 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer
2016-10-22 12:59 - 2016-10-22 12:59 - 00000000 ____D C:\ProgramData\VsTelemetry
2016-10-22 12:25 - 2016-10-22 12:25 - 02514576 _____ (Atmel) C:\Users\Hamsterkäfig\Downloads\as-installer-7.0.1188-web.exe
2016-10-22 12:25 - 2016-10-22 12:25 - 00000000 ____D C:\Users\Hamsterkäfig\Desktop\Neuer Ordner
2016-10-21 14:03 - 2016-10-21 14:03 - 06779249 _____ C:\Users\Hamsterkäfig\Downloads\Selbstgedrehte Stromkreise.pdf
2016-10-21 12:29 - 2016-10-23 08:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-10-19 06:37 - 2016-10-19 06:39 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\NVIDIA
2016-10-18 19:37 - 2016-10-18 20:45 - 00001951 _____ C:\Windows\NvContainerRecovery.bat
2016-10-18 19:37 - 2016-10-18 19:37 - 00003860 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-18 19:37 - 2016-10-18 19:37 - 00003860 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-18 19:37 - 2016-10-18 19:37 - 00003810 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-18 19:37 - 2016-10-18 19:37 - 00003798 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-18 19:37 - 2016-10-18 19:37 - 00003622 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-18 19:37 - 2016-10-18 19:37 - 00003562 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-10-18 06:21 - 2016-10-18 22:23 - 01035712 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-10-18 06:21 - 2016-10-18 20:52 - 00546752 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-10-18 06:21 - 2016-10-18 20:52 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-10-18 06:21 - 2016-10-01 22:15 - 01935808 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437306.dll
2016-10-18 06:21 - 2016-10-01 22:15 - 01585088 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437306.dll
2016-10-18 06:21 - 2016-10-01 22:15 - 00215608 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-10-18 06:21 - 2016-10-01 22:15 - 00201664 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-10-18 06:18 - 2016-10-18 20:52 - 07471705 _____ C:\Windows\system32\nvcoproc.bin
2016-10-18 06:18 - 2016-10-18 20:52 - 06386232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-10-18 06:18 - 2016-10-18 20:52 - 02477624 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-10-18 06:18 - 2016-10-18 20:52 - 01762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-10-18 06:18 - 2016-10-18 20:52 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-10-18 06:18 - 2016-10-18 20:52 - 00071224 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-10-18 06:15 - 2016-10-18 06:15 - 00000000 ____D C:\NVIDIA
2016-10-18 06:14 - 2016-10-18 06:15 - 352622016 _____ (NVIDIA Corporation) C:\Users\Hamsterkäfig\Downloads\373.06-desktop-win8-win7-64bit-international-whql.exe
2016-10-18 06:03 - 2016-10-18 06:03 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\ElevatedDiagnostics
2016-10-18 05:59 - 2016-11-06 12:31 - 920407749 _____ C:\Windows\MEMORY.DMP
2016-10-18 05:59 - 2016-10-18 05:59 - 00729816 _____ C:\Windows\Minidump\101816-9672-01.dmp
2016-10-17 19:57 - 2016-10-17 19:58 - 04743508 _____ C:\Users\Hamsterkäfig\Desktop\ABL_CATIA_2016.pdf
2016-10-16 19:34 - 2016-10-29 22:27 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\CrashDumps
2016-10-16 15:07 - 2016-10-16 15:07 - 00002161 _____ C:\Users\Hamsterkäfig\Desktop\ProjectLibre.lnk
2016-10-16 15:06 - 2016-10-16 15:06 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ProjectLibre
2016-10-16 15:06 - 2016-10-16 15:06 - 00000000 ____D C:\Program Files (x86)\ProjectLibre
2016-10-16 15:02 - 2016-10-16 15:02 - 16126976 _____ C:\Users\Hamsterkäfig\Downloads\projectlibre-1.6.2.msi
2016-10-16 14:52 - 2016-10-16 14:52 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\3dmouse
2016-10-16 14:51 - 2016-10-16 14:51 - 00001199 _____ C:\Users\Public\Desktop\CATIA STUDENT V5-6R2016.lnk
2016-10-16 14:51 - 2016-10-16 14:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CATIA STUDENT
2016-10-16 14:44 - 2016-10-16 14:55 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\DassaultSystemes
2016-10-16 14:44 - 2016-10-16 14:55 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\DassaultSystemes
2016-10-16 14:41 - 2016-10-16 14:49 - 00000000 ____D C:\ProgramData\DassaultSystemes
2016-10-16 14:27 - 2016-10-16 14:38 - 1032468755 _____ C:\Users\Hamsterkäfig\Downloads\V5-6R2016.CATIA_STUDENT.win_b64.1-1.zip
2016-10-16 14:27 - 2016-10-16 14:27 - 00703022 _____ C:\Users\Hamsterkäfig\Downloads\TARGET-ID generator.zip
2016-10-16 08:59 - 2016-10-18 19:37 - 00001416 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-10-16 08:54 - 2016-09-30 05:25 - 00121912 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-10-16 08:52 - 2016-09-30 05:25 - 00106040 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-10-16 08:52 - 2016-09-30 05:25 - 00095800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-10-16 08:52 - 2016-09-30 05:25 - 00047672 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-10-15 18:10 - 2016-10-23 13:54 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-10-15 18:09 - 2016-10-15 18:09 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\PreEmptive Solutions
2016-10-15 18:09 - 2016-10-15 18:09 - 00000000 ____D C:\ProgramData\PreEmptive Solutions
2016-10-15 18:06 - 2016-10-15 18:06 - 00001361 _____ C:\Users\Hamsterkäfig\Desktop\ANSYS Workbench 17.2.lnk
2016-10-15 17:54 - 2016-10-15 17:54 - 00000545 _____ C:\Users\Hamsterkäfig\Downloads\ansys_student.zip
2016-10-15 17:46 - 2016-10-15 17:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ANSYS 17.2
2016-10-15 17:46 - 2016-10-15 17:46 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\Ansys
2016-10-15 17:38 - 2016-10-23 13:57 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\Ansys
2016-10-15 10:36 - 2016-10-15 10:38 - 00000000 ____D C:\Users\Hamsterkäfig\Documents\TITANWOLF GAUNTLET GAMING MOUSE
2016-10-15 10:36 - 2016-10-15 10:36 - 00001228 _____ C:\Users\Public\Desktop\TITANWOLF GAUNTLET GAMING MOUSE.lnk
2016-10-15 10:36 - 2016-10-15 10:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TITANWOLF GAUNTLET GAMING MOUSE
2016-10-15 10:36 - 2016-10-15 10:36 - 00000000 ____D C:\Program Files (x86)\TITANWOLF
2016-10-15 10:05 - 2016-10-15 10:05 - 00000000 ____D C:\ProgramData\redistpart
2016-10-15 10:04 - 2016-10-15 10:04 - 00000000 ____D C:\ProgramData\launcher
2016-10-15 10:04 - 2016-10-15 10:04 - 00000000 ____D C:\ProgramData\explauncher
2016-10-15 09:54 - 2016-10-15 09:54 - 00002399 _____ C:\Users\Public\Desktop\Paragon Partition Manager™ 2014 Free.lnk
2016-10-15 09:54 - 2016-10-15 09:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paragon Partition Manager™ 2014 Free
2016-10-15 09:54 - 2016-10-15 09:54 - 00000000 ____D C:\Program Files (x86)\Paragon Software
2016-10-15 09:53 - 2016-10-15 09:53 - 00000000 ____D C:\Program Files (x86)\Chip Digital GmbH
2016-10-13 14:18 - 2016-10-16 11:34 - 00000000 ____D C:\Users\Hamsterkäfig\Documents\CCleaner Registry backup
2016-10-12 07:34 - 2016-09-30 21:13 - 00394448 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-10-12 07:34 - 2016-09-30 20:28 - 00346312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-10-12 07:34 - 2016-09-30 16:37 - 05548264 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-10-12 07:34 - 2016-09-30 16:20 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-10-12 07:34 - 2016-09-30 16:20 - 03944680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-10-12 07:34 - 2016-09-30 08:55 - 25765376 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-10-12 07:34 - 2016-09-30 07:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-10-12 07:34 - 2016-09-30 07:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-10-12 07:34 - 2016-09-30 07:26 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-10-12 07:34 - 2016-09-30 07:25 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-10-12 07:34 - 2016-09-30 07:25 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-10-12 07:34 - 2016-09-30 07:25 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-10-12 07:34 - 2016-09-30 07:25 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-10-12 07:34 - 2016-09-30 07:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-10-12 07:34 - 2016-09-30 07:18 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-10-12 07:34 - 2016-09-30 07:17 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-10-12 07:34 - 2016-09-30 07:14 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-10-12 07:34 - 2016-09-30 07:13 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-10-12 07:34 - 2016-09-30 07:13 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-10-12 07:34 - 2016-09-30 07:12 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-10-12 07:34 - 2016-09-30 07:12 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-10-12 07:34 - 2016-09-30 07:09 - 06048256 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-10-12 07:34 - 2016-09-30 07:05 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-10-12 07:34 - 2016-09-30 07:02 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-10-12 07:34 - 2016-09-30 06:55 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-10-12 07:34 - 2016-09-30 06:54 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-10-12 07:34 - 2016-09-30 06:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-10-12 07:34 - 2016-09-30 06:51 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-10-12 07:34 - 2016-09-30 06:50 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-10-12 07:34 - 2016-09-30 06:47 - 20306944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-10-12 07:34 - 2016-09-30 06:47 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-10-12 07:34 - 2016-09-30 06:46 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-10-12 07:34 - 2016-09-30 06:42 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-10-12 07:34 - 2016-09-30 06:42 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-10-12 07:34 - 2016-09-30 06:42 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-10-12 07:34 - 2016-09-30 06:42 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-10-12 07:34 - 2016-09-30 06:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-10-12 07:34 - 2016-09-30 06:38 - 02286592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-10-12 07:34 - 2016-09-30 06:36 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-10-12 07:34 - 2016-09-30 06:35 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-10-12 07:34 - 2016-09-30 06:35 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-10-12 07:34 - 2016-09-30 06:33 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-10-12 07:34 - 2016-09-30 06:33 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-10-12 07:34 - 2016-09-30 06:32 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-10-12 07:34 - 2016-09-30 06:32 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-10-12 07:34 - 2016-09-30 06:32 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-10-12 07:34 - 2016-09-30 06:32 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-10-12 07:34 - 2016-09-30 06:31 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-10-12 07:34 - 2016-09-30 06:31 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-10-12 07:34 - 2016-09-30 06:24 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-10-12 07:34 - 2016-09-30 06:21 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-10-12 07:34 - 2016-09-30 06:19 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-10-12 07:34 - 2016-09-30 06:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-10-12 07:34 - 2016-09-30 06:17 - 02920960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-10-12 07:34 - 2016-09-30 06:17 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-10-12 07:34 - 2016-09-30 06:15 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-10-12 07:34 - 2016-09-30 06:14 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-10-12 07:34 - 2016-09-30 06:13 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-10-12 07:34 - 2016-09-30 06:12 - 04608512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-10-12 07:34 - 2016-09-30 06:07 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-10-12 07:34 - 2016-09-30 06:05 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-10-12 07:34 - 2016-09-30 06:05 - 01544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-10-12 07:34 - 2016-09-30 06:05 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-10-12 07:34 - 2016-09-30 06:05 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-10-12 07:34 - 2016-09-30 06:03 - 13653504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-10-12 07:34 - 2016-09-30 05:54 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-10-12 07:34 - 2016-09-30 05:46 - 02444288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-10-12 07:34 - 2016-09-30 05:43 - 01312768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-10-12 07:34 - 2016-09-30 05:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-10-12 07:34 - 2016-09-15 16:30 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-10-12 07:34 - 2016-09-15 16:30 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-10-12 07:34 - 2016-09-15 16:15 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-10-12 07:34 - 2016-09-15 16:15 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2016-10-12 07:34 - 2016-09-12 22:17 - 00077032 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-10-12 07:34 - 2016-09-12 22:13 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-10-12 07:34 - 2016-09-12 22:13 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-10-12 07:34 - 2016-09-12 22:08 - 01465344 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-10-12 07:34 - 2016-09-12 22:08 - 01226752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-10-12 07:34 - 2016-09-12 22:08 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-10-12 07:34 - 2016-09-12 22:08 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-10-12 07:34 - 2016-09-12 22:08 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-10-12 07:34 - 2016-09-12 22:08 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-10-12 07:34 - 2016-09-12 22:08 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-10-12 07:34 - 2016-09-12 22:08 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-10-12 07:34 - 2016-09-12 22:08 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-10-12 07:34 - 2016-09-12 22:08 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-10-12 07:34 - 2016-09-12 22:08 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-10-12 07:34 - 2016-09-12 22:08 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-10-12 07:34 - 2016-09-12 22:08 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-10-12 07:34 - 2016-09-12 22:08 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-10-12 07:34 - 2016-09-12 22:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-10-12 07:34 - 2016-09-12 22:08 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-10-12 07:34 - 2016-09-12 22:08 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-10-12 07:34 - 2016-09-12 22:08 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-10-12 07:34 - 2016-09-12 22:08 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-10-12 07:34 - 2016-09-12 22:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-10-12 07:34 - 2016-09-12 21:49 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-10-12 07:34 - 2016-09-12 21:49 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-10-12 07:34 - 2016-09-12 21:49 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-10-12 07:34 - 2016-09-12 21:49 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-10-12 07:34 - 2016-09-12 21:49 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-10-12 07:34 - 2016-09-12 21:49 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-10-12 07:34 - 2016-09-12 21:49 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-10-12 07:34 - 2016-09-12 21:49 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-10-12 07:34 - 2016-09-12 21:49 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-10-12 07:34 - 2016-09-12 21:49 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-10-12 07:34 - 2016-09-12 21:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-10-12 07:34 - 2016-09-12 21:49 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll
2016-10-12 07:34 - 2016-09-12 21:49 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-10-12 07:34 - 2016-09-12 21:49 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-10-12 07:34 - 2016-09-12 21:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-10-12 07:34 - 2016-09-12 21:49 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-10-12 07:34 - 2016-09-12 21:39 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-10-12 07:34 - 2016-09-12 21:37 - 03218944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-10-12 07:34 - 2016-09-12 21:32 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-10-12 07:34 - 2016-09-12 21:32 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-10-12 07:34 - 2016-09-12 21:32 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-10-12 07:34 - 2016-09-12 21:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-10-12 07:34 - 2016-09-12 21:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-10-12 07:34 - 2016-09-12 21:25 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-10-12 07:34 - 2016-09-12 20:08 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-10-12 07:34 - 2016-09-12 19:43 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-10-12 07:34 - 2016-09-12 19:43 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-10-12 07:34 - 2016-09-10 17:19 - 03649536 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-10-12 07:34 - 2016-09-10 16:53 - 02291712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-10-12 07:34 - 2016-09-09 19:29 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-10-12 07:34 - 2016-09-09 19:26 - 00706280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-10-12 07:34 - 2016-09-09 19:23 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:20 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 19:01 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-10-12 07:34 - 2016-09-09 19:00 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-10-12 07:34 - 2016-09-09 19:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-10-12 07:34 - 2016-09-09 19:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-10-12 07:34 - 2016-09-09 19:00 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:51 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-10-12 07:34 - 2016-09-09 18:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-10-12 07:34 - 2016-09-09 18:51 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-10-12 07:34 - 2016-09-09 18:48 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-10-12 07:34 - 2016-09-09 18:47 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-10-12 07:34 - 2016-09-09 18:43 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-10-12 07:34 - 2016-09-09 18:38 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-10-12 07:34 - 2016-09-09 18:38 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-10-12 07:34 - 2016-09-09 18:38 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-10-12 07:34 - 2016-09-09 18:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-10-12 07:34 - 2016-09-09 18:37 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 18:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-10-12 07:34 - 2016-09-09 16:54 - 01629184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-10-12 07:34 - 2016-09-09 16:54 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-10-12 07:34 - 2016-09-09 16:54 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-10-12 07:34 - 2016-09-09 16:54 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-10-12 07:34 - 2016-09-09 16:54 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-10-12 07:34 - 2016-09-09 16:54 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-10-12 07:34 - 2016-09-09 16:54 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-10-12 07:34 - 2016-09-08 21:34 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-10-12 07:34 - 2016-09-08 21:34 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2016-10-12 07:34 - 2016-09-08 21:34 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2016-10-12 07:34 - 2016-09-08 21:34 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2016-10-12 07:34 - 2016-09-08 15:55 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-10-12 07:34 - 2016-09-08 15:55 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-10-12 07:34 - 2016-08-29 16:31 - 14183424 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-10-12 07:34 - 2016-08-29 16:31 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-10-12 07:34 - 2016-08-29 16:31 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-10-12 07:34 - 2016-08-29 16:12 - 12880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-10-12 07:34 - 2016-08-29 16:12 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-10-12 07:34 - 2016-08-29 16:12 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-10-12 07:34 - 2016-08-29 16:04 - 03229696 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-10-12 07:34 - 2016-08-29 15:55 - 02972672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-10-12 07:34 - 2016-08-16 21:40 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-10-12 07:34 - 2016-08-16 21:40 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2016-10-12 07:34 - 2016-08-16 21:40 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2016-10-12 07:34 - 2016-08-16 21:40 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2016-10-12 07:34 - 2016-08-16 21:40 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2016-10-12 07:34 - 2016-08-16 21:40 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2016-10-12 07:34 - 2016-08-16 21:40 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2016-10-12 07:34 - 2016-08-12 18:02 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-10-12 07:34 - 2016-08-12 18:02 - 12574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-10-12 07:34 - 2016-08-12 18:02 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-10-12 07:34 - 2016-08-12 18:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-10-12 07:34 - 2016-08-12 18:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-10-12 07:34 - 2016-08-12 17:47 - 12574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-10-12 07:34 - 2016-08-12 17:47 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-10-12 07:34 - 2016-08-12 17:31 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-10-12 07:34 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-10-12 07:34 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-10-12 07:34 - 2016-08-12 17:26 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2016-10-12 07:34 - 2016-08-06 16:31 - 02023424 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-10-12 07:34 - 2016-08-06 16:31 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2016-10-12 07:34 - 2016-08-06 16:31 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-10-12 07:34 - 2016-08-06 16:31 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-10-12 07:34 - 2016-08-06 16:31 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2016-10-12 07:34 - 2016-08-06 16:31 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2016-10-12 07:34 - 2016-08-06 16:15 - 01178112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2016-10-12 07:34 - 2016-08-06 16:15 - 00249344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2016-10-12 07:34 - 2016-08-06 16:15 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2016-10-12 07:34 - 2016-08-06 16:15 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2016-10-12 07:34 - 2016-08-06 16:15 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll
2016-10-12 07:34 - 2016-08-06 16:01 - 00266752 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2016-10-12 07:34 - 2016-08-06 16:01 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2016-10-12 07:34 - 2016-08-06 15:53 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2016-10-12 07:34 - 2016-08-06 15:53 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2016-10-12 07:34 - 2016-08-06 15:53 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2016-10-12 07:34 - 2016-07-22 15:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-10-12 07:34 - 2016-07-22 15:51 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2016-10-12 07:34 - 2016-06-14 18:21 - 00094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-10-12 07:34 - 2016-06-14 18:16 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 01483264 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2016-10-12 07:34 - 2016-06-14 18:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-10-12 07:34 - 2016-06-14 18:11 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2016-10-12 07:34 - 2016-06-14 16:21 - 03209216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2016-10-12 07:34 - 2016-06-14 16:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-10-12 07:34 - 2016-06-14 16:15 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2016-10-12 07:34 - 2016-06-14 16:15 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-10-12 07:34 - 2016-06-14 16:15 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-10-12 07:34 - 2016-06-14 16:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-10-12 07:34 - 2016-06-14 16:05 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-10-12 07:34 - 2016-06-14 16:00 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2016-10-12 07:34 - 2016-06-14 16:00 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2016-10-11 18:23 - 2016-10-11 18:33 - 4276726900 _____ C:\Users\Hamsterkäfig\Downloads\Ansys.zip
2016-10-11 18:19 - 2016-10-11 18:19 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\Sun
2016-10-11 18:19 - 2016-10-11 18:19 - 00000000 ____D C:\Users\Hamsterkäfig\.oracle_jre_usage

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-06 16:10 - 2015-10-19 13:35 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\NetSpeedMonitor
2016-11-06 15:30 - 2009-07-14 05:45 - 00014576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-06 15:30 - 2009-07-14 05:45 - 00014576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-06 15:28 - 2009-07-14 18:58 - 00699416 _____ C:\Windows\system32\perfh007.dat
2016-11-06 15:28 - 2009-07-14 18:58 - 00149556 _____ C:\Windows\system32\perfc007.dat
2016-11-06 15:28 - 2009-07-14 06:13 - 01620612 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-06 15:28 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-11-06 15:22 - 2015-08-05 15:39 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-06 15:22 - 2015-08-05 15:29 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-11-06 15:22 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-06 15:20 - 2015-10-09 12:23 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-11-06 14:47 - 2016-06-14 09:51 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\Notepad++
2016-11-06 12:31 - 2015-08-06 07:57 - 00000000 ____D C:\Windows\Minidump
2016-11-06 11:53 - 2015-08-05 15:45 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\Skype
2016-11-06 11:27 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-11-06 10:54 - 2016-06-14 09:55 - 00000598 _____ C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2016-11-06 10:54 - 2016-06-14 09:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
2016-11-06 01:27 - 2015-08-05 16:35 - 00000000 ____D C:\ProgramData\Origin
2016-11-06 01:25 - 2015-08-05 16:37 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\Origin
2016-11-05 14:34 - 2015-08-05 18:45 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2016-11-05 10:30 - 2015-08-05 18:45 - 00226168 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2016-11-05 00:15 - 2016-09-04 11:28 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\Battle.net
2016-11-04 23:45 - 2016-09-04 11:29 - 00000000 ____D C:\Program Files (x86)\Heroes of the Storm
2016-11-04 17:46 - 2015-08-08 16:52 - 00000000 ____D C:\ProgramData\TEMP
2016-11-03 08:20 - 2015-08-05 16:57 - 00000000 ____D C:\Users\Hamsterkäfig\Documents\My Games
2016-10-30 09:08 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2016-10-29 22:53 - 2016-06-14 18:57 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\LOOT
2016-10-28 14:03 - 2015-08-05 15:04 - 00000000 ____D C:\Users\Hamsterkäfig
2016-10-26 16:29 - 2015-08-05 15:21 - 00485032 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-10-26 13:20 - 2015-10-09 12:23 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-10-26 13:20 - 2015-10-09 12:23 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-26 13:20 - 2015-10-09 12:23 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-10-26 13:20 - 2015-10-09 12:23 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-10-26 13:20 - 2015-10-09 12:23 - 00000000 ____D C:\Windows\system32\Macromed
2016-10-24 18:45 - 2015-08-05 15:44 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-10-24 06:41 - 2016-04-17 19:15 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\Factorio
2016-10-23 09:48 - 2015-08-05 16:12 - 00000000 ____D C:\ProgramData\Package Cache
2016-10-23 09:47 - 2015-08-05 15:12 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-10-23 08:36 - 2015-08-05 15:20 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-10-22 14:00 - 2015-08-05 15:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-10-22 14:00 - 2015-08-05 15:52 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-10-22 13:59 - 2015-08-05 15:57 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\NVIDIA Corporation
2016-10-22 13:59 - 2015-08-05 15:54 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-10-22 13:59 - 2015-08-05 15:52 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-10-22 13:00 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-10-22 13:00 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-10-22 07:37 - 2009-07-14 06:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-10-21 12:02 - 2016-06-14 09:55 - 00000000 ____D C:\Users\Hamsterkäfig\Documents\Nexus Mod Manager
2016-10-19 23:48 - 2015-08-05 15:52 - 01595456 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2016-10-19 12:26 - 2015-09-30 12:15 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Roaming\TS3Client
2016-10-18 22:23 - 2015-08-05 15:52 - 19917400 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-10-18 22:23 - 2015-08-05 15:52 - 17338792 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-10-18 22:23 - 2015-08-05 15:52 - 14394528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-10-18 22:23 - 2015-08-05 15:52 - 03930688 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-10-18 22:23 - 2015-08-05 15:52 - 03469408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-10-18 22:23 - 2015-08-05 15:52 - 00041344 _____ C:\Windows\system32\nvinfo.pb
2016-10-18 19:37 - 2015-08-05 15:55 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\NVIDIA
2016-10-18 15:25 - 2015-08-05 15:44 - 00000000 ____D C:\ProgramData\Skype
2016-10-18 06:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Help
2016-10-18 06:15 - 2015-08-06 07:46 - 00000000 ____D C:\Users\Hamsterkäfig\Desktop\OpenHardwareMonitor
2016-10-17 07:28 - 2009-07-14 05:45 - 00377688 _____ C:\Windows\system32\FNTCACHE.DAT
2016-10-16 15:34 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2016-10-16 14:56 - 2015-08-05 15:31 - 00078720 _____ C:\Users\Hamsterkäfig\AppData\Local\GDIPFONTCACHEV1.DAT
2016-10-16 14:51 - 2009-07-14 03:34 - 00017710 _____ C:\Windows\system32\Drivers\etc\services
2016-10-16 09:37 - 2015-10-16 18:13 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\Warframe
2016-10-15 09:53 - 2016-06-03 17:38 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\Downloaded Installations
2016-10-14 14:53 - 2015-11-22 00:25 - 00000000 ____D C:\Users\Hamsterkäfig\AppData\Local\Fallout4
2016-10-12 10:08 - 2015-08-08 10:45 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-10-12 10:08 - 2015-08-08 10:45 - 00000000 ____D C:\Windows\system32\appraiser
2016-10-12 10:08 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-10-12 10:08 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Dism
2016-10-12 08:06 - 2015-08-05 15:56 - 00000000 ____D C:\Windows\system32\MRT
2016-10-12 08:04 - 2015-08-05 15:56 - 143495576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-10-11 18:21 - 2015-08-05 15:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-10-11 18:21 - 2015-08-05 15:37 - 00000000 ____D C:\ProgramData\Oracle
2016-10-11 18:21 - 2015-08-05 15:37 - 00000000 ____D C:\Program Files (x86)\Java
2016-10-11 18:18 - 2015-08-05 15:38 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-10-07 11:00 - 2016-10-04 19:59 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-12-13 22:06 - 2015-12-15 21:30 - 0000272 _____ () C:\Users\Hamsterkäfig\AppData\Roaming\gnuplot_history
2015-08-05 16:23 - 2016-04-13 16:51 - 0007602 _____ () C:\Users\Hamsterkäfig\AppData\Local\Resmon.ResmonCfg
2015-08-05 16:17 - 2015-08-05 16:17 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-04-21 12:09 - 2016-04-21 12:09 - 0000133 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc

Einige Dateien in TEMP:
====================
C:\Users\Hamsterkäfig\AppData\Local\Temp\Nexus Mod Manager-0.63.1.exe
C:\Users\Hamsterkäfig\AppData\Local\Temp\Nexus Mod Manager-0.63.6.exe
C:\Users\Hamsterkäfig\AppData\Local\Temp\npp.7.1.Installer.exe
C:\Users\Hamsterkäfig\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Hamsterkäfig\AppData\Local\Temp\nvStInst.exe


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-11-04 16:39

==================== Ende von FRST.txt ============================
         

Ein Bild der Windowsdefendermeldung ist im Anhang.
Angehängte Grafiken
Dateityp: png windowsdefender.png (57,5 KB, 44x aufgerufen)

Alt 06.11.2016, 16:33   #2
asgahrn
 
browsermodifier:win32 suptab!blnk Win 7 - Standard

browsermodifier:win32 suptab!blnk Win 7



Addition.txt:
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 04-11-2016
durchgeführt von Hamsterkäfig (06-11-2016 16:11:11)
Gestartet von C:\Users\Hamsterkäfig\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2015-08-05 14:04:47)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3941584184-2741482839-2338500445-500 - Administrator - Disabled)
Gast (S-1-5-21-3941584184-2741482839-2338500445-501 - Limited - Disabled)
Hamsterkäfig (S-1-5-21-3941584184-2741482839-2338500445-1000 - Administrator - Enabled) => C:\Users\Hamsterkäfig

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Kaspersky Anti-Virus (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AS: Kaspersky Anti-Virus (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.205 - Adobe Systems Incorporated)
Ansel (Version: 375.57 - NVIDIA Corporation) Hidden
ARM Toolchain (x32 Version: 7.0.1004 - Atmel) Hidden
Atmel Driver Files (HKLM-x32\...\{6F7D7F68-DBBF-45E2-ADE8-B78E72C2D1C1}) (Version: 7.1.16 - Atmel Corporation)
Atmel LibUSB0 Driver (x64) (HKLM\...\{C1F86585-CDAC-4ABE-B163-161DDBCC4332}) (Version: 7.0.125 - Atmel)
Atmel Segger USB Drivers (501e) (HKLM-x32\...\{156C0C95-4DDE-4F88-97A0-5EEE22269CE3}) (Version: 7.0.417 - Atmel)
Atmel Software Framework (x32 Version: 7.0.1186 - Atmel) Hidden
Atmel Studio 7.0 (HKLM-x32\...\{9b226216-cf50-48b3-a6e2-3dd5a9b3406d}) (Version: 7.0.1188 - Atmel)
Atmel Studio Development Environment (x32 Version: 7.0.1188 - Atmel) Hidden
Atmel WinDriver (HKLM-x32\...\{FAF2A9D1-33C8-48FF-8FD5-20075A53AB9C}) (Version: 7.0.23 - Atmel)
Atmel WinUSB (HKLM-x32\...\{22D3C72E-42F9-4B0F-B331-E0AA134ADF76}) (Version: 6.2.32 - Atmel)
AVR32 Device Support (x32 Version: 7.0.1183 - Atmel) Hidden
AVR32 Toolchain 7.0 (x32 Version: 7.0.536 - Atmel) Hidden
AVR8 Device Support (x32 Version: 7.0.1188 - Atmel) Hidden
AVR8 Toolchain (x32 Version: 7.0.1185 - Atmel) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts)
Borderlands (HKLM\...\Steam App 8980) (Version:  - Gearbox Software)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
Borderlands: The Pre-Sequel (HKLM\...\Steam App 261640) (Version:  - 2K Australia)
Canon MG5100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5100_series) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 5.18 - Piriform)
chip 1-click download service (HKLM-x32\...\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}) (Version: 3.6.9.0 - Chip Digital GmbH)
Command and Conquer 3: Kane's Wrath (HKLM-x32\...\Steam App 24810) (Version:  - EA Los Angeles)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version:  - Valve)
Dassault Systèmes - VBA 7.1 (HKLM-x32\...\{f5d19b89-fbc9-4c55-a62b-c20bca6c2e18}) (Version: 1.0.0.0 - Dassault Systèmes)
Dassault Systemes Software Prerequisites x86-x64 (HKLM\...\{CF1EB598-B424-436A-B15F-B763846BA970}) (Version: 8.1.3 - Dassault Systemes)
Dassault Systemes Software VC10 Prerequisites x86-x64 (HKLM\...\{7C534131-6431-4ECB-9069-525CB5F75CC8}) (Version: 10.1.1 - Dassault Systemes)
Dassault Systemes Software VC11 Prerequisites x86-x64 (HKLM\...\{C857169D-3F1A-4530-99A0-CAE966CE267E}) (Version: 11.0.1 - Dassault Systemes)
Dassault Systemes Software VC9 Prerequisites x86-x64 (HKLM\...\{F2F2DEA7-36AB-4E13-907C-D8BDE775EF97}) (Version: 9.1.2 - Dassault Systemes)
Dassault Systemes Software Version 5-6 Release 2016 (B26) (HKLM\...\Dassault Systemes B26_0) (Version:  - )
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Dishonored (HKLM-x32\...\Steam App 205100) (Version: 1.0 - Bethesda Softworks)
Don't Starve Together Beta (HKLM-x32\...\Steam App 322330) (Version:  - Klei Entertainment)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Dragon's Dogma: Dark Arisen (HKLM-x32\...\Steam App 367500) (Version:  - Capcom)
Factorio (HKLM\...\Steam App 427520) (Version:  - Wube Software LTD.)
Fallout 4 (HKLM-x32\...\Steam App 377160) (Version:  - Bethesda Game Studios)
Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 3.7.139.918 - Foxit Software Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.2.0.722 - Foxit Software Inc.)
Free YouTube Download (HKLM-x32\...\Free YouTube Download_is1) (Version: 4.1.6.328 - DVDVideoSoft Ltd.)
gnuplot 5.0 patchlevel 1 (HKLM\...\{AB419AC3-9BC1-4EC5-A75B-4D8870DD651F}_is1) (Version: 5.0 patchlevel 1 - gnuplot development team)
Gpg4win (2.3.0) (HKLM-x32\...\GPG4Win) (Version: 2.3.0 - The Gpg4win Project)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.20 - Intel(R) Corporation) Hidden
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Kaspersky Anti-Virus (HKLM-x32\...\InstallWIX_{F575F386-57EF-4943-B003-A13F13B05EEB}) (Version: 16.0.1.445 - Kaspersky Lab)
Kaspersky Anti-Virus (x32 Version: 16.0.1.445 - Kaspersky Lab) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
League of Legends (x32 Version: 4.1.2 - Riot Games) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
LEGO Racers 2 (HKLM-x32\...\{3DD2E9EA-0544-4162-B8BE-E21E994E9F3B}) (Version:  - )
LibreOffice 4.4.5.2 (HKLM-x32\...\{406EECCC-AF98-4F2C-A99F-FED788F7580C}) (Version: 4.4.5.2 - The Document Foundation)
LOOT Version 0.9.0 (HKLM-x32\...\{BF634210-A0D4-443F-A657-0DCE38040374}_is1) (Version: 0.9.0 - LOOT Team)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{B941AFB4-8851-33A1-9E72-0C33D463C41C}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.23107 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{718FFB65-F6E4-4D62-861F-ED10ED32C936}) (Version: 12.0.2402.11 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4048 (HKLM\...\{91415F19-4C22-3609-A105-92ED3522D83C}) (Version: 9.0.30729.4048 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4048 (HKLM-x32\...\{5B1F2843-B379-3FF2-B0D3-64DD143ED53A}) (Version: 9.0.30729.4048 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2015 Shell (Isolated) (HKLM-x32\...\{d2981c27-a434-4c9a-96c7-0209e97c4eac}) (Version: 14.0.23107.10 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Minimum (HKLM-x32\...\Steam App 214190) (Version:  - Human Head Studios)
Mozilla Firefox 49.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 49.0.2 (x86 de)) (Version: 49.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 49.0.2.6136 - Mozilla)
Mozilla Thunderbird 45.4.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 45.4.0 (x86 de)) (Version: 45.4.0 - Mozilla)
NETGEAR A6200 Genie (HKLM-x32\...\{48E61F3E-61D4-42A3-9D29-D0CF40838779}) (Version: 26.0.0.0 - NETGEAR)
NetSpeedMonitor 2.5.4.0 x64 (HKLM\...\{88F41EE2-949B-4B52-933D-C7F8F67BC1D2}) (Version: 2.5.4.0 - Florian Gilles)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.6 - Black Tree Gaming)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.1 - Notepad++ Team)
Nuance PaperPort 14 (HKLM-x32\...\{35524018-624B-4596-8CD3-059AD2C770B2}) (Version: 14.1.0000 - Nuance Communications, Inc.)
Nuance PDF Create 7 (HKLM\...\{CD7A262C-287E-41DD-A0F7-733856252C6B}) (Version: 7.10.2364 - Nuance Communications, Inc)
Nuance PDF Create 7 (HKLM-x32\...\{CD7A262C-287E-41DD-A0F7-733856252C6B}) (Version: 7.10.2364 - Nuance Communications, Inc)
Nuance PDF Viewer Plus (HKLM-x32\...\{042A6F10-F770-4886-A502-B795DCF2D3B5}) (Version: 7.10.3211 - Nuance Communications, Inc)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 375.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 375.57 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.0.7.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.0.7.34 - NVIDIA Corporation)
NVIDIA Grafiktreiber 375.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.57 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.0.7.34 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.0.0.0 - NVIDIA Corporation) Hidden
Octave 4.0.3 (HKLM-x32\...\Octave-4.0.3) (Version: 4.0.3 - GNU Octave)
Origin (HKLM-x32\...\Origin) (Version: 10.2.1.38915 - Electronic Arts, Inc.)
ORION: Prelude (HKLM-x32\...\Steam App 104900) (Version:  - Spiral Game Studios)
Paladins (HKLM\...\Steam App 444090) (Version:  - Hi-Rez Studios)
PaperPort Anywhere 1.1.4310.24706 powered by OfficeDrop (HKLM\...\{52357C6C-FE7F-4E8C-B045-EDE5146A1F9C}) (Version: 1.1.4310.24706 - OfficeDrop)
PaperPort Image Printer 64-bit (HKLM\...\{715CAACC-579B-4831-A5F4-A83A8DE3EFE2}) (Version: 14.00.0001 - Nuance Communications, Inc.)
Paragon Partition Manager™ 2014 Free (HKLM-x32\...\{47E5588F-C3A0-11DE-9857-005056C00008}) (Version: 90.00.0003 - Paragon Software)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
PAYDAY: The Heist (HKLM\...\Steam App 24240) (Version:  - OVERKILL Software)
Pixel Dungeon (HKLM\...\Steam App 365900) (Version:  - Retronic Games)
PlanetSide 2 (HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\...\SOE-PlanetSide 2) (Version: 1.0.3.183 - Sony Online Entertainment)
ProjectLibre (HKLM-x32\...\{8E2A530F-ABE9-45B4-B4EA-B9DF56698376}) (Version: 1.6.2.0 - ProjectLibre)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7266 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.0 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.0 - VS Revo Group, Ltd.)
SAM Device Support (x32 Version: 7.0.1186 - Atmel) Hidden
Scansoft PDF Create (x32 Version:  - ) Hidden
SHIELD Streaming (Version: 7.1.0320 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.0.7.34 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version:  - 2K Games, Inc.)
SketchUp-Import 2016 (HKLM-x32\...\{C769FB7C-1F55-4B31-9A2A-21CEC50F4F92}) (Version: 2.0.0 - Autodesk)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.28 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.28.101 - Skype Technologies S.A.)
SlimDX Runtime .NET 2.0 (January 2012) (HKLM-x32\...\{014A2868-BE56-4888-A16C-693989B8F153}) (Version: 2.0.13.43 - SlimDX Group)
SMITE (HKLM\...\Steam App 386360) (Version:  - Hi-Rez Studios)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Styx: Master of Shadows (HKLM-x32\...\Steam App 242640) (Version:  - Cyanide Studio)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 1.0.0.0 - Zenimax Online Studios)
The Elder Scrolls Online: Tamriel Unlimited (HKLM-x32\...\Steam App 306130) (Version:  - Zenimax Online Studios)
The Witcher 3: Wild Hunt (HKLM\...\Steam App 292030) (Version:  - CD PROJEKT RED)
TITANWOLF GAUNTLET GAMING MOUSE (HKLM-x32\...\{F84C90F5-47CD-4354-8C4F-243CB74F3A7E}_is1) (Version: 1.0 - TITANWOLF)
Tom Clancy's Ghost Recon Phantoms - EU (HKLM-x32\...\Steam App 272350) (Version:  - Ubisoft Singapore)
Torchlight II (HKLM\...\Steam App 200710) (Version:  - Runic Games)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Warframe (HKLM-x32\...\Steam App 230410) (Version:  - Digital Extremes)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
Zombie Army Trilogy (HKLM-x32\...\Steam App 301640) (Version:  - Rebellion)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0C264AD2-7F07-402A-89D9-269E4F099856} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-09-30] (NVIDIA Corporation)
Task: {0CEDA7CE-E474-4775-AC0A-1F24315EDC6F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-09-30] (NVIDIA Corporation)
Task: {255ADE3E-DB47-4DE5-A3AC-341587558D10} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-26] (Adobe Systems Incorporated)
Task: {2F615811-0A90-481F-87AE-3256F88D5EF0} - System32\Tasks\automatisch aus => C:\Windows\System32\shutdown.exe [2009-07-14] (Microsoft Corporation)
Task: {355CA036-2DAB-452B-AE11-E92BA9720BEA} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-09-30] (NVIDIA Corporation)
Task: {5167B7D4-CD14-4F87-912C-C34D269D41B6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-09-30] (NVIDIA Corporation)
Task: {7CAB3194-41AD-449B-9527-19E19F093801} - System32\Tasks\{52F1F289-0C77-4332-AC57-B0472F18AB24} => pcalua.exe -a "E:\Steam\steamapps\common\Left 4 Dead 2\bin\addoninstaller.exe" -d "E:\Steam\steamapps\common\Left 4 Dead 2" -c /register
Task: {829BC014-165E-45B6-8000-4169ADCC3556} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-05-13] (Piriform Ltd)
Task: {8B0EE932-BDC0-444E-9815-B7D6D49055E0} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-09-30] (NVIDIA Corporation)
Task: {9D2D16A7-AE9A-4D77-A0B4-09C8A75C0011} - System32\Tasks\{3D9E4A3D-40DE-449E-821E-ADEFF5330C45} => Firefox.exe hxxp://ui.skype.com/ui/0/7.25.0.106/de/abandoninstall?page=tsProgressBar
Task: {EA4C4675-E435-4307-9219-085120E080FF} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-09-30] (NVIDIA Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-11-24 19:32 - 2015-11-24 19:32 - 00216576 _____ () C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
2016-10-18 19:37 - 2016-09-30 05:25 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-10-18 19:37 - 2016-09-30 05:25 - 04490808 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-10-18 19:37 - 2016-09-30 05:25 - 00419896 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2016-10-18 06:18 - 2016-10-18 20:52 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-10-15 10:36 - 2015-08-10 17:21 - 03317248 _____ () C:\Program Files (x86)\TITANWOLF\GAUNTLET GAMING MOUSE\TTFMon.exe
2015-08-06 20:28 - 2015-08-06 20:28 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2015-08-06 08:08 - 2012-09-24 16:28 - 00029984 _____ () C:\Program Files (x86)\NETGEAR\A6200\WifiService.exe
2015-12-22 01:47 - 2015-12-22 01:47 - 00794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\kpcengine.2.3.dll
2016-04-09 17:32 - 2016-03-28 23:06 - 00110952 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
2016-04-09 17:32 - 2016-03-28 23:06 - 00253800 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\collector.dll
2016-04-09 17:32 - 2016-03-28 23:06 - 00295272 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\stat.dll
2016-04-09 17:32 - 2016-03-28 23:06 - 00104296 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2016-04-09 17:32 - 2016-03-28 23:06 - 00020328 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2016-04-09 17:32 - 2016-03-28 23:06 - 00044392 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2015-11-24 19:20 - 2015-11-24 19:20 - 00221696 _____ () C:\Program Files (x86)\GNU\GnuPG\libksba-8.dll
2015-11-24 19:14 - 2015-11-24 19:14 - 00087552 _____ () C:\Program Files (x86)\GNU\GnuPG\libgpg-error-0.dll
2015-11-24 19:09 - 2015-11-24 19:09 - 00050176 _____ () C:\Program Files (x86)\GNU\GnuPG\libw32pth-0.dll
2015-11-24 19:20 - 2015-11-24 19:20 - 00073728 _____ () C:\Program Files (x86)\GNU\GnuPG\libassuan-0.dll
2015-11-24 19:22 - 2015-11-24 19:22 - 00751104 _____ () C:\Program Files (x86)\GNU\GnuPG\libgcrypt-20.dll
2016-10-18 19:37 - 2016-09-30 05:25 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-10-15 10:36 - 2014-05-19 18:10 - 00028160 _____ () C:\Program Files (x86)\TITANWOLF\GAUNTLET GAMING MOUSE\uiHook.dll
2016-10-18 19:37 - 2016-09-30 05:25 - 60819000 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2016-10-18 19:37 - 2016-09-29 18:20 - 00500792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-10-18 19:37 - 2016-09-29 18:20 - 00255936 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-10-18 19:37 - 2016-09-29 18:20 - 02801208 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-10-18 19:37 - 2016-09-29 18:20 - 00244672 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-10-18 19:37 - 2016-09-29 18:20 - 00430648 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-10-18 19:37 - 2016-09-29 18:20 - 00336832 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-10-18 19:37 - 2016-09-29 18:20 - 00373696 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\TEMP:FD9CE1F3 [136]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)

HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com
IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com
IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-19\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-19\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-19\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-19\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-20\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-20\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-20\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-20\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\...\sony.com -> sony.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3941584184-2741482839-2338500445-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Hamsterkäfig\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 149.205.5.81 - 149.205.5.82
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Steam => "E:\Steam\steam.exe" -silent

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{91150D98-A9FF-4DCE-97AE-0DCF8E921684}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5A6000E2-A218-4582-BE6F-05D14D05463A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4C5CB490-709D-4123-A4EB-866F0F2A1B12}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{30FEB7DD-1D52-4AB0-B713-32C746B91223}] => (Allow) E:\Steam\Steam.exe
FirewallRules: [{60C06911-7433-41FD-A6F7-B4A688025712}] => (Allow) E:\Steam\Steam.exe
FirewallRules: [{1DC99595-93D2-4EF4-8B8C-830A297C9CFC}] => (Allow) E:\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{F3788DAC-1CD9-4AD3-BDE1-07CF35445425}] => (Allow) E:\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [TCP Query User{F7711BB6-3A0E-423C-9D9A-800BFA45BDF8}E:\planetside 2\planetside2_x64.exe] => (Allow) E:\planetside 2\planetside2_x64.exe
FirewallRules: [UDP Query User{BF12B9FB-F89B-4123-8542-22D98917900C}E:\planetside 2\planetside2_x64.exe] => (Allow) E:\planetside 2\planetside2_x64.exe
FirewallRules: [{43AAD8F7-A43C-4CFF-A1B2-DD78CAE9A55E}] => (Allow) E:\Origin\Origin Spiele\Battlefield 3\bf3.exe
FirewallRules: [{1BF4CBD0-3EE9-4A70-BED1-106111ACE668}] => (Allow) E:\Origin\Origin Spiele\Battlefield 3\bf3.exe
FirewallRules: [{B4A648A2-33AE-467B-8B31-AB9A6D299FC5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{D30495AB-C9A4-4EBF-B406-91D6EA27C5BF}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{CAB64D02-0802-4D72-B58C-D9BD9A07854B}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{5BFEF73D-28CB-4B36-A8F6-260559F93B08}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{C58D3350-802D-4D39-9ED4-B31FF97BDA47}] => (Allow) E:\Origin\Origin Spiele\Battlefield 4\bf4_x86.exe
FirewallRules: [{9B5BD1FC-BF71-4D4F-B3A3-9B4568C31745}] => (Allow) E:\Origin\Origin Spiele\Battlefield 4\bf4_x86.exe
FirewallRules: [{99052ADC-78C6-480D-B902-E4DF50F49682}] => (Allow) E:\Origin\Origin Spiele\Battlefield 4\bf4.exe
FirewallRules: [{0CEE27A8-2A7A-43CE-8F1F-62AB8BDA8B6C}] => (Allow) E:\Origin\Origin Spiele\Battlefield 4\bf4.exe
FirewallRules: [{73CFE37E-CF60-4038-963F-2AB311C52DC2}] => (Allow) E:\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{09F44E3A-9F30-4D14-8AFF-2057B06D202B}] => (Allow) E:\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{60A76685-04D3-4E38-B91D-C72AB00370D8}] => (Allow) E:\Steam\steamapps\common\Command and Conquer 3 - Kane's Wrath\CNC3EP1.exe
FirewallRules: [{FF5A74D8-1FDF-492E-8090-3AD800820BEA}] => (Allow) E:\Steam\steamapps\common\Command and Conquer 3 - Kane's Wrath\CNC3EP1.exe
FirewallRules: [{EED482E8-A4BA-4274-83C5-FE5FF3A8D188}] => (Allow) E:\Steam\steamapps\common\Command and Conquer 3 - Kane's Wrath\RetailExe\1.2\cnc3ep1.dat
FirewallRules: [{3667F5E0-B981-4C02-928E-3ED476B2062A}] => (Allow) E:\Steam\steamapps\common\Tom Clancy's Ghost Recon Phantoms - EU\Launcher.exe
FirewallRules: [{7885B024-EF52-441A-BC84-92F67FA39364}] => (Allow) E:\Steam\steamapps\common\Tom Clancy's Ghost Recon Phantoms - EU\Launcher.exe
FirewallRules: [{CA3B7836-539B-4B23-AF2D-86BED05A55C3}] => (Allow) E:\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{CC64CD4E-EF9D-4FE7-845C-92DCD98C6818}] => (Allow) E:\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{D36EA140-83D2-4A3F-9CCA-A7DC972A9E20}] => (Allow) E:\Steam\steamapps\common\Orion Dino Beatdown\Binaries\Win32\DinoHordeGame.exe
FirewallRules: [{83840B40-3CD4-42B3-91CB-302D63657652}] => (Allow) E:\Steam\steamapps\common\Orion Dino Beatdown\Binaries\Win32\DinoHordeGame.exe
FirewallRules: [TCP Query User{529E4CB8-4D89-47AB-8DC3-7878E2EE38D5}E:\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe] => (Allow) E:\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe
FirewallRules: [UDP Query User{A727FFFD-94CD-4898-BD44-9D10BD8C25C4}E:\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe] => (Allow) E:\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe
FirewallRules: [{F090ACB0-F8A7-4DEB-8771-213C0584DE5C}] => (Allow) E:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{2F655520-0846-4A57-9135-977BB9100691}] => (Allow) E:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [TCP Query User{1DF004A4-689C-41DD-93FF-D2EACAB89779}E:\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) E:\steam\steamapps\common\terraria\terrariaserver.exe
FirewallRules: [UDP Query User{E4EF52C6-2411-4A66-9600-047AF596F77B}E:\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) E:\steam\steamapps\common\terraria\terrariaserver.exe
FirewallRules: [{9BE1C19A-16E6-405F-89FE-C493E15383D7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{11379773-0BB6-48BE-8779-14FD1436AC03}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0637BF6A-B9D4-464D-B3AC-B56E6A52D159}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{41BCFC81-03EF-4B78-9F8E-9C5905F1DCEE}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E5D87D78-43F4-44D5-BC5B-DD9B4ACDE140}] => (Allow) E:\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{D4D505FF-9ED5-42AA-AF7B-A3D557DF3E6D}] => (Allow) E:\Steam\steamapps\common\Fallout 4\Fallout4Launcher.exe
FirewallRules: [{5544F210-0AAF-4E63-ABF2-5895E14B1A16}] => (Allow) E:\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{B3AD0B1C-3CBB-4BDA-AC98-A5FCDE510FAE}] => (Allow) E:\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{5EB0CE64-3335-4492-86E4-43C2B2574FE0}] => (Allow) E:\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{428540D2-5C04-4F1E-AF47-DFC8CEC1E483}] => (Allow) E:\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{481358C4-A4B2-4C12-BBBB-C40CFCC3760D}] => (Allow) E:\Steam\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{0A21C582-6A0F-4602-BC73-5774E458DDE2}] => (Allow) E:\Steam\steamapps\common\Dishonored\Binaries\Win32\Dishonored.exe
FirewallRules: [{87657D93-555F-427C-BDC1-97D11BB4809C}] => (Allow) E:\Steam\steamapps\common\Styx\Binaries\Win64\StyxGame.exe
FirewallRules: [{8B5244A2-1AF6-4FC8-878D-7254E8D80904}] => (Allow) E:\Steam\steamapps\common\Styx\Binaries\Win64\StyxGame.exe
FirewallRules: [{61A9311F-CB7D-471B-AFBF-ABD1E7B891BC}] => (Allow) E:\Origin\Origin Spiele\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{AEA29E45-0222-4BD0-AED9-B971B6F4656D}] => (Allow) E:\Origin\Origin Spiele\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{EE9C6F17-149C-4463-A9A9-311691C2BB12}] => (Allow) E:\Origin\Origin Spiele\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{8BCBE71A-807D-4D7E-B341-079C8E440C02}] => (Allow) E:\Origin\Origin Spiele\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{E2689BFA-0382-4DD7-9217-C531103DAC37}] => (Allow) E:\Steam\steamapps\common\Zenimax Online\zosSteamStarter.exe
FirewallRules: [{46FF2DAC-B2C7-4257-9537-1F1ABF75ADD1}] => (Allow) E:\Steam\steamapps\common\Zenimax Online\zosSteamStarter.exe
FirewallRules: [{658D6615-B5EA-41AF-A59D-1A0DCF45B6D1}] => (Allow) E:\Steam\steamapps\common\Zombie Army Trilogy\Launcher\ZATLauncher.exe
FirewallRules: [{C377195B-2028-4BA0-8AC2-A4C8893C444B}] => (Allow) E:\Steam\steamapps\common\Zombie Army Trilogy\Launcher\ZATLauncher.exe
FirewallRules: [{857D827D-EFD9-44BF-BFFA-4F9081D31CC7}] => (Allow) E:\Steam\steamapps\common\DDDA\DDDA.exe
FirewallRules: [{FFF676EE-6D3C-4AD8-8780-A646DE731FC6}] => (Allow) E:\Steam\steamapps\common\DDDA\DDDA.exe
FirewallRules: [{0005F634-DD02-4027-A51E-214256D88848}] => (Allow) E:\Steam\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{F935944F-068D-4467-8E0D-FF4BE1CA42BE}] => (Allow) E:\Steam\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [TCP Query User{EFD8F0B8-000E-4971-BEA2-1D4D3A4C4A53}E:\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) E:\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [UDP Query User{3548F980-5338-4A56-B460-03BEB3BF53E4}E:\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) E:\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [{354DBE83-6944-44D2-A334-234FCC802119}] => (Allow) E:\Steam\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{21289153-9134-42B0-AB73-2BF39134CAF4}] => (Allow) E:\Steam\steamapps\common\Torchlight II\ModLauncher.exe
FirewallRules: [{4C9B14FC-251C-43DE-8FCD-69B0382BC0C8}] => (Allow) E:\Steam\steamapps\common\Borderlands\Binaries\Borderlands.exe
FirewallRules: [{70BD89A8-2B37-4BE8-97B0-8AAD489AC66C}] => (Allow) E:\Steam\steamapps\common\Borderlands\Binaries\Borderlands.exe
FirewallRules: [{F741EA7B-1DCD-4C64-AA12-37D9CB7A024A}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{5649502A-A60B-416F-9C96-701F27F43372}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{7A088D9B-9B30-4CED-8BB6-BE46DBB664B9}E:\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe] => (Allow) E:\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [UDP Query User{A1EE6276-D777-45B4-8F7E-E5CFDCDA9E0C}E:\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe] => (Allow) E:\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [{E35C0FDD-56FC-4C21-A10A-5B3E087D7B3F}] => (Block) E:\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [{11915212-838F-47D5-BDFE-E42BFD818C8E}] => (Block) E:\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [{15535043-50C0-4E99-B31B-35A436F6C677}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{AC9F9CCD-F633-418C-909E-C8622B63CB03}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{E0563C24-C421-466D-9AA2-584D0DD69236}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{0648857C-FBC8-49F9-A492-F23E01E84745}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{1F36950A-0E17-44CE-8AC1-1A4590988015}] => (Allow) E:\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{B5B434D8-E0A7-4128-9F1A-68A2FDEA9C12}] => (Allow) E:\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{DF2EE27B-D9BA-4BA1-A8C5-6A4AF959145F}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{394AADC6-B009-41B4-9AAC-0EE135D0F410}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{F00846EF-676C-4E77-83D4-8991FBAE026A}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{000DAD5E-B658-4353-95CF-F9114A16EBF8}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{F06FF5A6-96E3-4B02-A7D6-BB145B320EF3}] => (Allow) E:\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{6CA7059C-C6FD-4E46-B2A8-AEC712E71D1C}] => (Allow) E:\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [TCP Query User{18578A5A-C5A7-466A-BEB3-09F29F89B458}E:\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) E:\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [UDP Query User{E1695B2A-43C0-4E2A-8F6A-8ECE50BF51B1}E:\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) E:\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [{5FF1E666-A2CE-446C-A392-C4CCD5CAA17D}] => (Allow) E:\Steam\steamapps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [{388A349B-AC0B-4A76-A048-E1AECB32E450}] => (Allow) E:\Steam\steamapps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [{AA338F33-CD03-41A3-9301-5AFEE6FBD9E8}] => (Allow) E:\Steam\steamapps\common\Minimum\Binaries\Win32\Minimum.exe
FirewallRules: [{F632585E-8D75-4252-ADBB-7085716DB5BD}] => (Allow) E:\Steam\steamapps\common\Minimum\Binaries\Win32\Minimum.exe
FirewallRules: [TCP Query User{B1C360F3-B2C7-4BFA-8C83-B13BFCEE8A7C}E:\diablo\diablo iii\diablo iii.exe] => (Allow) E:\diablo\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{28837865-29F9-440B-B586-1343BC2EE2EB}E:\diablo\diablo iii\diablo iii.exe] => (Allow) E:\diablo\diablo iii\diablo iii.exe
FirewallRules: [{9255E412-A659-4D53-B01F-6BC00663B830}] => (Block) E:\diablo\diablo iii\diablo iii.exe
FirewallRules: [{733729B0-D370-4AC0-9DB3-64AB149A26F7}] => (Block) E:\diablo\diablo iii\diablo iii.exe
FirewallRules: [{A4BC28F0-7990-486C-80B6-745680E4A078}] => (Allow) E:\Steam\steamapps\common\Pixel Dungeon\PD.exe
FirewallRules: [{A87196D2-4E6D-42EC-AF03-3EAF6BEF068F}] => (Allow) E:\Steam\steamapps\common\Pixel Dungeon\PD.exe
FirewallRules: [TCP Query User{FF36509D-0462-4454-A406-643C2C11F1F1}C:\program files (x86)\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{E06644D0-F3FD-432E-9143-311EEFF501C4}C:\program files (x86)\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe
FirewallRules: [{DA037008-6792-48E8-A4AC-8277E610C6AE}] => (Block) C:\program files (x86)\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe
FirewallRules: [{EAC6654C-D1F5-4274-A834-8FA562852056}] => (Block) C:\program files (x86)\heroes of the storm\versions\base46889\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{C24525A2-DBE0-4231-9BF1-65BB8173027D}D:\ansys inc\shared files\licensing\winx64\ansysli_client.exe] => (Allow) D:\ansys inc\shared files\licensing\winx64\ansysli_client.exe
FirewallRules: [UDP Query User{F32E807D-252E-4ECE-896A-01CCB2ECE4EA}D:\ansys inc\shared files\licensing\winx64\ansysli_client.exe] => (Allow) D:\ansys inc\shared files\licensing\winx64\ansysli_client.exe
FirewallRules: [TCP Query User{DAE1E096-D489-455A-801F-576CC595D7D1}D:\ansys inc\v172\framework\bin\win64\ansysfww.exe] => (Allow) D:\ansys inc\v172\framework\bin\win64\ansysfww.exe
FirewallRules: [UDP Query User{D4638E42-E237-4239-AC9E-F5840F45727D}D:\ansys inc\v172\framework\bin\win64\ansysfww.exe] => (Allow) D:\ansys inc\v172\framework\bin\win64\ansysfww.exe
FirewallRules: [{244B1CF8-9A86-4745-9D4F-B3EDE9AC53C2}] => (Block) D:\ansys inc\v172\framework\bin\win64\ansysfww.exe
FirewallRules: [{D991A3ED-F07B-41FD-BA97-36146D4BF614}] => (Block) D:\ansys inc\v172\framework\bin\win64\ansysfww.exe
FirewallRules: [{0CD66402-53D5-41A0-9FBE-2CD198C43D8D}] => (Block) D:\ansys inc\shared files\licensing\winx64\ansysli_client.exe
FirewallRules: [{AFAF217D-AA3F-461E-9D62-E56430584844}] => (Block) D:\ansys inc\shared files\licensing\winx64\ansysli_client.exe
FirewallRules: [TCP Query User{5AAC69D8-B94A-4A98-B833-7AC2B405CA1B}D:\ansys inc\v172\rsm\bin\ans.rsm.jmhost.exe] => (Allow) D:\ansys inc\v172\rsm\bin\ans.rsm.jmhost.exe
FirewallRules: [UDP Query User{442432A1-4E0E-45B5-A4D6-7EC2F3224633}D:\ansys inc\v172\rsm\bin\ans.rsm.jmhost.exe] => (Allow) D:\ansys inc\v172\rsm\bin\ans.rsm.jmhost.exe
FirewallRules: [{5E0D3433-CE20-483F-B20D-FB8956999BBB}] => (Block) D:\ansys inc\v172\rsm\bin\ans.rsm.jmhost.exe
FirewallRules: [{C16EC0D9-3EE5-423C-994D-BB6EF3E0CD25}] => (Block) D:\ansys inc\v172\rsm\bin\ans.rsm.jmhost.exe
FirewallRules: [TCP Query User{41C3FDA7-5718-46D3-B665-068FC18D9D13}D:\ansys inc\v172\aisol\bin\winx64\ansyswbu.exe] => (Allow) D:\ansys inc\v172\aisol\bin\winx64\ansyswbu.exe
FirewallRules: [UDP Query User{B3673729-C46F-49B5-96D8-2B45102F729D}D:\ansys inc\v172\aisol\bin\winx64\ansyswbu.exe] => (Allow) D:\ansys inc\v172\aisol\bin\winx64\ansyswbu.exe
FirewallRules: [{337CC8ED-BEBF-4675-BAEB-B407CA2DE761}] => (Block) D:\ansys inc\v172\aisol\bin\winx64\ansyswbu.exe
FirewallRules: [{3AE6DB00-9B34-4F1C-B7B1-8AE6BD9CAB73}] => (Block) D:\ansys inc\v172\aisol\bin\winx64\ansyswbu.exe
FirewallRules: [TCP Query User{49CD5948-3DCC-475C-A625-5191111CD2CF}D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe] => (Allow) D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe
FirewallRules: [UDP Query User{A7DEA58B-DF3E-42DC-ACCA-F1451A48E9F4}D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe] => (Allow) D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe
FirewallRules: [TCP Query User{2BC61405-EA72-4EAF-AA27-42C036A71E6B}D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe] => (Allow) D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe
FirewallRules: [UDP Query User{41C6381B-4CCF-4E53-AB60-4DF4F7243360}D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe] => (Allow) D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe
FirewallRules: [{C375169C-A2E1-4E39-A06A-8F647C95713C}] => (Block) D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe
FirewallRules: [{CCDB5EF6-5424-44D8-827F-1F7A13249BE1}] => (Block) D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\pmi_proxy.exe
FirewallRules: [{2F9FD911-3758-4493-BFDA-58185C963174}] => (Block) D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe
FirewallRules: [{7C28F07B-B292-45B6-A423-F6493F639408}] => (Block) D:\ansys inc\v172\commonfiles\mpi\intel\5.0.3.048\winx64\bin\mpiexec.exe
FirewallRules: [{4183173B-0A10-4C4D-B999-4EF2BA6EE6C4}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{ECFAB8EA-5659-4271-A907-75BE515DDDAE}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe
FirewallRules: [{2A3DD070-EF85-4BBC-A4DD-96E208E0A9D8}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{89E86F87-35F3-4CDB-BCEE-1A1AC8DDF2EF}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [TCP Query User{4C76E020-B796-4032-9284-EA125623D675}D:\studium\catia v5-r2016\win_b64\code\bin\orbixd.exe] => (Allow) D:\studium\catia v5-r2016\win_b64\code\bin\orbixd.exe
FirewallRules: [UDP Query User{70F4C6E0-5AB0-4111-A05C-592F56073D17}D:\studium\catia v5-r2016\win_b64\code\bin\orbixd.exe] => (Allow) D:\studium\catia v5-r2016\win_b64\code\bin\orbixd.exe
FirewallRules: [TCP Query User{5EBBCF33-E796-4211-B06A-EE130F25165C}D:\studium\catia v5-r2016\win_b64\code\bin\cnext.exe] => (Allow) D:\studium\catia v5-r2016\win_b64\code\bin\cnext.exe
FirewallRules: [UDP Query User{8F093FA1-05C6-4403-BC6D-F0DCB90959A1}D:\studium\catia v5-r2016\win_b64\code\bin\cnext.exe] => (Allow) D:\studium\catia v5-r2016\win_b64\code\bin\cnext.exe
FirewallRules: [{1E714A6A-16E9-466F-9B1B-20EC205673E4}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{E05C0623-4CF5-4938-AAE2-744091A7E438}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7E34126C-562F-45F5-BB82-C4A505EA415E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{FA28B599-36E4-4278-B420-8A4B64829744}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{505AF9E7-F6C5-40E1-8603-6EEE4A87334F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{95C92A15-2F3E-460C-B326-9555BB5D0727}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4461C59E-55B3-41C3-9488-AF1697EA7505}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{04BCB44A-3DE6-48E2-BE1F-D8ACEA24E0BC}C:\program files (x86)\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{FCAAF7D9-049C-483E-9C13-7490DA9EC9CE}C:\program files (x86)\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base47219\heroesofthestorm_x64.exe
FirewallRules: [{899B18EE-E3E2-4023-97D0-6E25D1CCC799}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{91682AC0-9CCE-43D7-A9F6-AFC47DF14977}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [TCP Query User{09986757-86D9-4DAC-B1FC-CE150E11577E}E:\heroes of the storm\battle.net\battle.net.8098\battle.net.exe] => (Allow) E:\heroes of the storm\battle.net\battle.net.8098\battle.net.exe
FirewallRules: [UDP Query User{A261645E-3858-4A39-ABA0-7C57FA835F83}E:\heroes of the storm\battle.net\battle.net.8098\battle.net.exe] => (Allow) E:\heroes of the storm\battle.net\battle.net.8098\battle.net.exe
FirewallRules: [{C60FB0B0-3EA4-4D40-BD9F-562F21441F75}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{A62BD035-7EC6-43AE-85E9-59A17D4C8942}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{09008307-2886-4BFE-BD0E-7BD36996D984}] => (Allow) D:\Studium\Atmel Studio\7.0\atbackend\atbackend.exe
FirewallRules: [{C6F126DE-1E32-4F8A-97AE-D604E3B2D171}] => (Allow) D:\Studium\Atmel Studio\7.0\AtmelStudio.exe
FirewallRules: [{49A50C6E-10CC-4339-85DE-2796B93D0760}] => (Allow) E:\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{8357A6C9-0C88-4995-B8ED-02D1C9E3CDCA}] => (Allow) E:\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [TCP Query User{6CFBD6B2-2DA1-41E2-ADC4-85C953010BC0}E:\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) E:\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [UDP Query User{B9952F95-2616-4F6F-9D97-86D743B7CED6}E:\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) E:\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [{C6BC6E21-852F-4098-A8FD-EB210E952244}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{2BED398E-D2DE-4B20-940C-095F79E53D92}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D5D4DA72-4874-4E99-9028-E61B9349995E}] => (Allow) E:\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{DBBC672A-92A5-4529-9566-A26BDFE45BED}] => (Allow) E:\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{E83E2B17-C0CF-42CD-A1D9-3BB6B099569A}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C4E9EF6D-AAD9-45C3-AC1B-D5F6A82BEB1F}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{ECAEC88D-FF4F-4BC5-9C05-015EA71FE282}] => (Allow) E:\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{E971BD9C-E06E-489C-AE49-31D75171C172}] => (Allow) E:\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{E447D1C2-6651-44DD-9FBB-B9B775B0F1A9}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{3377BB54-93CE-432D-94F5-FAC1AA4AF444}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [TCP Query User{784E1DB7-D122-4E5F-80EA-5CBF15490655}C:\program files (x86)\heroes of the storm\versions\base47479\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base47479\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{63CCDAC8-2A4F-481B-ABE9-21A76DDE7F1C}C:\program files (x86)\heroes of the storm\versions\base47479\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base47479\heroesofthestorm_x64.exe
FirewallRules: [{F237E86E-B692-48BC-8CC4-0AFB86643E57}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{170631C9-F623-49D9-A381-F5D458201DE3}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{7FE2E184-54FF-4B43-BBD5-63CD75CA745E}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{C0F21356-9795-44EE-90F1-443E08F5B2EE}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{36DA419F-60B1-476B-B625-3AE4F87A5D2F}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{567F81A9-CBB1-4A77-B1D2-760224CDE6E1}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{69C37BC1-973A-4025-8915-26E5FEF0ED63}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{8BDDFD9A-C52B-4B08-9562-951D216892A2}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{001D78C6-5E92-4681-89D7-261AD21A273F}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{03A64E09-6252-460D-BB74-CF91C8E20F7B}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{19AF523C-C541-462D-9405-69833BCFE21F}] => (Allow) E:\Steam\steamapps\common\SMITE\Binaries\Win32\HirezBridge.exe
FirewallRules: [{E5605C52-58BC-4300-BF69-4BFCCBF6EDBD}] => (Allow) E:\Steam\steamapps\common\SMITE\Binaries\Win32\HirezBridge.exe
FirewallRules: [TCP Query User{0B7FCD59-8AE9-464D-BF16-4A8E8F87AB2D}E:\steam\steamapps\common\smite\binaries\win32\smite.exe] => (Allow) E:\steam\steamapps\common\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{C9BA5ED8-D346-44A0-AB19-E99E0615222A}E:\steam\steamapps\common\smite\binaries\win32\smite.exe] => (Allow) E:\steam\steamapps\common\smite\binaries\win32\smite.exe
FirewallRules: [{BDC4A0D5-06B8-4DC1-8AD3-5A5FC032F1C1}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{72057A90-BB16-4326-8E2B-8A97A88BA633}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{BDB414F6-E723-460D-8C58-60A4172B708E}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{D215BEE4-C48F-46A2-90E9-DF13C2C04874}] => (Allow) E:\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe
FirewallRules: [{00F8C51C-9789-4E65-A7F0-7886916CB52F}] => (Allow) E:\Steam\steamapps\common\Factorio\bin\x64\factorio.exe
FirewallRules: [{91D60BBD-B978-4D29-9359-830284A9F5F9}] => (Allow) E:\Steam\steamapps\common\Factorio\bin\x64\factorio.exe

==================== Wiederherstellungspunkte =========================

23-10-2016 09:47:54 Installed Hi-Rez Studios Games
23-10-2016 09:48:38 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
23-10-2016 09:48:41 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
23-10-2016 09:48:46 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
23-10-2016 09:48:51 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610
23-10-2016 09:48:56 DirectX wurde installiert
25-10-2016 05:59:55 Windows Update
31-10-2016 13:03:13 Revo Uninstaller's restore point - The Elder Scrolls V: Skyrim
31-10-2016 13:03:48 Revo Uninstaller's restore point - The Elder Scrolls V: Skyrim
01-11-2016 07:02:42 Windows Update
06-11-2016 11:27:28 Revo Uninstaller's restore point - The Elder Scrolls V: Skyrim
06-11-2016 15:06:47 Windows Defender Checkpoint

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: LogMeIn Kernel Information Provider
Description: LogMeIn Kernel Information Provider
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: LMIInfo
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Unknown Device
Description: Unknown Device
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard-USB-Hostcontroller)
Service: 
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. 


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (11/06/2016 02:26:47 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for E:\Steam\bin\steamwebhelper.exe

Error: (11/06/2016 11:27:28 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005, Zugriff verweigert
.
Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess.


Vorgang:
   Generatordaten werden gesammelt

Kontext:
   Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
   Generatorname: System Writer
   Generatorinstanz-ID: {58cd42e9-3263-4b1f-b9cf-ad57fb562f8a}

Error: (11/06/2016 11:24:24 AM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for E:\Steam\bin\steamwebhelper.exe

Error: (11/05/2016 06:16:00 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm CNEXT.exe, Version 5.26.0.15261 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 4dfc

Startzeit: 01d237881f747bb0

Endzeit: 8

Anwendungspfad: D:\Studium\CATIA V5-R2016\win_b64\code\bin\CNEXT.exe

Berichts-ID: 83cacf07-a37b-11e6-bb2e-fcaa1473408c

Error: (11/05/2016 09:34:16 AM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for E:\Steam\bin\steamwebhelper.exe

Error: (11/04/2016 03:28:46 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for E:\Steam\bin\steamwebhelper.exe

Error: (11/04/2016 07:04:39 AM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for E:\Steam\bin\steamwebhelper.exe

Error: (11/03/2016 05:40:06 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for E:\Steam\bin\steamwebhelper.exe

Error: (11/03/2016 12:49:17 PM) (Source: chip 1-click download service) (EventID: 0) (User: )
Description: |ERORRS=;(380) error at getOrdersForVersion:Der Remotename konnte nicht aufgelöst werden: 'service.chip-secured-download.de'
;(180) error at GetHttpWebRequest: 1Der Remotename konnte nicht aufgelöst werden: 'api.chip-secured-download.de'
;(480) Could not load new Downlaoder

Error: (11/03/2016 07:14:14 AM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for E:\Steam\bin\steamwebhelper.exe


Systemfehler:
=============
Error: (11/06/2016 03:22:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Origin Web Helper Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (11/06/2016 03:22:47 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Origin Web Helper Service erreicht.

Error: (11/06/2016 03:22:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "LogMeIn Kernel Information Provider" wurde aufgrund folgenden Fehlers nicht gestartet: 
Das System kann den angegebenen Pfad nicht finden.

Error: (11/06/2016 03:22:17 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (11/06/2016 03:22:17 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (11/06/2016 03:21:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Steam Client Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (11/06/2016 03:21:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/06/2016 03:21:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "NETGEAR A6200 Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (11/06/2016 03:21:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "PnkBstrA" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (11/06/2016 03:21:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "PDFProFiltSrvPP" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i7-5820K CPU @ 3.30GHz
Prozentuale Nutzung des RAM: 24%
Installierter physikalischer RAM: 16210.08 MB
Verfügbarer physikalischer RAM: 12228.96 MB
Summe virtueller Speicher: 32418.34 MB
Verfügbarer virtueller Speicher: 28685.26 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:232.76 GB) (Free:125.1 GB) NTFS
Drive d: () (Fixed) (Total:29.3 GB) (Free:8.67 GB) NTFS
Drive e: () (Fixed) (Total:1833.5 GB) (Free:1332.82 GB) NTFS
Drive f: () (CDROM) (Total:0.02 GB) (Free:0 GB) CDFS
Drive g: () (Removable) (Total:14.81 GB) (Free:7.63 GB) FAT32
Drive i: (**** USB) (Fixed) (Total:3.73 GB) (Free:3.55 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: 3341EB89)

Partition: GPT.

========================================================
Disk: 1 (Size: 1863 GB) (Disk ID: 3341EBE1)

Partition: GPT.

========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 3.7 GB) (Disk ID: 1C507D5B)
Partition 1: (Active) - (Size=3.7 GB) - (Type=0C)

========================================================
Disk: 3 (Size: 14.8 GB) (Disk ID: 01B89370)
Partition 1: (Not Active) - (Size=14.8 GB) - (Type=0C)

==================== Ende von Addition.txt ============================
         
__________________


Alt 07.11.2016, 22:19   #3
asgahrn
 
browsermodifier:win32 suptab!blnk Win 7 - Standard

browsermodifier:win32 suptab!blnk Win 7



Mir fiel gerade auf, dass ich in meinem Originalpost folgendes vergessen habe zu erwähnen^^. Da ich kein Experte mit Viren und deren Beseitigung bin würde ich es begrüßen, wenn jemand mit mehr Ahnung als ich durch die geposteten logs sehen könnte und mir sagt ob es was Ernstes ist.
__________________

Alt 08.11.2016, 00:55   #4
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
browsermodifier:win32 suptab!blnk Win 7 - Standard

browsermodifier:win32 suptab!blnk Win 7



Zitat:
browsermodifier:win32 suptab!blnk
Ist ein Fehlalarm!

=> https://heise.de/-3458138
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 08.11.2016, 21:53   #5
asgahrn
 
browsermodifier:win32 suptab!blnk Win 7 - Standard

browsermodifier:win32 suptab!blnk Win 7



Danke , das ist sehr beruhigend.


Antwort

Themen zu browsermodifier:win32 suptab!blnk Win 7
.dll, administrator, cpu, explorer, firefox, flash player, geforce, home, homepage, installation, kaspersky, mozilla, netgear, nvidia, pdf, programm, prozesse, realtek, registry, scan, secur, services.exe, software, svchost.exe, winlogon.exe



Ähnliche Themen: browsermodifier:win32 suptab!blnk Win 7


  1. BrowserModifier:Win32/SupTab!blnk - "Entfernen erfolgreich" war das echt so erfolgreich?
    Plagegeister aller Art und deren Bekämpfung - 13.11.2016 (15)
  2. BrowserModifier: Win32/SupTab!blnk
    Log-Analyse und Auswertung - 11.11.2016 (12)
  3. BrowserModifier:Win32/SupTab!blnk nach Formatierung immer noch nicht beseitigt
    Plagegeister aller Art und deren Bekämpfung - 10.11.2016 (8)
  4. BrowserModifier:Win32/SupTab!Blank ... bei mir auch ...
    Plagegeister aller Art und deren Bekämpfung - 10.11.2016 (9)
  5. BrowserModifier:Win32/SupTab!Blank 2x durch WindowsDefender erkannt?
    Plagegeister aller Art und deren Bekämpfung - 10.11.2016 (2)
  6. BrowserModifier:Win32/SupTab!Blank
    Plagegeister aller Art und deren Bekämpfung - 10.11.2016 (2)
  7. BrowserModifier: Win32/SupTab!blnk
    Plagegeister aller Art und deren Bekämpfung - 09.11.2016 (2)
  8. BrowserModifier: Win32/SupTab!blnk
    Plagegeister aller Art und deren Bekämpfung - 09.11.2016 (2)
  9. Ich bekomme ständig die Meldung: Potenziell gefährliche Software erkannt - BrowserModifier: Win32/SupTab!blnk
    Plagegeister aller Art und deren Bekämpfung - 09.11.2016 (11)
  10. BrowserModifier: Win32/SupTab!blnk
    Log-Analyse und Auswertung - 08.11.2016 (14)
  11. BrowserModifier: Win32/SupTab gefunden, Desinfektion brachte nichts, Entfernen fraglich
    Plagegeister aller Art und deren Bekämpfung - 05.11.2016 (1)
  12. BrowserModifier: Win32/SupTab!blnk
    Plagegeister aller Art und deren Bekämpfung - 05.11.2016 (1)
  13. BrowserModifier:Win32/Shopperz entfernen
    Anleitungen, FAQs & Links - 05.05.2016 (2)
  14. Microsoft Security Essentials findet wiederholt Trojan:Win32 und BrowserModifier:Win32
    Plagegeister aller Art und deren Bekämpfung - 15.08.2015 (13)
  15. Windows 7: Befallen von BrowserModifier:Win32/CouponRuc
    Log-Analyse und Auswertung - 25.07.2015 (9)
  16. Windows 7: Viren: BrowserModifier:Win32/CouponRuc und Trojan:Win32/Peals!gfs evtl. weitere
    Log-Analyse und Auswertung - 31.01.2015 (9)
  17. Trojaner auf dem PC wg Phishing-Mail (Deutsche Post) (BrowserModifier win32 zwangi)
    Plagegeister aller Art und deren Bekämpfung - 25.07.2012 (10)

Zum Thema browsermodifier:win32 suptab!blnk Win 7 - Hi, wie bei einigen anderen hier im Forum sind auch bei mir Probleme mit dem browsermodifier:win32 suptab!blnk aufgetaucht. Windowsdefender meldete auf einmal die bereits erwähnte schädliche Software, allerdings konnten weder - browsermodifier:win32 suptab!blnk Win 7...
Archiv
Du betrachtest: browsermodifier:win32 suptab!blnk Win 7 auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.