Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 27.01.2017, 20:38   #1
KoggeHD
 
Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung - Standard

Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung



Erstmal Guten Tag,

Ich habe vor ein paar Tagen ein anscheint verseuchtes Programm installiert, was inzwischen wieder gelöscht ist anscheint aber noch irgendwas da ist was nicht da sein sollte.

Betriebssystem: Windows 10 Pro 64bit

Ich habe mit "Malwarebytes Anti-Malware Home(Testversion)" schon gestern da einiges entfernen können jedenfalls scheint mein Google Chrome Browser wieder ordentlich zu funktionieren. Vorher war immer das Problem das Chrome beim start paar mal schwarz und normal geblinkt hat ging nach paar Sekunden dann aber. Noch dazu hatte ich bei Google Suche immer automatisch cse.google.com/........ Noch dazu waren alle meine Erweiterungen deinstalliert wie zb.: AdBlock, AdBlock Plus, Lastpass, BTTV, Google Notizen, Google Drive und noch paar andere.
Noch Dazu war Chrome vorher immer total Random angestürzt.

Dann ist immer beim PC Start nach dem hochfahren ein Fehler das eine dll datei nicht gefunden werden kann, allerdings waren es bis jetzt jedesmal andere dort wegen habe ich auch nur noch den namen der Datei von dem letzten PC start.
Der Name der dll Datei: sdxydkl.dll

Seit dem Vorfall ist auch bei meine Taskleiste unten rechts das Symbol für "Info-Center" verschwunden. In der Einstellungen wo man Symbole in der taskleiste Aktivieren und Deaktivieren kann, steht der schieber auf aktiviert bei "Info-Center" und ist ausgegraut.

Noch dazu hatte ich vor der "Malwarebytes Anti-Malware Home(Testversion)" erst eine andere version davon installiert irgendwas mit 3.xxx und die aktuelle ist 2.2.1.1043 nach dem ich es vor dem heutigen durchlauf aktualisiert habe. Da ich allerdings nicht wusste ob es gut für euch zum helfen ist habe ich da über euren link neu runter geladen, das alte deinstalliert und jetzt die oben genannte 2.xx version drauf.
Die 3.xxx Version hatte ein echtzeitschutz mit aktiv und hat alle paar sekunden manchmal auch Minuten immer eine Web-Verbindung Blockiert die von mein PC ausging und da war jedesmal eine andere IP ging aber immer von eine Windows_Activation.exe irgendwo in App data aus.

Vor paar Minuten hatte ich mit Malwarebytes noch ein durchlauf gemacht und da wurde nichts mehr gefunden ( Log im Anhang )

FRST64 habe ich schon runtergeladen über den Link von dem Forum hier, aber noch nicht gestartet.

So ich glaube ich habe alles aufgezählt ich hoffe ihr könnt mir helfen.
Wenn noch Fragen sind raus damit.

MfG Uwe "KoggeHD"
Angehängte Dateien
Dateityp: txt Malwarebytes Anti-Malware Home Durchlauf.txt (1,2 KB, 53x aufgerufen)

Alt 27.01.2017, 21:30   #2
M-K-D-B
/// TB-Ausbilder
 
Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung - Standard

Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung






Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen.


Bitte beachte folgende Hinweise:
  • Falls wir Hinweise auf illegal erworbene Software finden, werden wir den Support unterbrechen bis jegliche Art von illegaler Software vom Rechner entfernt wurde.
  • Lies dir die Anleitungen sorgfältig durch. Solltest du Probleme haben, stoppe mit deiner Bearbeitung und beschreibe mir dein Problem so gut es geht.
  • Solltest du mir nicht innerhalb von 3 Tagen antworten, gehe ich davon aus, dass du keine Hilfe mehr benötigst. Dann lösche ich dein Thema aus meinem Abo. Solltest du einmal länger abwesend sein, so gib mir bitte Bescheid!
  • Während der Bereinigung bitte nichts installieren oder deinstallieren, außer ich bitte dich darum!
  • Bitte beachten: Download bei filepony.de: So ladet Ihr unsere Tools richtig!
  • Alle zu verwendenen Programme sind auf dem Desktop abzuspeichern und von dort als Administrator zu starten!
  • Einige Programme, die wir hier verwenden, können unter Umständen von deinem Antiviren- oder Anti-Malwareprogramm fälschlicherweise als Bedrohung eingestuft werden. Die Sicherheitsprogramme können aufgrund eines bestimmten Programmverhaltens nicht zwischen "gut" oder "böse" unterscheiden und schlagen Alarm. Dabei handelt es sich um Fehlalarme, welche du getrost ignorieren kannst. Gegebenenfalls musst du deine Sicherheitssoftware vor der Ausführung eines Programms deaktivieren, damit unsere Bereinigungsvorgänge nicht beeinträchtigt werden.



Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:
So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke aauf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Danke für deine Mitarbeit!




Hast du auch die Logdatei von MBAM mit den Funden??? Die interessiert mich, bitte nachreichen.

Zur ersten Analyse bitte FRST und TDSS-Killer ausführen:



Schritt 1
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)






Schritt 2
Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.







Bitte poste mit deiner nächsten Antwort
  • die Logdatei von TDSS-Killer,
  • die beiden neuen Logdateien von FRST.
__________________

__________________

Alt 27.01.2017, 22:01   #3
KoggeHD
 
Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung - Standard

Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung



Hier die Logs
und schon mal danke für den schnellen Support

FRST.txt
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 25-01-2017 01
durchgeführt von Uwe (Administrator) auf UWE (27-01-2017 21:46:00)
Gestartet von D:\Haupt Sicherung\Desktop
Geladene Profile: Uwe (Verfügbare Profile: Uwe)
Platform: Windows 10 Pro Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(<AVerMedia>) C:\Program Files (x86)\AVerMedia\AVerMedia CV710 USB3 HD Capture\AVerUSBPortChecker.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(AVerMedia TECHNOLOGIES, Inc.) C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Hi-Rez Studios) D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(GIGABYTE Technology Co.,Ltd.) C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Inc.) D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Corsair Components, Inc.) C:\Program Files (x86)\Corsair\Corsair Utility Engine\CUE.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) D:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\UWe\AppData\Local\Extion\Windows_Activaton.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\UWe\AppData\Local\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Users\UWe\AppData\Local\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1701.10102.0_x64__8wekyb3d8bbwe\Calculator.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-07-15] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [26142864 2017-01-18] (Dropbox, Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3477640 2012-09-23] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Corsair Utility Engine] => C:\Program Files (x86)\Corsair\Corsair Utility Engine\CUE.exe [13043408 2016-12-13] (Corsair Components, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Run: [DAEMON Tools Lite Automount] => D:\Program Files\DAEMON Tools Lite\DTAgent.exe [4179288 2015-11-18] (Disc Soft Ltd)
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIXE.EXE [283232 2015-01-07] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Run: [Google Update] => C:\Users\UWe\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe [601752 2016-12-19] (Google Inc.)
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Run: [TweakBit\Driver Updater\Start Driver Updater оn logon] => "C:\Program Files (x86)\TweakBit\Driver Updater\DriverUpdater.exe" -UseTray
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23818360 2016-11-30] (Google)
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Run: [Extion] => C:\Users\UWe\AppData\Local\Extion\Windows_Activaton.exe [183885 2017-01-17] ()
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Run: [Owjics] => C:\Windows\SysWOW64\regsvr32.exe C:\Users\UWe\AppData\Local\Extion\sdgxydkl.dll
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Run: [GoogleChromeAutoLaunch_FF7EF6AF25EDE54A2DF4F9352543EA28] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1104728 2016-12-08] (Google Inc.)
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\MountPoints2: {159d2da2-05dc-11e6-9bf3-bc5ff4d867ab} - "G:\Setup.exe" 
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\MountPoints2: {b74afb63-8d86-11e5-9bca-bc5ff4d867ab} - "G:\setup.exe" 
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE OC_GURU.lnk [2016-05-03]
ShortcutTarget: GIGABYTE OC_GURU.lnk -> C:\Windows\System32\schtasks.exe (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass FF RunOnce.lnk [2016-10-15]
ShortcutTarget: Install LastPass FF RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (LastPass)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk [2016-10-15]
ShortcutTarget: Install LastPass IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (LastPass)
Startup: C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2016-05-13]
ShortcutTarget: EvernoteClipper.lnk -> D:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
GroupPolicy: Beschränkung - Chrome <======= ACHTUNG
GroupPolicyScripts: Beschränkung <======= ACHTUNG
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{0b0e20e1-671a-42f3-adc4-306a1f49db5c}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.avira.net/#web/result?source=art&q=
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> D:\Program Files\Microsoft Office\Office16\OCHelper.dll [2016-12-13] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-18] (Oracle Corporation)
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2016-10-15] (LastPass)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> D:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2016-11-16] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-18] (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> D:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2016-04-27] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll [2016-10-15] (LastPass)
BHO-x32: Adobe Acrobat Create PDF Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2016-11-16] (Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2016-10-15] (LastPass)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2016-10-15] (LastPass)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - D:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2016-11-16] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2016-11-16] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - D:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2016-11-16] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2016-11-16] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\UWe\AppData\Roaming\Mozilla\Firefox\Profiles\vavHNCqi.default [2017-01-25]
FF Session Restore: Mozilla\Firefox\Profiles\vavHNCqi.default -> ist aktiviert.
FF Extension: (Avira Browser Safety) - C:\Users\UWe\AppData\Roaming\Mozilla\Firefox\Profiles\vavHNCqi.default\Extensions\abs@avira.com.xpi [2016-11-29]
FF Extension: (Firefox Hotfix) - C:\Users\UWe\AppData\Roaming\Mozilla\Firefox\Profiles\vavHNCqi.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-08-30]
FF Extension: (Untamed Now Playing) - C:\Users\UWe\AppData\Roaming\Mozilla\Firefox\Profiles\vavHNCqi.default\Extensions\jid1-CCXBUPa5pAmTYw@jetpack.xpi [2016-12-26]
FF Extension: (LastPass) - C:\Users\UWe\AppData\Roaming\Mozilla\Firefox\Profiles\vavHNCqi.default\Extensions\support@lastpass.com [2016-12-27]
FF Extension: (System.Diagnostics.SymbolStore.SymDocumentType) - C:\Users\UWe\AppData\Roaming\Mozilla\Firefox\Profiles\vavHNCqi.default\Extensions\{409A33F3-780D-C4FD-8B61-DF547011D348} [2017-01-25] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2015-12-04] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-11] ()
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-18] (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2016-10-15] (LastPass)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> D:\PROGRA~4\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-11] ()
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2016-10-15] (LastPass)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-05-27] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-11] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-11] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [Keine Datei]
FF Plugin-x32: Adobe Acrobat -> D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
FF Plugin HKU\S-1-5-21-2759712002-1790162856-1979884355-1001: @tools.google.com/Google Update;version=3 -> C:\Users\UWe\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin HKU\S-1-5-21-2759712002-1790162856-1979884355-1001: @tools.google.com/Google Update;version=9 -> C:\Users\UWe\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2016-05-27] (Microsoft Corporation)
StartMenuInternet: FIREFOX.EXE - D:\Program Files (x86)\Mozilla Firefox\firefox.exe

Chrome: 
=======
CHR DefaultProfile: Profile 3
CHR HomePage: Profile 3 -> hxxp://www.google.com/
CHR StartupUrls: Profile 3 -> "hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=94B5002185FC1D8D&affID=119557&tt=040813_11&tsp=4964","hxxp://search.conduit.com/?ctid=CT3297265&SearchSource=48&CUI=UN13709293388366198&UM=2","hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=48&cc=&mi=dade290d000000000000bc5ff4d867ab","hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=87c51c34-65c1-91fc-50e6-a5edad149656&searchtype=hp&fr=linkury-tb&installDate=03/12/2013&type=hp1000","hxxp://www.buenosearch.com/?babsrc=HP_ss&mntrId=DADEBC5FF4D867AB&affID=128235&tsp=5114","hxxp://search.conduit.com/?ctid=CT3297265&SearchSource=48&CUI=UN38009094562468118&UM=2","hxxp://start.mysearchdial.com/?f=1&a=frg_14_16_ch&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyE0DzzyCyB0A0BtBzytD0DtN0D0Tzu0SzztAyDtN1L2XzutBtFtBtDtFtCtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyCyEtA0C0EtCyCtAtGtDzytD0FtGtC0ByEtAtGtAzz0A0FtGtAtAtCyD0BtCyBtCzyyE0FyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyE0E0DyCyCyCtByEtG0EtDtDyDtGyE0FtDyDtG0EtD0D0AtGyEyCzztDzy0C0AtByD0C0B0D2Q&cr=90356069&ir=","hxxp://search.zonealarm.com/?src=hp&tbid=HFA5&Lan=DE&gu=cd5633152e1042ea8930dc3966516f63&tu=11Jiy00E21D13P0&sku=&tstsId=&ver=&","hxxp://isearch.omiga-plus.com/?type=hp&ts=1403721403&from=ild&uid=ST31500541AS_9XW037N7XXXX9XW037N7","hxxp://www.bing.com/search?FORM=INCOH1&PC=IC02","hxxp://www.dregol.com/?f=7&a=drg_ir_15_23&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyE0DzzyCyB0A0BtB0FzztDtN0D0Tzu0StCtByDtDtN1L2XzutAtFtCtDtFtCtDtFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyDtB0CtB0D0D0EtAtGyBzytAyEtG0FyC0DzztGyB0D0B0FtGzyyC0AtAtCtAzz0AzztCtAyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szz0CyDyB0DyDtDtBtGtDtA0EyEtGyEyDtCtAtGzzzytCzytGtCtByDtCyD0Dzy0F0F0B0FtA2QtN0A0LzuyE&cr=2071282332&ir=","hxxp://de.hao123.com/?tn=sdks_inner_hp_01_hao123_de&guid=68632025565c15b66b7a202ae8671bf7","hxxp://do-search.com/?type=hp&ts=1447872773&z=110a553a1151dd32499929eg0z4z3m2bam9o9m8m6c&from=dae&uid=wdcxwd20eads-00w4b0_wd-wcavy570688206882"
CHR Session Restore: Profile 3 -> ist aktiviert.
CHR Profile: C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Default [2016-10-15]
CHR Profile: C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1 [2016-10-15]
CHR Extension: (BetterTTV) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-11-19]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-19]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-19]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-19]
CHR Extension: (X New Tab Page) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cbmbfafhdccfgdgnbkgogehiklmemkoh [2015-11-19]
CHR Extension: (OneTab) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2016-01-26]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-19]
CHR Extension: (Google+) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dlppkpafhbajpcmmoheippocdidnckmm [2015-12-10]
CHR Extension: (Adobe Acrobat) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2015-12-06]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (AirDroid) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hkgndiocipalkpejnpafdbdlfdjihomd [2015-11-19]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2016-05-12]
CHR Extension: (IP Address) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jpnjjlbngpejmmhgcaagljaomgnginml [2015-11-19]
CHR Extension: (Handcraft) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kgpklhhhiiafnocfiikcpffkogjkdmki [2015-11-19]
CHR Extension: (AudioSauna) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lkgfemnodkdnenmfkblebnkjpckkjcae [2015-11-19]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-05-13]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mfpiaehgjbbfednooihadalhehabhcjo [2016-01-19]
CHR Extension: (deviantART muro) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\namljbfbglehfnlonjmebceimaalofei [2015-11-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Google Publisher Toolbar) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\omioeahgfecgfpfldejlnideemfidnkc [2016-04-18]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-19]
CHR Extension: (Twitch Giveaways) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\poohjpljfecljomfhhimjhddddlidhdd [2016-02-16]
CHR Profile: C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2 [2016-10-15]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-05-13]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2016-05-13]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-13]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-13]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2016-05-13]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-05-13]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-13]
CHR Extension: (Chrome Web Store Payments) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-13]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-05-13]
CHR Profile: C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3 [2017-01-27]
CHR Extension: (Google Präsentationen) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-05-13]
CHR Extension: (BetterTTV) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2016-06-04]
CHR Extension: (Google Docs) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2016-05-13]
CHR Extension: (Google Drive) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-13]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2017-01-26]
CHR Extension: (YouTube) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-13]
CHR Extension: (Adblock Plus) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-01-25]
CHR Extension: (OneTab) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2016-06-07]
CHR Extension: (Attack on Titan: Military) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\cpemfagbhonhfbphehojcgfageomeeag [2017-01-26]
CHR Extension: (Google+) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\dlppkpafhbajpcmmoheippocdidnckmm [2016-05-13]
CHR Extension: (Adobe Acrobat) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-01-16]
CHR Extension: (Google Tabellen) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-05-13]
CHR Extension: (Google Docs Offline) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-13]
CHR Extension: (AdBlock) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-01-25]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2017-01-27]
CHR Extension: (AirDroid) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\hkgndiocipalkpejnpafdbdlfdjihomd [2016-05-13]
CHR Extension: (Google Notizen – Notizen & Listen) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2017-01-24]
CHR Extension: (IP-Adresse) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\jpnjjlbngpejmmhgcaagljaomgnginml [2016-08-27]
CHR Extension: (Handcraft) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\kgpklhhhiiafnocfiikcpffkogjkdmki [2016-05-13]
CHR Extension: (AudioSauna) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lkgfemnodkdnenmfkblebnkjpckkjcae [2016-05-13]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-05-13]
CHR Extension: (Chrome-Erweiterung für Google Notizen) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2016-08-06]
CHR Extension: (Awesome Screenshot App) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\mfpiaehgjbbfednooihadalhehabhcjo [2016-06-15]
CHR Extension: (deviantART muro) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\namljbfbglehfnlonjmebceimaalofei [2016-05-13]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-18]
CHR Extension: (Enhanced Steam) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2016-12-15]
CHR Extension: (Google Publisher Toolbar) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\omioeahgfecgfpfldejlnideemfidnkc [2016-08-25]
CHR Extension: (Google Mail) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-05-13]
CHR Extension: (Chrome Media Router) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-16]
CHR Extension: (Twitch Giveaways) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\poohjpljfecljomfhhimjhddddlidhdd [2016-12-01]
CHR Profile: C:\Users\UWe\AppData\Local\Google\Chrome\User Data\System Profile [2017-01-25]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - hxxp://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\UWe\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2017-01-25]
CHR HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2012-09-23]

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AVerRECentral; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe [1930848 2016-10-11] (AVerMedia TECHNOLOGIES, Inc.)
R2 AVerUSBPortChecker; C:\Program Files (x86)\AVerMedia\AVerMedia CV710 USB3 HD Capture\AVerUSBPortChecker.exe [182784 2014-11-17] (<AVerMedia>) [Datei ist nicht signiert]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1465352 2017-01-15] ()
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46400 2017-01-04] (Dropbox, Inc.)
S3 Disc Soft Lite Bus Service; D:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1369432 2015-11-18] (Disc Soft Ltd)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [Datei ist nicht signiert]
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2016-04-13] (Futuremark)
S3 GalaxyClientService; D:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1616440 2015-10-14] (GOG.com)
S4 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7220792 2016-01-30] (GOG.com)
U2 HiPatchService; D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-10-10] (Hi-Rez Studios) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Datei ist nicht signiert]
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373160 2015-12-19] (Intel Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [22744 2015-02-05] (Microsoft Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3685968 2015-07-22] (INCA Internet Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-13] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-13] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-12-11] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-12-13] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2016-12-13] (NVIDIA Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-15] (Microsoft Corporation)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [89232 2014-07-22] (Microsoft Corporation)
S3 VSStandardCollectorService140; D:\Programme (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [56040 2015-11-19] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [76032 2015-10-21] (Advanced Micro Devices, Inc.)
S3 AsrDrv101; C:\WINDOWS\SysWOW64\Drivers\AsrDrv101.sys [22280 2016-05-03] (ASRock Incorporation)
R0 asstahci64; C:\WINDOWS\System32\drivers\asstahci64.sys [98704 2015-11-23] (Asmedia Technology)
R3 AVMU3CV71064; C:\WINDOWS\system32\drivers\avmu3cv710_x64.sys [614528 2016-08-18] (AVerMedia TECHNOLOGIES, Inc.)
S3 AVMU3HC64; C:\WINDOWS\system32\drivers\avmu364.sys [519168 2014-05-21] (AVerMedia TECHNOLOGIES, Inc.) [Datei ist nicht signiert]
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [54256 2016-12-11] (Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [29168 2016-12-11] (Corsair)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-11-18] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47160 2015-11-18] (Disc Soft Ltd)
R3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [40168 2016-02-05] (ELAN Microelectronic Corp.)
S3 FreshIO; C:\Program Files (x86)\FreshDevices\FreshDiagnose\FreshIO.sys [2410 2004-10-26] () [Datei ist nicht signiert]
R3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2014-08-28] ()
U5 iaStorA; C:\Windows\System32\Drivers\iaStorA.sys [1455552 2015-06-23] (Intel Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2017-01-27] (Malwarebytes)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3f929cc119e3b994\nvlddmkm.sys [14200880 2016-12-12] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-12-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2016-12-13] (NVIDIA Corporation)
R0 PxHlpa64; C:\WINDOWS\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [216064 2016-07-16] (Microsoft Corporation)
R3 Serial; C:\WINDOWS\system32\DRIVERS\wdfserial.sys [80664 2015-03-06] (LG Electronics Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [36904 2016-02-18] (Wellbia.com Co., Ltd.)
S3 ysusb64; C:\WINDOWS\system32\drivers\ysusb64.sys [123904 2015-07-17] (Yamaha Corporation)
U3 aspnet_state; kein ImagePath
S3 dbx; system32\DRIVERS\dbx.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-01-27 21:45 - 2017-01-27 21:46 - 00000000 ____D C:\FRST
2017-01-27 19:21 - 2017-01-27 21:27 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-01-27 19:21 - 2017-01-27 19:21 - 00001175 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2017-01-27 19:21 - 2017-01-27 19:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2017-01-27 19:21 - 2017-01-27 19:21 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2017-01-27 19:21 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2017-01-27 19:21 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2017-01-27 19:21 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-01-27 19:12 - 2017-01-27 19:12 - 00542292 _____ C:\WINDOWS\Minidump\012717-56265-01.dmp
2017-01-26 19:55 - 2017-01-26 19:55 - 00000000 ____D C:\Program Files\Malwarebytes
2017-01-25 22:01 - 2017-01-27 01:17 - 00000000 ____D C:\Users\UWe\AppData\Roaming\The Witness
2017-01-25 20:02 - 2017-01-25 20:40 - 00000861 _____ C:\Users\UWe\Desktop\JRT.txt
2017-01-25 19:57 - 2017-01-25 19:57 - 00000889 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-01-25 19:57 - 2017-01-25 19:57 - 00000889 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-01-25 19:10 - 2016-12-21 08:08 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2017-01-25 19:10 - 2016-12-21 05:44 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2017-01-25 19:03 - 2017-01-25 19:03 - 00000306 __RSH C:\Users\UWe\ntuser.pol
2017-01-25 10:33 - 2017-01-25 19:20 - 00000000 ____D C:\WINDOWS\system32\SSL
2017-01-25 10:32 - 2017-01-27 19:21 - 00000000 ____D C:\Users\UWe\AppData\Local\Odvics
2017-01-25 10:31 - 2017-01-27 19:21 - 00000000 ____D C:\Users\UWe\AppData\Local\Extion
2017-01-25 10:30 - 2017-01-26 21:51 - 00000000 ___HD C:\ProgramData\2n21o8q50932
2017-01-25 10:30 - 2017-01-25 10:30 - 00016798 _____ C:\WINDOWS\System32\Tasks\2n21o8q50932
2017-01-25 10:24 - 2017-01-26 21:48 - 00000000 ___HD C:\ProgramData\3n98o0q17241
2017-01-25 10:24 - 2017-01-25 10:24 - 00016798 _____ C:\WINDOWS\System32\Tasks\3n98o0q17241
2017-01-25 10:23 - 2017-01-26 21:48 - 00000000 ____D C:\Program Files (x86)\Microsoft Toolkit Final
2017-01-25 01:13 - 2017-01-25 22:08 - 00001076 _____ C:\Users\Public\Desktop\The Witness.lnk
2017-01-25 01:13 - 2017-01-25 01:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witness [GOG.com]
2017-01-24 22:11 - 2017-01-24 22:11 - 02979002 _____ C:\WINDOWS\b98d6866d1c6e970ea12d87a73ede89e.exe
2017-01-24 18:59 - 2017-01-24 18:59 - 00498540 _____ C:\WINDOWS\Minidump\012417-73171-01.dmp
2017-01-24 01:25 - 2017-01-24 01:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-01-18 20:39 - 2017-01-18 20:39 - 00000000 ____D C:\Users\UWe\AppData\Local\Intel
2017-01-17 18:50 - 2017-01-17 18:50 - 00486364 _____ C:\WINDOWS\Minidump\011717-49218-01.dmp
2017-01-12 20:14 - 2017-01-12 20:14 - 00046192 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-01-12 20:14 - 2017-01-12 20:14 - 00046192 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-01-12 20:14 - 2017-01-12 20:14 - 00046192 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-01-10 21:03 - 2016-12-21 09:08 - 00245600 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2017-01-10 21:03 - 2016-12-21 09:08 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2017-01-10 21:03 - 2016-12-21 09:04 - 07816032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-01-10 21:03 - 2016-12-21 08:49 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-01-10 21:03 - 2016-12-21 08:46 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-01-10 21:03 - 2016-12-21 08:43 - 04130440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-01-10 21:03 - 2016-12-21 08:43 - 01454504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-01-10 21:03 - 2016-12-21 08:43 - 01071736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-01-10 21:03 - 2016-12-21 08:43 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-01-10 21:03 - 2016-12-21 08:42 - 22224480 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-01-10 21:03 - 2016-12-21 08:42 - 01988560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-01-10 21:03 - 2016-12-21 08:42 - 01702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-01-10 21:03 - 2016-12-21 08:42 - 01300600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-01-10 21:03 - 2016-12-21 08:42 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-01-10 21:03 - 2016-12-21 08:41 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-01-10 21:03 - 2016-12-21 08:37 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-01-10 21:03 - 2016-12-21 08:15 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-01-10 21:03 - 2016-12-21 08:14 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2017-01-10 21:03 - 2016-12-21 08:09 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2017-01-10 21:03 - 2016-12-21 08:09 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2017-01-10 21:03 - 2016-12-21 08:08 - 01292288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-01-10 21:03 - 2016-12-21 08:08 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-01-10 21:03 - 2016-12-21 08:08 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2017-01-10 21:03 - 2016-12-21 08:08 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-01-10 21:03 - 2016-12-21 08:08 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-01-10 21:03 - 2016-12-21 08:08 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-01-10 21:03 - 2016-12-21 08:07 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-01-10 21:03 - 2016-12-21 08:06 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-01-10 21:03 - 2016-12-21 08:06 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-01-10 21:03 - 2016-12-21 08:06 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-01-10 21:03 - 2016-12-21 08:06 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-01-10 21:03 - 2016-12-21 08:05 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-01-10 21:03 - 2016-12-21 08:05 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-01-10 21:03 - 2016-12-21 08:05 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-01-10 21:03 - 2016-12-21 08:01 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-01-10 21:03 - 2016-12-21 08:00 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2017-01-10 21:03 - 2016-12-21 07:59 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-01-10 21:03 - 2016-12-21 07:59 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-01-10 21:03 - 2016-12-21 07:58 - 23678464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-01-10 21:03 - 2016-12-21 07:57 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2017-01-10 21:03 - 2016-12-21 07:56 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2017-01-10 21:03 - 2016-12-21 07:56 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2017-01-10 21:03 - 2016-12-21 07:55 - 08129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-01-10 21:03 - 2016-12-21 07:55 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-01-10 21:03 - 2016-12-21 07:54 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2017-01-10 21:03 - 2016-12-21 07:53 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-01-10 21:03 - 2016-12-21 07:53 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-01-10 21:03 - 2016-12-21 07:53 - 01692672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-01-10 21:03 - 2016-12-21 07:51 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-01-10 21:03 - 2016-12-21 07:51 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-01-10 21:03 - 2016-12-21 07:51 - 02275840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-01-10 21:03 - 2016-12-21 07:50 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-01-10 21:03 - 2016-12-21 07:49 - 04149248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2017-01-10 21:03 - 2016-12-21 07:49 - 02691072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-01-10 21:03 - 2016-12-21 07:49 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-01-10 21:03 - 2016-12-21 07:47 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-01-10 21:03 - 2016-12-21 06:59 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2017-01-10 21:03 - 2016-12-21 06:09 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2017-01-10 21:03 - 2016-12-21 06:02 - 03892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-01-10 21:03 - 2016-12-21 06:02 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-01-10 21:03 - 2016-12-21 06:02 - 01360464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-01-10 21:03 - 2016-12-21 06:02 - 01277344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-01-10 21:03 - 2016-12-21 06:02 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-01-10 21:03 - 2016-12-21 06:02 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-01-10 21:03 - 2016-12-21 06:01 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-01-10 21:03 - 2016-12-21 05:46 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2017-01-10 21:03 - 2016-12-21 05:43 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-01-10 21:03 - 2016-12-21 05:41 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2017-01-10 21:03 - 2016-12-21 05:41 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-01-10 21:03 - 2016-12-21 05:40 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-01-10 21:03 - 2016-12-21 05:40 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2017-01-10 21:03 - 2016-12-21 05:40 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2017-01-10 21:03 - 2016-12-21 05:40 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-01-10 21:03 - 2016-12-21 05:39 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-01-10 21:03 - 2016-12-21 05:39 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-01-10 21:03 - 2016-12-21 05:38 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2017-01-10 21:03 - 2016-12-21 05:35 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-01-10 21:03 - 2016-12-21 05:35 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2017-01-10 21:03 - 2016-12-21 05:34 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-01-10 21:03 - 2016-12-21 05:33 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-01-10 21:03 - 2016-12-21 05:32 - 19417600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-01-10 21:03 - 2016-12-21 05:30 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2017-01-10 21:03 - 2016-12-21 05:30 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-01-10 21:03 - 2016-12-21 05:27 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2017-01-10 21:03 - 2016-12-21 05:26 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2017-01-10 21:03 - 2016-12-21 05:25 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-01-10 21:03 - 2016-12-21 05:25 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2017-01-10 21:03 - 2016-12-21 05:24 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-01-10 21:03 - 2016-12-21 05:24 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-01-10 21:03 - 2016-12-21 05:24 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-01-10 21:03 - 2016-12-21 05:24 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-01-10 21:03 - 2016-12-21 05:22 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-01-10 21:03 - 2016-12-21 05:22 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-01-10 21:03 - 2016-12-14 06:41 - 01235296 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-01-10 21:03 - 2016-12-14 06:41 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-01-10 21:03 - 2016-12-14 06:34 - 02482280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 02169184 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 01669984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 01400160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 01356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-01-10 21:03 - 2016-12-14 06:33 - 01054048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00992096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00822624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2017-01-10 21:03 - 2016-12-14 06:33 - 00813408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00779616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00752992 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00571744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00513376 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00406368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2017-01-10 21:03 - 2016-12-14 06:33 - 00190816 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe
2017-01-10 21:03 - 2016-12-14 06:26 - 01469792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2017-01-10 21:03 - 2016-12-14 06:23 - 00404832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-01-10 21:03 - 2016-12-14 06:21 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2017-01-10 21:03 - 2016-12-14 06:19 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-01-10 21:03 - 2016-12-14 06:18 - 00715104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-01-10 21:03 - 2016-12-14 06:18 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2017-01-10 21:03 - 2016-12-14 06:17 - 00319288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2017-01-10 21:03 - 2016-12-14 06:14 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-01-10 21:03 - 2016-12-14 06:14 - 00418952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2017-01-10 21:03 - 2016-12-14 06:14 - 00089416 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2017-01-10 21:03 - 2016-12-14 06:08 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-01-10 21:03 - 2016-12-14 06:06 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-01-10 21:03 - 2016-12-14 06:01 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-01-10 21:03 - 2016-12-14 06:01 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2017-01-10 21:03 - 2016-12-14 06:01 - 00076984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2017-01-10 21:03 - 2016-12-14 05:48 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-01-10 21:03 - 2016-12-14 05:46 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-01-10 21:03 - 2016-12-14 05:46 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-01-10 21:03 - 2016-12-14 05:45 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2017-01-10 21:03 - 2016-12-14 05:43 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2017-01-10 21:03 - 2016-12-14 05:42 - 00384000 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2017-01-10 21:03 - 2016-12-14 05:42 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2017-01-10 21:03 - 2016-12-14 05:42 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2017-01-10 21:03 - 2016-12-14 05:42 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-10 21:03 - 2016-12-14 05:42 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2017-01-10 21:03 - 2016-12-14 05:41 - 00362496 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2017-01-10 21:03 - 2016-12-14 05:41 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-01-10 21:03 - 2016-12-14 05:40 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-01-10 21:03 - 2016-12-14 05:40 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2017-01-10 21:03 - 2016-12-14 05:40 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-01-10 21:03 - 2016-12-14 05:40 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-01-10 21:03 - 2016-12-14 05:40 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-10 21:03 - 2016-12-14 05:39 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-01-10 21:03 - 2016-12-14 05:39 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-01-10 21:03 - 2016-12-14 05:39 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2017-01-10 21:03 - 2016-12-14 05:38 - 17188864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-01-10 21:03 - 2016-12-14 05:38 - 13869056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-01-10 21:03 - 2016-12-14 05:38 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-01-10 21:03 - 2016-12-14 05:38 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2017-01-10 21:03 - 2016-12-14 05:37 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2017-01-10 21:03 - 2016-12-14 05:36 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-01-10 21:03 - 2016-12-14 05:36 - 00539648 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-01-10 21:03 - 2016-12-14 05:36 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2017-01-10 21:03 - 2016-12-14 05:35 - 02220032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
2017-01-10 21:03 - 2016-12-14 05:35 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-01-10 21:03 - 2016-12-14 05:35 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-01-10 21:03 - 2016-12-14 05:35 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2017-01-10 21:03 - 2016-12-14 05:35 - 00553984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2017-01-10 21:03 - 2016-12-14 05:32 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2017-01-10 21:03 - 2016-12-14 05:26 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-01-10 21:03 - 2016-12-14 05:26 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-01-10 21:03 - 2016-12-14 05:25 - 02795520 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
2017-01-10 21:03 - 2016-12-14 05:25 - 02009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2017-01-10 21:03 - 2016-12-14 05:24 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2017-01-10 21:03 - 2016-12-14 05:24 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-01-10 21:03 - 2016-12-14 05:23 - 03134976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2017-01-10 21:03 - 2016-12-14 05:23 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-01-10 21:03 - 2016-12-14 05:22 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-01-10 21:03 - 2016-12-14 05:22 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2017-01-10 21:03 - 2016-12-14 05:22 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-01-10 21:03 - 2016-12-14 05:22 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-01-10 21:03 - 2016-12-14 05:22 - 00707584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-01-10 21:03 - 2016-12-14 05:22 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-01-10 21:03 - 2016-12-14 05:21 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-01-10 21:03 - 2016-11-02 13:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-01-10 21:03 - 2016-11-02 12:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-01-10 21:03 - 2016-11-02 11:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-01-10 21:03 - 2016-11-02 11:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-01-10 21:03 - 2016-11-02 11:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-01-10 21:03 - 2016-08-02 05:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-01-10 21:02 - 2016-12-21 08:13 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2017-01-10 21:02 - 2016-12-21 08:12 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2017-01-10 21:02 - 2016-12-21 08:10 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2017-01-10 21:02 - 2016-12-14 05:32 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2017-01-09 23:46 - 2017-01-09 23:46 - 00000000 ____D C:\Users\UWe\AppData\LocalLow\Fireproof Games
2017-01-06 14:52 - 2017-01-06 14:52 - 00454900 _____ C:\WINDOWS\Minidump\010617-49671-01.dmp
2017-01-05 13:38 - 2017-01-05 13:38 - 00505564 _____ C:\WINDOWS\Minidump\010517-50031-01.dmp
2017-01-04 06:25 - 2017-01-04 06:25 - 00046400 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-01-01 22:12 - 2017-01-01 22:12 - 00000000 ____D C:\Users\UWe\AppData\Roaming\Frontier Developments
2017-01-01 22:12 - 2017-01-01 22:12 - 00000000 ____D C:\Users\UWe\AppData\Local\Frontier Developments
2016-12-31 12:32 - 2016-12-31 12:32 - 00446140 _____ C:\WINDOWS\Minidump\123116-44625-01.dmp

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-01-27 21:30 - 2016-09-29 18:14 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-01-27 21:30 - 2015-11-22 19:40 - 00000000 ____D C:\Users\UWe\AppData\Roaming\vlc
2017-01-27 21:12 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-01-27 20:24 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-01-27 19:21 - 2016-05-03 21:56 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-01-27 19:17 - 2016-07-16 23:51 - 01652398 _____ C:\WINDOWS\system32\perfh007.dat
2017-01-27 19:17 - 2016-07-16 23:51 - 00429614 _____ C:\WINDOWS\system32\perfc007.dat
2017-01-27 19:17 - 2015-11-17 22:48 - 03666124 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-01-27 19:15 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-01-27 19:12 - 2016-10-11 17:52 - 00000000 ____D C:\WINDOWS\Minidump
2017-01-27 19:12 - 2016-09-29 18:16 - 00000000 ____D C:\ProgramData\NVIDIA
2017-01-27 19:12 - 2016-05-13 01:14 - 00000000 ___RD C:\Users\UWe\Google Drive
2017-01-27 19:12 - 2015-11-18 00:22 - 00000000 ___RD C:\Users\UWe\Dropbox
2017-01-27 19:11 - 2016-09-29 18:50 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-01-27 19:11 - 2015-12-21 13:53 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-01-27 01:54 - 2016-09-29 18:17 - 00000000 ____D C:\Users\UWe
2017-01-27 01:54 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-01-26 21:51 - 2016-12-20 21:50 - 00003355 _____ C:\ProgramData\NvTelemetryContainer.log_backup1
2017-01-26 21:50 - 2016-07-16 07:04 - 06029312 _____ C:\WINDOWS\system32\config\BBI
2017-01-26 21:31 - 2015-11-18 00:10 - 00000000 ____D C:\Program Files (x86)\Google
2017-01-26 21:09 - 2016-04-26 17:57 - 00000000 ____D C:\Users\UWe\AppData\Local\CrashDumps
2017-01-26 20:20 - 2016-04-27 18:45 - 00002052 __RSH C:\ProgramData\ntuser.pol
2017-01-26 19:50 - 2016-09-29 18:50 - 00003628 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-01-26 19:50 - 2016-09-29 18:50 - 00003504 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-01-25 20:55 - 2015-11-18 20:41 - 00000000 ____D C:\Users\UWe\AppData\Roaming\Skype
2017-01-25 20:46 - 2015-11-17 22:44 - 00000000 ____D C:\Users\UWe\AppData\Local\Packages
2017-01-25 19:58 - 2016-12-26 19:54 - 00000000 ____D C:\Users\UWe\AppData\LocalLow\Mozilla
2017-01-25 19:35 - 2015-12-18 19:44 - 00000000 ____D C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-01-25 10:36 - 2016-06-29 19:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-01-25 10:36 - 2015-07-10 12:04 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-01-25 10:32 - 2016-05-13 01:10 - 00000000 ____D C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps
2017-01-25 10:32 - 2016-04-24 23:28 - 00000000 ____D C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Canary-Apps
2017-01-25 10:32 - 2016-04-24 23:26 - 00002372 ____R C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gооglе Сhrоmе Саnаry.lnk
2017-01-25 10:32 - 2015-12-16 23:41 - 00000000 ____D C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2017-01-25 10:32 - 2015-12-11 20:20 - 00001510 ____R C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Еpiс Gаmеs Lаunсhеr.lnk
2017-01-25 10:32 - 2015-11-18 02:09 - 00001042 ____R C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Моzillа Firеfох.lnk
2017-01-25 10:32 - 2015-11-18 00:11 - 00002287 ____R C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gооglе Сhrоmе.lnk
2017-01-24 23:09 - 2015-11-20 19:39 - 00000000 ____D C:\Users\UWe\AppData\Roaming\obs-studio
2017-01-24 01:25 - 2015-11-18 00:20 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-01-18 20:46 - 2015-11-26 15:09 - 00000000 ____D C:\ProgramData\Oracle
2017-01-18 20:45 - 2015-11-26 15:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-01-18 20:45 - 2015-11-26 15:09 - 00000000 ____D C:\Program Files\Java
2017-01-18 20:44 - 2015-11-26 15:09 - 00110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2017-01-18 20:37 - 2016-05-13 00:56 - 00000942 ____N C:\Users\Public\Desktop\OBS Studio.lnk
2017-01-17 18:50 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-01-16 04:01 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2017-01-13 19:23 - 2016-12-09 19:45 - 00003262 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-01-13 19:23 - 2015-11-17 22:46 - 00002381 ____N C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-01-13 19:23 - 2015-11-17 22:46 - 00000000 ___RD C:\Users\UWe\OneDrive
2017-01-13 19:04 - 2015-11-17 22:44 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-01-13 19:03 - 2016-09-29 18:14 - 05030360 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-01-13 19:03 - 2015-12-23 02:57 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2017-01-13 01:41 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-01-13 01:41 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-01-13 01:41 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-01-13 01:41 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-01-13 01:41 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Provisioning
2017-01-13 01:41 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-01-13 01:39 - 2015-07-10 12:04 - 00000230 _____ C:\WINDOWS\win.ini
2017-01-13 00:28 - 2015-11-19 19:26 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-01-13 00:22 - 2015-11-19 19:26 - 135657872 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-01-12 19:09 - 2016-01-14 19:36 - 00000000 ____D C:\Users\UWe\AppData\Roaming\discord
2017-01-11 22:10 - 2016-01-14 19:36 - 00000000 ____D C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2017-01-11 22:10 - 2016-01-14 19:36 - 00000000 ____D C:\Users\UWe\AppData\Local\Discord
2017-01-11 21:16 - 2016-04-06 21:20 - 00000000 ____D C:\Users\UWe\AppData\Local\ftblauncher
2017-01-11 01:25 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-01-11 01:25 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-01-06 20:46 - 2015-11-21 00:11 - 00000000 ____D C:\ProgramData\boost_interprocess
2016-12-30 00:11 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\CatRoot
2016-12-30 00:09 - 2016-04-21 19:30 - 00007590 _____ C:\Users\UWe\AppData\Local\Resmon.ResmonCfg

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-10-15 19:02 - 2016-10-15 19:02 - 21874200 _____ (LastPass) C:\Program Files (x86)\Common Files\lpuninstall.exe
2016-04-21 19:30 - 2016-12-30 00:09 - 0007590 _____ () C:\Users\UWe\AppData\Local\Resmon.ResmonCfg
2016-05-10 21:12 - 2016-05-10 21:12 - 0000000 _____ () C:\Users\UWe\AppData\Local\{C0D25DDF-E830-48D9-98CA-D9AFA410BFC8}
2016-09-29 18:15 - 2016-09-29 18:15 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-12-20 21:50 - 2017-01-27 19:11 - 0002938 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-20 21:50 - 2017-01-26 21:51 - 0003355 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1

Einige Dateien in TEMP:
====================
2017-01-16 21:18 - 2017-01-16 21:18 - 0157696 _____ () C:\Users\UWe\AppData\Local\Temp\cachous.dll
2016-10-11 21:28 - 2016-09-23 10:38 - 0037376 _____ (Microsoft) C:\Users\UWe\AppData\Local\Temp\HiPatchSelfUpdateWindow.exe
2016-10-11 21:28 - 2016-09-23 09:51 - 0020992 _____ (Microsoft) C:\Users\UWe\AppData\Local\Temp\HiRezLauncherControls.dll
2016-10-23 19:20 - 2016-10-23 19:20 - 0737856 _____ (Oracle Corporation) C:\Users\UWe\AppData\Local\Temp\jre-8u111-windows-au.exe
2017-01-18 20:43 - 2017-01-18 20:43 - 0739904 _____ (Oracle Corporation) C:\Users\UWe\AppData\Local\Temp\jre-8u121-windows-au.exe
2016-08-12 19:36 - 2016-12-01 18:05 - 0747464 _____ (NVIDIA Corporation) C:\Users\UWe\AppData\Local\Temp\nvSCPAPI.dll
2016-08-12 19:36 - 2016-12-01 18:05 - 0860960 _____ (NVIDIA Corporation) C:\Users\UWe\AppData\Local\Temp\nvSCPAPI64.dll
2016-10-15 19:16 - 2016-10-01 20:25 - 0424384 _____ (NVIDIA Corporation) C:\Users\UWe\AppData\Local\Temp\nvscpapisvr.exe
2016-10-15 19:14 - 2016-12-01 18:04 - 0353336 _____ (NVIDIA Corporation) C:\Users\UWe\AppData\Local\Temp\nvStInst.exe
2016-10-15 18:25 - 2016-11-17 14:45 - 1135552 _____ (NVIDIA Corporation) C:\Users\UWe\AppData\Local\Temp\NvTelemetry.dll
2016-10-15 18:25 - 2016-11-17 14:45 - 0217024 _____ (NVIDIA Corporation) C:\Users\UWe\AppData\Local\Temp\NvTelemetryAPI32.dll
2016-10-15 18:25 - 2016-11-17 14:45 - 0268736 _____ (NVIDIA Corporation) C:\Users\UWe\AppData\Local\Temp\NvTelemetryAPI64.dll
2016-10-15 02:06 - 2016-12-13 18:57 - 43872728 _____ (Skype Technologies S.A.) C:\Users\UWe\AppData\Local\Temp\SkypeSetup.exe
2016-11-12 20:25 - 2016-12-11 20:02 - 0115345 _____ () C:\Users\UWe\AppData\Local\Temp\Uninstall.exe

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-01-16 03:01

==================== Ende von FRST.txt ============================
         
__________________

Alt 27.01.2017, 22:02   #4
KoggeHD
 
Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung - Standard

Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung



Addition.txt
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 25-01-2017 01
durchgeführt von Uwe (27-01-2017 21:46:28)
Gestartet von D:\Haupt Sicherung\Desktop
Windows 10 Pro Version 1607 (X64) (2016-09-29 17:52:27)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2759712002-1790162856-1979884355-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2759712002-1790162856-1979884355-503 - Limited - Disabled)
Gast (S-1-5-21-2759712002-1790162856-1979884355-501 - Limited - Disabled)
Uwe (S-1-5-21-2759712002-1790162856-1979884355-1001 - Administrator - Enabled) => C:\Users\UWe

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

3DMark (HKLM-x32\...\{b7d2ce14-2f17-410d-bea7-9126b9d4bb31}) (Version: 2.0.2067.0 - Futuremark)
3DMark (Version: 2.0.2067.0 - Futuremark) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.00 - Adobe Systems)
Adobe After Effects CC 2014 (HKLM-x32\...\{2B22C750-5C3B-4738-B621-BA786AC7A494}) (Version: 13.2.0 - Adobe Systems Incorporated)
Adobe Audition CC 2014 (HKLM-x32\...\{F3388E10-EFA9-4A80-B28E-2E647F8D00C4}) (Version: 7.2.0 - Adobe Systems Incorporated)
Adobe Bridge CC (64 Bit) (HKLM-x32\...\{359F8007-6486-429C-A8C5-D67F6897C88C}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Dreamweaver CC 2014 (HKLM-x32\...\{7F823F8E-4348-11E4-8BF8-81763C49AA32}) (Version: 15.0.0 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated)
Adobe Flash Professional CC 2014 (HKLM-x32\...\{AA704223-E11C-11E3-8A38-C09A633B72AF}) (Version: 14.1 - Adobe Systems Incorporated)
Adobe Illustrator CC 2014 (HKLM-x32\...\{2B4B4082-8043-4646-8334-B0A29E641211}) (Version: 18.1.1 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2014 (HKLM-x32\...\{663DEEEF-EF34-4DCB-8687-73A7AA146E02}) (Version: 8.2.0 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.2.2 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2014 (HKLM-x32\...\{07BE616F-9E42-4C90-AF4F-0F32A5B088E7}) (Version: 8.2.0 - Adobe Systems Incorporated)
Airscape: The Fall of Gravity (HKLM\...\Steam App 317250) (Version:  - Cross-Product)
Ansel (Version: 376.33 - NVIDIA Corporation) Hidden
Application Insights Tools for Visual Studio 2013 (x32 Version: 2.5 - Microsoft Corporation) Hidden
Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{D25C9EDD-984F-444C-9229-5A58130C6B10}) (Version: 4.3.60226.3 - Microsoft Corporation)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version:  - Studio Wildcard)
Assassins Creed Syndicate Gold Edition MULTi16 - ElAmigos Version 1.50 (HKLM-x32\...\{82D665BB-75EF-4B38-A7C5-7D687101F9C6}_is1) (Version: 1.50 - UBISoft)
Audiokinetic Wwise v2015.2_LTX build 5485 - Authoring Binaries 64-bit (x32 Version: 15.2.0.5485 - Audiokinetic Inc.) Hidden
Audiokinetic Wwise v2015.2_LTX build 5485 - Authoring Data (x32 Version: 15.2.0.5485 - Audiokinetic Inc.) Hidden
Audiokinetic Wwise v2015.2_LTX build 5485 - SDK (Android) (x32 Version: 15.2.0.5485 - Audiokinetic Inc.) Hidden
Audiokinetic Wwise v2015.2_LTX build 5485 - SDK (Common) (x32 Version: 15.2.0.5485 - Audiokinetic Inc.) Hidden
Audiokinetic Wwise v2015.2_LTX build 5485 - SDK (Linux) (x32 Version: 15.2.0.5485 - Audiokinetic Inc.) Hidden
Audiokinetic Wwise v2015.2_LTX build 5485 - SDK (Windows_vc120) (x32 Version: 15.2.0.5485 - Audiokinetic Inc.) Hidden
Audiokinetic Wwise v2015.2_LTX build 5485 - Wwise LTX License (x32 Version: 15.2.0.5485 - Audiokinetic Inc.) Hidden
Audiokinetic Wwise v2015.2_LTX build 5485 (HKLM-x32\...\{2f36c0ba-616d-4eb5-941b-fb61f51fa68f}) (Version: 15.2.0.5485 - Audiokinetic Inc.)
AVerMedia CV710 USB3 HD Capture 1.0.64.84 (HKLM-x32\...\AVerMedia CV710 USB3 HD Capture) (Version: 1.0.64.84 - AVerMedia TECHNOLOGIES, Inc.)
AVerMedia RECentral (HKLM-x32\...\InstallShield_{30D6B6ED-E039-4D62-8E07-E058D17A9372}) (Version: 1.3.0.109.2016101101 - AVerMedia Technologies, Inc.)
AVerMedia RECentral (x32 Version: 1.3.0.109.2016101101 - AVerMedia Technologies, Inc.) Hidden
Azure AD Authentication Connected Service (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
AzureTools.Notifications (x32 Version: 2.1.10731.1602 - Microsoft Corporation) Hidden
AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Behaviors SDK (Windows Phone) for Visual Studio 2013 (x32 Version: 12.0.50716.0 - Microsoft Corporation) Hidden
Behaviors SDK (Windows) for Visual Studio 2013 (x32 Version: 12.0.50429.0 - Microsoft Corporation) Hidden
Besiege (HKLM-x32\...\Steam App 346010) (Version:  - Spiderling Studios)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Blend for Visual Studio 2013 (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Blend for Visual Studio 2013 ENU resources (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for Silverlight 5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blender (HKLM\...\{D593042C-8739-488D-93B8-E6B202013E57}) (Version: 2.76.1 - Blender Foundation)
Build Tools - amd64 (Version: 12.0.40629 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.40629 - Microsoft Corporation) Hidden
Build Tools Language Resources - amd64 (Version: 12.0.40629 - Microsoft Corporation) Hidden
Build Tools Language Resources - x86 (x32 Version: 12.0.40629 - Microsoft Corporation) Hidden
Call of Duty: Infinite Warfare (HKLM\...\Steam App 292730) (Version:  - Infinity Ward)
Call of Duty: Modern Warfare Remastered - Multiplayer (HKLM\...\Steam App 393100) (Version:  - Raven Software)
Call of Duty: Modern Warfare Remastered (HKLM\...\Steam App 393080) (Version:  - Raven Software)
Chronicle: RuneScape Legends (HKLM\...\Steam App 205890) (Version:  - Jagex)
Citra Edge (HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\citra) (Version: 0.1.76 - Citra Development Team)
Corsair Utility Engine (HKLM-x32\...\{F646F9C9-ABAF-479B-850F-C08F2DEA39BE}) (Version: 2.8.70 - Corsair)
Crazy Machines 3 MULTi11 - ElAmigos Version 1.1.0 (HKLM-x32\...\{F087B8D2-257B-4013-9E3A-78CC9255596B}_is1) (Version: 1.1.0 - Daedalic Entertainment)
Creativerse (HKLM-x32\...\Steam App 280790) (Version:  - Playful Corporation)
Curse (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Curse)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0112 - Disc Soft Ltd)
DARK SOULS III (HKLM\...\Steam App 374320) (Version:  - FromSoftware, Inc.)
DC+SB (HKLM-x32\...\DC+SB) (Version:  - )
Devenv-Ressourcen für Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Discord (HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Don't Starve (HKLM\...\Steam App 219740) (Version:  - Klei Entertainment)
Don't Starve Mod Tools (HKLM\...\Steam App 245850) (Version:  - )
Dotfuscator and Analytics Community Edition (x32 Version: 5.5.4954.46574 - PreEmptive Solutions) Hidden
Dotfuscator and Analytics Community Edition 5.19.0 (x32 Version: 5.19.0.2930 - PreEmptive Solutions) Hidden
Dotfuscator and Analytics Community Edition Language Pack 5.19.0 de-DE (x32 Version: 5.19.0.2930 - PreEmptive Solutions) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 18.4.32 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.59.1 - Dropbox, Inc.) Hidden
Entity Framework 6.1.3 Tools  for Visual Studio 2013 (HKLM-x32\...\{D5170452-84D1-4725-AD9C-F9ECFD0A9E9F}) (Version: 12.0.40302.0 - Microsoft Corporation)
Entity Framework 6.1.3 Tools  for Visual Studio 2015 Update 1 (HKLM-x32\...\{2A56910C-69C8-495D-8ED8-9080F0A14E58}) (Version: 14.0.41103.0 - Microsoft Corporation)
EPSON WF-2510 Series Printer Uninstall (HKLM\...\EPSON WF-2510 Series) (Version:  - SEIKO EPSON Corporation)
Evernote v. 6.0.6 (HKLM-x32\...\{FC4A0E2E-0CD3-11E6-B80E-005056951CAD}) (Version: 6.0.6.1769 - Evernote Corp.)
Evolve Stage 2 (HKLM\...\Steam App 273350) (Version:  - Turtle Rock Studios)
Far Cry 3 Blood Dragon (HKLM-x32\...\Uplay Install 205) (Version:  - Ubisoft)
FreeMouseAutoClicker 3.8.2 (HKLM-x32\...\{292F00C5-25EF-4FBE-9873-13EF1F69DEED}_is1) (Version:  - Advanced Mouse Auto Clicker ltd.)
Futuremark SystemInfo (HKLM-x32\...\{5052D282-C9AE-48CC-A9F5-17058BEEAA50}) (Version: 4.45.590.0 - Futuremark)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Gemeinsam genutzte Microsoft Azure-Komponenten für Visual Studio 2015 Sprachpaket (DEU) - v1.5 (x32 Version: 1.5.30619.1602 - Microsoft Corporation) Hidden
GIGABYTE OC_GURU II (HKLM-x32\...\InstallShield_{EA298EC1-2B8F-4DA9-8C5B-BC1FCBBAD72F}) (Version: 1.99.0000 - GIGABYTE Technology Co.,Ltd.)
GIGABYTE OC_GURU II (x32 Version: 1.99.0000 - GIGABYTE Technology Co.,Ltd.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Chrome Canary (HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Google Chrome SxS) (Version: 58.0.2994.0 - Google Inc.)
Google Drive (HKLM-x32\...\{07A12123-B717-496B-B471-48AF6407B433}) (Version: 1.32.4066.7445 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Gun Rocket (HKLM\...\Steam App 391420) (Version:  - Space Wedgie)
Hell Yeah! (HKLM-x32\...\Steam App 205230) (Version:  - Arkedo)
HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.0.6.4 - Hi-Rez Studios)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
HxD Hex Editor Version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
IIS 10.0 Express (HKLM\...\{7A28A2B0-458B-4A58-84AC-C90D2D4B79FB}) (Version: 10.0.1735 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version:  - )
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Intel(R) Network Connections 20.2.4001.0 (HKLM\...\PROSetDX) (Version: 20.2.4001.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4279 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.8 - Intel(R) Corporation) Hidden
Intel® RealSense™ SDK Runtime (HKLM-x32\...\ARP_for_prd_rs_sdk_runtime_10.0.26.0396) (Version: 10.0.26.0396 - Intel Corporation)
Intel® RealSense™ SDK Runtime Gold (x86): Core (x32 Version: 10.0.26.396 - Intel Corporation) Hidden
Intel® RealSense™ SDK Runtime Gold (x86): Core: Calibration (x32 Version: 10.0.26.396 - Intel Corporation) Hidden
Intel® RealSense™ SDK Runtime Gold (x86): User Segmentation (x32 Version: 10.0.26.396 - Intel Corporation) Hidden
Intergalactic Bubbles (HKLM\...\Steam App 351490) (Version:  - Hellscape Games)
Java 8 Update 121 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Jet Set Radio (HKLM-x32\...\Steam App 205950) (Version:  - Blit Software)
Kit SDK de vérification de Visual Studio*2012 - fra (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden
Labyronia RPG (HKLM\...\Steam App 391260) (Version:  - Labyrinthine)
Labyronia RPG 2 (HKLM\...\Steam App 397500) (Version:  - Labyrinthine)
Lara Croft and the Temple of Osiris (HKLM-x32\...\Steam App 289690) (Version:  - Crystal Dynamics)
LastPass (Nur deinstallieren) (HKLM-x32\...\LastPass) (Version:  - LastPass)
Launcher Prerequisites (x64) (x32 Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Legend of Mysteria (HKLM\...\Steam App 407230) (Version:  - Labyrinthine)
LocalESPC Dev12 (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
LocalESPCui for en-us Dev12 (x32 Version: 8.100.25984 - Microsoft) Hidden
Lumberyard 1.1.0.0 - 3rdParty (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - alembic (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - AMD (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - AWS (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - BigDigits (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - boost (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - Codejock Software (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - dev (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - docs (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - dyad (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - expat (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - FreeType2 (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - GoogleMock (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - hdf5 (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - ilmbase (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - jansson (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - jinja2 (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - jsmn (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - LibTomCrypt (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - LibTomMath (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - LiveMocap (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - Lua (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - lz4 (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - Lzma (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - LZSS (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - markupsafe (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - md5 (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - mikkelsen (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - OpenEXR (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - p4api (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - packageRoot (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - pdcurses (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - Python (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - Qt (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - Qwt (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - rapidjson (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - rapidxml (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - Redistributables (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - SDL2 (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - SQLite (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - squish-ccr (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - Substance (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - szip (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - tiff (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - Wwise (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - zlib (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard v1.1.0.0 (HKLM-x32\...\{0cde051a-1ed2-4906-84e6-da83a5755e84}) (Version: 1.1.0.0 - Amazon Web Services, Inc.)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Memory Profiler (x32 Version: 12.0.40629 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (Deutsch) (HKLM-x32\...\{CBD7095F-7211-43FD-9FE7-FB08D753AF79}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (Deutsch) (HKLM-x32\...\{EE8BD24B-75E1-4BBF-86B9-91FE16ADE71C}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 SDK (Deutsch) (HKLM-x32\...\{529EFF09-750D-48B9-A47A-34A3B6248C3F}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Version Manager (x64) 1.0.0-beta5 (HKLM\...\{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}) (Version: 1.0.10609.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.24720 - Microsoft Corporation)
Microsoft Help Viewer 2.2 Sprachpaket - DEU (HKLM-x32\...\Microsoft Help Viewer 2.2 Sprachpaket - DEU) (Version: 2.2.24720 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK (HKLM-x32\...\{E1FBB3D4-ADB0-4949-B101-855DA061C735}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{58FED865-4F13-408D-A5BF-996019C4B936}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM-x32\...\{1B876496-B3A2-4D22-9B12-B608A3FD4B8B}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (x64) (HKLM\...\{A6BA243E-85A3-4635-A269-32949C98AC7F}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{6C026A91-640F-4A23-8B68-05D589CC6F18}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (HKLM-x32\...\{2F7DBBE6-8EBC-495C-9041-46A772F4E311}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (x64) (HKLM\...\{43A5C316-9521-49C3-B9B6-FCE5E1005DF0}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{D411E9C9-CE62-4DBF-9D92-4CB22B750ED5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{54C5041B-0E91-4E92-8417-AAA12493C790}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service  (HKLM-x32\...\{04DD7AF4-A6D3-4E30-9BB9-3B3670719234}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Express LocalDB  (HKLM\...\{AB8DE9BA-19E1-446A-BCFA-6B3DA9751E21}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service  (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 DEU  (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - DEU (14.0.50616.0) (HKLM-x32\...\{FA604873-01A0-4834-AF87-418534E465BB}) (Version: 14.0.50616.0 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (12.0.41012.0) (HKLM-x32\...\{AC8E0CF4-42A1-4151-B684-97CF6FD726CF}) (Version: 12.0.41012.0 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1) (HKLM-x32\...\{6781FF9B-E87D-4A03-9373-A55A288B83FA}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{4701DEDE-1888-49E0-BAE5-857875924CA2}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{070C38AC-05CE-43DF-9A20-141332F6AB2B}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{05FF8209-C4F1-4C77-BC28-791653156D20}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{09298F26-A95C-31E2-9D95-2C60F586F075}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual Studio Community 2013 with Update 5 (HKLM-x32\...\{693b15f4-4a52-402e-a7ea-862b20443883}) (Version: 12.0.40629 - Microsoft Corporation)
Microsoft Visual Studio Community 2015 mit Update 1 (HKLM-x32\...\{5790c106-6f85-49ac-8036-8ae82a465ec4}) (Version: 14.0.24720.1 - Microsoft Corporation)
Microsoft Web Deploy 3.6 (HKLM\...\{ED4CC1E5-043E-4157-8452-B5E533FE2BA1}) (Version: 3.1238.1955 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2014 (HKLM\...\{7F6DCED8-6A2B-4436-AF20-8F659D04E388}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2014 (HKLM-x32\...\{48BF289B-F3FA-4023-9251-80ABF7B726F9}) (Version: 12.0.2402.29 - Microsoft Corporation)
Mit C# erstellte geräteübergreifende Hybrid-Apps - Vorlagen - DEU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Morphopolis (HKLM\...\Steam App 314020) (Version:  - Dan  Walters)
Mozilla Firefox 51.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 51.0 (x86 de)) (Version: 51.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0 - Mozilla)
MSBuild/NuGet Integration 14.0 (x86) (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD)
My Game Long Name (HKLM\...\UDK-12a7f94c-5e77-400e-8d4f-860e16d20680) (Version:  - Epic Games, Inc.)
NARUTO SHIPPUDEN: Ultimate Ninja STORM 4 (HKLM\...\Steam App 349040) (Version:  - CyberConnect2 Co. Ltd.)
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version:  - NCSOFT)
No Man's Sky (HKLM\...\Steam App 275850) (Version:  - Hello Games)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.33 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.2.0.96 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.2.0.96 - NVIDIA Corporation)
NVIDIA Grafiktreiber 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.33 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.2.0.96 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.0.0.0 - NVIDIA Corporation) Hidden
OBS Multiplatform (HKLM-x32\...\OBS Multiplatform) (Version: 0.12.2 - OBS Project)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 17.0.2 - OBS Project)
Out There Somewhere (HKLM\...\Steam App 263980) (Version:  - MiniBoss)
Outils de vérification linguistique 2016 de Microsoft Office*- Français (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM-x32\...\{D5409B11-EF28-37A1-AE7A-6051A5BAD923}) (Version: 4.5.50932 - Microsoft Corporation)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 RC für Windows Store-Apps (Deutsch) (x32 Version: 4.5.21005 - Microsoft Corporation) Hidden
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM-x32\...\{3F514FDC-F0F2-3B99-86D6-F7B3A2679B39}) (Version: 4.5.51209 - Microsoft Corporation)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.6 (Deutsch) (HKLM-x32\...\{FACF2669-E25A-428A-9167-5EEDE741F3B9}) (Version: 4.6.00127 - Microsoft Corporation)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM-x32\...\{4860C1E5-CE58-4D32-89DE-37951333B4C9}) (Version: 4.6.01055 - Microsoft Corporation)
Paladins (HKLM\...\Steam App 444090) (Version:  - Hi-Rez Studios)
PARTICLE MACE (HKLM\...\Steam App 295690) (Version:  - Andy Wallace)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
Planet Coaster (HKLM\...\Steam App 493340) (Version:  - Frontier Developments)
Polarity (HKLM\...\Steam App 315430) (Version:  - Bluebutton Games)
PowerShellIntegration.Notifications (x32 Version: 2.6.0.0 - Microsoft Corporation) Hidden
PowerVR Graphics SDK and Tools v4.0 (HKLM-x32\...\PowerVR Graphics SDK and Tools v4.0 4.0) (Version: 4.0 - Imagination)
PreEmptive Analytics Client German Language Pack (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.3197.1 - PreEmptive Solutions) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT  (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
Prerequisites for SSDT  (HKLM-x32\...\{35C1D9D6-87C0-46A3-B1B4-EDBCC063221C}) (Version: 11.1.3000.0 - Microsoft Corporation)
Primal Carnage (HKLM\...\Steam App 215470) (Version:  - Lukewarm Media)
Python Tools Redirection Template (x32 Version: 1.3 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7560 - Realtek Semiconductor Corp.)
Revolution Ace (HKLM\...\Steam App 274560) (Version:  - Laser Guided Games)
RivaTuner Statistics Server 6.4.1 (HKLM-x32\...\RTSS) (Version: 6.4.1 - Unwinder)
Rolling Sun (HKLM\...\Steam App 371670) (Version:  - Mystik'Art)
Roslyn Language Services - x86 (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (x32 Version: 14.0.24730 - Microsoft Corporation) Hidden
Saviors (HKLM\...\Steam App 314450) (Version:  - Sharpened Edge Studios)
SDK de comprobación de Visual Studio 2012 - esn (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden
ShareX (HKLM\...\Steam App 400040) (Version:  - ShareX Team)
SHIELD Streaming (Version: 7.1.0350 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.2.0.96 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM-x32\...\steam app 8930) (Version:  - 2K Games, Inc.)
Sid Meiers Civilization VI Digital Deluxe (HKLM-x32\...\Sid Meiers Civilization VI Digital Deluxe) (Version: 1.01 - 2K)
Sins Of The Demon RPG (HKLM\...\Steam App 461640) (Version:  - Chandler Rounsley)
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Spaceport Hope (HKLM\...\Steam App 394540) (Version:  - team BitClub)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Stellaris Galaxy Edition MULTi2 1.0.1 (HKLM-x32\...\Stellaris Galaxy Edition MULTi2 1.0.1) (Version:  - )
Storm of Spears (HKLM\...\Steam App 463350) (Version:  - Warfare Studios)
Streamline (HKLM\...\Steam App 252850) (Version:  - Proletariat Inc.)
Strumenti di correzione di Microsoft Office 2016 - Italiano (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Team Explorer for Microsoft Visual Studio 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Team Explorer for Microsoft Visual Studio 2015 (x32 Version: 14.0.24712 - Microsoft Corporation) Hidden
Team Render Client 17.048 (HKLM\...\MAXON58A19CDB) (Version: 17.048 - MAXON Computer GmbH)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
The Chosen RPG (HKLM\...\Steam App 434420) (Version:  - Little Big Lee)
The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version:  - Ubisoft)
The Escapists (HKLM\...\Steam App 298630) (Version:  - Mouldy Toof Studios)
The Hat Man: Shadow Ward (HKLM\...\Steam App 291010) (Version:  - Game Mechanics)
The Howler (HKLM\...\Steam App 306040) (Version:  - Antanas Marcelionis)
The Witness (HKLM-x32\...\1461060839_is1) (Version: 2.0.0.3 - GOG.com)
Tropico 4 (HKLM\...\Steam App 57690) (Version:  - Haemimont Games)
Trove (HKLM-x32\...\Steam App 304050) (Version:  - Trion Worlds)
TypeScript Power Tool (x32 Version: 1.0.5.0 - Microsoft Corporation) Hidden
TypeScript Power Tool (x32 Version: 1.7.6.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2013 (x32 Version: 1.0.5.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 (x32 Version: 1.7.6.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 1.7.6.0 (HKLM-x32\...\{5ee9a47a-3630-4016-b76d-dc752e9218dd}) (Version: 1.7.24809.0 - Microsoft Corporation)
UE4 Prerequisites (x64) (HKLM-x32\...\{b46d36bc-2438-471e-abe8-1fbbd51754ee}) (Version: 1.0.10.0 - Epic Games, Inc.)
UE4 Prerequisites (x64) (Version: 1.0.10.0 - Epic Games, Inc.) Hidden
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for Skype for Business 2016 (KB3128049) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{801D5242-0189-4C99-977B-0C77DBD1F046}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB3128049) 64-Bit Edition (HKLM\...\{90160000-012B-0407-1000-0000000FF1CE}_Office16.PROPLUS_{801D5242-0189-4C99-977B-0C77DBD1F046}) (Version:  - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 17.0 - Ubisoft)
Viridi (HKLM\...\Steam App 375950) (Version:  - Ice Water Games)
Visual C++ MFC MBCS Library for Visual Studio 2013 (HKLM-x32\...\{91501789-1ec3-422d-9043-b1065a88d603}) (Version: 12.0.21005.1 - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio 2013 Update 5 (KB2829760) (HKLM-x32\...\{17551f85-1d1c-4142-a83f-bbd18a3522c2}) (Version: 12.0.40629 - Microsoft Corporation)
Visual Studio 2015 Update 1 (KB3022398) (HKLM-x32\...\{fcaa9dba-9438-48b6-ad91-4e9b4cc7084a}) (Version: 14.0.24720 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VS Update core components (x32 Version: 12.0.40629 - Microsoft Corporation) Hidden
VS Update core components (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.5.1 (HKLM\...\VulkanRT1.0.5.1) (Version: 1.0.5.1 - LunarG, Inc.)
Waveform (HKLM\...\Steam App 204180) (Version:  - Eden Industries)
WCF Data Services 5.6.0 Runtime (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF Data Services 5.6.4 DEU Language Pack (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2013 (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 DEU Language Pack (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF RIA Services V1.0 SP2 (HKLM-x32\...\{5D8DD6A8-C4D7-4554-93F9-F1CC28C72600}) (Version: 4.1.62812.0 - Microsoft Corporation)
Windows Driver Package - Acer Incorporated Monitor  (09/11/2007 1.0.0.0) (HKLM\...\06625D7A3C6A1BFF6B7D226A8ED0E19734BD573F) (Version: 09/11/2007 1.0.0.0 - Acer Incorporated)
Windows Driver Package - AMD (amdkmpfd) System  (08/10/2015 15.201.0.0000) (HKLM\...\77418A2019FA69F93B068CA252F72AE8FCA06AFC) (Version: 08/10/2015 15.201.0.0000 - AMD)
Windows Driver Package - Asmedia Technology (asstahci64) SCSIAdapter  (11/12/2015 3.1.9.0000) (HKLM\...\58BFDF1071D14914F7A5AAB732CA7CD50F5D4A13) (Version: 11/12/2015 3.1.9.0000 - Asmedia Technology)
Windows Driver Package - ELAN SMBus (ETDSMBus) System  (09/07/2015 15.1.8.5) (HKLM\...\8C51EBB00CD5442CFBF99198B944C9B53C9B6854) (Version: 09/07/2015 15.1.8.5 - ELAN SMBus)
Windows Driver Package - Intel (e1dexpress) Net  (01/27/2016 12.15.22.6) (HKLM\...\CB3A14852D3535E16F952FC22F6004C37D9EA490) (Version: 01/27/2016 12.15.22.6 - Intel)
Windows Driver Package - Intel (ICCWDT) System  (09/20/2015 11.0.0.1007) (HKLM\...\2C8BF84CDD1779C9F2F280CB9F57EDE2A692565B) (Version: 09/20/2015 11.0.0.1007 - Intel)
Windows Driver Package - Intel (MEIx64) System  (03/28/2016 11.0.5.1189) (HKLM\...\63CEF5543DBF9887E6220C5C2F7F85C2D4C726D5) (Version: 03/28/2016 11.0.5.1189 - Intel)
Windows Driver Package - INTEL System  (01/26/2016 10.1.1.14) (HKLM\...\785D53C2FA3082957578CD78D80DD1C1268031DA) (Version: 01/26/2016 10.1.1.14 - INTEL)
Windows Driver Package - INTEL System  (04/04/2016 10.1.1.18) (HKLM\...\0CE6326B69F24AA95242EC1C74E7354B6245F2A2) (Version: 04/04/2016 10.1.1.18 - INTEL)
Windows Driver Package - INTEL System  (04/04/2016 10.1.1.18) (HKLM\...\EDEDD2FF45615375A49BA0672056E008BC71EC80) (Version: 04/04/2016 10.1.1.18 - INTEL)
Windows Driver Package - Intel USB  (07/31/2013 9.4.0.1025) (HKLM\...\4AC0FF1CA4CEC00C49C2C3ED599D94F8680DEA5D) (Version: 07/31/2013 9.4.0.1025 - Intel)
Windows Driver Package - LG Electronics Inc. (Serial) Ports  (03/05/2015 6.3.9600.4) (HKLM\...\23D08292B2639E56E3531B935E22B475F6700AAA) (Version: 03/05/2015 6.3.9600.4 - LG Electronics Inc.)
Windows Driver Package - NVIDIA Corporation (NVHDA) MEDIA  (03/27/2016 1.3.34.4) (HKLM\...\66B1D330496E65A22DC38FEC668627F21AFA1EAD) (Version: 03/27/2016 1.3.34.4 - NVIDIA Corporation)
Windows Phone 8.1 Emulators - ENU (HKLM-x32\...\{166a69f6-6512-47ea-a342-17d954fc059a}) (Version: 12.0.31010.0 - Microsoft Corporation)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Yamaha Steinberg USB Driver (HKLM-x32\...\InstallShield_{D4BC559E-F2C0-4BE8-9344-645D6F0D2929}) (Version: 1.9.5 - Yamaha Corporation)
Yamaha Steinberg USB Driver (Version: 1.9.5 - Yamaha Corporation) Hidden
Пакет Visual Studio 2012 Verification SDK - rus (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2759712002-1790162856-1979884355-1001_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\UWe\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2759712002-1790162856-1979884355-1001_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\UWe\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2759712002-1790162856-1979884355-1001_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\UWe\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2759712002-1790162856-1979884355-1001_Classes\CLSID\{c1dafb21-ece8-4f95-90a4-d10cc5fcc11c}\InprocServer32 -> c:\windows\system32\dfshim.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2759712002-1790162856-1979884355-1001_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\UWe\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2759712002-1790162856-1979884355-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\UWe\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll (Google Inc.)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {066488CF-1627-41E9-B93A-B9CF7F72FF45} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-12-13] (NVIDIA Corporation)
Task: {188879DF-B445-4CBE-A3B3-6EC0B257AB32} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2759712002-1790162856-1979884355-1001UA => C:\Users\UWe\AppData\Local\Google\Update\GoogleUpdate.exe [2016-04-24] (Google Inc.)
Task: {3677FA73-CD7B-4BC3-9C5C-68A563DC75A7} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-01-13] (Microsoft Corporation)
Task: {4E6452DC-4BD7-4C68-A991-F2EAB5DCE73A} - System32\Tasks\3n98o0q17241 => Rundll32.exe "C:\ProgramData\3n98o0q17241\3n98o0q17241.dll",noqlaf <==== ACHTUNG
Task: {4FC22F73-2DCB-4BB3-88F6-540C96905214} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23] (Adobe Systems Incorporated)
Task: {50C98D99-4C2A-4EAF-8E7F-C5CD1A78C88F} - System32\Tasks\2n21o8q50932 => Rundll32.exe "C:\ProgramData\2n21o8q50932\2n21o8q50932.dll",noqlaf <==== ACHTUNG
Task: {60F1D32E-38EF-4B1E-92F0-B90ED2CD7691} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {74602992-EEF1-46DA-A34E-4A210D0248B3} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-11] (Adobe Systems Incorporated)
Task: {791A70B6-AF2A-4AB5-BF08-9858B36F23BD} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {87AB4D3B-D6A8-4B0A-9645-8016EAEB3215} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {9DE578A0-EC4C-481D-9280-993EBC86B53E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {9E6E7B05-A73F-498B-88F2-317E7BA09EBC} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {A0E988CF-C01D-4E4D-AF57-BE8341C0CC1E} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation)
Task: {A62FCE8F-EDDA-474D-A1FB-23BECB8BD102} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {A8A6B970-3BA3-44E6-8562-B362F4CE4B0B} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {A911B04F-66D9-4A7C-B1D5-C6D2FFCA942D} - System32\Tasks\GIGABYTE OC GURU => C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe [2016-04-11] (GIGABYTE Technology Co.,Ltd.)
Task: {C4AE6DF6-B1F0-4E61-B7DA-C8161EF8DBFA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => D:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {CFC885C4-A9AD-4339-8DE6-59CB880A1B8C} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {D20B75E5-4AF0-4385-B2F6-DEC0AE2573D7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => D:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {D6FAB6FD-2C70-4B81-AA8B-20C213A0BCF4} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {ECC50D39-86BC-41C2-A2E5-EC9C68EF42E3} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {EEA88671-C86A-40C2-B621-84DCB2D4AE69} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\UWe\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Task: {EF1840D0-40C0-4B13-840C-22F4733C26DC} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2759712002-1790162856-1979884355-1001Core1d1ec16fbcb01d9 => C:\Users\UWe\AppData\Local\Google\Update\GoogleUpdate.exe [2016-04-24] (Google Inc.)
Task: {FDA54B5B-5E42-4AF2-806E-124E11F6EFDE} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-12-13] (NVIDIA Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2759712002-1790162856-1979884355-1001Core.job => C:\Users\UWe\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2759712002-1790162856-1979884355-1001Core1d19e7855602f7b.job => C:\Users\UWe\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2759712002-1790162856-1979884355-1001Core1d1af9bba7fe7a6.job => C:\Users\UWe\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

Shortcut: C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gооglе Сhrоmе Саnаry.lnk -> C:\Users\UWe\AppData\Local\Google\Chrome SxS\Application\chrome.bat ()
Shortcut: C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Intеrnеt Ехplоrеr.lnk -> C:\Program Files\Internet Explorer\iexplore.bat ()
Shortcut: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Gооglе Сhrоmе Саnаry.lnk -> C:\Users\UWe\AppData\Local\Google\Chrome SxS\Application\chrome.bat ()
Shortcut: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Gооglе Сhrоmе.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat ()
Shortcut: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Gооglе Сhrоmе.lnk -> C:\Users\UWe\AppData\Local\Google\Chrome SxS\Application\chrome.bat ()
Shortcut: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Моzillа Firеfох.lnk -> D:\Program Files (x86)\Mozilla Firefox\firefox.bat ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gооglе Сhrоmе.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Еpiс Gаmеs Lаunсhеr.lnk -> D:\Program Files\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.bat ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Моzillа Firеfох.lnk -> D:\Program Files (x86)\Mozilla Firefox\firefox.bat ()

ShortcutWithArgument: C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Web Applications\_crx_hmjkmjkepdijhoojdojkdfohbdgmmhki\Google Notizen – Notizen & Listen.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory="Profile 3" --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki
ShortcutWithArgument: C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Сhrоmе Аpp Lаunсhеr.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat () -> --show-app-list <===== Cyrillic
ShortcutWithArgument: C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Gооglе Nоtizеn – Nоtizеn & Listеn.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat () ->  --profile-directory="Profile 3" --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki
ShortcutWithArgument: C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Аwеsоmе Sсrееnshоt Аpp.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat () ->  --profile-directory="Profile 3" --app-id=mfpiaehgjbbfednooihadalhehabhcjo
ShortcutWithArgument: C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Canary-Apps\Gооglе Nоtizеn – Nоtizеn & Listеn.lnk -> C:\Users\UWe\AppData\Local\Google\Chrome SxS\Application\chrome.bat () ->  --profile-directory=Default --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki
ShortcutWithArgument: C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Canary-Apps\Аwеsоmе Sсrееnshоt Аpp.lnk -> C:\Users\UWe\AppData\Local\Google\Chrome SxS\Application\chrome.bat () ->  --profile-directory=Default --app-id=mfpiaehgjbbfednooihadalhehabhcjo
ShortcutWithArgument: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Notizen – Notizen & Listen.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory="Profile 3" --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki
ShortcutWithArgument: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Gооglе Nоtizеn – Nоtizеn & Listеn.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat () ->  --profile-directory="Profile 3" --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki
ShortcutWithArgument: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Uwе - Сhrоmе.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat () -> --profile-directory="Profile 3"
ShortcutWithArgument: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Сhrоmе Аpp Lаunсhеr.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat () -> --show-app-list <===== Cyrillic
ShortcutWithArgument: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Gооglе Сhrоmе.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat () -> --profile-directory="Profile 1"
ShortcutWithArgument: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\3e04146466ee503\Uwе - Сhrоmе.lnk -> C:\Users\UWe\AppData\Local\Google\Chrome SxS\Application\chrome.bat () -> --profile-directory="Profile 2"

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-13 20:18 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-15 18:25 - 2016-12-13 00:36 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-10-15 18:25 - 2016-12-13 00:35 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-09-29 18:16 - 2016-12-11 19:47 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-12-13 20:18 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-02-21 22:38 - 2016-02-21 22:38 - 00230064 _____ () D:\Program Files (x86)\Notepad++\NppShell_06.dll
2016-09-29 19:11 - 2016-09-29 19:11 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-01-10 21:03 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-12-15 00:39 - 2016-12-08 09:03 - 02412888 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-15 00:39 - 2016-12-08 09:03 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
2017-01-25 10:31 - 2017-01-17 04:09 - 00183885 _____ () C:\Users\UWe\AppData\Local\Extion\Windows_Activaton.exe
2017-01-23 19:00 - 2017-01-23 19:00 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-01-23 19:00 - 2017-01-23 19:00 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-01-23 19:00 - 2017-01-23 19:00 - 42130432 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-12-14 19:22 - 2016-12-14 19:22 - 02216448 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\roottools.dll
2017-01-10 21:03 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-01-10 21:03 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-01-10 21:03 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-01-10 21:03 - 2016-12-21 07:48 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-01-10 21:03 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-01-10 21:03 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-01-25 19:08 - 2017-01-25 19:09 - 03865600 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1701.10102.0_x64__8wekyb3d8bbwe\Calculator.exe
2017-01-11 18:59 - 2017-01-11 18:59 - 31167576 _____ () C:\Users\UWe\AppData\Local\Google\Chrome\User Data\PepperFlash\24.0.0.194\pepflashplayer.dll
2016-04-26 19:22 - 2016-12-13 00:35 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-10-15 18:25 - 2016-12-13 00:35 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-10-15 18:25 - 2016-12-13 00:35 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-01-27 19:12 - 2017-01-27 19:12 - 00098816 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\win32api.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00110080 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\pywintypes27.dll
2017-01-27 19:12 - 2017-01-27 19:12 - 00364544 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\pythoncom27.dll
2017-01-27 19:12 - 2017-01-27 19:12 - 00320512 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\win32com.shell.shell.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00914432 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\_hashlib.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 01176576 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\wx._core_.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00806400 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\wx._gdi_.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00816128 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\wx._windows_.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 01067008 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\wx._controls_.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00733184 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\wx._misc_.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00682496 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\pysqlite2._sqlite.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00088064 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\_ctypes.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00686080 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\unicodedata.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00119808 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\win32file.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00108544 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\win32security.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00007168 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\hashobjs_ext.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00017920 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\thumbnails_ext.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00088064 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\usb_ext.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00012800 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\common.time34.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00018432 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\win32event.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00167936 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\win32gui.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00046080 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\_socket.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 01303552 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\_ssl.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00128512 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\_elementtree.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00127488 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\pyexpat.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00038912 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\win32inet.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00036864 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\_psutil_windows.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00524248 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\windows._lib_cacheinvalidation.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00011264 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\win32crypt.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00123392 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\wx._wizard.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00077312 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\wx._html2.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00027648 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\_multiprocessing.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00020480 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\_yappi.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00035840 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\win32process.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00078848 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\wx._animate.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00024064 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\win32pipe.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00010240 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\select.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00025600 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\win32pdh.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00017408 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\win32profile.pyd
2017-01-27 19:12 - 2017-01-27 19:12 - 00022528 ____R () C:\Users\UWe\AppData\Local\Temp\_MEI52642\win32ts.pyd
2016-10-15 18:25 - 2016-12-13 00:33 - 64245184 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2016-10-15 18:25 - 2016-12-12 15:36 - 00525760 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-10-15 18:25 - 2016-12-12 15:36 - 00254008 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-10-15 18:25 - 2016-12-12 15:36 - 02808888 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-10-15 18:25 - 2016-12-12 15:36 - 00384568 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-10-15 18:25 - 2016-12-12 15:36 - 00447424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-10-15 18:25 - 2016-12-12 15:36 - 00336832 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-10-15 18:25 - 2016-12-12 15:36 - 01003456 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-12-20 21:49 - 2016-12-12 15:36 - 00956472 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSDKAPINode.node
2015-03-24 17:01 - 2015-03-24 17:01 - 00192512 _____ () C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GvVGAConfig.dll
2017-01-24 01:25 - 2017-01-18 19:39 - 00801600 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2015-12-11 19:27 - 2016-12-21 09:44 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2015-12-11 19:27 - 2016-12-21 09:44 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2015-12-11 19:27 - 2016-12-21 09:44 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2015-12-11 19:27 - 2017-01-18 19:42 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2015-12-11 19:27 - 2016-12-21 09:44 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00020824 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2015-12-11 19:27 - 2016-12-21 09:45 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 01682768 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2017-01-24 01:25 - 2016-12-21 09:44 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2017-01-24 01:25 - 2016-12-21 09:45 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2017-01-24 01:25 - 2016-12-21 09:44 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2015-12-11 19:27 - 2016-12-21 09:46 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2016-08-05 18:00 - 2017-01-18 19:42 - 00022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00052032 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00038712 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2017-01-24 01:25 - 2016-12-21 09:44 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2017-01-24 01:25 - 2016-12-21 09:46 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2015-12-11 19:27 - 2016-12-21 09:46 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2015-12-11 19:27 - 2016-12-21 09:47 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2015-12-11 19:27 - 2017-01-18 19:42 - 00381760 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2015-12-11 19:27 - 2016-12-21 09:46 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2016-08-05 18:00 - 2017-01-18 19:42 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2015-12-11 19:27 - 2016-12-21 09:46 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2015-12-11 19:27 - 2016-12-21 09:46 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2015-12-11 19:27 - 2016-12-21 09:46 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2015-12-11 19:27 - 2016-12-21 09:46 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2015-12-11 19:27 - 2016-12-21 09:47 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2015-12-11 19:27 - 2016-12-21 09:46 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2015-12-11 19:27 - 2016-12-21 09:46 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00246608 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2016-08-05 18:00 - 2016-12-21 09:45 - 00241104 _____ () C:\Program Files (x86)\Dropbox\Client\_jpegtran.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00022336 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2015-12-11 19:27 - 2016-12-21 09:47 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2015-12-11 19:27 - 2017-01-18 19:42 - 00025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00022872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 01826104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2015-12-11 19:27 - 2016-12-21 09:45 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00531264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 03928896 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 01972536 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00133432 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00224064 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00207680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd
2015-12-11 19:27 - 2016-12-21 09:47 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00103232 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.pyd
2016-02-19 05:11 - 2017-01-18 19:42 - 00023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00025936 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2017-01-24 01:25 - 2016-12-21 09:42 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2017-01-24 01:25 - 2017-01-18 19:42 - 00033112 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd
2017-01-24 01:25 - 2016-12-04 07:24 - 00293392 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
2017-01-24 01:25 - 2017-01-18 19:42 - 00084288 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2017-01-24 01:25 - 2016-12-21 09:50 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2017-01-24 01:25 - 2016-12-21 09:50 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2017-01-24 01:25 - 2017-01-18 19:42 - 00042816 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00171336 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00357688 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2015-12-11 19:27 - 2016-12-21 09:46 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2016-04-16 19:13 - 2017-01-18 19:42 - 00069968 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.pyd
2016-08-05 18:00 - 2017-01-18 19:42 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2017-01-24 01:25 - 2017-01-18 19:42 - 00546104 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2012-09-23 20:43 - 2012-09-23 20:43 - 00010240 _____ () D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\locale\de_de\acrotray.deu
2016-12-13 17:09 - 2016-12-13 17:09 - 00211456 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\quazip.dll
2016-12-13 17:09 - 2016-12-13 17:09 - 00037376 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\MacroRecording.dll
2016-12-13 17:07 - 2016-12-13 17:07 - 00093184 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\zlib.dll
2016-06-10 09:19 - 2016-06-10 09:19 - 00011264 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\libEGL.DLL
2016-06-10 09:19 - 2016-06-10 09:19 - 01990144 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\libGLESv2.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00439480 _____ () D:\Program Files (x86)\Evernote\Evernote\libxml2.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00321208 _____ () D:\Program Files (x86)\Evernote\Evernote\libtidy.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ==========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2015-11-18 01:16 - 2015-11-18 01:14 - 00007799 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 na2m-pr.licenses.adobe.com
127.0.0.1 na4r.services.adobe.com
127.0.0.1 ims-na1-prprod.adobelogin.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 practivate.adobe.de
127.0.0.1 209-34-83-73.ood.opsource.net
127.0.0.1 3dns.adobe.com
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 3dns-5.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sea.adobe.de
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 activate-sjc0.adobe.de
127.0.0.1 activate.adobe.com
127.0.0.1 activate.adobe.de
127.0.0.1 activate.wip.adobe.com
127.0.0.1 activate.wip1.adobe.com
127.0.0.1 activate.wip2.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 activate.wip3.adobe.de
127.0.0.1 activate.wip4.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns.adobe.de

Da befinden sich 126 zusätzliche Einträge.


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\Control Panel\Desktop\\Wallpaper -> D:\Haupt Sicherung\Pictures\final_fantasy_xv_wallpaper_v2_by_visionstudio_ff-blog.com.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000000"
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\StartupApproved\Run: => "GalaxyClient"
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\StartupApproved\Run: => "Google Update"
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_5053E9DA201401E8119CE2704010ED59"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [{85DB5A9E-55F7-4E82-9EBF-F412C4F8D900}] => D:\Program Files\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{DC1886E0-EC03-4742-9C8C-0A4BA188232C}] => D:\Program Files\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{310586C2-D3C6-470E-A23D-9BC1B8A6E1AB}] => D:\Program Files\Steam\steamapps\common\NARUTO SHIPPUDEN Ultimate Ninja STORM 4\NSUNS4.exe
FirewallRules: [{3F0A939D-0AC1-411B-A185-DA7FDDCBD4F0}] => D:\Program Files\Steam\steamapps\common\NARUTO SHIPPUDEN Ultimate Ninja STORM 4\NSUNS4.exe
FirewallRules: [{0B98425D-DAF7-4879-BDD2-405B19B24612}] => D:\Program Files\Steam\steamapps\common\ShareX\ShareX_Launcher.exe
FirewallRules: [{B4105377-CA76-4013-935C-B0870B52AC1A}] => D:\Program Files\Steam\steamapps\common\ShareX\ShareX_Launcher.exe
FirewallRules: [{B1DD6A46-F964-4C60-842A-26DEF66F88B9}] => D:\Program Files\Steam\steamapps\common\Tropico 4\Tropico4.exe
FirewallRules: [{718B2083-F625-4924-95A8-074AA3873B53}] => D:\Program Files\Steam\steamapps\common\Tropico 4\Tropico4.exe
FirewallRules: [UDP Query User{1761235E-03A5-45E3-BB28-C1AD4FC56F0C}D:\haupt sicherung\save\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => D:\haupt sicherung\save\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{2B978A27-5252-4B1D-99CD-9F75AB7663E4}D:\haupt sicherung\save\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => D:\haupt sicherung\save\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{A7D7E1AE-A755-4B81-881A-563E4A8C3ECF}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => C:\program files\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [TCP Query User{50AB6879-4E30-46F4-B14D-F6F5FA6AD351}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => C:\program files\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [{151E4865-355A-47E7-B4A6-68DCC7D47E5B}] => D:\Program Files\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe
FirewallRules: [{A0CD38CC-CB63-40F0-8E36-34F9EA7639C9}] => D:\Program Files\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe
FirewallRules: [{8924B64D-37A2-42E7-95A5-BC8F74D35FC7}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\mod_tools\Sublime\sublime_text.exe
FirewallRules: [{A6D332C0-89D1-4C52-BF87-044815099AC3}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\mod_tools\Sublime\sublime_text.exe
FirewallRules: [{DB3072D6-FE24-4F5C-AA01-857D82B78275}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\mod_tools\Tiled\tiled.exe
FirewallRules: [{203BBFAA-8664-4748-81AD-0D18F5CD7737}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\mod_tools\Tiled\tiled.exe
FirewallRules: [{019B2CF6-D6EC-4C11-8676-3913F8C7F658}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\mod_tools\FMOD_Designer\fmod_designer.exe
FirewallRules: [{6646DD7D-9A05-40D6-A7F1-A68CE2FA5AE6}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\mod_tools\FMOD_Designer\fmod_designer.exe
FirewallRules: [{7D629EBF-F04D-4289-BE77-3CA30CBA764D}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\mod_tools\Spriter\Spriter.exe
FirewallRules: [{A41AE9DA-91F7-444E-A5BB-29C8EDD1E9F8}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\mod_tools\Spriter\Spriter.exe
FirewallRules: [{A2A80F0B-A263-436D-9F2E-1E9E220F1C6F}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\ModUploader.exe
FirewallRules: [{BB63D83C-F17B-48AA-B6F5-FAE89C1CC50A}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\ModUploader.exe
FirewallRules: [{4C50908F-CDCA-4390-9C28-0D27E3EC173B}] => D:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{95075DC0-99DA-4D2C-A078-55793529EAE7}] => D:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{56F06D30-3303-40E7-B847-EA0141942833}] => D:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{F71AEBAC-F717-44A0-B11E-C46B67E1B8ED}] => D:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{B99BCFF1-CA64-4DD6-9E18-206C8E6168F3}] => D:\Program Files\Steam\steamapps\common\primal_carnage\Binaries\Win32\PrimalCarnageGame.exe
FirewallRules: [{ACF54B8A-A5C9-4E26-8F99-4A1A85AB4F64}] => D:\Program Files\Steam\steamapps\common\primal_carnage\Binaries\Win32\PrimalCarnageGame.exe
FirewallRules: [{CE4A6D4A-90E3-4624-BB0B-2703D564E644}] => D:\Program Files\Steam\steamapps\common\outtheresomewhere\ots.exe
FirewallRules: [{82242145-2176-4F32-BDB5-4CEB4A213952}] => D:\Program Files\Steam\steamapps\common\outtheresomewhere\ots.exe
FirewallRules: [{606A9C9E-3D8A-4819-AD3B-C48D73F50B6F}] => D:\Program Files\Steam\steamapps\common\Revolution Ace\Binaries\Win32\ShmupGame.exe
FirewallRules: [{FCF24171-F067-45A2-BB34-487CADD16BEC}] => D:\Program Files\Steam\steamapps\common\Revolution Ace\Binaries\Win32\ShmupGame.exe
FirewallRules: [{371A941C-1E0C-4677-AF2B-881B52A923C2}] => D:\Program Files\Steam\steamapps\common\Revolution Ace\EQLauncher.exe
FirewallRules: [{9CD41DE9-7EC0-4CA1-B0EE-573E70EE3963}] => D:\Program Files\Steam\steamapps\common\Revolution Ace\EQLauncher.exe
FirewallRules: [{91AF46A2-CD7B-40E3-96FA-600A76ECE450}] => D:\Program Files\Steam\steamapps\common\The Hat Man Shadow Ward\The Hat Man.exe
FirewallRules: [{C70E474F-7FC3-4698-A50F-EF8E75E4BD66}] => D:\Program Files\Steam\steamapps\common\The Hat Man Shadow Ward\The Hat Man.exe
FirewallRules: [{C46E2BD4-C685-4B70-B646-ACE892862F47}] => D:\Program Files\Steam\steamapps\common\PARTICLEMACE\PARTICLEMACE_executable.exe
FirewallRules: [{4658C9E4-5C57-4AA5-96D3-3BC8836E5894}] => D:\Program Files\Steam\steamapps\common\PARTICLEMACE\PARTICLEMACE_executable.exe
FirewallRules: [{655F21A8-E4A2-420D-8A45-9EB8A175625B}] => D:\Program Files\Steam\steamapps\common\Howler\Howler.exe
FirewallRules: [{EFADA1E3-CE1C-4873-B283-79818FE8B288}] => D:\Program Files\Steam\steamapps\common\Howler\Howler.exe
FirewallRules: [{53F87DF2-7112-4AAA-9DCD-573612F29467}] => D:\Program Files\Steam\steamapps\common\Morphopolis\project.exe
FirewallRules: [{38260CD4-DFF0-409A-A1C6-339BBA94E807}] => D:\Program Files\Steam\steamapps\common\Morphopolis\project.exe
FirewallRules: [{E85AA388-2199-4B96-AA7D-F8E729F914E8}] => D:\Program Files\Steam\steamapps\common\Saviors\Saviors.exe
FirewallRules: [{903DDB62-B1DF-4B69-AC85-DC531B8589A9}] => D:\Program Files\Steam\steamapps\common\Saviors\Saviors.exe
FirewallRules: [{ABEC8798-C5F9-419A-A40C-9F7904B1DF0B}] => D:\Program Files\Steam\steamapps\common\Polarity\Polarity.exe
FirewallRules: [{4D152AA7-1FF2-4FDD-82E4-8365CED026BC}] => D:\Program Files\Steam\steamapps\common\Polarity\Polarity.exe
FirewallRules: [{BB4FEFAD-7560-474E-8EF3-54F74EDD770D}] => D:\Program Files\Steam\steamapps\common\Airscape\nw.exe
FirewallRules: [{67F6C8B4-793E-41FF-886C-1B4C4837F5EB}] => D:\Program Files\Steam\steamapps\common\Airscape\nw.exe
FirewallRules: [{111F1D80-8366-4763-805F-CABCF213302B}] => D:\Program Files\Steam\steamapps\common\Intergalactic Bubbles\Intergalactic Bubbles.exe
FirewallRules: [{3C9F04D5-00F3-4BB9-AD71-016C474F6444}] => D:\Program Files\Steam\steamapps\common\Intergalactic Bubbles\Intergalactic Bubbles.exe
FirewallRules: [{24BDA5E8-4387-42C0-A4E0-A1EFDC3122AF}] => D:\Program Files\Steam\steamapps\common\Rolling Sun\Bin64\RollingSun.exe
FirewallRules: [{85264155-372E-4FFF-9D5A-6D96F9A0EC01}] => D:\Program Files\Steam\steamapps\common\Rolling Sun\Bin64\RollingSun.exe
FirewallRules: [{826D5DDD-9426-4A36-8C03-F0BF9928CFF8}] => D:\Program Files\Steam\steamapps\common\Labyronia\Game.exe
FirewallRules: [{72956207-E167-4709-A00B-15C49E7AEE20}] => D:\Program Files\Steam\steamapps\common\Labyronia\Game.exe
FirewallRules: [{BCEF0356-3661-4260-B5BB-ECD117D002EF}] => D:\Program Files\Steam\steamapps\common\Gun Rocket\GunRocketBuildWithGamepadSupport.exe
FirewallRules: [{F32DC046-F1C7-4021-9ADB-C85B193D2AA9}] => D:\Program Files\Steam\steamapps\common\Gun Rocket\GunRocketBuildWithGamepadSupport.exe
FirewallRules: [{8E106DA5-027E-4FC3-BB60-7BDBF175A1E4}] => D:\Program Files\Steam\steamapps\common\Labyronia RPG 2\Game.exe
FirewallRules: [{8FF486D6-4B9D-4C84-B01A-E26D327DE456}] => D:\Program Files\Steam\steamapps\common\Labyronia RPG 2\Game.exe
FirewallRules: [{D1020106-398E-4EA7-8E4C-A41A24C045AE}] => D:\Program Files\Steam\steamapps\common\Legend of Mysteria\EQLauncher.exe
FirewallRules: [{CC1077CB-E4D6-4E27-8A2B-793658534300}] => D:\Program Files\Steam\steamapps\common\Legend of Mysteria\EQLauncher.exe
FirewallRules: [{DB99E286-0F7D-48E5-A371-9C2280034456}] => D:\Program Files\Steam\steamapps\common\The Chosen RPG\EQLauncher.exe
FirewallRules: [{F97B2F09-A068-4CF1-8D83-82C5E451C176}] => D:\Program Files\Steam\steamapps\common\The Chosen RPG\EQLauncher.exe
FirewallRules: [{2AA1511D-5F48-4E99-8626-D29E0D02C4A2}] => D:\Program Files\Steam\steamapps\common\Sins Of The Demon\Game.exe
FirewallRules: [{46859F5A-7C4C-47E3-AE44-50640FCE8B6E}] => D:\Program Files\Steam\steamapps\common\Sins Of The Demon\Game.exe
FirewallRules: [{FBE9F54E-C68F-4233-BD84-F18007286ABD}] => D:\Program Files\Steam\steamapps\common\Spaceport Hope\space.exe
FirewallRules: [{E39581C9-2E27-4207-90F3-62EF57041CB0}] => D:\Program Files\Steam\steamapps\common\Spaceport Hope\space.exe
FirewallRules: [{1C55A65F-A50D-4925-8F0A-5FDAC2CF6D6D}] => D:\Program Files\Steam\steamapps\common\Storm of Spears\Storm of Spears.exe
FirewallRules: [{C72E3AFA-399A-47DD-8FDC-2C9EE67F9091}] => D:\Program Files\Steam\steamapps\common\Storm of Spears\Storm of Spears.exe
FirewallRules: [{0D42E046-7027-4BAC-86DC-ABB154368511}] => D:\Program Files\Steam\steamapps\common\Waveform\Waveform.exe
FirewallRules: [{D69A4F7F-2264-432B-93F1-F23E900D474C}] => D:\Program Files\Steam\steamapps\common\Waveform\Waveform.exe
FirewallRules: [UDP Query User{534C8B13-E124-46E4-9FAB-E2CE1E2C67EA}D:\program files\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => D:\program files\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{39A9E25C-8C85-4D94-A120-1228A038CBB5}D:\program files\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => D:\program files\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [{B4BD2DAE-4FF9-4952-A819-915583C3CE3E}] => D:\Program Files\Steam\steamapps\common\Chronicle\Chronicle.exe
FirewallRules: [{64FCECAE-A281-40E4-B28C-139B96D22EE6}] => D:\Program Files\Steam\steamapps\common\Chronicle\Chronicle.exe
FirewallRules: [UDP Query User{CB95B990-CD80-4FA8-9192-393DFF2D700F}C:\program files\java\jre1.8.0_92\bin\javaw.exe] => C:\program files\java\jre1.8.0_92\bin\javaw.exe
FirewallRules: [TCP Query User{D6336ACA-14E3-4D7F-821F-41E0DF8609D0}C:\program files\java\jre1.8.0_92\bin\javaw.exe] => C:\program files\java\jre1.8.0_92\bin\javaw.exe
FirewallRules: [UDP Query User{8977473C-193C-4DBD-97C1-AA00299741EB}D:\program files (x86)\overwatch\overwatch.exe] => D:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{6D02125B-CFE3-4532-B0D7-DBDC128B1CE1}D:\program files (x86)\overwatch\overwatch.exe] => D:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{3D7E6698-941C-4562-8893-90D1BA89E3F2}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D045011F-00FA-415F-B1F1-5F3C733D5C4C}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{ACD94FCA-2BC9-47F9-B676-CF34E3936188}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{97259B18-B189-4C37-B4EC-DF73BE6D3800}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [UDP Query User{C9233346-4063-486E-BC91-16B71E7B3AD1}D:\program files\maxon\team render client r17\cinema 4d teamrender client.exe] => D:\program files\maxon\team render client r17\cinema 4d teamrender client.exe
FirewallRules: [TCP Query User{8B45C3A4-A531-4036-9B82-9EE326492705}D:\program files\maxon\team render client r17\cinema 4d teamrender client.exe] => D:\program files\maxon\team render client r17\cinema 4d teamrender client.exe
FirewallRules: [{2480BBA9-86EA-4102-9997-997AEF66858D}] => D:\Program Files\Steam\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{784805A8-192F-4F83-A8CF-38D0C5D0BBFE}] => D:\Program Files\Steam\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{D5BE5AE4-B954-4D94-A19F-2A8AAF94903A}] => D:\Program Files\Steam\steamapps\common\RaceTheSun\RaceTheSun.exe
FirewallRules: [{7568F640-EB98-4858-B3EF-45C52DE0A064}] => D:\Program Files\Steam\steamapps\common\RaceTheSun\RaceTheSun.exe
FirewallRules: [{30BCEF24-6E79-4ECA-87F6-F7F61918BC45}] => D:\Program Files\Steam\steamapps\common\Worms Clan Wars - Speech Bank Editor\SBEditor.exe
FirewallRules: [{735A53FC-E56E-48F0-B300-15F1DF8A960B}] => D:\Program Files\Steam\steamapps\common\Worms Clan Wars - Speech Bank Editor\SBEditor.exe
FirewallRules: [{757A6D0A-8410-40DE-A070-B08743C9D397}] => D:\Program Files\Steam\steamapps\common\Worms Clan Wars Editor\WCWEditor.exe
FirewallRules: [{DC2BDF6A-5172-4331-9923-0ECEFCC0B6B3}] => D:\Program Files\Steam\steamapps\common\Worms Clan Wars Editor\WCWEditor.exe
FirewallRules: [{9E3266A6-9B68-44E9-85D1-8C195367B3D3}] => D:\Program Files\Steam\steamapps\common\Worms Clan Wars\WormsClanWars.exe
FirewallRules: [{03B3AF56-6CA9-4C33-865D-14F39A592537}] => D:\Program Files\Steam\steamapps\common\Worms Clan Wars\WormsClanWars.exe
FirewallRules: [UDP Query User{39C08D33-E5C0-4A20-9A20-EF95E00A6126}D:\program files (x86)\rollercoaster tycoon world\rollercoaster tycoon world.exe] => D:\program files (x86)\rollercoaster tycoon world\rollercoaster tycoon world.exe
FirewallRules: [TCP Query User{8B5755FE-0EA0-4D2B-B0E1-C579EB04D59D}D:\program files (x86)\rollercoaster tycoon world\rollercoaster tycoon world.exe] => D:\program files (x86)\rollercoaster tycoon world\rollercoaster tycoon world.exe
FirewallRules: [{5C97CF95-850E-49AF-AAF5-44ACE9A0A406}] => D:\Program Files\Steam\steamapps\common\Dig or Die\DigOrDie.exe
FirewallRules: [{8CD839B2-93BE-4527-BC8B-DA814039AD66}] => D:\Program Files\Steam\steamapps\common\Dig or Die\DigOrDie.exe
FirewallRules: [{DC35FCE1-C754-40C2-8925-C0605FF4110E}] => D:\Programme (x86)\Microsoft Visual Studio 12.0\Common7\IDE\devenv.exe
FirewallRules: [{F865BD3C-8207-451A-9B67-D366066ABE4A}] => D:\Programme (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{1A29A560-32FF-4368-8323-640EFAAE185F}] => D:\Program Files\Steam\steamapps\common\Freedom Planet\FP.exe
FirewallRules: [{1CB0192A-9053-4642-A1AC-B7E171A8BC4F}] => D:\Program Files\Steam\steamapps\common\Freedom Planet\FP.exe
FirewallRules: [{4EE77CC3-3830-46B3-8438-C0D8C2144F11}] => D:\Program Files\Steam\steamapps\common\Hell Yeah\HELLYEAH.exe
FirewallRules: [{C7E0F81F-453E-455B-A504-D3116C41BF80}] => D:\Program Files\Steam\steamapps\common\Hell Yeah\HELLYEAH.exe
FirewallRules: [{0ADF5E86-8C14-44CF-8F9C-7A19CE35B6AC}] => D:\Program Files\Steam\steamapps\common\Jet Set Radio\jsrsetup.exe
FirewallRules: [{EA5E65E5-D776-4881-877D-1696ADA6E178}] => D:\Program Files\Steam\steamapps\common\Jet Set Radio\jsrsetup.exe
FirewallRules: [{8BAF9B06-F2A0-4067-980C-3FD17CF27DFA}] => D:\Program Files\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{801D1409-676C-4E9E-A5CC-D1EC34406A32}] => D:\Program Files\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [UDP Query User{AFD17705-E342-4729-BB1E-1BE75FB172E1}D:\haupt sicherung\save\scrap mechanic 0.1.15\release\scrapmechanic.exe] => D:\haupt sicherung\save\scrap mechanic 0.1.15\release\scrapmechanic.exe
FirewallRules: [TCP Query User{80503F6B-D36F-4BC9-8EAD-86A8113DCF14}D:\haupt sicherung\save\scrap mechanic 0.1.15\release\scrapmechanic.exe] => D:\haupt sicherung\save\scrap mechanic 0.1.15\release\scrapmechanic.exe
FirewallRules: [UDP Query User{AE73F206-030F-4661-976A-D825A3D85C10}C:\program files\java\jre1.8.0_66\bin\javaw.exe] => C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [TCP Query User{5FA395E3-0FD1-43ED-8085-77F9CF71AC06}C:\program files\java\jre1.8.0_66\bin\javaw.exe] => C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{62269C73-B914-4ECA-9B0E-B3E26A0D943F}] => D:\Program Files\Steam\steamapps\common\Besiege\Besiege.exe
FirewallRules: [{4CCB8C0B-0C8E-43D7-94FE-A3B3439E90A2}] => D:\Program Files\Steam\steamapps\common\Besiege\Besiege.exe
FirewallRules: [{735B31A8-73F6-474E-9106-0864BBD7722F}] => D:\Program Files\Steam\steamapps\common\Creativerse\Creativerse.exe
FirewallRules: [{2A282D4B-7EDC-4AD8-BD14-6F39FBC5B548}] => D:\Program Files\Steam\steamapps\common\Creativerse\Creativerse.exe
FirewallRules: [{8E43E36D-8D38-4FA8-923B-A68ACBB83624}] => D:\Program Files\Steam\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{0F1A0E2D-DF82-4109-B53C-C2A15C8866DF}] => D:\Program Files\Steam\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{238073FD-8A93-43DA-9D4F-632594E01332}] => D:\Program Files\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{5D6F0740-B1B7-4859-8423-ED96E6455928}] => D:\Program Files\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [UDP Query User{6A6230DF-24BD-428A-A0D5-CD49C6D08AEB}D:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => D:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{B4278234-4A74-4ACC-8578-48B14EF4CB06}D:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => D:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{A15E39CA-F14F-4297-97C3-1E89909145BB}] => D:\Program Files\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{D3C03BD1-7DD2-491F-8841-AB93D2FE7EED}] => D:\Program Files\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{B7961A21-5528-4F20-A81F-0B3D2DA84767}] => D:\Program Files\Steam\Steam.exe
FirewallRules: [{52043F54-AC2D-4CBE-BD48-F5BE80595A21}] => D:\Program Files\Steam\Steam.exe
FirewallRules: [{A6F0548E-2B5B-478B-9646-C0709C3EA227}] => D:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{8C62C7E6-43AF-4237-917A-20E67EDC298A}] => D:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{1572CA56-5CCA-4342-B13B-245FD12813A0}] => D:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CE1192D0-BE27-45E5-B307-5939BD04EAAF}] => D:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{17DC3EAD-8C4E-4EA5-B836-3A7574C2EB34}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{D61CFFB2-E326-4017-97B8-7710D24F4CC6}] => D:\Program Files\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{E63A0015-B59A-4E6F-B35D-85A16CD6A658}] => D:\Program Files\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{29928419-91E5-418F-A5C2-CCFAFDF52009}] => D:\Program Files\Steam\steamapps\common\ACE\Binaries\Win32\CyphGame.exe
FirewallRules: [{B6902221-F7E4-48A8-AE9B-B1CB7C36F4A2}] => D:\Program Files\Steam\steamapps\common\ACE\Binaries\Win32\CyphGame.exe
FirewallRules: [TCP Query User{5DB28B84-BD81-4843-BD5E-8AADF6BA1DEC}C:\program files\java\jre1.8.0_66\bin\java.exe] => C:\program files\java\jre1.8.0_66\bin\java.exe
FirewallRules: [UDP Query User{69E0F1BC-5058-4A68-8618-75BFC9078790}C:\program files\java\jre1.8.0_66\bin\java.exe] => C:\program files\java\jre1.8.0_66\bin\java.exe
FirewallRules: [{82A0BA38-07F2-46CC-B3C5-72300C1C5CEF}] => D:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{B919FE4E-04A5-4702-89E4-8FFB58333A78}] => D:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{165C575E-AE76-4DC7-ADA6-79BEC5CE13C0}D:\haupt sicherung\click'n'load v2 emulator\cnl2_emu.exe] => D:\haupt sicherung\click'n'load v2 emulator\cnl2_emu.exe
FirewallRules: [UDP Query User{ED6E1D6C-3B71-4E64-A916-2B357E2DDE1F}D:\haupt sicherung\click'n'load v2 emulator\cnl2_emu.exe] => D:\haupt sicherung\click'n'load v2 emulator\cnl2_emu.exe
FirewallRules: [TCP Query User{FDB9ED79-28C0-4DBE-8B1D-90FB1BDCD260}D:\program files\epic games\4.10\engine\binaries\win64\ue4editor.exe] => D:\program files\epic games\4.10\engine\binaries\win64\ue4editor.exe
FirewallRules: [UDP Query User{45CB75F1-2C77-4C1E-B8A3-5F62A3F7A211}D:\program files\epic games\4.10\engine\binaries\win64\ue4editor.exe] => D:\program files\epic games\4.10\engine\binaries\win64\ue4editor.exe
FirewallRules: [TCP Query User{7FAEAD14-AC90-4935-A9CA-7F2C86B13ADA}D:\program files (x86)\galaxyclient\games\worms forts - under siege\wf.exe] => D:\program files (x86)\galaxyclient\games\worms forts - under siege\wf.exe
FirewallRules: [UDP Query User{51872F45-B13F-41C5-ACE4-4227915019BB}D:\program files (x86)\galaxyclient\games\worms forts - under siege\wf.exe] => D:\program files (x86)\galaxyclient\games\worms forts - under siege\wf.exe
FirewallRules: [{EF308D56-58D4-4E88-958D-EB59ED93D7F9}] => D:\Program Files\Steam\steamapps\common\Lara Croft and the Temple of Osiris\LC2.exe
FirewallRules: [{86AC7352-5AB3-408D-BFAE-EF6A74D69613}] => D:\Program Files\Steam\steamapps\common\Lara Croft and the Temple of Osiris\LC2.exe
FirewallRules: [{A00C5BEF-5059-4B74-ADEE-7F3DF7900BC0}] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\The Crew (Worldwide)\TheCrew.exe
FirewallRules: [{DA781880-A8FA-488D-85E8-E95D25713349}] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\The Crew (Worldwide)\TheCrew.exe
FirewallRules: [TCP Query User{D55C69D7-098E-423D-80AC-F4BE855D48B6}D:\program files\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => D:\program files\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [UDP Query User{2F428767-7C80-4224-8D32-FB318BB68188}D:\program files\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => D:\program files\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{54487352-2944-4ADF-91B9-8AC2F420908B}D:\program files (x86)\antichamber\binaries\win32\udk.exe] => D:\program files (x86)\antichamber\binaries\win32\udk.exe
FirewallRules: [UDP Query User{3B9F688C-B8C4-4F49-A2AF-E42BF94C0F0F}D:\program files (x86)\antichamber\binaries\win32\udk.exe] => D:\program files (x86)\antichamber\binaries\win32\udk.exe
FirewallRules: [{54B615A6-CF0D-4B0D-B204-0F2B9C828DCD}] => D:\Program Files\Steam\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe
FirewallRules: [{4DD13F81-B2B8-4E68-AA51-144CA044BE9A}] => D:\Program Files\Steam\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe
FirewallRules: [{5FB5FD71-DBAF-42DD-81D6-1D3C9431EAEE}] => D:\Program Files\Steam\steamapps\common\Call of Duty - Infinite Warfare\iw7_ship.exe
FirewallRules: [{69254E8E-9B22-47C5-9A6D-22CB66A0D981}] => D:\Program Files\Steam\steamapps\common\Call of Duty - Infinite Warfare\iw7_ship.exe
FirewallRules: [{C6D847D5-ED7D-4DF2-BF8E-6C375A2C77B7}] => D:\Program Files\Steam\steamapps\common\Call of Duty Modern Warfare Remastered\h1_mp64_ship.exe
FirewallRules: [{752786F8-5FFE-4CC8-9255-5619E295D4EA}] => D:\Program Files\Steam\steamapps\common\Call of Duty Modern Warfare Remastered\h1_mp64_ship.exe
FirewallRules: [{D3769110-C844-42CE-B835-5FFD2066571E}] => D:\Program Files\Steam\steamapps\common\Call of Duty Modern Warfare Remastered\h1_sp64_ship.exe
FirewallRules: [{96D3158E-E6EB-461B-9B62-B8E7BF22499B}] => D:\Program Files\Steam\steamapps\common\Call of Duty Modern Warfare Remastered\h1_sp64_ship.exe
FirewallRules: [{969AD10B-D7AB-4A0A-AE38-D475F0A4A712}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [TCP Query User{63839ACA-8DF6-418D-9EEC-C60368E3560E}D:\program files (x86)\dishonored die maske des zorns game of the year edition\binaries\win32\dishonored.exe] => D:\program files (x86)\dishonored die maske des zorns game of the year edition\binaries\win32\dishonored.exe
FirewallRules: [UDP Query User{6CF54468-A7C1-4DC4-A631-876BEF8C44EA}D:\program files (x86)\dishonored die maske des zorns game of the year edition\binaries\win32\dishonored.exe] => D:\program files (x86)\dishonored die maske des zorns game of the year edition\binaries\win32\dishonored.exe
FirewallRules: [{56DA4E37-BA23-4BA4-AEFC-4EC1B9603F2A}] => D:\Program Files\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe
FirewallRules: [{13C2B602-6604-443B-8B25-B1DB8AA733C5}] => D:\Program Files\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe
FirewallRules: [{935A7C3F-DEAC-4F82-8D25-D030877D5AF4}] => D:\Program Files\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{C3FCA436-18DC-4F86-9C1D-B3AAEC125BF0}] => D:\Program Files\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{33180263-7F6F-4528-BC11-2CF269DA44BE}] => D:\Program Files\Steam\steamapps\common\The Escapists\TheEscapists.exe
FirewallRules: [{BEEE9717-B75E-4D7E-BC74-D7472DAA529B}] => D:\Program Files\Steam\steamapps\common\The Escapists\TheEscapists.exe
FirewallRules: [{5A0342CC-9169-494D-B22C-09100B132B09}] => D:\Program Files (x86)\Pantera Entertainment\Theme Park Studio\win64\ThemeParkStudio.exe
FirewallRules: [{0026395E-CEB3-4759-87A1-791B12CA023F}] => D:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{6FA6CFEE-22CA-4FFC-B18D-8BF1C51A6646}] => D:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{83F6312E-F79F-4EC2-BFE4-73DF02A5D732}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{9F942BEB-0688-4144-99AD-9ABA1FB8191C}] => D:\Program Files\Steam\steamapps\common\Chronicle\WorkshopTool\WorkshopManager.exe
FirewallRules: [{6C815367-6F02-4E80-9FA0-8D19EC47B7A7}] => D:\Program Files\Steam\steamapps\common\Chronicle\WorkshopTool\WorkshopManager.exe
FirewallRules: [{BC2D69B6-378F-4B53-BADC-2A605A053D7C}] => D:\Program Files\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe
FirewallRules: [{2A0E3F95-24F6-4576-8871-158F0250FBF5}] => D:\Program Files\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe
FirewallRules: [{F06BF9E6-0B23-4A7E-A4E5-9CEAB7091807}] => D:\Program Files\Steam\steamapps\common\Viridi\Viridi.exe
FirewallRules: [{D48B5ED6-E8AE-4D59-B3B4-8B121E277EC2}] => D:\Program Files\Steam\steamapps\common\Viridi\Viridi.exe
FirewallRules: [{22B5D9EA-5104-43AC-89AA-8BA690117C33}] => D:\Program Files\Steam\steamapps\common\Streamline\hns\Binaries\Win64\Streamline.exe
FirewallRules: [{7E48417F-D29F-4580-855B-86CD673BF9EB}] => D:\Program Files\Steam\steamapps\common\Streamline\hns\Binaries\Win64\Streamline.exe
FirewallRules: [{9F5B85FA-983B-48C1-AC8B-33692047D505}] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{8D1C9651-E3FA-46FC-AA7A-418AD4AD71DB}] => C:\WINDOWS\system32\rundll32.exe
FirewallRules: [{E1B28F4B-328B-4E4F-8FC3-DDDE1F7425BF}] => 㩃啜敳獲啜敗䅜灰慄慴剜慯業杮獜湳獜湳攮數
FirewallRules: [{DA378570-FA87-47BE-AA40-71B6ADF7FCFA}] => 㩃啜敳獲啜敗䅜灰慄慴剜慯業杮獜湳獜癡略⹰硥e
FirewallRules: [{B39906D9-7A94-4766-B86C-D7FBE2463FB1}] => D:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8A091072-4722-4102-9948-4DD56D461B62}] => D:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{988D041D-EF54-4A9F-BE22-2E4D0AAA9319}] => C:\Windows\System32\rundll32.exe
FirewallRules: [{E1772166-FB84-448C-929F-77E5550520D8}] => C:\Windows\System32\rundll32.exe

==================== Wiederherstellungspunkte =========================

ACHTUNG: Systemwiederherstellung ist deaktiviert

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (01/27/2017 09:44:17 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe".
Die abhängige Assemblierung "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/27/2017 09:13:26 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:
hr=0xC004F074
Befehlszeilenargumente:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=TimerEvent

Error: (01/27/2017 07:46:10 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe".
Die abhängige Assemblierung "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/27/2017 07:23:47 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "D:\Programme (x86)\Microsoft Visual Studio 12.0\VC\redist\1033\vcredist_arm.exe".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="arm",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/27/2017 07:21:57 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "c:\program files (x86)\rivatuner statistics server\EncoderServer64.exe".
Die abhängige Assemblierung "Microsoft.VC90.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/27/2017 07:21:57 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "c:\program files (x86)\rivatuner statistics server\EncoderServer.exe".
Die abhängige Assemblierung "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/27/2017 07:21:57 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "c:\program files (x86)\rivatuner statistics server\RTSSHooksLoader.exe".
Die abhängige Assemblierung "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/27/2017 07:21:57 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "c:\program files (x86)\rivatuner statistics server\RTSSHooksLoader64.exe".
Die abhängige Assemblierung "Microsoft.VC90.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/27/2017 07:21:37 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe".
Die abhängige Assemblierung "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/27/2017 07:21:37 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe".
Die abhängige Assemblierung "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".


Systemfehler:
=============
Error: (01/27/2017 07:13:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Google Update-Dienst (gupdate)" wurde aufgrund folgenden Fehlers nicht gestartet: 
Das System kann die angegebene Datei nicht finden.

Error: (01/27/2017 07:12:04 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: Der Computer wurde nach einem schwerwiegenden Fehler neu gestartet. Der Fehlercode war: 0x0000007a (0xffffb78eb27578f0, 0xffffffffc000000e, 0x00000000d0bb6860, 0xfffff80b473de5e0). Ein volles Abbild wurde gespeichert in: C:\WINDOWS\MEMORY.DMP. Berichts-ID: a8c2e68f-082a-48bb-891e-a8c5d233165e.

Error: (01/27/2017 07:11:37 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (01/27/2017 07:11:28 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎27.‎01.‎2017 um 01:54:27 unerwartet heruntergefahren.

Error: (01/26/2017 09:53:31 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Google Update-Dienst (gupdate)" wurde aufgrund folgenden Fehlers nicht gestartet: 
Das System kann die angegebene Datei nicht finden.

Error: (01/26/2017 09:51:32 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (01/26/2017 09:50:47 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 und der APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (01/26/2017 09:32:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Google Update-Dienst (gupdate)" wurde aufgrund folgenden Fehlers nicht gestartet: 
Das System kann die angegebene Datei nicht finden.

Error: (01/26/2017 09:30:06 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (01/26/2017 09:29:17 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 und der APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.


CodeIntegrity:
===================================
  Date: 2017-01-26 20:17:24.343
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-26 20:13:43.374
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-26 20:13:11.028
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-26 20:12:26.604
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-25 19:46:57.797
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-01-23 19:01:26.183
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-01-23 19:01:26.180
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-01-23 19:01:26.176
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-01-22 19:21:43.841
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-01-22 19:21:43.730
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-4670K CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 56%
Installierter physikalischer RAM: 16313.34 MB
Verfügbarer physikalischer RAM: 7051.69 MB
Summe virtueller Speicher: 37817.34 MB
Verfügbarer virtueller Speicher: 23880.92 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:116.45 GB) (Free:24.97 GB) NTFS
Drive d: (Elements) (Fixed) (Total:1863.01 GB) (Free:367.35 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 117.4 GB) (Disk ID: 9840B943)
Partition 1: (Not Active) - (Size=116.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 000E0E24)
Partition 1: (Active) - (Size=1863 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         

Alt 27.01.2017, 22:02   #5
KoggeHD
 
Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung - Standard

Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung



TDSSKiller.3.1.0.12_27.01.2017_21.49.55_log.txt
Code:
ATTFilter
21:49:55.0838 0x378c  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
21:50:00.0043 0x378c  ============================================================
21:50:00.0043 0x378c  Current date / time: 2017/01/27 21:50:00.0043
21:50:00.0043 0x378c  SystemInfo:
21:50:00.0043 0x378c  
21:50:00.0043 0x378c  OS Version: 10.0.14393 ServicePack: 0.0
21:50:00.0043 0x378c  Product type: Workstation
21:50:00.0043 0x378c  ComputerName: UWE
21:50:00.0043 0x378c  UserName: Uwe
21:50:00.0043 0x378c  Windows directory: C:\WINDOWS
21:50:00.0043 0x378c  System windows directory: C:\WINDOWS
21:50:00.0043 0x378c  Running under WOW64
21:50:00.0043 0x378c  Processor architecture: Intel x64
21:50:00.0043 0x378c  Number of processors: 4
21:50:00.0043 0x378c  Page size: 0x1000
21:50:00.0043 0x378c  Boot type: Normal boot
21:50:00.0043 0x378c  CodeIntegrityOptions = 0x00000001
21:50:00.0043 0x378c  ============================================================
21:50:00.0141 0x378c  KLMD registered as C:\WINDOWS\system32\drivers\11369331.sys
21:50:00.0141 0x378c  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.693, osProperties = 0x19
21:50:00.0264 0x378c  System UUID: {D1795D06-25F8-5234-2A34-712E481DE91B}
21:50:00.0719 0x378c  Drive \Device\Harddisk0\DR0 - Size: 0x1D5849E000 ( 117.38 Gb ), SectorSize: 0x200, Cylinders: 0x3BDA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:50:00.0737 0x378c  Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:50:00.0744 0x378c  ============================================================
21:50:00.0745 0x378c  \Device\Harddisk0\DR0:
21:50:00.0753 0x378c  MBR partitions:
21:50:00.0753 0x378c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xFA800, BlocksNum 0xE8E6000
21:50:00.0753 0x378c  \Device\Harddisk1\DR1:
21:50:00.0753 0x378c  MBR partitions:
21:50:00.0753 0x378c  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07000
21:50:00.0753 0x378c  ============================================================
21:50:00.0756 0x378c  C: <-> \Device\Harddisk0\DR0\Partition1
21:50:00.0781 0x378c  D: <-> \Device\Harddisk1\DR1\Partition1
21:50:00.0781 0x378c  ============================================================
21:50:00.0781 0x378c  Initialize success
21:50:00.0781 0x378c  ============================================================
21:50:45.0859 0x07b0  ============================================================
21:50:45.0859 0x07b0  Scan started
21:50:45.0859 0x07b0  Mode: Manual; SigCheck; TDLFS; 
21:50:45.0859 0x07b0  ============================================================
21:50:45.0859 0x07b0  KSN ping started
21:50:45.0995 0x07b0  KSN ping finished: true
21:50:48.0371 0x07b0  ================ Scan system memory ========================
21:50:48.0371 0x07b0  System memory - ok
21:50:48.0371 0x07b0  ================ Scan services =============================
21:50:48.0456 0x07b0  1394ohci - ok
21:50:48.0463 0x07b0  3ware - ok
21:50:48.0469 0x07b0  ACPI - ok
21:50:48.0476 0x07b0  AcpiDev - ok
21:50:48.0484 0x07b0  acpiex - ok
21:50:48.0491 0x07b0  acpipagr - ok
21:50:48.0498 0x07b0  AcpiPmi - ok
21:50:48.0500 0x07b0  acpitime - ok
21:50:48.0510 0x07b0  [ B1EA9681502EE57F87DB71D726288A5B, D17BD2CFAE72E92C77D183331D5CBA0FEA893BF54875920870E271940F40A8BB ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:50:48.0547 0x07b0  AdobeARMservice - ok
21:50:48.0607 0x07b0  [ CA363F172E1978FD155764F2840B0BE8, CB14E2C94ABB8C8809F4E96472F6D1A9A3A0860217631F592E0F62F043165575 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:50:48.0623 0x07b0  AdobeFlashPlayerUpdateSvc - ok
21:50:48.0630 0x07b0  ADP80XX - ok
21:50:48.0635 0x07b0  AFD - ok
21:50:48.0640 0x07b0  ahcache - ok
21:50:48.0644 0x07b0  AJRouter - ok
21:50:48.0647 0x07b0  ALG - ok
21:50:48.0649 0x07b0  AmdK8 - ok
21:50:48.0655 0x07b0  [ 1820DCCC73278F43169A529C0943CE2A, 057DCB6CEE76E975FFC827FF6418092ADA3030D4D5FB808ABA94B0B965406025 ] amdkmpfd        C:\WINDOWS\system32\drivers\amdkmpfd.sys
21:50:48.0665 0x07b0  amdkmpfd - ok
21:50:48.0668 0x07b0  AmdPPM - ok
21:50:48.0670 0x07b0  amdsata - ok
21:50:48.0673 0x07b0  amdsbs - ok
21:50:48.0675 0x07b0  amdxata - ok
21:50:48.0677 0x07b0  AppID - ok
21:50:48.0679 0x07b0  AppIDSvc - ok
21:50:48.0683 0x07b0  Appinfo - ok
21:50:48.0685 0x07b0  applockerfltr - ok
21:50:48.0687 0x07b0  AppMgmt - ok
21:50:48.0692 0x07b0  AppReadiness - ok
21:50:48.0695 0x07b0  AppVClient - ok
21:50:48.0697 0x07b0  AppvStrm - ok
21:50:48.0700 0x07b0  AppvVemgr - ok
21:50:48.0703 0x07b0  AppvVfs - ok
21:50:48.0706 0x07b0  AppXSvc - ok
21:50:48.0709 0x07b0  arcsas - ok
21:50:48.0718 0x07b0  [ 1A234F4643F5658BAB07BFA611282267, F40435488389B4FB3B945CA21A8325A51E1B5F80F045AB019748D0EC66056A8B ] AsrDrv101       C:\WINDOWS\SysWOW64\Drivers\AsrDrv101.sys
21:50:48.0723 0x07b0  AsrDrv101 - ok
21:50:48.0728 0x07b0  [ 59E4935FFA73911C4DB4DBF7E2647B99, 9A32D1D743EC2003B67679F3997F416276E03117BEE826182B75252FBCA6E80B ] asstahci64      C:\WINDOWS\system32\drivers\asstahci64.sys
21:50:48.0734 0x07b0  asstahci64 - ok
21:50:48.0736 0x07b0  AsyncMac - ok
21:50:48.0739 0x07b0  atapi - ok
21:50:48.0742 0x07b0  AudioEndpointBuilder - ok
21:50:48.0745 0x07b0  Audiosrv - ok
21:50:48.0784 0x07b0  [ 59A8CEF18C0004469E65F73C43BACEC0, 3934D912062826E67E786DF60C5FE28170FBA1F1E27DC7CBDDE6416DA897022A ] AVerRECentral   C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe
21:50:48.0816 0x07b0  AVerRECentral - ok
21:50:48.0827 0x07b0  [ 0124CCCE3055D13C554EBF114E2A2F81, 2440002A6194B03AF731BD0C72C10796B2CA04D6C132B5853D380E5141D456DA ] AVerUSBPortChecker C:\Program Files (x86)\AVerMedia\AVerMedia CV710 USB3 HD Capture\AVerUSBPortChecker.exe
21:50:48.0834 0x07b0  AVerUSBPortChecker - detected UnsignedFile.Multi.Generic ( 1 )
21:50:48.0975 0x07b0  Detect skipped due to KSN trusted
21:50:48.0975 0x07b0  AVerUSBPortChecker - ok
21:50:48.0990 0x07b0  [ F5EE873E5AF93C9DDB74A1BE64F4A095, 9D166B370A75ECA6DBCFF3B5134CD49F60DA2ECF291CA08F97667A6EBC8190BE ] AVMU3CV71064    C:\WINDOWS\system32\drivers\avmu3cv710_x64.sys
21:50:49.0014 0x07b0  AVMU3CV71064 - ok
21:50:49.0027 0x07b0  [ 2096FE33E4F2EA67BFB052FBB16201E2, A266C94C3D5E5AC179EB56F9715B307ADCEBE7B41A7D68B162FDD271B4F79E1F ] AVMU3HC64       C:\WINDOWS\system32\drivers\avmu364.sys
21:50:49.0043 0x07b0  AVMU3HC64 - detected UnsignedFile.Multi.Generic ( 1 )
21:50:49.0178 0x07b0  Detect skipped due to KSN trusted
21:50:49.0178 0x07b0  AVMU3HC64 - ok
21:50:49.0181 0x07b0  AxInstSV - ok
21:50:49.0184 0x07b0  b06bdrv - ok
21:50:49.0187 0x07b0  BasicDisplay - ok
21:50:49.0189 0x07b0  BasicRender - ok
21:50:49.0193 0x07b0  bcmfn - ok
21:50:49.0196 0x07b0  bcmfn2 - ok
21:50:49.0199 0x07b0  BDESVC - ok
21:50:49.0202 0x07b0  Beep - ok
21:50:49.0228 0x07b0  [ 5B413BEADC23C9D182F7EC09C10441FA, E16E06848492331107C6D682D93D35C5D1A0DC8CAD3816B42203A4BF05932C7E ] BEService       C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
21:50:49.0254 0x07b0  BEService - ok
21:50:49.0258 0x07b0  BFE - ok
21:50:49.0260 0x07b0  BITS - ok
21:50:49.0263 0x07b0  bowser - ok
21:50:49.0265 0x07b0  BrokerInfrastructure - ok
21:50:49.0267 0x07b0  Browser - ok
21:50:49.0270 0x07b0  BthAvrcpTg - ok
21:50:49.0273 0x07b0  BthHFEnum - ok
21:50:49.0275 0x07b0  bthhfhid - ok
21:50:49.0278 0x07b0  BthHFSrv - ok
21:50:49.0280 0x07b0  BTHMODEM - ok
21:50:49.0284 0x07b0  bthserv - ok
21:50:49.0287 0x07b0  buttonconverter - ok
21:50:49.0291 0x07b0  CapImg - ok
21:50:49.0294 0x07b0  cdfs - ok
21:50:49.0296 0x07b0  CDPSvc - ok
21:50:49.0299 0x07b0  CDPUserSvc - ok
21:50:49.0303 0x07b0  cdrom - ok
21:50:49.0306 0x07b0  CertPropSvc - ok
21:50:49.0309 0x07b0  cht4iscsi - ok
21:50:49.0312 0x07b0  cht4vbd - ok
21:50:49.0314 0x07b0  circlass - ok
21:50:49.0316 0x07b0  CLFS - ok
21:50:49.0319 0x07b0  ClipSVC - ok
21:50:49.0321 0x07b0  clreg - ok
21:50:49.0327 0x07b0  CmBatt - ok
21:50:49.0330 0x07b0  CNG - ok
21:50:49.0331 0x07b0  cnghwassist - ok
21:50:49.0361 0x07b0  CompositeBus - ok
21:50:49.0364 0x07b0  COMSysApp - ok
21:50:49.0366 0x07b0  condrv - ok
21:50:49.0369 0x07b0  CoreMessagingRegistrar - ok
21:50:49.0373 0x07b0  [ 336EC68D2FEBA9233CACC2DF09D12771, 6CB2E7C6D3D3A873FF5502D6680251EDFA244C2230C4A6C0E04D9993F6838F7C ] CorsairVBusDriver C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys
21:50:49.0382 0x07b0  CorsairVBusDriver - ok
21:50:49.0386 0x07b0  [ BB696EAC9209A95DF6910C34395ADE46, 2DC2B625CC6A38D8CD3B3E514CDC3D8CCC9077A4E6AC4DCF357DA309F2B8CEE2 ] CorsairVHidDriver C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys
21:50:49.0393 0x07b0  CorsairVHidDriver - ok
21:50:49.0444 0x07b0  [ 137BC921135ECDA3E9917B56E3550D32, 6585F4FFEAB32583B867A14F7B7C09C563B1EA715AD9C3B850A7965C54A819A0 ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
21:50:49.0458 0x07b0  cphs - ok
21:50:49.0463 0x07b0  CryptSvc - ok
21:50:49.0465 0x07b0  CSC - ok
21:50:49.0467 0x07b0  CscService - ok
21:50:49.0469 0x07b0  dam - ok
21:50:49.0478 0x07b0  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
21:50:49.0484 0x07b0  dbupdate - ok
21:50:49.0488 0x07b0  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem       C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
21:50:49.0494 0x07b0  dbupdatem - ok
21:50:49.0497 0x07b0  dbx - ok
21:50:49.0500 0x07b0  [ 2C5A991F0320D95BAC80D0C31F43A79E, CC7887132AF15C77676A3186429FE0071DCC8DC9C6252314D99C02E54867BE10 ] DbxSvc          C:\WINDOWS\system32\DbxSvc.exe
21:50:49.0508 0x07b0  DbxSvc - ok
21:50:49.0511 0x07b0  DcomLaunch - ok
21:50:49.0514 0x07b0  DcpSvc - ok
21:50:49.0516 0x07b0  defragsvc - ok
21:50:49.0518 0x07b0  DeviceAssociationService - ok
21:50:49.0521 0x07b0  DeviceInstall - ok
21:50:49.0524 0x07b0  DevQueryBroker - ok
21:50:49.0527 0x07b0  Dfsc - ok
21:50:49.0531 0x07b0  [ 9593475FBC857A05D93BFF4FA7323C2B, D2A958AF5EFDC6136A6ABB7F8D5FE1F84C967E79BEA96C5BE3661A0145DEB907 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
21:50:49.0538 0x07b0  dg_ssudbus - ok
21:50:49.0542 0x07b0  Dhcp - ok
21:50:49.0546 0x07b0  diagnosticshub.standardcollector.service - ok
21:50:49.0548 0x07b0  DiagTrack - ok
21:50:49.0642 0x07b0  [ B1DF13DA9B64FCBDFA40198EF622BCB0, 56CD3F812E06664465685730E8A39CB5947519CAE096A5437B32EB1FABE1F600 ] Disc Soft Lite Bus Service D:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
21:50:49.0669 0x07b0  Disc Soft Lite Bus Service - ok
21:50:49.0673 0x07b0  disk - ok
21:50:49.0676 0x07b0  DmEnrollmentSvc - ok
21:50:49.0679 0x07b0  dmvsc - ok
21:50:49.0681 0x07b0  dmwappushservice - ok
21:50:49.0684 0x07b0  Dnscache - ok
21:50:49.0687 0x07b0  dot3svc - ok
21:50:49.0689 0x07b0  DPS - ok
21:50:49.0692 0x07b0  drmkaud - ok
21:50:49.0695 0x07b0  DsmSvc - ok
21:50:49.0698 0x07b0  DsSvc - ok
21:50:49.0701 0x07b0  [ 679FF716052109392D870F6A6C4A3535, BEF1784448CCA4AF1D67ED68BD0C7CFE01A7719E98CACF92C2DCBFAA916DC57E ] dtlitescsibus   C:\WINDOWS\System32\drivers\dtlitescsibus.sys
21:50:49.0706 0x07b0  dtlitescsibus - ok
21:50:49.0711 0x07b0  [ C0CF632820DB5F283562E049D929AE49, 37DB5892568FE908BADBF96F41B2EB411FC990BB68DB50800206069ECC517A3C ] dtliteusbbus    C:\WINDOWS\System32\drivers\dtliteusbbus.sys
21:50:49.0716 0x07b0  dtliteusbbus - ok
21:50:49.0720 0x07b0  DXGKrnl - ok
21:50:49.0723 0x07b0  e1iexpress - ok
21:50:49.0725 0x07b0  EapHost - ok
21:50:49.0728 0x07b0  ebdrv - ok
21:50:49.0731 0x07b0  EFS - ok
21:50:49.0733 0x07b0  EhStorClass - ok
21:50:49.0735 0x07b0  EhStorTcgDrv - ok
21:50:49.0738 0x07b0  embeddedmode - ok
21:50:49.0741 0x07b0  EntAppSvc - ok
21:50:49.0744 0x07b0  ErrDev - ok
21:50:49.0748 0x07b0  [ B6517D7D00F3BFA87FBB4E1A9EAA8A05, 9D8E9675FDC4613C7B8E4B4AF0479E8FDCBDEFC615C1AA1F5F40C9275264AA79 ] ETDSMBus        C:\WINDOWS\System32\drivers\ETDSMBus.sys
21:50:49.0753 0x07b0  ETDSMBus - ok
21:50:49.0757 0x07b0  EventSystem - ok
21:50:49.0760 0x07b0  exfat - ok
21:50:49.0762 0x07b0  fastfat - ok
21:50:49.0765 0x07b0  Fax - ok
21:50:49.0767 0x07b0  fdc - ok
21:50:49.0769 0x07b0  fdPHost - ok
21:50:49.0772 0x07b0  FDResPub - ok
21:50:49.0776 0x07b0  fhsvc - ok
21:50:49.0779 0x07b0  FileCrypt - ok
21:50:49.0781 0x07b0  FileInfo - ok
21:50:49.0783 0x07b0  Filetrace - ok
21:50:49.0785 0x07b0  flpydisk - ok
21:50:49.0788 0x07b0  FltMgr - ok
21:50:49.0791 0x07b0  FontCache - ok
21:50:49.0796 0x07b0  FontCache3.0.0.0 - ok
21:50:49.0798 0x07b0  FrameServer - ok
21:50:49.0802 0x07b0  [ CAAC750E6D27866C28494E0DE9FA802A, 2500CAF2B6B9BB0E01A2EB57760AC755B3AC04F9409282CE9781C5E3821741EE ] FreshIO         C:\Program Files (x86)\FreshDevices\FreshDiagnose\FreshIO.sys
21:50:49.0804 0x07b0  FreshIO - detected UnsignedFile.Multi.Generic ( 1 )
21:50:49.0942 0x07b0  Detect skipped due to KSN trusted
21:50:49.0942 0x07b0  FreshIO - ok
21:50:49.0946 0x07b0  FsDepends - ok
21:50:49.0950 0x07b0  Fs_Rec - ok
21:50:49.0963 0x07b0  [ 38F3CF15321DC2B47C7907EB222B637A, C2CE4F62BD7C93566C36B7290DA3E804FB79A18A18E2544E2B6404B473483D4E ] fussvc          C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe
21:50:49.0972 0x07b0  fussvc - detected UnsignedFile.Multi.Generic ( 1 )
21:50:50.0130 0x07b0  Detect skipped due to KSN trusted
21:50:50.0130 0x07b0  fussvc - ok
21:50:50.0141 0x07b0  [ 4FE59CCAC4916CEF02DAFA58B6A7E10E, 27B7AA6108F175A4636E4E8455C5FFC17D98872517335A89D3DA2BD4A9A8E7C8 ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
21:50:50.0154 0x07b0  Futuremark SystemInfo Service - ok
21:50:50.0158 0x07b0  fvevol - ok
21:50:50.0258 0x07b0  [ 6D18B1088696CF96CBEBD31B8A519BD4, 4B47EECD18C12749FBEFA9C20B466F1A501F238166BBAE5B1793C918305A3348 ] GalaxyClientService D:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe
21:50:50.0293 0x07b0  GalaxyClientService - ok
21:50:50.0419 0x07b0  [ C6B53600271EA23A03D5C23316407013, A2B672134EC6415D689F5F1BDF0500B876CB3BA2BA022E4C7FF4C15215AF7BC2 ] GalaxyCommunication C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
21:50:50.0532 0x07b0  GalaxyCommunication - ok
21:50:50.0542 0x07b0  gencounter - ok
21:50:50.0546 0x07b0  genericusbfn - ok
21:50:50.0552 0x07b0  [ 5D4DF0BAC74E9AC62AF6BC99440B050B, 655110646BFF890C448C0951E11132DC3592BDA6E080696341B930D090224723 ] GPCIDrv         C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys
21:50:50.0556 0x07b0  GPCIDrv - ok
21:50:50.0559 0x07b0  GPIOClx0101 - ok
21:50:50.0562 0x07b0  gpsvc - ok
21:50:50.0564 0x07b0  GpuEnergyDrv - ok
21:50:50.0566 0x07b0  gupdate - ok
21:50:50.0567 0x07b0  gupdatem - ok
21:50:50.0570 0x07b0  HDAudBus - ok
21:50:50.0573 0x07b0  HidBatt - ok
21:50:50.0576 0x07b0  HidBth - ok
21:50:50.0578 0x07b0  hidi2c - ok
21:50:50.0581 0x07b0  hidinterrupt - ok
21:50:50.0583 0x07b0  HidIr - ok
21:50:50.0585 0x07b0  hidserv - ok
21:50:50.0588 0x07b0  HidUsb - ok
21:50:50.0639 0x07b0  [ DA5FCD70EBE32E9DCF2DF5992FCFE59F, F07FF9364C8A94953B2E4545EE9715BEBB9D8C29C4964B1CBA8A9377115F6E42 ] HiPatchService  D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
21:50:50.0641 0x07b0  HiPatchService - detected UnsignedFile.Multi.Generic ( 1 )
21:50:50.0776 0x07b0  Detect skipped due to KSN trusted
21:50:50.0776 0x07b0  HiPatchService - ok
21:50:50.0779 0x07b0  HomeGroupListener - ok
21:50:50.0781 0x07b0  HomeGroupProvider - ok
21:50:50.0784 0x07b0  HpSAMD - ok
21:50:50.0787 0x07b0  HTTP - ok
21:50:50.0789 0x07b0  HvHost - ok
21:50:50.0793 0x07b0  hvservice - ok
21:50:50.0796 0x07b0  hwpolicy - ok
21:50:50.0798 0x07b0  hyperkbd - ok
21:50:50.0801 0x07b0  i8042prt - ok
21:50:50.0803 0x07b0  iagpio - ok
21:50:50.0806 0x07b0  iai2c - ok
21:50:50.0809 0x07b0  iaLPSS2i_GPIO2 - ok
21:50:50.0813 0x07b0  iaLPSS2i_I2C - ok
21:50:50.0815 0x07b0  iaLPSSi_GPIO - ok
21:50:50.0817 0x07b0  iaLPSSi_I2C - ok
21:50:50.0821 0x07b0  iaStorAV - ok
21:50:50.0824 0x07b0  iaStorV - ok
21:50:50.0826 0x07b0  ibbus - ok
21:50:50.0830 0x07b0  [ 231ADCE77616144B8E3D29707B282C82, D2429E0CAABE3E3A50D62DEC6C9F8D13AC8786EB57D9075489425E623EC84165 ] ICCWDT          C:\WINDOWS\System32\drivers\ICCWDT.sys
21:50:50.0836 0x07b0  ICCWDT - ok
21:50:50.0839 0x07b0  icssvc - ok
21:50:50.0845 0x07b0  [ DAF66902F08796F9C694901660E5A64A, F4A4764DED05980426BAB54AAF040BC27A39C80315F5161E8D0B4C7F694BD8E6 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
21:50:50.0849 0x07b0  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
21:50:50.0985 0x07b0  Detect skipped due to KSN trusted
21:50:50.0985 0x07b0  IDriverT - ok
21:50:50.0996 0x07b0  [ 078DE1A9D9DB0BB617D4DCF1EF925928, 6E197785DE6F83FAB5E049F24CCC3838BB9B9EB20240BD48A2768103172B6242 ] igfxCUIService2.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
21:50:51.0010 0x07b0  igfxCUIService2.0.0.0 - ok
21:50:51.0013 0x07b0  IKEEXT - ok
21:50:51.0016 0x07b0  IndirectKmd - ok
21:50:51.0093 0x07b0  [ 7F08B78B1516626869FB44A61EFDF566, C585902D4F6E36A44097C192CCF19F1947F99C86A7BB77E83C0BE475F0151161 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
21:50:51.0168 0x07b0  IntcAzAudAddService - ok
21:50:51.0182 0x07b0  [ F28C5A79A1698E9F1374569A1C0FB880, 9DD0A9539AFE0DB71C2CDE1E9649D4178C28E3740E99E54E3337E7DD32971D72 ] Intel(R) PROSet Monitoring Service C:\WINDOWS\system32\IProsetMonitor.exe
21:50:51.0196 0x07b0  Intel(R) PROSet Monitoring Service - ok
21:50:51.0200 0x07b0  intelide - ok
21:50:51.0202 0x07b0  intelpep - ok
21:50:51.0204 0x07b0  intelppm - ok
21:50:51.0207 0x07b0  iorate - ok
21:50:51.0210 0x07b0  IpFilterDriver - ok
21:50:51.0212 0x07b0  iphlpsvc - ok
21:50:51.0215 0x07b0  IPMIDRV - ok
21:50:51.0217 0x07b0  IPNAT - ok
21:50:51.0222 0x07b0  [ 113D9AF2A2AAB0C6F782A70CEA479555, 3FEA400E18A1E45D1F15789A5500E46E7A3EE55D66BB8BEDB1D237B4CB64D944 ] IpOverUsbSvc    C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
21:50:51.0229 0x07b0  IpOverUsbSvc - ok
21:50:51.0232 0x07b0  irda - ok
21:50:51.0234 0x07b0  IRENUM - ok
21:50:51.0236 0x07b0  irmon - ok
21:50:51.0238 0x07b0  isapnp - ok
21:50:51.0242 0x07b0  iScsiPrt - ok
21:50:51.0245 0x07b0  kbdclass - ok
21:50:51.0247 0x07b0  kbdhid - ok
21:50:51.0250 0x07b0  kdnic - ok
21:50:51.0252 0x07b0  KeyIso - ok
21:50:51.0254 0x07b0  KSecDD - ok
21:50:51.0257 0x07b0  KSecPkg - ok
21:50:51.0259 0x07b0  ksthunk - ok
21:50:51.0262 0x07b0  KtmRm - ok
21:50:51.0264 0x07b0  LanmanServer - ok
21:50:51.0266 0x07b0  LanmanWorkstation - ok
21:50:51.0269 0x07b0  lfsvc - ok
21:50:51.0272 0x07b0  LicenseManager - ok
21:50:51.0274 0x07b0  lltdio - ok
21:50:51.0277 0x07b0  lltdsvc - ok
21:50:51.0280 0x07b0  lmhosts - ok
21:50:51.0284 0x07b0  LSI_SAS - ok
21:50:51.0286 0x07b0  LSI_SAS2i - ok
21:50:51.0289 0x07b0  LSI_SAS3i - ok
21:50:51.0292 0x07b0  LSI_SSS - ok
21:50:51.0295 0x07b0  LSM - ok
21:50:51.0297 0x07b0  luafv - ok
21:50:51.0300 0x07b0  MapsBroker - ok
21:50:51.0307 0x07b0  [ 78BFF5425E044086E74E78650A359FBB, 294738C10F3ED933D4EC40EA0659372FCF19A3C6D45D356917438CA495F2CB45 ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
21:50:51.0312 0x07b0  MBAMProtector - ok
21:50:51.0341 0x07b0  [ 9611577752E293259C7DCE19E9026362, 8CB5DFD63FA15603BB6FA6B501E09ED7F4DE0E8F68CB28B78CECAC3711BEFD24 ] MBAMScheduler   C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
21:50:51.0367 0x07b0  MBAMScheduler - ok
21:50:51.0388 0x07b0  [ F1A89A34388B5626F1548D393B23ECB1, EA00AC76C4C8C9340753B58A3313C9177A9B98F9F1BDE08F184CD0F53D0C186F ] MBAMService     C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
21:50:51.0409 0x07b0  MBAMService - ok
21:50:51.0418 0x07b0  [ 78488AF2AB2111D67B3C4044707A519B, 7AA71B9C4C7949A1A21F60EF7CCEDE0079794990696B60557B5DC86F4D47223A ] MBAMSwissArmy   C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
21:50:51.0425 0x07b0  MBAMSwissArmy - ok
21:50:51.0429 0x07b0  [ 898415AC0B5F1D2A9A48ABCB68A6DC4B, E1FD9AE5E22E3E5A18288E66A6184E92A4B63A1274DCE147A7728BB09C6A225E ] MBAMWebAccessControl C:\WINDOWS\system32\drivers\mwac.sys
21:50:51.0434 0x07b0  MBAMWebAccessControl - ok
21:50:51.0437 0x07b0  megasas - ok
21:50:51.0440 0x07b0  megasas2i - ok
21:50:51.0443 0x07b0  megasr - ok
21:50:51.0449 0x07b0  [ 8EC6459491D8508BBA5E3CEC5C930914, E01AEE2E6F569429BC5582AEB63A2CB288499A878B0806D21CC9D78F00E0B284 ] MEIx64          C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
21:50:51.0460 0x07b0  MEIx64 - ok
21:50:51.0464 0x07b0  MessagingService - ok
21:50:51.0467 0x07b0  mlx4_bus - ok
21:50:51.0470 0x07b0  MMCSS - ok
21:50:51.0473 0x07b0  Modem - ok
21:50:51.0476 0x07b0  monitor - ok
21:50:51.0478 0x07b0  mouclass - ok
21:50:51.0480 0x07b0  mouhid - ok
21:50:51.0482 0x07b0  mountmgr - ok
21:50:51.0487 0x07b0  [ 0DE2474F316C515482ABAD3B697F8714, 62862AE7432F5350068E96AD466093359C6CF444EB517AE6D09134FAF78C49F5 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:50:51.0494 0x07b0  MozillaMaintenance - ok
21:50:51.0496 0x07b0  mpsdrv - ok
21:50:51.0499 0x07b0  MpsSvc - ok
21:50:51.0501 0x07b0  MRxDAV - ok
21:50:51.0503 0x07b0  mrxsmb - ok
21:50:51.0506 0x07b0  mrxsmb10 - ok
21:50:51.0508 0x07b0  mrxsmb20 - ok
21:50:51.0511 0x07b0  MsBridge - ok
21:50:51.0513 0x07b0  MSDTC - ok
21:50:51.0517 0x07b0  Msfs - ok
21:50:51.0519 0x07b0  msgpiowin32 - ok
21:50:51.0522 0x07b0  mshidkmdf - ok
21:50:51.0524 0x07b0  mshidumdf - ok
21:50:51.0527 0x07b0  msisadrv - ok
21:50:51.0529 0x07b0  MSiSCSI - ok
21:50:51.0531 0x07b0  msiserver - ok
21:50:51.0534 0x07b0  MSKSSRV - ok
21:50:51.0535 0x07b0  MsLldp - ok
21:50:51.0538 0x07b0  MSPCLOCK - ok
21:50:51.0540 0x07b0  MSPQM - ok
21:50:51.0542 0x07b0  MsRPC - ok
21:50:51.0546 0x07b0  MsSecFlt - ok
21:50:51.0550 0x07b0  mssmbios - ok
21:50:51.0552 0x07b0  MSTEE - ok
21:50:51.0555 0x07b0  MTConfig - ok
21:50:51.0557 0x07b0  Mup - ok
21:50:51.0560 0x07b0  mvumis - ok
21:50:51.0564 0x07b0  NativeWifiP - ok
21:50:51.0566 0x07b0  NcaSvc - ok
21:50:51.0569 0x07b0  NcbService - ok
21:50:51.0571 0x07b0  NcdAutoSetup - ok
21:50:51.0573 0x07b0  ndfltr - ok
21:50:51.0577 0x07b0  NDIS - ok
21:50:51.0579 0x07b0  NdisCap - ok
21:50:51.0582 0x07b0  NdisImPlatform - ok
21:50:51.0584 0x07b0  NdisTapi - ok
21:50:51.0586 0x07b0  Ndisuio - ok
21:50:51.0589 0x07b0  NdisVirtualBus - ok
21:50:51.0591 0x07b0  NdisWan - ok
21:50:51.0594 0x07b0  ndiswanlegacy - ok
21:50:51.0595 0x07b0  ndproxy - ok
21:50:51.0598 0x07b0  Ndu - ok
21:50:51.0600 0x07b0  NetAdapterCx - ok
21:50:51.0603 0x07b0  NetBIOS - ok
21:50:51.0606 0x07b0  NetBT - ok
21:50:51.0608 0x07b0  Netlogon - ok
21:50:51.0611 0x07b0  Netman - ok
21:50:51.0613 0x07b0  netprofm - ok
21:50:51.0615 0x07b0  NetSetupSvc - ok
21:50:51.0627 0x07b0  NetTcpPortSharing - ok
21:50:51.0631 0x07b0  NgcCtnrSvc - ok
21:50:51.0633 0x07b0  NgcSvc - ok
21:50:51.0635 0x07b0  NlaSvc - ok
21:50:51.0637 0x07b0  Npfs - ok
21:50:51.0639 0x07b0  npggsvc - ok
21:50:51.0642 0x07b0  npsvctrig - ok
21:50:51.0644 0x07b0  nsi - ok
21:50:51.0646 0x07b0  nsiproxy - ok
21:50:51.0649 0x07b0  NTFS - ok
21:50:51.0652 0x07b0  Null - ok
21:50:51.0666 0x07b0  [ B5A377E4D70A561CFE60A861D22CE883, 0E412DD03B1963B333C08B9DF1FD5E0A0E480A7F0DC5E4B61BCC418A81C690DE ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
21:50:51.0676 0x07b0  NvContainerLocalSystem - ok
21:50:51.0687 0x07b0  [ B5A377E4D70A561CFE60A861D22CE883, 0E412DD03B1963B333C08B9DF1FD5E0A0E480A7F0DC5E4B61BCC418A81C690DE ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
21:50:51.0698 0x07b0  NvContainerNetworkService - ok
21:50:51.0706 0x07b0  [ 64DA1993B1973F049C1347DA1B05185E, 2A04E263DB13751D033E2F9B9518820CF4942EEAFA5A32488570EEB699EE2A96 ] NVHDA           C:\WINDOWS\system32\drivers\nvhda64v.sys
21:50:51.0714 0x07b0  NVHDA - ok
21:50:51.0737 0x07b0  [ 5284B1C8C69135753C26F2601350BF2E, 70246202B9C73F7BFD6F7E4DF9611B08498B94C8A66768E4BF90905162B8E77B ] NVIDIA Wireless Controller Service C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
21:50:51.0760 0x07b0  NVIDIA Wireless Controller Service - ok
21:50:52.0021 0x07b0  [ 557A0393BDFED327968A9E695FB4CEBA, 76D39F74439205B5B614B0D99E9E10629738E00250A5E7FFEE50815F69EE70D0 ] nvlddmkm        C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3f929cc119e3b994\nvlddmkm.sys
21:50:52.0237 0x07b0  nvlddmkm - ok
21:50:52.0251 0x07b0  nvraid - ok
21:50:52.0253 0x07b0  nvstor - ok
21:50:52.0257 0x07b0  [ 0E045E8DF54ADBEAFE30C374D1411231, D088C01CE242BF36F961D4EF9C593345271F91BF14274E04F2658D6772615989 ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
21:50:52.0261 0x07b0  NvStreamKms - ok
21:50:52.0273 0x07b0  [ A66A3EEEB383B6084EE75E8982725A23, 7A589B9C370623263E43D0FA1C6F5830F157ACDC111E11DC49B2B6E8BF5F0F74 ] NvTelemetryContainer C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
21:50:52.0282 0x07b0  NvTelemetryContainer - ok
21:50:52.0286 0x07b0  [ 4061D60DE18BDEEBC1F68EB693466EE0, 9F55273D47361C5C6D5FCFDAA533567FF3643E636C0630F8F611A993D4AFD065 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
21:50:52.0292 0x07b0  nvvad_WaveExtensible - ok
21:50:52.0295 0x07b0  OneSyncSvc - ok
21:50:52.0304 0x07b0  [ 58327B7E7C4E325C66B7C4A5220CE5F4, FF66411B23A195CA3C64F5409F2E2C6F88CB01034A4C9DDCA565DE0E144ABC13 ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:50:52.0312 0x07b0  ose64 - ok
21:50:52.0315 0x07b0  p2pimsvc - ok
21:50:52.0318 0x07b0  p2psvc - ok
21:50:52.0320 0x07b0  Parport - ok
21:50:52.0323 0x07b0  partmgr - ok
21:50:52.0326 0x07b0  PcaSvc - ok
21:50:52.0329 0x07b0  pci - ok
21:50:52.0331 0x07b0  pciide - ok
21:50:52.0334 0x07b0  pcmcia - ok
21:50:52.0336 0x07b0  pcw - ok
21:50:52.0338 0x07b0  pdc - ok
21:50:52.0341 0x07b0  PEAUTH - ok
21:50:52.0344 0x07b0  PeerDistSvc - ok
21:50:52.0346 0x07b0  percsas2i - ok
21:50:52.0348 0x07b0  percsas3i - ok
21:50:52.0396 0x07b0  PerfHost - ok
21:50:52.0401 0x07b0  PhoneSvc - ok
21:50:52.0405 0x07b0  PimIndexMaintenanceSvc - ok
21:50:52.0409 0x07b0  pla - ok
21:50:52.0412 0x07b0  PlugPlay - ok
21:50:52.0414 0x07b0  PNRPAutoReg - ok
21:50:52.0416 0x07b0  PNRPsvc - ok
21:50:52.0418 0x07b0  PolicyAgent - ok
21:50:52.0420 0x07b0  Power - ok
21:50:52.0423 0x07b0  PptpMiniport - ok
21:50:52.0502 0x07b0  [ 7196D3C2E2E3129814C8DAB91F9A7D1E, 6763E4BF8E846B597E78778E520F5BADC95608BAA4EA0AC84971384B5D976DD7 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
21:50:52.0592 0x07b0  PrintNotify - ok
21:50:52.0598 0x07b0  Processor - ok
21:50:52.0600 0x07b0  ProfSvc - ok
21:50:52.0602 0x07b0  Psched - ok
21:50:52.0606 0x07b0  [ 07D57B890DD5693A6AB660CBAE8F91B4, 934895A41C116056E22FE3298418332A9F4280F96E96EEE06C977A4925395674 ] PxHlpa64        C:\WINDOWS\system32\Drivers\PxHlpa64.sys
21:50:52.0611 0x07b0  PxHlpa64 - ok
21:50:52.0613 0x07b0  QWAVE - ok
21:50:52.0616 0x07b0  QWAVEdrv - ok
21:50:52.0618 0x07b0  RasAcd - ok
21:50:52.0620 0x07b0  RasAgileVpn - ok
21:50:52.0623 0x07b0  RasAuto - ok
21:50:52.0626 0x07b0  Rasl2tp - ok
21:50:52.0629 0x07b0  RasMan - ok
21:50:52.0630 0x07b0  RasPppoe - ok
21:50:52.0632 0x07b0  RasSstp - ok
21:50:52.0634 0x07b0  rdbss - ok
21:50:52.0638 0x07b0  rdpbus - ok
21:50:52.0640 0x07b0  RDPDR - ok
21:50:52.0646 0x07b0  RdpVideoMiniport - ok
21:50:52.0649 0x07b0  rdyboost - ok
21:50:52.0651 0x07b0  ReFSv1 - ok
21:50:52.0654 0x07b0  RemoteAccess - ok
21:50:52.0657 0x07b0  RemoteRegistry - ok
21:50:52.0660 0x07b0  RetailDemo - ok
21:50:52.0662 0x07b0  RmSvc - ok
21:50:52.0664 0x07b0  RpcEptMapper - ok
21:50:52.0667 0x07b0  RpcLocator - ok
21:50:52.0669 0x07b0  RpcSs - ok
21:50:52.0671 0x07b0  rspndr - ok
21:50:52.0673 0x07b0  s3cap - ok
21:50:52.0676 0x07b0  SamSs - ok
21:50:52.0679 0x07b0  sbp2port - ok
21:50:52.0681 0x07b0  SCardSvr - ok
21:50:52.0684 0x07b0  ScDeviceEnum - ok
21:50:52.0686 0x07b0  scfilter - ok
21:50:52.0688 0x07b0  Schedule - ok
21:50:52.0691 0x07b0  scmbus - ok
21:50:52.0694 0x07b0  scmdisk0101 - ok
21:50:52.0696 0x07b0  SCPolicySvc - ok
21:50:52.0698 0x07b0  sdbus - ok
21:50:52.0700 0x07b0  SDRSVC - ok
21:50:52.0703 0x07b0  sdstor - ok
21:50:52.0705 0x07b0  seclogon - ok
21:50:52.0708 0x07b0  SENS - ok
21:50:52.0713 0x07b0  Sense - ok
21:50:52.0715 0x07b0  SensorDataService - ok
21:50:52.0718 0x07b0  SensorService - ok
21:50:52.0720 0x07b0  SensorsSimulatorDriver - ok
21:50:52.0722 0x07b0  SensrSvc - ok
21:50:52.0725 0x07b0  SerCx - ok
21:50:52.0727 0x07b0  SerCx2 - ok
21:50:52.0729 0x07b0  Serenum - ok
21:50:52.0733 0x07b0  [ 3CDFBDCDAB3FEBF643C4212C7A503EF9, 9191DDC48A6998D2D7B9E7E633594D2964E22BA035B3AC8B62D2420FB5F40068 ] Serial          C:\WINDOWS\system32\DRIVERS\wdfserial.sys
21:50:52.0740 0x07b0  Serial - ok
21:50:52.0742 0x07b0  sermouse - ok
21:50:52.0748 0x07b0  SessionEnv - ok
21:50:52.0750 0x07b0  sfloppy - ok
21:50:52.0752 0x07b0  SharedAccess - ok
21:50:52.0758 0x07b0  ShellHWDetection - ok
21:50:52.0760 0x07b0  shpamsvc - ok
21:50:52.0764 0x07b0  SiSRaid2 - ok
21:50:52.0767 0x07b0  SiSRaid4 - ok
21:50:52.0775 0x07b0  [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
21:50:52.0784 0x07b0  SkypeUpdate - ok
21:50:52.0788 0x07b0  smphost - ok
21:50:52.0791 0x07b0  SmsRouter - ok
21:50:52.0796 0x07b0  SNMPTRAP - ok
21:50:52.0798 0x07b0  spaceport - ok
21:50:52.0800 0x07b0  SpbCx - ok
21:50:52.0847 0x07b0  [ 12583AF6CBE0050651EAF2723B3AD7B3, 965D4F981B54669A96C5AB02D09BF0A9850D13862425B8981F1A9271350F28BB ] speedfan        C:\WINDOWS\syswow64\speedfan.sys
21:50:52.0858 0x07b0  speedfan - ok
21:50:52.0862 0x07b0  Spooler - ok
21:50:52.0865 0x07b0  sppsvc - ok
21:50:52.0873 0x07b0  [ 8FD8EE71D7D639F85805EEE4ADB2AA15, 027E680BE49F705843B0117A72FAFC7681798B99685B91989928EF03767CD7A5 ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
21:50:52.0881 0x07b0  SQLWriter - ok
21:50:52.0884 0x07b0  srv - ok
21:50:52.0886 0x07b0  srv2 - ok
21:50:52.0889 0x07b0  srvnet - ok
21:50:52.0892 0x07b0  SSDPSRV - ok
21:50:52.0896 0x07b0  SstpSvc - ok
21:50:52.0902 0x07b0  [ 592FF34A2FD6C6351B8A3AA76B2C0A9E, 152B7472DE531AC45492F562DD470B2CE33F1EEF13BC78F26046AE5ABF54E32F ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
21:50:52.0910 0x07b0  ssudmdm - ok
21:50:52.0914 0x07b0  StateRepository - ok
21:50:52.0940 0x07b0  [ 596DC69BB40A96FCA4B19D9D1E221E34, 3469D3B2E9A88E39C14AE2E3DD5EC3D91FBB88CA568D794555B397B50E64AB15 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
21:50:52.0967 0x07b0  Steam Client Service - ok
21:50:52.0972 0x07b0  stexstor - ok
21:50:52.0975 0x07b0  stisvc - ok
21:50:52.0979 0x07b0  storahci - ok
21:50:52.0983 0x07b0  storflt - ok
21:50:52.0986 0x07b0  stornvme - ok
21:50:52.0990 0x07b0  storqosflt - ok
21:50:52.0993 0x07b0  StorSvc - ok
21:50:52.0996 0x07b0  storufs - ok
21:50:53.0000 0x07b0  storvsc - ok
21:50:53.0003 0x07b0  svsvc - ok
21:50:53.0006 0x07b0  swenum - ok
21:50:53.0008 0x07b0  swprv - ok
21:50:53.0012 0x07b0  Synth3dVsc - ok
21:50:53.0014 0x07b0  SysMain - ok
21:50:53.0017 0x07b0  SystemEventsBroker - ok
21:50:53.0020 0x07b0  TabletInputService - ok
21:50:53.0022 0x07b0  TapiSrv - ok
21:50:53.0025 0x07b0  Tcpip - ok
21:50:53.0027 0x07b0  Tcpip6 - ok
21:50:53.0030 0x07b0  tcpipreg - ok
21:50:53.0034 0x07b0  tdx - ok
21:50:53.0040 0x07b0  [ 950AD1AE7498A492126FB9F9B2E27DB5, C4C9A972015F567FC87A4094C86835B2DD3476426AB8B40CD4872A725CA89CFC ] Te.Service      C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe
21:50:53.0045 0x07b0  Te.Service - detected UnsignedFile.Multi.Generic ( 1 )
21:50:53.0179 0x07b0  Detect skipped due to KSN trusted
21:50:53.0179 0x07b0  Te.Service - ok
21:50:53.0183 0x07b0  terminpt - ok
21:50:53.0185 0x07b0  TermService - ok
21:50:53.0188 0x07b0  Themes - ok
21:50:53.0191 0x07b0  TieringEngineService - ok
21:50:53.0194 0x07b0  tiledatamodelsvc - ok
21:50:53.0199 0x07b0  TimeBrokerSvc - ok
21:50:53.0201 0x07b0  TPM - ok
21:50:53.0204 0x07b0  TrkWks - ok
21:50:53.0207 0x07b0  TrustedInstaller - ok
21:50:53.0212 0x07b0  tsusbflt - ok
21:50:53.0214 0x07b0  TsUsbGD - ok
21:50:53.0217 0x07b0  tsusbhub - ok
21:50:53.0220 0x07b0  tunnel - ok
21:50:53.0223 0x07b0  tzautoupdate - ok
21:50:53.0226 0x07b0  UASPStor - ok
21:50:53.0228 0x07b0  UcmCx0101 - ok
21:50:53.0231 0x07b0  UcmTcpciCx0101 - ok
21:50:53.0233 0x07b0  UcmUcsi - ok
21:50:53.0236 0x07b0  Ucx01000 - ok
21:50:53.0238 0x07b0  UdeCx - ok
21:50:53.0241 0x07b0  udfs - ok
21:50:53.0244 0x07b0  UEFI - ok
21:50:53.0246 0x07b0  UevAgentDriver - ok
21:50:53.0248 0x07b0  UevAgentService - ok
21:50:53.0251 0x07b0  Ufx01000 - ok
21:50:53.0253 0x07b0  UfxChipidea - ok
21:50:53.0255 0x07b0  ufxsynopsys - ok
21:50:53.0260 0x07b0  UI0Detect - ok
21:50:53.0263 0x07b0  umbus - ok
21:50:53.0265 0x07b0  UmPass - ok
21:50:53.0267 0x07b0  UmRdpService - ok
21:50:53.0270 0x07b0  UnistoreSvc - ok
21:50:53.0274 0x07b0  upnphost - ok
21:50:53.0276 0x07b0  UrsChipidea - ok
21:50:53.0279 0x07b0  UrsCx01000 - ok
21:50:53.0281 0x07b0  UrsSynopsys - ok
21:50:53.0283 0x07b0  usbaudio - ok
21:50:53.0285 0x07b0  usbccgp - ok
21:50:53.0288 0x07b0  usbcir - ok
21:50:53.0291 0x07b0  usbehci - ok
21:50:53.0293 0x07b0  usbhub - ok
21:50:53.0296 0x07b0  USBHUB3 - ok
21:50:53.0298 0x07b0  usbohci - ok
21:50:53.0301 0x07b0  usbprint - ok
21:50:53.0303 0x07b0  usbser - ok
21:50:53.0305 0x07b0  USBSTOR - ok
21:50:53.0309 0x07b0  usbuhci - ok
21:50:53.0311 0x07b0  USBXHCI - ok
21:50:53.0314 0x07b0  UserDataSvc - ok
21:50:53.0319 0x07b0  UserManager - ok
21:50:53.0322 0x07b0  UsoSvc - ok
21:50:53.0324 0x07b0  VaultSvc - ok
21:50:53.0326 0x07b0  vdrvroot - ok
21:50:53.0329 0x07b0  vds - ok
21:50:53.0331 0x07b0  VerifierExt - ok
21:50:53.0334 0x07b0  vhdmp - ok
21:50:53.0336 0x07b0  vhf - ok
21:50:53.0338 0x07b0  vmbus - ok
21:50:53.0340 0x07b0  VMBusHID - ok
21:50:53.0343 0x07b0  vmgid - ok
21:50:53.0346 0x07b0  vmicguestinterface - ok
21:50:53.0348 0x07b0  vmicheartbeat - ok
21:50:53.0350 0x07b0  vmickvpexchange - ok
21:50:53.0353 0x07b0  vmicrdv - ok
21:50:53.0356 0x07b0  vmicshutdown - ok
21:50:53.0358 0x07b0  vmictimesync - ok
21:50:53.0360 0x07b0  vmicvmsession - ok
21:50:53.0363 0x07b0  vmicvss - ok
21:50:53.0366 0x07b0  volmgr - ok
21:50:53.0368 0x07b0  volmgrx - ok
21:50:53.0371 0x07b0  volsnap - ok
21:50:53.0374 0x07b0  volume - ok
21:50:53.0376 0x07b0  vpci - ok
21:50:53.0381 0x07b0  [ ED1F4BDF68C649C6F79A02502BB6C9BC, 3D2830822D4A2C7B3676100B27DEC7B1C2EF640DA36C6543365A9CF2A61BF68E ] VsEtwService120 C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe
21:50:53.0387 0x07b0  VsEtwService120 - ok
21:50:53.0390 0x07b0  vsmraid - ok
21:50:53.0392 0x07b0  VSS - ok
21:50:53.0508 0x07b0  [ 1D994DEBBB12F9805F738AB413A8A3C9, 6ED77ADA21354A24AFDC121329F485788CA365190DFA86B1B80990E177E6115D ] VSStandardCollectorService140 D:\Programme (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe
21:50:53.0513 0x07b0  VSStandardCollectorService140 - ok
21:50:53.0516 0x07b0  VSTXRAID - ok
21:50:53.0519 0x07b0  vwifibus - ok
21:50:53.0521 0x07b0  vwififlt - ok
21:50:53.0524 0x07b0  W32Time - ok
21:50:53.0527 0x07b0  WacomPen - ok
21:50:53.0530 0x07b0  WalletService - ok
21:50:53.0532 0x07b0  wanarp - ok
21:50:53.0535 0x07b0  wanarpv6 - ok
21:50:53.0538 0x07b0  wbengine - ok
21:50:53.0542 0x07b0  WbioSrvc - ok
21:50:53.0545 0x07b0  wcifs - ok
21:50:53.0548 0x07b0  Wcmsvc - ok
21:50:53.0551 0x07b0  wcncsvc - ok
21:50:53.0554 0x07b0  wcnfs - ok
21:50:53.0557 0x07b0  WdBoot - ok
21:50:53.0559 0x07b0  Wdf01000 - ok
21:50:53.0562 0x07b0  WdFilter - ok
21:50:53.0564 0x07b0  WdiServiceHost - ok
21:50:53.0566 0x07b0  WdiSystemHost - ok
21:50:53.0569 0x07b0  wdiwifi - ok
21:50:53.0572 0x07b0  WdNisDrv - ok
21:50:53.0575 0x07b0  WdNisSvc - ok
21:50:53.0578 0x07b0  WebClient - ok
21:50:53.0580 0x07b0  Wecsvc - ok
21:50:53.0583 0x07b0  WEPHOSTSVC - ok
21:50:53.0586 0x07b0  wercplsupport - ok
21:50:53.0588 0x07b0  WerSvc - ok
21:50:53.0591 0x07b0  WFPLWFS - ok
21:50:53.0594 0x07b0  WiaRpc - ok
21:50:53.0596 0x07b0  WIMMount - ok
21:50:53.0598 0x07b0  WinDefend - ok
21:50:53.0603 0x07b0  WindowsTrustedRT - ok
21:50:53.0605 0x07b0  WindowsTrustedRTProxy - ok
21:50:53.0608 0x07b0  WinHttpAutoProxySvc - ok
21:50:53.0612 0x07b0  WinMad - ok
21:50:53.0621 0x07b0  Winmgmt - ok
21:50:53.0624 0x07b0  WinRM - ok
21:50:53.0629 0x07b0  WINUSB - ok
21:50:53.0632 0x07b0  WinVerbs - ok
21:50:53.0635 0x07b0  wisvc - ok
21:50:53.0637 0x07b0  WlanSvc - ok
21:50:53.0640 0x07b0  wlidsvc - ok
21:50:53.0643 0x07b0  WmiAcpi - ok
21:50:53.0646 0x07b0  wmiApSrv - ok
21:50:53.0649 0x07b0  WMPNetworkSvc - ok
21:50:53.0651 0x07b0  Wof - ok
21:50:53.0655 0x07b0  workfolderssvc - ok
21:50:53.0658 0x07b0  WPDBusEnum - ok
21:50:53.0661 0x07b0  WpdUpFltr - ok
21:50:53.0664 0x07b0  WpnService - ok
21:50:53.0666 0x07b0  WpnUserService - ok
21:50:53.0670 0x07b0  ws2ifsl - ok
21:50:53.0673 0x07b0  wscsvc - ok
21:50:53.0676 0x07b0  WSDPrintDevice - ok
21:50:53.0678 0x07b0  WSDScan - ok
21:50:53.0680 0x07b0  WSearch - ok
21:50:53.0684 0x07b0  wuauserv - ok
21:50:53.0686 0x07b0  WudfPf - ok
21:50:53.0689 0x07b0  WUDFRd - ok
21:50:53.0692 0x07b0  wudfsvc - ok
21:50:53.0694 0x07b0  WUDFWpdFs - ok
21:50:53.0696 0x07b0  WUDFWpdMtp - ok
21:50:53.0699 0x07b0  WwanSvc - ok
21:50:53.0702 0x07b0  XblAuthManager - ok
21:50:53.0706 0x07b0  XblGameSave - ok
21:50:53.0708 0x07b0  xboxgip - ok
21:50:53.0711 0x07b0  XboxNetApiSvc - ok
21:50:53.0714 0x07b0  [ C40AE9F959A8EDA4AF63E0E28185A8AC, D630EDDFC61D7816C764D588BCB1E9E3C5F92D3B387B204DACC67F9B1A62F6ED ] xhunter1        C:\WINDOWS\xhunter1.sys
21:50:53.0719 0x07b0  xhunter1 - ok
21:50:53.0722 0x07b0  xinputhid - ok
21:50:53.0726 0x07b0  xusb22 - ok
21:50:53.0731 0x07b0  [ CBD8ADA7A3B7B847FD3911EBDA563098, B96EEE389F00B216A65AD0A7B8288107C53C1BE6FDEAB13D3082CE4E0D428CA5 ] ysusb64         C:\WINDOWS\system32\drivers\ysusb64.sys
21:50:53.0740 0x07b0  ysusb64 - ok
21:50:53.0741 0x07b0  ================ Scan global ===============================
21:50:53.0753 0x07b0  [ Global ] - ok
21:50:53.0754 0x07b0  ================ Scan MBR ==================================
21:50:53.0755 0x07b0  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:50:53.0799 0x07b0  \Device\Harddisk0\DR0 - ok
21:50:53.0815 0x07b0  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
21:50:54.0037 0x07b0  \Device\Harddisk1\DR1 - ok
21:50:54.0037 0x07b0  ================ Scan VBR ==================================
21:50:54.0039 0x07b0  [ CF79F9E7B1149941F7C41A387AAB1DBB ] \Device\Harddisk0\DR0\Partition1
21:50:54.0040 0x07b0  \Device\Harddisk0\DR0\Partition1 - ok
21:50:54.0042 0x07b0  [ 33CD58DDC91B7C0BAA18AB628E1F5F44 ] \Device\Harddisk1\DR1\Partition1
21:50:54.0043 0x07b0  \Device\Harddisk1\DR1\Partition1 - ok
21:50:54.0043 0x07b0  ================ Scan generic autorun ======================
21:50:54.0284 0x07b0  [ 4878D4D36D683EBE2F1E5F83C6A3BDB3, 82DA7BFED5F61DF4B679B06339E4065CCE0DA0D6741287F93A2EF1BCC85AB1E1 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
21:50:54.0547 0x07b0  RTHDVCPL - ok
21:50:54.0570 0x07b0  [ F5A5DBADCD24BDF33BFDAA789E39C876, A0D931FA339CA1FB6198BF5DF327ECEB0881796FFF92BDE0F9FC2C233C46E83C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
21:50:54.0584 0x07b0  AdobeAAMUpdater-1.0 - ok
21:50:54.0601 0x07b0  [ ED43758BF94B8A5221D69F1B7F63F13D, F6E7418823E45085F4D4F50DD25A55ED517C0A335C6C2F69A1139B30677D3DA9 ] C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe
21:50:54.0621 0x07b0  XboxStat - ok
21:50:54.0624 0x07b0  ShadowPlay - ok
21:50:54.0630 0x07b0  Dropbox - ok
21:50:54.0648 0x07b0  [ FE821F6FA60E9DF9FDEE69A23488BBAB, 98D9926152FDA45705F5E208D7236E467CAEEF83D756A14B4104EBF804644B29 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
21:50:54.0668 0x07b0  Adobe ARM - ok
21:50:54.0715 0x07b0  OneDriveSetup - ok
21:50:54.0716 0x07b0  OneDriveSetup - ok
21:50:54.0748 0x07b0  [ CD7DC286D2FDFACB965C3E10967B2199, 30FFB133E70D694BE6968E86E999C797EE7349DCC4E9ACFB338412C039374388 ] C:\Users\UWe\AppData\Local\Microsoft\OneDrive\OneDrive.exe
21:50:54.0781 0x07b0  OneDrive - ok
21:50:54.0881 0x07b0  [ BFD07A0ADC58DEB79A496BB666A43061, F8FBA5FBCBD0111D8EDAB4DF2A2AB0999EAEEEDB056F9F682605FC7F87D56B0E ] D:\Program Files\DAEMON Tools Lite\DTAgent.exe
21:50:54.0985 0x07b0  DAEMON Tools Lite Automount - ok
21:50:55.0004 0x07b0  [ 6ECE746BB283927604DA192CA0D1403D, 327E1E908B6DB1C8414B31DB277EF5EABA340B2EE7FEE19349860B3C8F7778FE ] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIXE.EXE
21:50:55.0013 0x07b0  EPLTarget\P0000000000000000 - ok
21:50:55.0029 0x07b0  [ FE9E6388A039441098EB09C070EA5049, 3888822AF992F3BE27E9F973E31EBEE5302901E4A8260A9A6CF6B2BB2A12D173 ] C:\Users\UWe\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe
21:50:55.0046 0x07b0  Google Update - ok
21:50:55.0047 0x07b0  TweakBit\Driver Updater\Start Driver Updater оn logon - ok
21:50:55.0050 0x07b0  GoogleDriveSync - ok
21:50:55.0056 0x07b0  [ 0CC9D29EC9D4D5C936EEA5B5D7E40564, E4FF37C897E95F9881C133AE24F901CB176BBC27DF4BE25E0259E818EA7727C0 ] C:\Users\UWe\AppData\Local\Extion\Windows_Activaton.exe
21:50:55.0066 0x07b0  Extion - detected UnsignedFile.Multi.Generic ( 1 )
21:50:55.0202 0x07b0  Detect turned to UDS exact due to KSN untrusted
21:50:55.0246 0x07b0  Extion ( UDS:DangerousObject.Multi.Generic ) - infected
21:50:55.0246 0x07b0  Force sending object to P2P due to detect: C:\Users\UWe\AppData\Local\Extion\Windows_Activaton.exe
21:50:55.0432 0x07b0  Object send P2P result: true
21:50:55.0562 0x07b0  Owjics - ok
21:50:55.0597 0x07b0  [ 638EC39FFA5EB20E09F03E3433E9746E, 6299DE071EF97D32C334EF624BC4B0FD3BF15BDD411976687951696771373949 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
21:50:55.0631 0x07b0  GoogleChromeAutoLaunch_FF7EF6AF25EDE54A2DF4F9352543EA28 - ok
21:50:55.0632 0x07b0  Waiting for KSN requests completion. In queue: 65
21:50:56.0665 0x07b0  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x62100 ( disabled : updated )
21:50:56.0680 0x07b0  Win FW state via NFP2: enabled ( trusted )
21:50:56.0751 0x07b0  ============================================================
21:50:56.0751 0x07b0  Scan finished
21:50:56.0751 0x07b0  ============================================================
21:50:56.0757 0x33f8  Detected object count: 1
21:50:56.0757 0x33f8  Actual detected object count: 1
21:51:39.0139 0x33f8  Extion ( UDS:DangerousObject.Multi.Generic ) - skipped by user
21:51:39.0139 0x33f8  Extion ( UDS:DangerousObject.Multi.Generic ) - User select action: Skip 
21:51:43.0238 0x3a18  Deinitialize success
         


Alt 28.01.2017, 11:45   #6
M-K-D-B
/// TB-Ausbilder
 
Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung - Standard

Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung



Servus,


was ist mit der Logdatei von MBAM mit den Funden? Bitte nachreichen (siehe dazu auch meinen ersten Post).
__________________
--> Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung

Alt 28.01.2017, 19:38   #7
KoggeHD
 
Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung - Standard

Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung



Oh sorry, irgendwie habe ich das was voll groß war voll übersehen
Aber Logs von den durchlauf mit Funde habe ich nicht aus irgend ein Grund habe ich die nicht gespeichert. ich habe nur von ein "Schutzereignis" wo eine Website blockiert wurde.

Ob das hilfreich ist weiß ich leider nicht.

Schutzereignis:
Code:
ATTFilter
Malwarebytes
www.malwarebytes.com

-Protokolldetails-
Datum des Schutzereignisses: 27.01.17
Uhrzeit des Schutzereignisses: 01:17
Protokolldatei: test.txt
Administrator: Ja

-Softwaredaten-
Version: 3.0.6.1469
Komponentenversion: 1.0.50
Version des Aktualisierungspakets: 1.0.1107
Lizenz: Testversion

-Systemdaten-
Betriebssystem: Windows 10
CPU: x64
Dateisystem: NTFS
Benutzer: System

-Einzelheiten zu blockierten Websites-
Bösartige Website: 1
, , Blockiert, [-1], [-1],0.0.0

-Website-Daten-
Domäne: 
IP-Adresse: 136.243.110.83
Port: [54478]
Typ: Ausgehend
Datei: C:\Users\UWe\AppData\Local\Extion\Windows_Activaton.exe



(end)
         

Alt 29.01.2017, 10:57   #8
M-K-D-B
/// TB-Ausbilder
 
Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung - Standard

Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung



Servus,




Schritt 1
Downloade Dir bitte AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser.
  • Starte die adwcleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Werkzeuge > Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • Image File Execution Options Schlüssel
    • "Tracing" Schlüssel
    • "Prefetch" Dateien
    • Proxy
    • Winsock
    • Internet Explorer Richtlinien
    • Chrome Richtlinien
  • Bestätige die Auswahl mit Ok.
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen (auch dann wenn AdwCleaner sagt, dass nichts gefunden wurde) und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).






Schritt 2
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scan, wähle den Bedrohungs-Scan aus und klicke auf Scan starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Ausgewählte Elemente in die Quarantäne verschieben.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM nach dem Neustart, klicke auf Berichte.
  • Wähle den neuesten Scan-Bericht aus, klicke auf Bericht anzeigen und dann auf Export.
  • Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.





Schritt 3

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.







Schritt 4
  • Starte die FRST.exe erneut. Setze einen Haken vor Addition.txt und drücke auf Scan.
  • FRST erstellt nun zwei Logdateien (FRST.txt und Addition.txt).
  • Poste mir beide Logdateien mit deiner nächsten Antwort.






Bitte poste mit deiner nächsten Antwort
  • die Logdatei von AdwCleaner,
  • die Logdatei von MBAM,
  • die Logdatei von JRT,
  • die beiden neuen Logdateien von FRST.
__________________
Gruß
M-K-D-B


==========================================================
offline vom 22.12.2018 bis 01.01.2019
==========================================================

Das Trojaner-Board unterstützen

Alt 30.01.2017, 02:29   #9
KoggeHD
 
Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung - Standard

Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung



JRT
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.0 (12.05.2016)
Operating System: Windows 10 Pro x64 
Ran by Uwe (Administrator) on 30.01.2017 at  2:16:37,40
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 2 

Successfully deleted: C:\Program Files (x86)\google\chrome\application\chrome.bat (File) 
Successfully deleted: C:\Program Files (x86)\internet explorer\iexplore.bat (File) 



Registry: 1 

Successfully deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_FF7EF6AF25EDE54A2DF4F9352543EA28 (Registry Value) 




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 30.01.2017 at  2:17:32,16
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         
MBAM
Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlaufdatum: 30.01.2017
Suchlaufzeit: 01:51
Protokolldatei: MBAM.txt
Administrator: Ja

Version: 2.2.1.1043
Malware-Datenbank: v2017.01.29.06
Rootkit-Datenbank: v2016.11.20.01
Lizenz: Testversion
Malware-Schutz: Aktiviert
Schutz vor bösartigen Websites: Aktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 10
CPU: x64
Dateisystem: NTFS
Benutzer: Uwe

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 555266
Abgelaufene Zeit: 9 Min., 56 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 1
Trojan.Miuref, C:\Users\UWe\AppData\Local\Extion\gpdpugdb.dll, Löschen bei Neustart, [f7b3f091dbcd47ef1b52f09f8978669a], 

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswerte: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 2
Trojan.Miuref, C:\Users\UWe\AppData\Local\Extion\gpdpugdb.dll, Löschen bei Neustart, [f7b3f091dbcd47ef1b52f09f8978669a], 
Trojan.Miuref, C:\Users\UWe\AppData\Local\Odvics\rdrsuhfd.dll, In Quarantäne, [fcae97ea04a4b08616577817d03154ac], 

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)
         
AdwCleaner[C0]
Code:
ATTFilter
# AdwCleaner v6.043 - Bericht erstellt am 29/01/2017 um 19:22:39
# Aktualisiert am 27/01/2017 von Malwarebytes
# Datenbank : 2017-01-28.2 [Server]
# Betriebssystem : Windows 10 Pro  (X64)
# Benutzername : Uwe - UWE
# Gestartet von : D:\Haupt Sicherung\Desktop\adwcleaner_6.043.exe
# Modus: Löschen
# Unterstützung : https://www.malwarebytes.com/support



***** [ Dienste ] *****



***** [ Ordner ] *****

[-] Ordner gelöscht: C:\ProgramData\BSD\DriverHive
[-] Ordner gelöscht: C:\ProgramData\BSD
[#] Ordner mit Neustart gelöscht: C:\ProgramData\BSD\DriverHiveEngine
[-] Ordner gelöscht: C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\poohjpljfecljomfhhimjhddddlidhdd
[-] Ordner gelöscht: C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\poohjpljfecljomfhhimjhddddlidhdd


***** [ Dateien ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Verknüpfungen ] *****



***** [ Aufgabenplanung ] *****



***** [ Registrierungsdatenbank ] *****

[-] Schlüssel gelöscht: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\WindowService
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\WindowService
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{95E84BD3-3604-4AAC-B2CA-D9AC3E55B64B}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{D42C3A49-ABAF-464B-BBCE-991C3DD395E8}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{BF8946CD-EEBE-436B-8282-B19A021C9EFE}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\TypeLib\{38DD0B4A-E4E0-4A57-99EE-DCCB185B4728}
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95E84BD3-3604-4AAC-B2CA-D9AC3E55B64B}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\OtherSearch
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Auslogics
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\11598763487076930564
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\watch4.de
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.watch4.de
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\watch4.de
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.watch4.de


***** [ Browser ] *****

[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] [Search Provider] Gelöscht: dregol.com
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] [Search Provider] Gelöscht: mysearchdial.com
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] [Search Provider] Gelöscht: trovi.search
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] [Search Provider] Gelöscht: omiga-plus
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] [Search Provider] Gelöscht: do-search
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] [Search Provider] Gelöscht: check point software technologies ltd
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1] [startup_urls] Gelöscht: hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=94B5002185FC1D8D&affID=119557&tt=040813_11&tsp=4964
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1] [startup_urls] Gelöscht: hxxp://search.conduit.com/?ctid=CT3297265&SearchSource=48&CUI=UN13709293388366198&UM=2
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1] [startup_urls] Gelöscht: hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=48&cc=&mi=dade290d000000000000bc5ff4d867ab
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1] [startup_urls] Gelöscht: hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=87c51c34-65c1-91fc-50e6-a5edad149656&searchtype=hp&fr=linkury-tb&installDate=03/12/2013&type=hp1000
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1] [startup_urls] Gelöscht: hxxp://www.buenosearch.com/?babsrc=HP_ss&mntrId=DADEBC5FF4D867AB&affID=128235&tsp=5114
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1] [startup_urls] Gelöscht: hxxp://search.conduit.com/?ctid=CT3297265&SearchSource=48&CUI=UN38009094562468118&UM=2
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1] [startup_urls] Gelöscht: hxxp://start.mysearchdial.com/?f=1&a=frg_14_16_ch&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyE0DzzyCyB0A0BtBzytD0DtN0D0Tzu0SzztAyDtN1L2XzutBtFtBtDtFtCtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyCyEtA0C0EtCyCtAtGtDzytD0FtGtC0ByEtAtGtAzz0A0FtGtAtAtCyD0BtCyBtCzyyE0FyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyE0E0DyCyCyCtByEtG0EtDtDyDtGyE0FtDyDtG0EtD0D0AtGyEyCzztDzy0C0AtByD0C0B0D2Q&cr=90356069&ir=
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1] [startup_urls] Gelöscht: hxxp://search.zonealarm.com/?src=hp&tbid=HFA5&Lan=DE&gu=cd5633152e1042ea8930dc3966516f63&tu=11Jiy00E21D13P0&sku=&tstsId=&ver=&
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1] [startup_urls] Gelöscht: hxxp://isearch.omiga-plus.com/?type=hp&ts=1403721403&from=ild&uid=ST31500541AS_9XW037N7XXXX9XW037N7
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1] [startup_urls] Gelöscht: hxxp://www.dregol.com/?f=7&a=drg_ir_15_23&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyE0DzzyCyB0A0BtB0FzztDtN0D0Tzu0StCtByDtDtN1L2XzutAtFtCtDtFtCtDtFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyDtB0CtB0D0D0EtAtGyBzytAyEtG0FyC0DzztGyB0D0B0FtGzyyC0AtAtCtAzz0AzztCtAyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szz0CyDyB0DyDtDtBtGtDtA0EyEtGyEyDtCtAtGzzzytCzytGtCtByDtCyD0Dzy0F0F0B0FtA2QtN0A0LzuyE&cr=2071282332&ir=
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1] [startup_urls] Gelöscht: hxxp://de.hao123.com/?tn=sdks_inner_hp_01_hao123_de&guid=68632025565c15b66b7a202ae8671bf7
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1] [startup_urls] Gelöscht: hxxp://do-search.com/?type=hp&ts=1447872773&z=110a553a1151dd32499929eg0z4z3m2bam9o9m8m6c&from=dae&uid=wdcxwd20eads-00w4b0_wd-wcavy570688206882
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1] [extension] Gelöscht: poohjpljfecljomfhhimjhddddlidhdd
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3] [startup_urls] Gelöscht: hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=94B5002185FC1D8D&affID=119557&tt=040813_11&tsp=4964
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3] [startup_urls] Gelöscht: hxxp://search.conduit.com/?ctid=CT3297265&SearchSource=48&CUI=UN13709293388366198&UM=2
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3] [startup_urls] Gelöscht: hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=48&cc=&mi=dade290d000000000000bc5ff4d867ab
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3] [startup_urls] Gelöscht: hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=87c51c34-65c1-91fc-50e6-a5edad149656&searchtype=hp&fr=linkury-tb&installDate=03/12/2013&type=hp1000
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3] [startup_urls] Gelöscht: hxxp://www.buenosearch.com/?babsrc=HP_ss&mntrId=DADEBC5FF4D867AB&affID=128235&tsp=5114
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3] [startup_urls] Gelöscht: hxxp://search.conduit.com/?ctid=CT3297265&SearchSource=48&CUI=UN38009094562468118&UM=2
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3] [startup_urls] Gelöscht: hxxp://start.mysearchdial.com/?f=1&a=frg_14_16_ch&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyE0DzzyCyB0A0BtBzytD0DtN0D0Tzu0SzztAyDtN1L2XzutBtFtBtDtFtCtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyCyEtA0C0EtCyCtAtGtDzytD0FtGtC0ByEtAtGtAzz0A0FtGtAtAtCyD0BtCyBtCzyyE0FyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyE0E0DyCyCyCtByEtG0EtDtDyDtGyE0FtDyDtG0EtD0D0AtGyEyCzztDzy0C0AtByD0C0B0D2Q&cr=90356069&ir=
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3] [startup_urls] Gelöscht: hxxp://search.zonealarm.com/?src=hp&tbid=HFA5&Lan=DE&gu=cd5633152e1042ea8930dc3966516f63&tu=11Jiy00E21D13P0&sku=&tstsId=&ver=&
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3] [startup_urls] Gelöscht: hxxp://isearch.omiga-plus.com/?type=hp&ts=1403721403&from=ild&uid=ST31500541AS_9XW037N7XXXX9XW037N7
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3] [startup_urls] Gelöscht: hxxp://www.dregol.com/?f=7&a=drg_ir_15_23&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyE0DzzyCyB0A0BtB0FzztDtN0D0Tzu0StCtByDtDtN1L2XzutAtFtCtDtFtCtDtFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyDtB0CtB0D0D0EtAtGyBzytAyEtG0FyC0DzztGyB0D0B0FtGzyyC0AtAtCtAzz0AzztCtAyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szz0CyDyB0DyDtDtBtGtDtA0EyEtGyEyDtCtAtGzzzytCzytGtCtByDtCyD0Dzy0F0F0B0FtA2QtN0A0LzuyE&cr=2071282332&ir=
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3] [startup_urls] Gelöscht: hxxp://de.hao123.com/?tn=sdks_inner_hp_01_hao123_de&guid=68632025565c15b66b7a202ae8671bf7
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3] [startup_urls] Gelöscht: hxxp://do-search.com/?type=hp&ts=1447872773&z=110a553a1151dd32499929eg0z4z3m2bam9o9m8m6c&from=dae&uid=wdcxwd20eads-00w4b0_wd-wcavy570688206882
[-] [C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3] [extension] Gelöscht: poohjpljfecljomfhhimjhddddlidhdd
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Default\Web data] [Search Provider] Gelöscht: dregol.com
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Default\Web data] [Search Provider] Gelöscht: mysearchdial.com
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Default\Web data] [Search Provider] Gelöscht: trovi.search
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Default\Web data] [Search Provider] Gelöscht: omiga-plus
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Default\Web data] [Search Provider] Gelöscht: do-search
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Default\Web data] [Search Provider] Gelöscht: check point software technologies ltd
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Default] [startup_urls] Gelöscht: hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=94B5002185FC1D8D&affID=119557&tt=040813_11&tsp=4964
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Default] [startup_urls] Gelöscht: hxxp://search.conduit.com/?ctid=CT3297265&SearchSource=48&CUI=UN13709293388366198&UM=2
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Default] [startup_urls] Gelöscht: hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=48&cc=&mi=dade290d000000000000bc5ff4d867ab
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Default] [startup_urls] Gelöscht: hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=87c51c34-65c1-91fc-50e6-a5edad149656&searchtype=hp&fr=linkury-tb&installDate=03/12/2013&type=hp1000
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Default] [startup_urls] Gelöscht: hxxp://www.buenosearch.com/?babsrc=HP_ss&mntrId=DADEBC5FF4D867AB&affID=128235&tsp=5114
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Default] [startup_urls] Gelöscht: hxxp://search.conduit.com/?ctid=CT3297265&SearchSource=48&CUI=UN38009094562468118&UM=2
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Default] [startup_urls] Gelöscht: hxxp://start.mysearchdial.com/?f=1&a=frg_14_16_ch&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyE0DzzyCyB0A0BtBzytD0DtN0D0Tzu0SzztAyDtN1L2XzutBtFtBtDtFtCtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyCyEtA0C0EtCyCtAtGtDzytD0FtGtC0ByEtAtGtAzz0A0FtGtAtAtCyD0BtCyBtCzyyE0FyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyE0E0DyCyCyCtByEtG0EtDtDyDtGyE0FtDyDtG0EtD0D0AtGyEyCzztDzy0C0AtByD0C0B0D2Q&cr=90356069&ir=
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Default] [startup_urls] Gelöscht: hxxp://search.zonealarm.com/?src=hp&tbid=HFA5&Lan=DE&gu=cd5633152e1042ea8930dc3966516f63&tu=11Jiy00E21D13P0&sku=&tstsId=&ver=&
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Default] [startup_urls] Gelöscht: hxxp://isearch.omiga-plus.com/?type=hp&ts=1403721403&from=ild&uid=ST31500541AS_9XW037N7XXXX9XW037N7
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Default] [startup_urls] Gelöscht: hxxp://www.dregol.com/?f=7&a=drg_ir_15_23&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyE0DzzyCyB0A0BtB0FzztDtN0D0Tzu0StCtByDtDtN1L2XzutAtFtCtDtFtCtDtFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyDtB0CtB0D0D0EtAtGyBzytAyEtG0FyC0DzztGyB0D0B0FtGzyyC0AtAtCtAzz0AzztCtAyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szz0CyDyB0DyDtDtBtGtDtA0EyEtGyEyDtCtAtGzzzytCzytGtCtByDtCyD0Dzy0F0F0B0FtA2QtN0A0LzuyE&cr=2071282332&ir=
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Default] [startup_urls] Gelöscht: hxxp://de.hao123.com/?tn=sdks_inner_hp_01_hao123_de&guid=68632025565c15b66b7a202ae8671bf7
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Default] [startup_urls] Gelöscht: hxxp://do-search.com/?type=hp&ts=1447872773&z=110a553a1151dd32499929eg0z4z3m2bam9o9m8m6c&from=dae&uid=wdcxwd20eads-00w4b0_wd-wcavy570688206882
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Default] [extension] Gelöscht: poohjpljfecljomfhhimjhddddlidhdd
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Profile 2\Web data] [Search Provider] Gelöscht: dregol.com
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Profile 2\Web data] [Search Provider] Gelöscht: mysearchdial.com
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Profile 2\Web data] [Search Provider] Gelöscht: trovi.search
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Profile 2\Web data] [Search Provider] Gelöscht: omiga-plus
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Profile 2\Web data] [Search Provider] Gelöscht: do-search
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Profile 2\Web data] [Search Provider] Gelöscht: check point software technologies ltd
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Profile 2] [startup_urls] Gelöscht: hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=94B5002185FC1D8D&affID=119557&tt=040813_11&tsp=4964
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Profile 2] [startup_urls] Gelöscht: hxxp://search.conduit.com/?ctid=CT3297265&SearchSource=48&CUI=UN13709293388366198&UM=2
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Profile 2] [startup_urls] Gelöscht: hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=48&cc=&mi=dade290d000000000000bc5ff4d867ab
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Profile 2] [startup_urls] Gelöscht: hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=87c51c34-65c1-91fc-50e6-a5edad149656&searchtype=hp&fr=linkury-tb&installDate=03/12/2013&type=hp1000
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Profile 2] [startup_urls] Gelöscht: hxxp://www.buenosearch.com/?babsrc=HP_ss&mntrId=DADEBC5FF4D867AB&affID=128235&tsp=5114
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Profile 2] [startup_urls] Gelöscht: hxxp://search.conduit.com/?ctid=CT3297265&SearchSource=48&CUI=UN38009094562468118&UM=2
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Profile 2] [startup_urls] Gelöscht: hxxp://start.mysearchdial.com/?f=1&a=frg_14_16_ch&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyE0DzzyCyB0A0BtBzytD0DtN0D0Tzu0SzztAyDtN1L2XzutBtFtBtDtFtCtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyCyEtA0C0EtCyCtAtGtDzytD0FtGtC0ByEtAtGtAzz0A0FtGtAtAtCyD0BtCyBtCzyyE0FyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyE0E0DyCyCyCtByEtG0EtDtDyDtGyE0FtDyDtG0EtD0D0AtGyEyCzztDzy0C0AtByD0C0B0D2Q&cr=90356069&ir=
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Profile 2] [startup_urls] Gelöscht: hxxp://search.zonealarm.com/?src=hp&tbid=HFA5&Lan=DE&gu=cd5633152e1042ea8930dc3966516f63&tu=11Jiy00E21D13P0&sku=&tstsId=&ver=&
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Profile 2] [startup_urls] Gelöscht: hxxp://isearch.omiga-plus.com/?type=hp&ts=1403721403&from=ild&uid=ST31500541AS_9XW037N7XXXX9XW037N7
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Profile 2] [startup_urls] Gelöscht: hxxp://www.dregol.com/?f=7&a=drg_ir_15_23&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyE0DzzyCyB0A0BtB0FzztDtN0D0Tzu0StCtByDtDtN1L2XzutAtFtCtDtFtCtDtFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyDtB0CtB0D0D0EtAtGyBzytAyEtG0FyC0DzztGyB0D0B0FtGzyyC0AtAtCtAzz0AzztCtAyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szz0CyDyB0DyDtDtBtGtDtA0EyEtGyEyDtCtAtGzzzytCzytGtCtByDtCyD0Dzy0F0F0B0FtA2QtN0A0LzuyE&cr=2071282332&ir=
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Profile 2] [startup_urls] Gelöscht: hxxp://de.hao123.com/?tn=sdks_inner_hp_01_hao123_de&guid=68632025565c15b66b7a202ae8671bf7
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Profile 2] [startup_urls] Gelöscht: hxxp://do-search.com/?type=hp&ts=1447872773&z=110a553a1151dd32499929eg0z4z3m2bam9o9m8m6c&from=dae&uid=wdcxwd20eads-00w4b0_wd-wcavy570688206882
[-] [C:\Users\UWe\AppData\Local\Google\Chrome SxS\User Data\Profile 2] [extension] Gelöscht: poohjpljfecljomfhhimjhddddlidhdd


*************************

:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: "Image File Execution Options" Schlüssel gelöscht
:: "Prefetch" Dateien gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [17927 Bytes] - [29/01/2017 19:22:39]
C:\AdwCleaner\AdwCleaner[S0].txt - [15961 Bytes] - [29/01/2017 19:17:46]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [18075 Bytes] ##########
         
FRST
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 29-01-2017
durchgeführt von Uwe (Administrator) auf UWE (30-01-2017 02:23:28)
Gestartet von D:\Haupt Sicherung\Desktop
Geladene Profile: Uwe (Verfügbare Profile: Uwe)
Platform: Windows 10 Pro Version 1607 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(<AVerMedia>) C:\Program Files (x86)\AVerMedia\AVerMedia CV710 USB3 HD Capture\AVerUSBPortChecker.exe
(AVerMedia TECHNOLOGIES, Inc.) C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Hi-Rez Studios) D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-07-15] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [26142864 2017-01-18] (Dropbox, Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3477640 2012-09-23] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Corsair Utility Engine] => C:\Program Files (x86)\Corsair\Corsair Utility Engine\CUE.exe [13043408 2016-12-13] (Corsair Components, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Run: [DAEMON Tools Lite Automount] => D:\Program Files\DAEMON Tools Lite\DTAgent.exe [4179288 2015-11-18] (Disc Soft Ltd)
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIXE.EXE [283232 2015-01-07] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Run: [Google Update] => C:\Users\UWe\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe [601752 2016-12-19] (Google Inc.)
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Run: [TweakBit\Driver Updater\Start Driver Updater оn logon] => "C:\Program Files (x86)\TweakBit\Driver Updater\DriverUpdater.exe" -UseTray
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23818360 2016-11-30] (Google)
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Run: [Extion] => C:\Users\UWe\AppData\Local\Extion\Windows_Activaton.exe [183885 2017-01-17] ()
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Run: [Owjics] => C:\Windows\SysWOW64\regsvr32.exe C:\Users\UWe\AppData\Local\Extion\sfhbyhvv.dll
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Run: [GoogleChromeAutoLaunch_FF7EF6AF25EDE54A2DF4F9352543EA28] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1104728 2016-12-08] (Google Inc.)
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\MountPoints2: {159d2da2-05dc-11e6-9bf3-bc5ff4d867ab} - "G:\Setup.exe" 
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\MountPoints2: {b74afb63-8d86-11e5-9bca-bc5ff4d867ab} - "G:\setup.exe" 
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.11.0.dll [2017-01-18] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE OC_GURU.lnk [2017-01-30]
ShortcutTarget: GIGABYTE OC_GURU.lnk -> C:\Windows\System32\schtasks.exe (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass FF RunOnce.lnk [2017-01-30]
ShortcutTarget: Install LastPass FF RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (LastPass)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk [2017-01-30]
ShortcutTarget: Install LastPass IE RunOnce.lnk -> C:\Program Files (x86)\Common Files\lpuninstall.exe (LastPass)
Startup: C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2017-01-30]
ShortcutTarget: EvernoteClipper.lnk -> D:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{0b0e20e1-671a-42f3-adc4-306a1f49db5c}: [DhcpNameServer] 192.168.178.1
ManualProxies: 

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.avira.net/#web/result?source=art&q=
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> D:\Program Files\Microsoft Office\Office16\OCHelper.dll [2016-12-13] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-18] (Oracle Corporation)
BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2016-10-15] (LastPass)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> D:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2016-11-16] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-18] (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> D:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2016-04-27] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll [2016-10-15] (LastPass)
BHO-x32: Adobe Acrobat Create PDF Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2016-11-16] (Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2016-10-15] (LastPass)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2016-10-15] (LastPass)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - D:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2016-11-16] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2016-11-16] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - D:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2016-11-16] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2016-11-16] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\UWe\AppData\Roaming\Mozilla\Firefox\Profiles\vavHNCqi.default [2017-01-25]
FF Session Restore: Mozilla\Firefox\Profiles\vavHNCqi.default -> ist aktiviert.
FF Extension: (Avira Browser Safety) - C:\Users\UWe\AppData\Roaming\Mozilla\Firefox\Profiles\vavHNCqi.default\Extensions\abs@avira.com.xpi [2016-11-29]
FF Extension: (Firefox Hotfix) - C:\Users\UWe\AppData\Roaming\Mozilla\Firefox\Profiles\vavHNCqi.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-08-30]
FF Extension: (Untamed Now Playing) - C:\Users\UWe\AppData\Roaming\Mozilla\Firefox\Profiles\vavHNCqi.default\Extensions\jid1-CCXBUPa5pAmTYw@jetpack.xpi [2016-12-26]
FF Extension: (LastPass) - C:\Users\UWe\AppData\Roaming\Mozilla\Firefox\Profiles\vavHNCqi.default\Extensions\support@lastpass.com [2016-12-27]
FF Extension: (System.Diagnostics.SymbolStore.SymDocumentType) - C:\Users\UWe\AppData\Roaming\Mozilla\Firefox\Profiles\vavHNCqi.default\Extensions\{409A33F3-780D-C4FD-8B61-DF547011D348} [2017-01-25] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2015-12-04] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-11] ()
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-18] (Oracle Corporation)
FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2016-10-15] (LastPass)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> D:\PROGRA~4\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-11] ()
FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2016-10-15] (LastPass)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-05-27] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-11] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-11] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [Keine Datei]
FF Plugin-x32: Adobe Acrobat -> D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
FF Plugin HKU\S-1-5-21-2759712002-1790162856-1979884355-1001: @tools.google.com/Google Update;version=3 -> C:\Users\UWe\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin HKU\S-1-5-21-2759712002-1790162856-1979884355-1001: @tools.google.com/Google Update;version=9 -> C:\Users\UWe\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2016-05-27] (Microsoft Corporation)
StartMenuInternet: FIREFOX.EXE - D:\Program Files (x86)\Mozilla Firefox\firefox.exe

Chrome: 
=======
CHR DefaultProfile: Profile 3
CHR HomePage: Profile 3 -> hxxp://www.google.com/
CHR StartupUrls: Profile 3 -> "hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=94B5002185FC1D8D&affID=119557&tt=040813_11&tsp=4964","hxxp://search.conduit.com/?ctid=CT3297265&SearchSource=48&CUI=UN13709293388366198&UM=2","hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=48&cc=&mi=dade290d000000000000bc5ff4d867ab","hxxp://feed.helperbar.com/?publisher=YahooOC&dpid=YahooOC&co=DE&userid=87c51c34-65c1-91fc-50e6-a5edad149656&searchtype=hp&fr=linkury-tb&installDate=03/12/2013&type=hp1000","hxxp://www.buenosearch.com/?babsrc=HP_ss&mntrId=DADEBC5FF4D867AB&affID=128235&tsp=5114","hxxp://search.conduit.com/?ctid=CT3297265&SearchSource=48&CUI=UN38009094562468118&UM=2","hxxp://start.mysearchdial.com/?f=1&a=frg_14_16_ch&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyE0DzzyCyB0A0BtBzytD0DtN0D0Tzu0SzztAyDtN1L2XzutBtFtBtDtFtCtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyCyEtA0C0EtCyCtAtGtDzytD0FtGtC0ByEtAtGtAzz0A0FtGtAtAtCyD0BtCyBtCzyyE0FyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyE0E0DyCyCyCtByEtG0EtDtDyDtGyE0FtDyDtG0EtD0D0AtGyEyCzztDzy0C0AtByD0C0B0D2Q&cr=90356069&ir=","hxxp://search.zonealarm.com/?src=hp&tbid=HFA5&Lan=DE&gu=cd5633152e1042ea8930dc3966516f63&tu=11Jiy00E21D13P0&sku=&tstsId=&ver=&","hxxp://isearch.omiga-plus.com/?type=hp&ts=1403721403&from=ild&uid=ST31500541AS_9XW037N7XXXX9XW037N7","hxxp://www.bing.com/search?FORM=INCOH1&PC=IC02","hxxp://www.dregol.com/?f=7&a=drg_ir_15_23&cd=2XzuyEtN2Y1L1Qzu0B0CyD0F0FyE0DzzyCyB0A0BtB0FzztDtN0D0Tzu0StCtByDtDtN1L2XzutAtFtCtDtFtCtDtFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyDtB0CtB0D0D0EtAtGyBzytAyEtG0FyC0DzztGyB0D0B0FtGzyyC0AtAtCtAzz0AzztCtAyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szz0CyDyB0DyDtDtBtGtDtA0EyEtGyEyDtCtAtGzzzytCzytGtCtByDtCyD0Dzy0F0F0B0FtA2QtN0A0LzuyE&cr=2071282332&ir=","hxxp://de.hao123.com/?tn=sdks_inner_hp_01_hao123_de&guid=68632025565c15b66b7a202ae8671bf7","hxxp://do-search.com/?type=hp&ts=1447872773&z=110a553a1151dd32499929eg0z4z3m2bam9o9m8m6c&from=dae&uid=wdcxwd20eads-00w4b0_wd-wcavy570688206882"
CHR Session Restore: Profile 3 -> ist aktiviert.
CHR Profile: C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Default [2016-10-15]
CHR Profile: C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1 [2016-10-15]
CHR Extension: (BetterTTV) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-11-19]
CHR Extension: (Google Docs) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-19]
CHR Extension: (Google Drive) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-19]
CHR Extension: (YouTube) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-19]
CHR Extension: (X New Tab Page) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cbmbfafhdccfgdgnbkgogehiklmemkoh [2015-11-19]
CHR Extension: (OneTab) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2016-01-26]
CHR Extension: (Google-Suche) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-19]
CHR Extension: (Google+) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dlppkpafhbajpcmmoheippocdidnckmm [2015-12-10]
CHR Extension: (Adobe Acrobat) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2015-12-06]
CHR Extension: (Google Docs Offline) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (AirDroid) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hkgndiocipalkpejnpafdbdlfdjihomd [2015-11-19]
CHR Extension: (Google Notizen – Notizen & Listen) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2016-05-12]
CHR Extension: (IP-Adresse) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jpnjjlbngpejmmhgcaagljaomgnginml [2015-11-19]
CHR Extension: (Handcraft) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\kgpklhhhiiafnocfiikcpffkogjkdmki [2015-11-19]
CHR Extension: (AudioSauna) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lkgfemnodkdnenmfkblebnkjpckkjcae [2015-11-19]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-05-13]
CHR Extension: (Awesome Screenshot App) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mfpiaehgjbbfednooihadalhehabhcjo [2016-01-19]
CHR Extension: (deviantART muro) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\namljbfbglehfnlonjmebceimaalofei [2015-11-19]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Google Publisher Toolbar) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\omioeahgfecgfpfldejlnideemfidnkc [2016-04-18]
CHR Extension: (Google Mail) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-19]
CHR Profile: C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2 [2016-10-15]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-05-13]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2016-05-13]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-13]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-13]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2016-05-13]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-05-13]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-13]
CHR Extension: (Chrome Web Store Payments) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-13]
CHR Extension: (Kein Name) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-05-13]
CHR Profile: C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3 [2017-01-30]
CHR Extension: (Google Präsentationen) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-05-13]
CHR Extension: (BetterTTV) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2016-06-04]
CHR Extension: (Google Docs) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2016-05-13]
CHR Extension: (Google Drive) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-13]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2017-01-26]
CHR Extension: (YouTube) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-13]
CHR Extension: (Adblock Plus) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-01-25]
CHR Extension: (OneTab) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2016-06-07]
CHR Extension: (Attack on Titan: Military) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\cpemfagbhonhfbphehojcgfageomeeag [2017-01-29]
CHR Extension: (Google+) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\dlppkpafhbajpcmmoheippocdidnckmm [2016-05-13]
CHR Extension: (Adobe Acrobat) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-01-16]
CHR Extension: (Google Tabellen) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-05-13]
CHR Extension: (Google Docs Offline) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-13]
CHR Extension: (AdBlock) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-01-25]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2017-01-28]
CHR Extension: (AirDroid) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\hkgndiocipalkpejnpafdbdlfdjihomd [2016-05-13]
CHR Extension: (Google Notizen – Notizen & Listen) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2017-01-24]
CHR Extension: (IP-Adresse) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\jpnjjlbngpejmmhgcaagljaomgnginml [2016-08-27]
CHR Extension: (Handcraft) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\kgpklhhhiiafnocfiikcpffkogjkdmki [2016-05-13]
CHR Extension: (AudioSauna) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lkgfemnodkdnenmfkblebnkjpckkjcae [2016-05-13]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-05-13]
CHR Extension: (Chrome-Erweiterung für Google Notizen) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2016-08-06]
CHR Extension: (Awesome Screenshot App) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\mfpiaehgjbbfednooihadalhehabhcjo [2016-06-15]
CHR Extension: (deviantART muro) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\namljbfbglehfnlonjmebceimaalofei [2016-05-13]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-18]
CHR Extension: (Enhanced Steam) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2017-01-30]
CHR Extension: (Google Publisher Toolbar) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\omioeahgfecgfpfldejlnideemfidnkc [2016-08-25]
CHR Extension: (Google Mail) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-05-13]
CHR Extension: (Chrome Media Router) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-16]
CHR Extension: (Twitch Giveaways) - C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\poohjpljfecljomfhhimjhddddlidhdd [2017-01-29]
CHR Profile: C:\Users\UWe\AppData\Local\Google\Chrome\User Data\System Profile [2017-01-25]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - hxxp://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\UWe\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2017-01-25]
CHR HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - D:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2012-09-23]

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AVerRECentral; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe [1930848 2016-10-11] (AVerMedia TECHNOLOGIES, Inc.)
R2 AVerUSBPortChecker; C:\Program Files (x86)\AVerMedia\AVerMedia CV710 USB3 HD Capture\AVerUSBPortChecker.exe [182784 2014-11-17] (<AVerMedia>) [Datei ist nicht signiert]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1465352 2017-01-15] ()
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46400 2017-01-04] (Dropbox, Inc.)
S3 Disc Soft Lite Bus Service; D:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1369432 2015-11-18] (Disc Soft Ltd)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [Datei ist nicht signiert]
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2016-04-13] (Futuremark)
S3 GalaxyClientService; D:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1616440 2015-10-14] (GOG.com)
S4 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7220792 2016-01-30] (GOG.com)
U2 HiPatchService; D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-10-10] (Hi-Rez Studios) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Datei ist nicht signiert]
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373160 2015-12-19] (Intel Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [22744 2015-02-05] (Microsoft Corporation)
S4 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3685968 2015-07-22] (INCA Internet Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-13] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-13] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-12-11] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-12-13] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2016-12-13] (NVIDIA Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-15] (Microsoft Corporation)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [89232 2014-07-22] (Microsoft Corporation)
S3 VSStandardCollectorService140; D:\Programme (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [56040 2015-11-19] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [76032 2015-10-21] (Advanced Micro Devices, Inc.)
S3 AsrDrv101; C:\WINDOWS\SysWOW64\Drivers\AsrDrv101.sys [22280 2016-05-03] (ASRock Incorporation)
R0 asstahci64; C:\WINDOWS\System32\drivers\asstahci64.sys [98704 2015-11-23] (Asmedia Technology)
R3 AVMU3CV71064; C:\WINDOWS\system32\drivers\avmu3cv710_x64.sys [614528 2016-08-18] (AVerMedia TECHNOLOGIES, Inc.)
S3 AVMU3HC64; C:\WINDOWS\system32\drivers\avmu364.sys [519168 2014-05-21] (AVerMedia TECHNOLOGIES, Inc.) [Datei ist nicht signiert]
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [54256 2016-12-11] (Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [29168 2016-12-11] (Corsair)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-11-18] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47160 2015-11-18] (Disc Soft Ltd)
R3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [40168 2016-02-05] (ELAN Microelectronic Corp.)
S3 FreshIO; C:\Program Files (x86)\FreshDevices\FreshDiagnose\FreshIO.sys [2410 2004-10-26] () [Datei ist nicht signiert]
R3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2014-08-28] ()
U5 iaStorA; C:\Windows\System32\Drivers\iaStorA.sys [1455552 2015-06-23] (Intel Corporation)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3f929cc119e3b994\nvlddmkm.sys [14200880 2016-12-12] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-12-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2016-12-13] (NVIDIA Corporation)
R0 PxHlpa64; C:\WINDOWS\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [216064 2016-07-16] (Microsoft Corporation)
R3 Serial; C:\WINDOWS\system32\DRIVERS\wdfserial.sys [80664 2015-03-06] (LG Electronics Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [36904 2016-02-18] (Wellbia.com Co., Ltd.)
S3 ysusb64; C:\WINDOWS\system32\drivers\ysusb64.sys [123904 2015-07-17] (Yamaha Corporation)
U3 aspnet_state; kein ImagePath
S3 dbx; system32\DRIVERS\dbx.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-01-29 19:14 - 2017-01-29 19:22 - 00000000 ____D C:\AdwCleaner
2017-01-29 19:12 - 2017-01-29 19:12 - 00508948 _____ C:\WINDOWS\Minidump\012917-40296-01.dmp
2017-01-27 21:49 - 2017-01-27 21:51 - 00087724 _____ C:\TDSSKiller.3.1.0.12_27.01.2017_21.49.55_log.txt
2017-01-27 21:45 - 2017-01-30 02:23 - 00000000 ____D C:\FRST
2017-01-27 19:21 - 2017-01-30 02:07 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-01-27 19:21 - 2017-01-30 02:06 - 00001175 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2017-01-27 19:21 - 2017-01-27 19:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2017-01-27 19:21 - 2017-01-27 19:21 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2017-01-27 19:21 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2017-01-27 19:21 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2017-01-27 19:21 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-01-27 19:12 - 2017-01-27 19:12 - 00542292 _____ C:\WINDOWS\Minidump\012717-56265-01.dmp
2017-01-26 19:55 - 2017-01-26 19:55 - 00000000 ____D C:\Program Files\Malwarebytes
2017-01-25 22:01 - 2017-01-27 01:17 - 00000000 ____D C:\Users\UWe\AppData\Roaming\The Witness
2017-01-25 20:02 - 2017-01-30 02:17 - 00000869 _____ C:\Users\UWe\Desktop\JRT.txt
2017-01-25 19:57 - 2017-01-30 02:07 - 00000889 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-01-25 19:57 - 2017-01-30 02:06 - 00000889 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-01-25 19:10 - 2016-12-21 08:08 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2017-01-25 19:10 - 2016-12-21 05:44 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2017-01-25 19:03 - 2017-01-29 19:22 - 00000008 __RSH C:\Users\UWe\ntuser.pol
2017-01-25 10:33 - 2017-01-25 19:20 - 00000000 ____D C:\WINDOWS\system32\SSL
2017-01-25 10:32 - 2017-01-30 02:16 - 00000000 ____D C:\Users\UWe\AppData\Local\Odvics
2017-01-25 10:31 - 2017-01-30 02:16 - 00000000 ____D C:\Users\UWe\AppData\Local\Extion
2017-01-25 10:30 - 2017-01-26 21:51 - 00000000 ___HD C:\ProgramData\2n21o8q50932
2017-01-25 10:30 - 2017-01-25 10:30 - 00016798 _____ C:\WINDOWS\System32\Tasks\2n21o8q50932
2017-01-25 10:24 - 2017-01-26 21:48 - 00000000 ___HD C:\ProgramData\3n98o0q17241
2017-01-25 10:24 - 2017-01-25 10:24 - 00016798 _____ C:\WINDOWS\System32\Tasks\3n98o0q17241
2017-01-25 10:23 - 2017-01-26 21:48 - 00000000 ____D C:\Program Files (x86)\Microsoft Toolkit Final
2017-01-25 01:13 - 2017-01-30 02:06 - 00001076 _____ C:\Users\Public\Desktop\The Witness.lnk
2017-01-25 01:13 - 2017-01-25 01:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witness [GOG.com]
2017-01-24 22:11 - 2017-01-24 22:11 - 02979002 _____ C:\WINDOWS\b98d6866d1c6e970ea12d87a73ede89e.exe
2017-01-24 18:59 - 2017-01-24 18:59 - 00498540 _____ C:\WINDOWS\Minidump\012417-73171-01.dmp
2017-01-24 01:25 - 2017-01-24 01:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-01-18 20:39 - 2017-01-18 20:39 - 00000000 ____D C:\Users\UWe\AppData\Local\Intel
2017-01-17 18:50 - 2017-01-17 18:50 - 00486364 _____ C:\WINDOWS\Minidump\011717-49218-01.dmp
2017-01-12 20:14 - 2017-01-12 20:14 - 00046192 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-01-12 20:14 - 2017-01-12 20:14 - 00046192 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-01-12 20:14 - 2017-01-12 20:14 - 00046192 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-01-10 21:03 - 2016-12-21 09:08 - 00245600 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2017-01-10 21:03 - 2016-12-21 09:08 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2017-01-10 21:03 - 2016-12-21 09:04 - 07816032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-01-10 21:03 - 2016-12-21 08:49 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-01-10 21:03 - 2016-12-21 08:46 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-01-10 21:03 - 2016-12-21 08:43 - 04130440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-01-10 21:03 - 2016-12-21 08:43 - 01454504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-01-10 21:03 - 2016-12-21 08:43 - 01071736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-01-10 21:03 - 2016-12-21 08:43 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-01-10 21:03 - 2016-12-21 08:42 - 22224480 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-01-10 21:03 - 2016-12-21 08:42 - 01988560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-01-10 21:03 - 2016-12-21 08:42 - 01702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-01-10 21:03 - 2016-12-21 08:42 - 01300600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-01-10 21:03 - 2016-12-21 08:42 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-01-10 21:03 - 2016-12-21 08:41 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-01-10 21:03 - 2016-12-21 08:37 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-01-10 21:03 - 2016-12-21 08:15 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-01-10 21:03 - 2016-12-21 08:14 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2017-01-10 21:03 - 2016-12-21 08:09 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2017-01-10 21:03 - 2016-12-21 08:09 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2017-01-10 21:03 - 2016-12-21 08:08 - 01292288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-01-10 21:03 - 2016-12-21 08:08 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-01-10 21:03 - 2016-12-21 08:08 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2017-01-10 21:03 - 2016-12-21 08:08 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-01-10 21:03 - 2016-12-21 08:08 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-01-10 21:03 - 2016-12-21 08:08 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-01-10 21:03 - 2016-12-21 08:07 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-01-10 21:03 - 2016-12-21 08:06 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-01-10 21:03 - 2016-12-21 08:06 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2017-01-10 21:03 - 2016-12-21 08:06 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-01-10 21:03 - 2016-12-21 08:06 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-01-10 21:03 - 2016-12-21 08:05 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-01-10 21:03 - 2016-12-21 08:05 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-01-10 21:03 - 2016-12-21 08:05 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-01-10 21:03 - 2016-12-21 08:01 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-01-10 21:03 - 2016-12-21 08:00 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2017-01-10 21:03 - 2016-12-21 07:59 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-01-10 21:03 - 2016-12-21 07:59 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-01-10 21:03 - 2016-12-21 07:58 - 23678464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-01-10 21:03 - 2016-12-21 07:57 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2017-01-10 21:03 - 2016-12-21 07:56 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2017-01-10 21:03 - 2016-12-21 07:56 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2017-01-10 21:03 - 2016-12-21 07:55 - 08129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-01-10 21:03 - 2016-12-21 07:55 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-01-10 21:03 - 2016-12-21 07:54 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2017-01-10 21:03 - 2016-12-21 07:53 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-01-10 21:03 - 2016-12-21 07:53 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-01-10 21:03 - 2016-12-21 07:53 - 01692672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-01-10 21:03 - 2016-12-21 07:51 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-01-10 21:03 - 2016-12-21 07:51 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-01-10 21:03 - 2016-12-21 07:51 - 02275840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-01-10 21:03 - 2016-12-21 07:50 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-01-10 21:03 - 2016-12-21 07:49 - 04149248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2017-01-10 21:03 - 2016-12-21 07:49 - 02691072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-01-10 21:03 - 2016-12-21 07:49 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-01-10 21:03 - 2016-12-21 07:47 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-01-10 21:03 - 2016-12-21 06:59 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2017-01-10 21:03 - 2016-12-21 06:09 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2017-01-10 21:03 - 2016-12-21 06:02 - 03892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-01-10 21:03 - 2016-12-21 06:02 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-01-10 21:03 - 2016-12-21 06:02 - 01360464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-01-10 21:03 - 2016-12-21 06:02 - 01277344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-01-10 21:03 - 2016-12-21 06:02 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-01-10 21:03 - 2016-12-21 06:02 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-01-10 21:03 - 2016-12-21 06:01 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-01-10 21:03 - 2016-12-21 05:46 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2017-01-10 21:03 - 2016-12-21 05:43 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-01-10 21:03 - 2016-12-21 05:41 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2017-01-10 21:03 - 2016-12-21 05:41 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-01-10 21:03 - 2016-12-21 05:40 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-01-10 21:03 - 2016-12-21 05:40 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2017-01-10 21:03 - 2016-12-21 05:40 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2017-01-10 21:03 - 2016-12-21 05:40 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-01-10 21:03 - 2016-12-21 05:39 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-01-10 21:03 - 2016-12-21 05:39 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-01-10 21:03 - 2016-12-21 05:38 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2017-01-10 21:03 - 2016-12-21 05:35 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-01-10 21:03 - 2016-12-21 05:35 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2017-01-10 21:03 - 2016-12-21 05:34 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-01-10 21:03 - 2016-12-21 05:33 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-01-10 21:03 - 2016-12-21 05:32 - 19417600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-01-10 21:03 - 2016-12-21 05:30 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2017-01-10 21:03 - 2016-12-21 05:30 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-01-10 21:03 - 2016-12-21 05:27 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2017-01-10 21:03 - 2016-12-21 05:26 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2017-01-10 21:03 - 2016-12-21 05:25 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-01-10 21:03 - 2016-12-21 05:25 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2017-01-10 21:03 - 2016-12-21 05:24 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-01-10 21:03 - 2016-12-21 05:24 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-01-10 21:03 - 2016-12-21 05:24 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-01-10 21:03 - 2016-12-21 05:24 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-01-10 21:03 - 2016-12-21 05:22 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-01-10 21:03 - 2016-12-21 05:22 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-01-10 21:03 - 2016-12-14 06:41 - 01235296 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-01-10 21:03 - 2016-12-14 06:41 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2017-01-10 21:03 - 2016-12-14 06:34 - 02482280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 02169184 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 01669984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 01400160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 01356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-01-10 21:03 - 2016-12-14 06:33 - 01054048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00992096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00822624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2017-01-10 21:03 - 2016-12-14 06:33 - 00813408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00779616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00752992 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00571744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00513376 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00406368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2017-01-10 21:03 - 2016-12-14 06:33 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2017-01-10 21:03 - 2016-12-14 06:33 - 00190816 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe
2017-01-10 21:03 - 2016-12-14 06:26 - 01469792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2017-01-10 21:03 - 2016-12-14 06:23 - 00404832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-01-10 21:03 - 2016-12-14 06:21 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2017-01-10 21:03 - 2016-12-14 06:19 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-01-10 21:03 - 2016-12-14 06:18 - 00715104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-01-10 21:03 - 2016-12-14 06:18 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2017-01-10 21:03 - 2016-12-14 06:17 - 00319288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2017-01-10 21:03 - 2016-12-14 06:14 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-01-10 21:03 - 2016-12-14 06:14 - 00418952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2017-01-10 21:03 - 2016-12-14 06:14 - 00089416 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2017-01-10 21:03 - 2016-12-14 06:08 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-01-10 21:03 - 2016-12-14 06:06 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-01-10 21:03 - 2016-12-14 06:01 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-01-10 21:03 - 2016-12-14 06:01 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2017-01-10 21:03 - 2016-12-14 06:01 - 00076984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2017-01-10 21:03 - 2016-12-14 05:48 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-01-10 21:03 - 2016-12-14 05:46 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-01-10 21:03 - 2016-12-14 05:46 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-01-10 21:03 - 2016-12-14 05:45 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2017-01-10 21:03 - 2016-12-14 05:43 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2017-01-10 21:03 - 2016-12-14 05:42 - 00384000 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2017-01-10 21:03 - 2016-12-14 05:42 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2017-01-10 21:03 - 2016-12-14 05:42 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2017-01-10 21:03 - 2016-12-14 05:42 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-10 21:03 - 2016-12-14 05:42 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2017-01-10 21:03 - 2016-12-14 05:41 - 00362496 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2017-01-10 21:03 - 2016-12-14 05:41 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-01-10 21:03 - 2016-12-14 05:40 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-01-10 21:03 - 2016-12-14 05:40 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2017-01-10 21:03 - 2016-12-14 05:40 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-01-10 21:03 - 2016-12-14 05:40 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-01-10 21:03 - 2016-12-14 05:40 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-10 21:03 - 2016-12-14 05:39 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2017-01-10 21:03 - 2016-12-14 05:39 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-01-10 21:03 - 2016-12-14 05:39 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2017-01-10 21:03 - 2016-12-14 05:38 - 17188864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-01-10 21:03 - 2016-12-14 05:38 - 13869056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-01-10 21:03 - 2016-12-14 05:38 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-01-10 21:03 - 2016-12-14 05:38 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2017-01-10 21:03 - 2016-12-14 05:37 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2017-01-10 21:03 - 2016-12-14 05:36 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-01-10 21:03 - 2016-12-14 05:36 - 00539648 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-01-10 21:03 - 2016-12-14 05:36 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2017-01-10 21:03 - 2016-12-14 05:35 - 02220032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
2017-01-10 21:03 - 2016-12-14 05:35 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-01-10 21:03 - 2016-12-14 05:35 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-01-10 21:03 - 2016-12-14 05:35 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2017-01-10 21:03 - 2016-12-14 05:35 - 00553984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2017-01-10 21:03 - 2016-12-14 05:32 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2017-01-10 21:03 - 2016-12-14 05:26 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-01-10 21:03 - 2016-12-14 05:26 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-01-10 21:03 - 2016-12-14 05:25 - 02795520 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
2017-01-10 21:03 - 2016-12-14 05:25 - 02009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2017-01-10 21:03 - 2016-12-14 05:24 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2017-01-10 21:03 - 2016-12-14 05:24 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-01-10 21:03 - 2016-12-14 05:23 - 03134976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2017-01-10 21:03 - 2016-12-14 05:23 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-01-10 21:03 - 2016-12-14 05:22 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-01-10 21:03 - 2016-12-14 05:22 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2017-01-10 21:03 - 2016-12-14 05:22 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-01-10 21:03 - 2016-12-14 05:22 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-01-10 21:03 - 2016-12-14 05:22 - 00707584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-01-10 21:03 - 2016-12-14 05:22 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-01-10 21:03 - 2016-12-14 05:21 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-01-10 21:03 - 2016-11-02 13:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2017-01-10 21:03 - 2016-11-02 12:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2017-01-10 21:03 - 2016-11-02 11:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-01-10 21:03 - 2016-11-02 11:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-01-10 21:03 - 2016-11-02 11:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-01-10 21:03 - 2016-08-02 05:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-01-10 21:02 - 2016-12-21 08:13 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2017-01-10 21:02 - 2016-12-21 08:12 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2017-01-10 21:02 - 2016-12-21 08:10 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2017-01-10 21:02 - 2016-12-14 05:32 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2017-01-09 23:46 - 2017-01-09 23:46 - 00000000 ____D C:\Users\UWe\AppData\LocalLow\Fireproof Games
2017-01-06 14:52 - 2017-01-06 14:52 - 00454900 _____ C:\WINDOWS\Minidump\010617-49671-01.dmp
2017-01-05 13:38 - 2017-01-05 13:38 - 00505564 _____ C:\WINDOWS\Minidump\010517-50031-01.dmp
2017-01-04 06:25 - 2017-01-04 06:25 - 00046400 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-01-01 22:12 - 2017-01-01 22:12 - 00000000 ____D C:\Users\UWe\AppData\Roaming\Frontier Developments
2017-01-01 22:12 - 2017-01-01 22:12 - 00000000 ____D C:\Users\UWe\AppData\Local\Frontier Developments
2016-12-31 12:32 - 2016-12-31 12:32 - 00446140 _____ C:\WINDOWS\Minidump\123116-44625-01.dmp

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-01-30 02:16 - 2016-09-29 18:16 - 00000000 ____D C:\ProgramData\NVIDIA
2017-01-30 02:12 - 2016-07-16 23:51 - 01715150 _____ C:\WINDOWS\system32\perfh007.dat
2017-01-30 02:12 - 2016-07-16 23:51 - 00447686 _____ C:\WINDOWS\system32\perfc007.dat
2017-01-30 02:12 - 2015-11-17 22:48 - 03782884 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-01-30 02:07 - 2016-09-29 18:48 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-01-30 02:07 - 2016-07-16 12:43 - 00002437 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk
2017-01-30 02:07 - 2016-07-16 12:43 - 00002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrintDialog.lnk
2017-01-30 02:07 - 2016-07-16 12:42 - 00002325 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiracastView.lnk
2017-01-30 02:07 - 2016-06-28 18:37 - 00002729 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2017-01-30 02:07 - 2016-06-28 18:37 - 00002662 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2017-01-30 02:07 - 2016-06-28 18:37 - 00002656 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2017-01-30 02:07 - 2016-06-28 18:37 - 00002656 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business 2016.lnk
2017-01-30 02:07 - 2016-06-28 18:37 - 00002656 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2017-01-30 02:07 - 2016-06-28 18:37 - 00002648 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2017-01-30 02:07 - 2016-06-28 18:37 - 00002648 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2017-01-30 02:07 - 2016-06-28 18:37 - 00002642 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2017-01-30 02:07 - 2016-06-28 18:37 - 00002628 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2017-01-30 02:07 - 2016-03-11 23:15 - 00001165 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend for Visual Studio 2015.lnk
2017-01-30 02:07 - 2016-03-11 23:12 - 00001172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015.lnk
2017-01-30 02:07 - 2015-12-04 21:03 - 00002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat XI Pro.lnk
2017-01-30 02:07 - 2015-12-04 21:03 - 00001958 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe FormsCentral.lnk
2017-01-30 02:07 - 2015-12-04 21:03 - 00001835 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller XI.lnk
2017-01-30 02:07 - 2015-12-04 20:55 - 00001061 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CC 2014.lnk
2017-01-30 02:07 - 2015-12-04 20:46 - 00000926 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition CC 2014.lnk
2017-01-30 02:07 - 2015-12-04 20:38 - 00001383 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Update Management Tool.lnk
2017-01-30 02:07 - 2015-12-04 20:35 - 00000901 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CC (64bit).lnk
2017-01-30 02:07 - 2015-12-04 20:28 - 00000935 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Dreamweaver CC 2014.1.lnk
2017-01-30 02:07 - 2015-12-04 20:22 - 00000871 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Flash Professional CC 2014.lnk
2017-01-30 02:07 - 2015-12-04 20:13 - 00001292 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2014.lnk
2017-01-30 02:07 - 2015-12-04 20:01 - 00000957 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CC 2014.lnk
2017-01-30 02:07 - 2015-12-04 19:53 - 00000907 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2014.lnk
2017-01-30 02:07 - 2015-12-04 19:44 - 00000949 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2014.lnk
2017-01-30 02:07 - 2015-12-04 19:43 - 00001619 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2017-01-30 02:07 - 2015-11-18 00:22 - 00000000 ___RD C:\Users\UWe\Dropbox
2017-01-30 02:07 - 2015-11-17 23:20 - 00000728 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel(R) HD Graphics Control Panel.lnk
2017-01-30 02:06 - 2016-12-24 22:38 - 00001199 _____ C:\Users\Public\Desktop\Corsair Utility Engine.lnk
2017-01-30 02:06 - 2016-12-09 21:47 - 00000848 _____ C:\Users\Public\Desktop\Crazy Machines 3.lnk
2017-01-30 02:06 - 2016-12-06 22:13 - 00000954 _____ C:\Users\Public\Desktop\HxD.lnk
2017-01-30 02:06 - 2016-11-15 22:32 - 00000893 _____ C:\Users\Public\Desktop\Assassins Creed Syndicate.lnk
2017-01-30 02:06 - 2016-10-15 19:01 - 00001158 _____ C:\Users\Public\Desktop\My LastPass Vault.lnk
2017-01-30 02:06 - 2016-10-15 18:25 - 00001489 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-01-30 02:06 - 2016-09-29 18:50 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-01-30 02:06 - 2016-09-26 21:23 - 00000796 _____ C:\Users\Public\Desktop\VLC media player.lnk
2017-01-30 02:06 - 2016-07-28 20:36 - 00001061 _____ C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse.lnk
2017-01-30 02:06 - 2016-06-24 20:30 - 00000866 _____ C:\Users\Public\Desktop\Free Mouse Auto Clicker.lnk
2017-01-30 02:06 - 2016-05-13 01:19 - 00002523 _____ C:\Users\Public\Desktop\Evernote.lnk
2017-01-30 02:06 - 2016-05-13 01:14 - 00000000 ___RD C:\Users\UWe\Google Drive
2017-01-30 02:06 - 2016-05-13 00:56 - 00000942 _____ C:\Users\Public\Desktop\OBS Studio.lnk
2017-01-30 02:06 - 2016-05-10 18:34 - 00002115 _____ C:\Users\Public\Desktop\Google Slides.lnk
2017-01-30 02:06 - 2016-05-10 18:34 - 00002113 _____ C:\Users\Public\Desktop\Google Sheets.lnk
2017-01-30 02:06 - 2016-05-10 18:34 - 00002103 _____ C:\Users\Public\Desktop\Google Docs.lnk
2017-01-30 02:06 - 2016-05-07 00:27 - 00002226 _____ C:\Users\Public\Desktop\AVerMedia RECentral.lnk
2017-01-30 02:06 - 2016-05-05 22:28 - 00000846 _____ C:\Users\Public\Desktop\Battle.net.lnk
2017-01-30 02:06 - 2016-05-03 20:21 - 00001283 _____ C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\FreshDiagnose.lnk
2017-01-30 02:06 - 2016-04-27 19:24 - 00000953 _____ C:\Users\Public\Desktop\Project Configurator.lnk
2017-01-30 02:06 - 2016-04-27 19:24 - 00000950 _____ C:\Users\Public\Desktop\Lumberyard Launcher.lnk
2017-01-30 02:06 - 2016-04-27 19:24 - 00000912 _____ C:\Users\Public\Desktop\Lumberyard Editor.lnk
2017-01-30 02:06 - 2016-04-21 20:09 - 00000958 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2017-01-30 02:06 - 2016-04-21 17:26 - 00002767 _____ C:\Users\Public\Desktop\GIGABYTE OC_GURU.lnk
2017-01-30 02:06 - 2016-03-28 09:16 - 00001254 _____ C:\Users\UWe\Desktop\Life in the Woods Renaissance.LNK
2017-01-30 02:06 - 2016-03-11 22:59 - 00001471 _____ C:\Users\Public\Desktop\Wwise v2015.2_LTX build 5485 (64-bit).lnk
2017-01-30 02:06 - 2015-12-21 13:53 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-01-30 02:06 - 2015-12-10 00:53 - 00000852 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2017-01-30 02:06 - 2015-12-04 21:03 - 00001900 _____ C:\Users\Public\Desktop\Adobe FormsCentral.lnk
2017-01-30 02:06 - 2015-12-04 21:03 - 00001826 _____ C:\Users\Public\Desktop\Adobe Acrobat XI Pro.lnk
2017-01-30 02:06 - 2015-12-04 20:45 - 00001607 _____ C:\Users\Public\Desktop\Adobe Application Manager.lnk
2017-01-30 02:06 - 2015-11-26 17:36 - 00000993 _____ C:\Users\Public\Desktop\Big Pharma.lnk
2017-01-30 02:06 - 2015-11-18 20:41 - 00002642 _____ C:\Users\Public\Desktop\Skype.lnk
2017-01-30 02:06 - 2015-11-17 23:20 - 00000716 _____ C:\Users\Public\Desktop\Intel(R) HD Graphics Control Panel.lnk
2017-01-30 02:06 - 2015-11-17 22:46 - 00002381 _____ C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-01-30 02:05 - 2016-12-20 21:50 - 00005110 _____ C:\ProgramData\NvTelemetryContainer.log_backup1
2017-01-30 02:05 - 2016-09-29 18:17 - 00000000 ____D C:\Users\UWe
2017-01-30 02:05 - 2016-07-16 23:50 - 00000000 ____D C:\WINDOWS\DigitalLocker
2017-01-30 02:05 - 2016-07-16 07:04 - 06029312 _____ C:\WINDOWS\system32\config\BBI
2017-01-30 01:03 - 2015-11-20 19:39 - 00000000 ____D C:\Users\UWe\AppData\Roaming\obs-studio
2017-01-29 23:01 - 2016-04-06 21:20 - 00000000 ____D C:\Users\UWe\AppData\Local\ftblauncher
2017-01-29 21:01 - 2015-11-22 19:40 - 00000000 ____D C:\Users\UWe\AppData\Roaming\vlc
2017-01-29 19:22 - 2016-04-27 18:45 - 00000008 __RSH C:\ProgramData\ntuser.pol
2017-01-29 19:12 - 2016-10-11 17:52 - 00000000 ____D C:\WINDOWS\Minidump
2017-01-29 19:12 - 2016-09-29 18:14 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-01-28 19:19 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-01-28 19:19 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-01-28 02:06 - 2016-02-17 01:32 - 00000000 ____D C:\Users\UWe\AppData\Local\Ubisoft Game Launcher
2017-01-27 21:12 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-01-27 19:21 - 2016-05-03 21:56 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-01-27 19:15 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-01-26 21:31 - 2015-11-18 00:10 - 00000000 ____D C:\Program Files (x86)\Google
2017-01-26 21:09 - 2016-04-26 17:57 - 00000000 ____D C:\Users\UWe\AppData\Local\CrashDumps
2017-01-26 19:50 - 2016-09-29 18:50 - 00003628 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-01-26 19:50 - 2016-09-29 18:50 - 00003504 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-01-25 20:55 - 2015-11-18 20:41 - 00000000 ____D C:\Users\UWe\AppData\Roaming\Skype
2017-01-25 20:46 - 2015-11-17 22:44 - 00000000 ____D C:\Users\UWe\AppData\Local\Packages
2017-01-25 19:58 - 2016-12-26 19:54 - 00000000 ____D C:\Users\UWe\AppData\LocalLow\Mozilla
2017-01-25 19:35 - 2015-12-18 19:44 - 00000000 ____D C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-01-25 10:36 - 2016-06-29 19:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-01-25 10:32 - 2016-05-13 01:10 - 00000000 ____D C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps
2017-01-25 10:32 - 2016-04-24 23:28 - 00000000 ____D C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Canary-Apps
2017-01-25 10:32 - 2016-04-24 23:26 - 00002372 ____R C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gооglе Сhrоmе Саnаry.lnk
2017-01-25 10:32 - 2015-12-16 23:41 - 00000000 ____D C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2017-01-25 10:32 - 2015-12-11 20:20 - 00001510 ____R C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Еpiс Gаmеs Lаunсhеr.lnk
2017-01-25 10:32 - 2015-11-18 02:09 - 00001042 ____R C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Моzillа Firеfох.lnk
2017-01-25 10:32 - 2015-11-18 00:11 - 00002287 ____R C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gооglе Сhrоmе.lnk
2017-01-24 01:25 - 2015-11-18 00:20 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-01-18 20:46 - 2015-11-26 15:09 - 00000000 ____D C:\ProgramData\Oracle
2017-01-18 20:45 - 2015-11-26 15:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-01-18 20:45 - 2015-11-26 15:09 - 00000000 ____D C:\Program Files\Java
2017-01-18 20:44 - 2015-11-26 15:09 - 00110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2017-01-17 18:50 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-01-16 04:01 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2017-01-13 19:23 - 2016-12-09 19:45 - 00003262 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-01-13 19:23 - 2015-11-17 22:46 - 00000000 ___RD C:\Users\UWe\OneDrive
2017-01-13 19:04 - 2015-11-17 22:44 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-01-13 19:03 - 2016-09-29 18:14 - 05030360 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-01-13 19:03 - 2015-12-23 02:57 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2017-01-13 01:41 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-01-13 01:41 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-01-13 01:41 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-01-13 01:41 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-01-13 01:41 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Provisioning
2017-01-13 01:41 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-01-13 01:39 - 2015-07-10 12:04 - 00000230 _____ C:\WINDOWS\win.ini
2017-01-13 00:28 - 2015-11-19 19:26 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-01-13 00:22 - 2015-11-19 19:26 - 135657872 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-01-12 19:09 - 2016-01-14 19:36 - 00000000 ____D C:\Users\UWe\AppData\Roaming\discord
2017-01-11 22:10 - 2016-01-14 19:36 - 00000000 ____D C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2017-01-11 22:10 - 2016-01-14 19:36 - 00000000 ____D C:\Users\UWe\AppData\Local\Discord
2017-01-11 01:25 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-01-11 01:25 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-01-06 20:46 - 2015-11-21 00:11 - 00000000 ____D C:\ProgramData\boost_interprocess

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-10-15 19:02 - 2016-10-15 19:02 - 21874200 _____ (LastPass) C:\Program Files (x86)\Common Files\lpuninstall.exe
2016-04-21 19:30 - 2016-12-30 00:09 - 0007590 _____ () C:\Users\UWe\AppData\Local\Resmon.ResmonCfg
2016-05-10 21:12 - 2016-05-10 21:12 - 0000000 _____ () C:\Users\UWe\AppData\Local\{C0D25DDF-E830-48D9-98CA-D9AFA410BFC8}
2016-09-29 18:15 - 2016-09-29 18:15 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-12-20 21:50 - 2017-01-30 02:06 - 0002938 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-20 21:50 - 2017-01-30 02:05 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1

Einige Dateien in TEMP:
====================
2017-01-16 21:18 - 2017-01-16 21:18 - 0157696 _____ () C:\Users\UWe\AppData\Local\Temp\cachous.dll
2016-10-11 21:28 - 2016-09-23 10:38 - 0037376 _____ (Microsoft) C:\Users\UWe\AppData\Local\Temp\HiPatchSelfUpdateWindow.exe
2016-10-11 21:28 - 2016-09-23 09:51 - 0020992 _____ (Microsoft) C:\Users\UWe\AppData\Local\Temp\HiRezLauncherControls.dll
2016-10-23 19:20 - 2016-10-23 19:20 - 0737856 _____ (Oracle Corporation) C:\Users\UWe\AppData\Local\Temp\jre-8u111-windows-au.exe
2017-01-18 20:43 - 2017-01-18 20:43 - 0739904 _____ (Oracle Corporation) C:\Users\UWe\AppData\Local\Temp\jre-8u121-windows-au.exe
2016-08-12 19:36 - 2016-12-01 18:05 - 0747464 _____ (NVIDIA Corporation) C:\Users\UWe\AppData\Local\Temp\nvSCPAPI.dll
2016-08-12 19:36 - 2016-12-01 18:05 - 0860960 _____ (NVIDIA Corporation) C:\Users\UWe\AppData\Local\Temp\nvSCPAPI64.dll
2016-10-15 19:16 - 2016-10-01 20:25 - 0424384 _____ (NVIDIA Corporation) C:\Users\UWe\AppData\Local\Temp\nvscpapisvr.exe
2016-10-15 19:14 - 2016-12-01 18:04 - 0353336 _____ (NVIDIA Corporation) C:\Users\UWe\AppData\Local\Temp\nvStInst.exe
2016-10-15 18:25 - 2016-11-17 14:45 - 1135552 _____ (NVIDIA Corporation) C:\Users\UWe\AppData\Local\Temp\NvTelemetry.dll
2016-10-15 18:25 - 2016-11-17 14:45 - 0217024 _____ (NVIDIA Corporation) C:\Users\UWe\AppData\Local\Temp\NvTelemetryAPI32.dll
2016-10-15 18:25 - 2016-11-17 14:45 - 0268736 _____ (NVIDIA Corporation) C:\Users\UWe\AppData\Local\Temp\NvTelemetryAPI64.dll
2016-10-15 02:06 - 2016-12-13 18:57 - 43872728 _____ (Skype Technologies S.A.) C:\Users\UWe\AppData\Local\Temp\SkypeSetup.exe
2016-11-12 20:25 - 2016-12-11 20:02 - 0115345 _____ () C:\Users\UWe\AppData\Local\Temp\Uninstall.exe

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-01-28 19:28

==================== Ende von FRST.txt ============================
         

Alt 30.01.2017, 02:30   #10
KoggeHD
 
Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung - Standard

Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung



Addition
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 29-01-2017
durchgeführt von Uwe (30-01-2017 02:23:55)
Gestartet von D:\Haupt Sicherung\Desktop
Windows 10 Pro Version 1607 (X64) (2016-09-29 17:52:27)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2759712002-1790162856-1979884355-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2759712002-1790162856-1979884355-503 - Limited - Disabled)
Gast (S-1-5-21-2759712002-1790162856-1979884355-501 - Limited - Disabled)
Uwe (S-1-5-21-2759712002-1790162856-1979884355-1001 - Administrator - Enabled) => C:\Users\UWe

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

3DMark (HKLM-x32\...\{b7d2ce14-2f17-410d-bea7-9126b9d4bb31}) (Version: 2.0.2067.0 - Futuremark)
3DMark (Version: 2.0.2067.0 - Futuremark) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.00 - Adobe Systems)
Adobe After Effects CC 2014 (HKLM-x32\...\{2B22C750-5C3B-4738-B621-BA786AC7A494}) (Version: 13.2.0 - Adobe Systems Incorporated)
Adobe Audition CC 2014 (HKLM-x32\...\{F3388E10-EFA9-4A80-B28E-2E647F8D00C4}) (Version: 7.2.0 - Adobe Systems Incorporated)
Adobe Bridge CC (64 Bit) (HKLM-x32\...\{359F8007-6486-429C-A8C5-D67F6897C88C}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Dreamweaver CC 2014 (HKLM-x32\...\{7F823F8E-4348-11E4-8BF8-81763C49AA32}) (Version: 15.0.0 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated)
Adobe Flash Professional CC 2014 (HKLM-x32\...\{AA704223-E11C-11E3-8A38-C09A633B72AF}) (Version: 14.1 - Adobe Systems Incorporated)
Adobe Illustrator CC 2014 (HKLM-x32\...\{2B4B4082-8043-4646-8334-B0A29E641211}) (Version: 18.1.1 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2014 (HKLM-x32\...\{663DEEEF-EF34-4DCB-8687-73A7AA146E02}) (Version: 8.2.0 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.2.2 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2014 (HKLM-x32\...\{07BE616F-9E42-4C90-AF4F-0F32A5B088E7}) (Version: 8.2.0 - Adobe Systems Incorporated)
Airscape: The Fall of Gravity (HKLM\...\Steam App 317250) (Version:  - Cross-Product)
Ansel (Version: 376.33 - NVIDIA Corporation) Hidden
Application Insights Tools for Visual Studio 2013 (x32 Version: 2.5 - Microsoft Corporation) Hidden
Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{D25C9EDD-984F-444C-9229-5A58130C6B10}) (Version: 4.3.60226.3 - Microsoft Corporation)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version:  - Studio Wildcard)
Assassins Creed Syndicate Gold Edition MULTi16 - ElAmigos Version 1.50 (HKLM-x32\...\{82D665BB-75EF-4B38-A7C5-7D687101F9C6}_is1) (Version: 1.50 - UBISoft)
Audiokinetic Wwise v2015.2_LTX build 5485 - Authoring Binaries 64-bit (x32 Version: 15.2.0.5485 - Audiokinetic Inc.) Hidden
Audiokinetic Wwise v2015.2_LTX build 5485 - Authoring Data (x32 Version: 15.2.0.5485 - Audiokinetic Inc.) Hidden
Audiokinetic Wwise v2015.2_LTX build 5485 - SDK (Android) (x32 Version: 15.2.0.5485 - Audiokinetic Inc.) Hidden
Audiokinetic Wwise v2015.2_LTX build 5485 - SDK (Common) (x32 Version: 15.2.0.5485 - Audiokinetic Inc.) Hidden
Audiokinetic Wwise v2015.2_LTX build 5485 - SDK (Linux) (x32 Version: 15.2.0.5485 - Audiokinetic Inc.) Hidden
Audiokinetic Wwise v2015.2_LTX build 5485 - SDK (Windows_vc120) (x32 Version: 15.2.0.5485 - Audiokinetic Inc.) Hidden
Audiokinetic Wwise v2015.2_LTX build 5485 - Wwise LTX License (x32 Version: 15.2.0.5485 - Audiokinetic Inc.) Hidden
Audiokinetic Wwise v2015.2_LTX build 5485 (HKLM-x32\...\{2f36c0ba-616d-4eb5-941b-fb61f51fa68f}) (Version: 15.2.0.5485 - Audiokinetic Inc.)
AVerMedia CV710 USB3 HD Capture 1.0.64.84 (HKLM-x32\...\AVerMedia CV710 USB3 HD Capture) (Version: 1.0.64.84 - AVerMedia TECHNOLOGIES, Inc.)
AVerMedia RECentral (HKLM-x32\...\InstallShield_{30D6B6ED-E039-4D62-8E07-E058D17A9372}) (Version: 1.3.0.109.2016101101 - AVerMedia Technologies, Inc.)
AVerMedia RECentral (x32 Version: 1.3.0.109.2016101101 - AVerMedia Technologies, Inc.) Hidden
Azure AD Authentication Connected Service (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
AzureTools.Notifications (x32 Version: 2.1.10731.1602 - Microsoft Corporation) Hidden
AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Behaviors SDK (Windows Phone) for Visual Studio 2013 (x32 Version: 12.0.50716.0 - Microsoft Corporation) Hidden
Behaviors SDK (Windows) for Visual Studio 2013 (x32 Version: 12.0.50429.0 - Microsoft Corporation) Hidden
Besiege (HKLM-x32\...\Steam App 346010) (Version:  - Spiderling Studios)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Blend for Visual Studio 2013 (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Blend for Visual Studio 2013 ENU resources (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for Silverlight 5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blender (HKLM\...\{D593042C-8739-488D-93B8-E6B202013E57}) (Version: 2.76.1 - Blender Foundation)
Build Tools - amd64 (Version: 12.0.40629 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.40629 - Microsoft Corporation) Hidden
Build Tools Language Resources - amd64 (Version: 12.0.40629 - Microsoft Corporation) Hidden
Build Tools Language Resources - x86 (x32 Version: 12.0.40629 - Microsoft Corporation) Hidden
Call of Duty: Infinite Warfare (HKLM\...\Steam App 292730) (Version:  - Infinity Ward)
Call of Duty: Modern Warfare Remastered - Multiplayer (HKLM\...\Steam App 393100) (Version:  - Raven Software)
Call of Duty: Modern Warfare Remastered (HKLM\...\Steam App 393080) (Version:  - Raven Software)
Chronicle: RuneScape Legends (HKLM\...\Steam App 205890) (Version:  - Jagex)
Citra Edge (HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\citra) (Version: 0.1.76 - Citra Development Team)
Corsair Utility Engine (HKLM-x32\...\{F646F9C9-ABAF-479B-850F-C08F2DEA39BE}) (Version: 2.8.70 - Corsair)
Crazy Machines 3 MULTi11 - ElAmigos Version 1.1.0 (HKLM-x32\...\{F087B8D2-257B-4013-9E3A-78CC9255596B}_is1) (Version: 1.1.0 - Daedalic Entertainment)
Creativerse (HKLM-x32\...\Steam App 280790) (Version:  - Playful Corporation)
Curse (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Curse)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0112 - Disc Soft Ltd)
DARK SOULS III (HKLM\...\Steam App 374320) (Version:  - FromSoftware, Inc.)
DC+SB (HKLM-x32\...\DC+SB) (Version:  - )
Devenv-Ressourcen für Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Discord (HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Don't Starve (HKLM\...\Steam App 219740) (Version:  - Klei Entertainment)
Don't Starve Mod Tools (HKLM\...\Steam App 245850) (Version:  - )
Dotfuscator and Analytics Community Edition (x32 Version: 5.5.4954.46574 - PreEmptive Solutions) Hidden
Dotfuscator and Analytics Community Edition 5.19.0 (x32 Version: 5.19.0.2930 - PreEmptive Solutions) Hidden
Dotfuscator and Analytics Community Edition Language Pack 5.19.0 de-DE (x32 Version: 5.19.0.2930 - PreEmptive Solutions) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 18.4.32 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.59.1 - Dropbox, Inc.) Hidden
Entity Framework 6.1.3 Tools  for Visual Studio 2013 (HKLM-x32\...\{D5170452-84D1-4725-AD9C-F9ECFD0A9E9F}) (Version: 12.0.40302.0 - Microsoft Corporation)
Entity Framework 6.1.3 Tools  for Visual Studio 2015 Update 1 (HKLM-x32\...\{2A56910C-69C8-495D-8ED8-9080F0A14E58}) (Version: 14.0.41103.0 - Microsoft Corporation)
EPSON WF-2510 Series Printer Uninstall (HKLM\...\EPSON WF-2510 Series) (Version:  - SEIKO EPSON Corporation)
Evernote v. 6.0.6 (HKLM-x32\...\{FC4A0E2E-0CD3-11E6-B80E-005056951CAD}) (Version: 6.0.6.1769 - Evernote Corp.)
Evolve Stage 2 (HKLM\...\Steam App 273350) (Version:  - Turtle Rock Studios)
Far Cry 3 Blood Dragon (HKLM-x32\...\Uplay Install 205) (Version:  - Ubisoft)
FreeMouseAutoClicker 3.8.2 (HKLM-x32\...\{292F00C5-25EF-4FBE-9873-13EF1F69DEED}_is1) (Version:  - Advanced Mouse Auto Clicker ltd.)
Futuremark SystemInfo (HKLM-x32\...\{5052D282-C9AE-48CC-A9F5-17058BEEAA50}) (Version: 4.45.590.0 - Futuremark)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Gemeinsam genutzte Microsoft Azure-Komponenten für Visual Studio 2015 Sprachpaket (DEU) - v1.5 (x32 Version: 1.5.30619.1602 - Microsoft Corporation) Hidden
GIGABYTE OC_GURU II (HKLM-x32\...\InstallShield_{EA298EC1-2B8F-4DA9-8C5B-BC1FCBBAD72F}) (Version: 1.99.0000 - GIGABYTE Technology Co.,Ltd.)
GIGABYTE OC_GURU II (x32 Version: 1.99.0000 - GIGABYTE Technology Co.,Ltd.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Chrome Canary (HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\Google Chrome SxS) (Version: 58.0.2996.0 - Google Inc.)
Google Drive (HKLM-x32\...\{07A12123-B717-496B-B471-48AF6407B433}) (Version: 1.32.4066.7445 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Gun Rocket (HKLM\...\Steam App 391420) (Version:  - Space Wedgie)
Hell Yeah! (HKLM-x32\...\Steam App 205230) (Version:  - Arkedo)
HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.0.6.4 - Hi-Rez Studios)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
HxD Hex Editor Version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
IIS 10.0 Express (HKLM\...\{7A28A2B0-458B-4A58-84AC-C90D2D4B79FB}) (Version: 10.0.1735 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version:  - )
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Intel(R) Network Connections 20.2.4001.0 (HKLM\...\PROSetDX) (Version: 20.2.4001.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4279 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.8 - Intel(R) Corporation) Hidden
Intel® RealSense™ SDK Runtime (HKLM-x32\...\ARP_for_prd_rs_sdk_runtime_10.0.26.0396) (Version: 10.0.26.0396 - Intel Corporation)
Intel® RealSense™ SDK Runtime Gold (x86): Core (x32 Version: 10.0.26.396 - Intel Corporation) Hidden
Intel® RealSense™ SDK Runtime Gold (x86): Core: Calibration (x32 Version: 10.0.26.396 - Intel Corporation) Hidden
Intel® RealSense™ SDK Runtime Gold (x86): User Segmentation (x32 Version: 10.0.26.396 - Intel Corporation) Hidden
Intergalactic Bubbles (HKLM\...\Steam App 351490) (Version:  - Hellscape Games)
Java 8 Update 121 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Jet Set Radio (HKLM-x32\...\Steam App 205950) (Version:  - Blit Software)
Kit SDK de vérification de Visual Studio*2012 - fra (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden
Labyronia RPG (HKLM\...\Steam App 391260) (Version:  - Labyrinthine)
Labyronia RPG 2 (HKLM\...\Steam App 397500) (Version:  - Labyrinthine)
Lara Croft and the Temple of Osiris (HKLM-x32\...\Steam App 289690) (Version:  - Crystal Dynamics)
LastPass (Nur deinstallieren) (HKLM-x32\...\LastPass) (Version:  - LastPass)
Launcher Prerequisites (x64) (x32 Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Legend of Mysteria (HKLM\...\Steam App 407230) (Version:  - Labyrinthine)
LocalESPC Dev12 (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
LocalESPCui for en-us Dev12 (x32 Version: 8.100.25984 - Microsoft) Hidden
Lumberyard 1.1.0.0 - 3rdParty (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - alembic (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - AMD (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - AWS (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - BigDigits (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - boost (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - Codejock Software (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - dev (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - docs (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - dyad (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - expat (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - FreeType2 (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - GoogleMock (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - hdf5 (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - ilmbase (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - jansson (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - jinja2 (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - jsmn (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - LibTomCrypt (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - LibTomMath (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - LiveMocap (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - Lua (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - lz4 (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - Lzma (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - LZSS (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - markupsafe (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - md5 (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - mikkelsen (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - OpenEXR (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - p4api (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - packageRoot (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - pdcurses (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - Python (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - Qt (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - Qwt (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - rapidjson (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - rapidxml (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - Redistributables (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - SDL2 (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - SQLite (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - squish-ccr (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - Substance (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - szip (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - tiff (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - Wwise (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard 1.1.0.0 - zlib (x32 Version: 1.1.0.0 - Amazon Web Services, Inc.) Hidden
Lumberyard v1.1.0.0 (HKLM-x32\...\{0cde051a-1ed2-4906-84e6-da83a5755e84}) (Version: 1.1.0.0 - Amazon Web Services, Inc.)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Memory Profiler (x32 Version: 12.0.40629 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (Deutsch) (HKLM-x32\...\{CBD7095F-7211-43FD-9FE7-FB08D753AF79}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (Deutsch) (HKLM-x32\...\{EE8BD24B-75E1-4BBF-86B9-91FE16ADE71C}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 SDK (Deutsch) (HKLM-x32\...\{529EFF09-750D-48B9-A47A-34A3B6248C3F}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Version Manager (x64) 1.0.0-beta5 (HKLM\...\{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}) (Version: 1.0.10609.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.24720 - Microsoft Corporation)
Microsoft Help Viewer 2.2 Sprachpaket - DEU (HKLM-x32\...\Microsoft Help Viewer 2.2 Sprachpaket - DEU) (Version: 2.2.24720 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK (HKLM-x32\...\{E1FBB3D4-ADB0-4949-B101-855DA061C735}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{58FED865-4F13-408D-A5BF-996019C4B936}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM-x32\...\{1B876496-B3A2-4D22-9B12-B608A3FD4B8B}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (x64) (HKLM\...\{A6BA243E-85A3-4635-A269-32949C98AC7F}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{6C026A91-640F-4A23-8B68-05D589CC6F18}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (HKLM-x32\...\{2F7DBBE6-8EBC-495C-9041-46A772F4E311}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (x64) (HKLM\...\{43A5C316-9521-49C3-B9B6-FCE5E1005DF0}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{D411E9C9-CE62-4DBF-9D92-4CB22B750ED5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{54C5041B-0E91-4E92-8417-AAA12493C790}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service  (HKLM-x32\...\{04DD7AF4-A6D3-4E30-9BB9-3B3670719234}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Express LocalDB  (HKLM\...\{AB8DE9BA-19E1-446A-BCFA-6B3DA9751E21}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service  (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 DEU  (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - DEU (14.0.50616.0) (HKLM-x32\...\{FA604873-01A0-4834-AF87-418534E465BB}) (Version: 14.0.50616.0 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (12.0.41012.0) (HKLM-x32\...\{AC8E0CF4-42A1-4151-B684-97CF6FD726CF}) (Version: 12.0.41012.0 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1) (HKLM-x32\...\{6781FF9B-E87D-4A03-9373-A55A288B83FA}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{4701DEDE-1888-49E0-BAE5-857875924CA2}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{070C38AC-05CE-43DF-9A20-141332F6AB2B}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{05FF8209-C4F1-4C77-BC28-791653156D20}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{09298F26-A95C-31E2-9D95-2C60F586F075}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual Studio Community 2013 with Update 5 (HKLM-x32\...\{693b15f4-4a52-402e-a7ea-862b20443883}) (Version: 12.0.40629 - Microsoft Corporation)
Microsoft Visual Studio Community 2015 mit Update 1 (HKLM-x32\...\{5790c106-6f85-49ac-8036-8ae82a465ec4}) (Version: 14.0.24720.1 - Microsoft Corporation)
Microsoft Web Deploy 3.6 (HKLM\...\{ED4CC1E5-043E-4157-8452-B5E533FE2BA1}) (Version: 3.1238.1955 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2014 (HKLM\...\{7F6DCED8-6A2B-4436-AF20-8F659D04E388}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2014 (HKLM-x32\...\{48BF289B-F3FA-4023-9251-80ABF7B726F9}) (Version: 12.0.2402.29 - Microsoft Corporation)
Mit C# erstellte geräteübergreifende Hybrid-Apps - Vorlagen - DEU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Morphopolis (HKLM\...\Steam App 314020) (Version:  - Dan  Walters)
Mozilla Firefox 51.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 51.0 (x86 de)) (Version: 51.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0 - Mozilla)
MSBuild/NuGet Integration 14.0 (x86) (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD)
My Game Long Name (HKLM\...\UDK-12a7f94c-5e77-400e-8d4f-860e16d20680) (Version:  - Epic Games, Inc.)
NARUTO SHIPPUDEN: Ultimate Ninja STORM 4 (HKLM\...\Steam App 349040) (Version:  - CyberConnect2 Co. Ltd.)
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version:  - NCSOFT)
No Man's Sky (HKLM\...\Steam App 275850) (Version:  - Hello Games)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.33 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.2.0.96 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.2.0.96 - NVIDIA Corporation)
NVIDIA Grafiktreiber 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.33 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.2.0.96 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.0.0.0 - NVIDIA Corporation) Hidden
OBS Multiplatform (HKLM-x32\...\OBS Multiplatform) (Version: 0.12.2 - OBS Project)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 17.0.2 - OBS Project)
Out There Somewhere (HKLM\...\Steam App 263980) (Version:  - MiniBoss)
Outils de vérification linguistique 2016 de Microsoft Office*- Français (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM-x32\...\{D5409B11-EF28-37A1-AE7A-6051A5BAD923}) (Version: 4.5.50932 - Microsoft Corporation)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 RC für Windows Store-Apps (Deutsch) (x32 Version: 4.5.21005 - Microsoft Corporation) Hidden
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM-x32\...\{3F514FDC-F0F2-3B99-86D6-F7B3A2679B39}) (Version: 4.5.51209 - Microsoft Corporation)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.6 (Deutsch) (HKLM-x32\...\{FACF2669-E25A-428A-9167-5EEDE741F3B9}) (Version: 4.6.00127 - Microsoft Corporation)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM-x32\...\{4860C1E5-CE58-4D32-89DE-37951333B4C9}) (Version: 4.6.01055 - Microsoft Corporation)
Paladins (HKLM\...\Steam App 444090) (Version:  - Hi-Rez Studios)
PARTICLE MACE (HKLM\...\Steam App 295690) (Version:  - Andy Wallace)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
Planet Coaster (HKLM\...\Steam App 493340) (Version:  - Frontier Developments)
Polarity (HKLM\...\Steam App 315430) (Version:  - Bluebutton Games)
PowerShellIntegration.Notifications (x32 Version: 2.6.0.0 - Microsoft Corporation) Hidden
PowerVR Graphics SDK and Tools v4.0 (HKLM-x32\...\PowerVR Graphics SDK and Tools v4.0 4.0) (Version: 4.0 - Imagination)
PreEmptive Analytics Client German Language Pack (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.3197.1 - PreEmptive Solutions) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT  (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
Prerequisites for SSDT  (HKLM-x32\...\{35C1D9D6-87C0-46A3-B1B4-EDBCC063221C}) (Version: 11.1.3000.0 - Microsoft Corporation)
Primal Carnage (HKLM\...\Steam App 215470) (Version:  - Lukewarm Media)
Python Tools Redirection Template (x32 Version: 1.3 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7560 - Realtek Semiconductor Corp.)
Revolution Ace (HKLM\...\Steam App 274560) (Version:  - Laser Guided Games)
RivaTuner Statistics Server 6.4.1 (HKLM-x32\...\RTSS) (Version: 6.4.1 - Unwinder)
Rolling Sun (HKLM\...\Steam App 371670) (Version:  - Mystik'Art)
Roslyn Language Services - x86 (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (x32 Version: 14.0.24730 - Microsoft Corporation) Hidden
Saviors (HKLM\...\Steam App 314450) (Version:  - Sharpened Edge Studios)
SDK de comprobación de Visual Studio 2012 - esn (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden
ShareX (HKLM\...\Steam App 400040) (Version:  - ShareX Team)
SHIELD Streaming (Version: 7.1.0350 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.2.0.96 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM-x32\...\steam app 8930) (Version:  - 2K Games, Inc.)
Sid Meiers Civilization VI Digital Deluxe (HKLM-x32\...\Sid Meiers Civilization VI Digital Deluxe) (Version: 1.01 - 2K)
Sins Of The Demon RPG (HKLM\...\Steam App 461640) (Version:  - Chandler Rounsley)
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Spaceport Hope (HKLM\...\Steam App 394540) (Version:  - team BitClub)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Stellaris Galaxy Edition MULTi2 1.0.1 (HKLM-x32\...\Stellaris Galaxy Edition MULTi2 1.0.1) (Version:  - )
Storm of Spears (HKLM\...\Steam App 463350) (Version:  - Warfare Studios)
Streamline (HKLM\...\Steam App 252850) (Version:  - Proletariat Inc.)
Strumenti di correzione di Microsoft Office 2016 - Italiano (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Team Explorer for Microsoft Visual Studio 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Team Explorer for Microsoft Visual Studio 2015 (x32 Version: 14.0.24712 - Microsoft Corporation) Hidden
Team Render Client 17.048 (HKLM\...\MAXON58A19CDB) (Version: 17.048 - MAXON Computer GmbH)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
The Chosen RPG (HKLM\...\Steam App 434420) (Version:  - Little Big Lee)
The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version:  - Ubisoft)
The Escapists (HKLM\...\Steam App 298630) (Version:  - Mouldy Toof Studios)
The Hat Man: Shadow Ward (HKLM\...\Steam App 291010) (Version:  - Game Mechanics)
The Howler (HKLM\...\Steam App 306040) (Version:  - Antanas Marcelionis)
The Witness (HKLM-x32\...\1461060839_is1) (Version: 2.0.0.3 - GOG.com)
Tropico 4 (HKLM\...\Steam App 57690) (Version:  - Haemimont Games)
Trove (HKLM-x32\...\Steam App 304050) (Version:  - Trion Worlds)
TypeScript Power Tool (x32 Version: 1.0.5.0 - Microsoft Corporation) Hidden
TypeScript Power Tool (x32 Version: 1.7.6.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2013 (x32 Version: 1.0.5.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 (x32 Version: 1.7.6.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 1.7.6.0 (HKLM-x32\...\{5ee9a47a-3630-4016-b76d-dc752e9218dd}) (Version: 1.7.24809.0 - Microsoft Corporation)
UE4 Prerequisites (x64) (HKLM-x32\...\{b46d36bc-2438-471e-abe8-1fbbd51754ee}) (Version: 1.0.10.0 - Epic Games, Inc.)
UE4 Prerequisites (x64) (Version: 1.0.10.0 - Epic Games, Inc.) Hidden
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for Skype for Business 2016 (KB3128049) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{801D5242-0189-4C99-977B-0C77DBD1F046}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB3128049) 64-Bit Edition (HKLM\...\{90160000-012B-0407-1000-0000000FF1CE}_Office16.PROPLUS_{801D5242-0189-4C99-977B-0C77DBD1F046}) (Version:  - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 17.0 - Ubisoft)
Viridi (HKLM\...\Steam App 375950) (Version:  - Ice Water Games)
Visual C++ MFC MBCS Library for Visual Studio 2013 (HKLM-x32\...\{91501789-1ec3-422d-9043-b1065a88d603}) (Version: 12.0.21005.1 - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio 2013 Update 5 (KB2829760) (HKLM-x32\...\{17551f85-1d1c-4142-a83f-bbd18a3522c2}) (Version: 12.0.40629 - Microsoft Corporation)
Visual Studio 2015 Update 1 (KB3022398) (HKLM-x32\...\{fcaa9dba-9438-48b6-ad91-4e9b4cc7084a}) (Version: 14.0.24720 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VS Update core components (x32 Version: 12.0.40629 - Microsoft Corporation) Hidden
VS Update core components (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.5.1 (HKLM\...\VulkanRT1.0.5.1) (Version: 1.0.5.1 - LunarG, Inc.)
Waveform (HKLM\...\Steam App 204180) (Version:  - Eden Industries)
WCF Data Services 5.6.0 Runtime (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF Data Services 5.6.4 DEU Language Pack (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2013 (x32 Version: 5.6.61587.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 DEU Language Pack (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF RIA Services V1.0 SP2 (HKLM-x32\...\{5D8DD6A8-C4D7-4554-93F9-F1CC28C72600}) (Version: 4.1.62812.0 - Microsoft Corporation)
Windows Driver Package - Acer Incorporated Monitor  (09/11/2007 1.0.0.0) (HKLM\...\06625D7A3C6A1BFF6B7D226A8ED0E19734BD573F) (Version: 09/11/2007 1.0.0.0 - Acer Incorporated)
Windows Driver Package - AMD (amdkmpfd) System  (08/10/2015 15.201.0.0000) (HKLM\...\77418A2019FA69F93B068CA252F72AE8FCA06AFC) (Version: 08/10/2015 15.201.0.0000 - AMD)
Windows Driver Package - Asmedia Technology (asstahci64) SCSIAdapter  (11/12/2015 3.1.9.0000) (HKLM\...\58BFDF1071D14914F7A5AAB732CA7CD50F5D4A13) (Version: 11/12/2015 3.1.9.0000 - Asmedia Technology)
Windows Driver Package - ELAN SMBus (ETDSMBus) System  (09/07/2015 15.1.8.5) (HKLM\...\8C51EBB00CD5442CFBF99198B944C9B53C9B6854) (Version: 09/07/2015 15.1.8.5 - ELAN SMBus)
Windows Driver Package - Intel (e1dexpress) Net  (01/27/2016 12.15.22.6) (HKLM\...\CB3A14852D3535E16F952FC22F6004C37D9EA490) (Version: 01/27/2016 12.15.22.6 - Intel)
Windows Driver Package - Intel (ICCWDT) System  (09/20/2015 11.0.0.1007) (HKLM\...\2C8BF84CDD1779C9F2F280CB9F57EDE2A692565B) (Version: 09/20/2015 11.0.0.1007 - Intel)
Windows Driver Package - Intel (MEIx64) System  (03/28/2016 11.0.5.1189) (HKLM\...\63CEF5543DBF9887E6220C5C2F7F85C2D4C726D5) (Version: 03/28/2016 11.0.5.1189 - Intel)
Windows Driver Package - INTEL System  (01/26/2016 10.1.1.14) (HKLM\...\785D53C2FA3082957578CD78D80DD1C1268031DA) (Version: 01/26/2016 10.1.1.14 - INTEL)
Windows Driver Package - INTEL System  (04/04/2016 10.1.1.18) (HKLM\...\0CE6326B69F24AA95242EC1C74E7354B6245F2A2) (Version: 04/04/2016 10.1.1.18 - INTEL)
Windows Driver Package - INTEL System  (04/04/2016 10.1.1.18) (HKLM\...\EDEDD2FF45615375A49BA0672056E008BC71EC80) (Version: 04/04/2016 10.1.1.18 - INTEL)
Windows Driver Package - Intel USB  (07/31/2013 9.4.0.1025) (HKLM\...\4AC0FF1CA4CEC00C49C2C3ED599D94F8680DEA5D) (Version: 07/31/2013 9.4.0.1025 - Intel)
Windows Driver Package - LG Electronics Inc. (Serial) Ports  (03/05/2015 6.3.9600.4) (HKLM\...\23D08292B2639E56E3531B935E22B475F6700AAA) (Version: 03/05/2015 6.3.9600.4 - LG Electronics Inc.)
Windows Driver Package - NVIDIA Corporation (NVHDA) MEDIA  (03/27/2016 1.3.34.4) (HKLM\...\66B1D330496E65A22DC38FEC668627F21AFA1EAD) (Version: 03/27/2016 1.3.34.4 - NVIDIA Corporation)
Windows Phone 8.1 Emulators - ENU (HKLM-x32\...\{166a69f6-6512-47ea-a342-17d954fc059a}) (Version: 12.0.31010.0 - Microsoft Corporation)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Yamaha Steinberg USB Driver (HKLM-x32\...\InstallShield_{D4BC559E-F2C0-4BE8-9344-645D6F0D2929}) (Version: 1.9.5 - Yamaha Corporation)
Yamaha Steinberg USB Driver (Version: 1.9.5 - Yamaha Corporation) Hidden
Пакет Visual Studio 2012 Verification SDK - rus (x32 Version: 12.0.30501 - Microsoft Corporation) Hidden

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2759712002-1790162856-1979884355-1001_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\UWe\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2759712002-1790162856-1979884355-1001_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\UWe\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2759712002-1790162856-1979884355-1001_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\UWe\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-2759712002-1790162856-1979884355-1001_Classes\CLSID\{c1dafb21-ece8-4f95-90a4-d10cc5fcc11c}\InprocServer32 -> c:\windows\system32\dfshim.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2759712002-1790162856-1979884355-1001_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\UWe\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2759712002-1790162856-1979884355-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\UWe\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll (Google Inc.)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {066488CF-1627-41E9-B93A-B9CF7F72FF45} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-12-13] (NVIDIA Corporation)
Task: {188879DF-B445-4CBE-A3B3-6EC0B257AB32} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2759712002-1790162856-1979884355-1001UA => C:\Users\UWe\AppData\Local\Google\Update\GoogleUpdate.exe [2016-04-24] (Google Inc.)
Task: {3677FA73-CD7B-4BC3-9C5C-68A563DC75A7} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-01-13] (Microsoft Corporation)
Task: {4E6452DC-4BD7-4C68-A991-F2EAB5DCE73A} - System32\Tasks\3n98o0q17241 => Rundll32.exe "C:\ProgramData\3n98o0q17241\3n98o0q17241.dll",noqlaf <==== ACHTUNG
Task: {4FC22F73-2DCB-4BB3-88F6-540C96905214} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23] (Adobe Systems Incorporated)
Task: {50C98D99-4C2A-4EAF-8E7F-C5CD1A78C88F} - System32\Tasks\2n21o8q50932 => Rundll32.exe "C:\ProgramData\2n21o8q50932\2n21o8q50932.dll",noqlaf <==== ACHTUNG
Task: {60F1D32E-38EF-4B1E-92F0-B90ED2CD7691} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {74602992-EEF1-46DA-A34E-4A210D0248B3} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-11] (Adobe Systems Incorporated)
Task: {791A70B6-AF2A-4AB5-BF08-9858B36F23BD} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {87AB4D3B-D6A8-4B0A-9645-8016EAEB3215} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {9DE578A0-EC4C-481D-9280-993EBC86B53E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {9E6E7B05-A73F-498B-88F2-317E7BA09EBC} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {A0E988CF-C01D-4E4D-AF57-BE8341C0CC1E} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation)
Task: {A62FCE8F-EDDA-474D-A1FB-23BECB8BD102} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {A8A6B970-3BA3-44E6-8562-B362F4CE4B0B} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {A911B04F-66D9-4A7C-B1D5-C6D2FFCA942D} - System32\Tasks\GIGABYTE OC GURU => C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe [2016-04-11] (GIGABYTE Technology Co.,Ltd.)
Task: {C4AE6DF6-B1F0-4E61-B7DA-C8161EF8DBFA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => D:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {CFC885C4-A9AD-4339-8DE6-59CB880A1B8C} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {D20B75E5-4AF0-4385-B2F6-DEC0AE2573D7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => D:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {D6FAB6FD-2C70-4B81-AA8B-20C213A0BCF4} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {ECC50D39-86BC-41C2-A2E5-EC9C68EF42E3} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {EEA88671-C86A-40C2-B621-84DCB2D4AE69} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\UWe\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Task: {EF1840D0-40C0-4B13-840C-22F4733C26DC} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2759712002-1790162856-1979884355-1001Core1d1ec16fbcb01d9 => C:\Users\UWe\AppData\Local\Google\Update\GoogleUpdate.exe [2016-04-24] (Google Inc.)
Task: {FDA54B5B-5E42-4AF2-806E-124E11F6EFDE} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-12-13] (NVIDIA Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2759712002-1790162856-1979884355-1001Core.job => C:\Users\UWe\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2759712002-1790162856-1979884355-1001Core1d19e7855602f7b.job => C:\Users\UWe\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2759712002-1790162856-1979884355-1001Core1d1af9bba7fe7a6.job => C:\Users\UWe\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

Shortcut: C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gооglе Сhrоmе Саnаry.lnk -> C:\Users\UWe\AppData\Local\Google\Chrome SxS\Application\chrome.bat ()
Shortcut: C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Сhrоmе Аpp Lаunсhеr.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat (Keine Datei)
Shortcut: C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Gооglе Nоtizеn – Nоtizеn & Listеn.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat (Keine Datei)
Shortcut: C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Аwеsоmе Sсrееnshоt Аpp.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat (Keine Datei)
Shortcut: C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Intеrnеt Ехplоrеr.lnk -> C:\Program Files\Internet Explorer\iexplore.bat ()
Shortcut: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Gооglе Сhrоmе Саnаry.lnk -> C:\Users\UWe\AppData\Local\Google\Chrome SxS\Application\chrome.bat ()
Shortcut: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Gооglе Сhrоmе.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat (Keine Datei)
Shortcut: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Gооglе Nоtizеn – Nоtizеn & Listеn.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat (Keine Datei)
Shortcut: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Gооglе Сhrоmе.lnk -> C:\Users\UWe\AppData\Local\Google\Chrome SxS\Application\chrome.bat ()
Shortcut: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Uwе - Сhrоmе.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat (Keine Datei)
Shortcut: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Моzillа Firеfох.lnk -> D:\Program Files (x86)\Mozilla Firefox\firefox.bat ()
Shortcut: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Сhrоmе Аpp Lаunсhеr.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat (Keine Datei)
Shortcut: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Gооglе Сhrоmе.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gооglе Сhrоmе.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.bat (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Еpiс Gаmеs Lаunсhеr.lnk -> D:\Program Files\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.bat ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Моzillа Firеfох.lnk -> D:\Program Files (x86)\Mozilla Firefox\firefox.bat ()

ShortcutWithArgument: C:\Users\UWe\AppData\Local\Google\Chrome\User Data\Profile 3\Web Applications\_crx_hmjkmjkepdijhoojdojkdfohbdgmmhki\Google Notizen – Notizen & Listen.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory="Profile 3" --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki
ShortcutWithArgument: C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Canary-Apps\Gооglе Nоtizеn – Nоtizеn & Listеn.lnk -> C:\Users\UWe\AppData\Local\Google\Chrome SxS\Application\chrome.bat () ->  --profile-directory=Default --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki
ShortcutWithArgument: C:\Users\UWe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Canary-Apps\Аwеsоmе Sсrееnshоt Аpp.lnk -> C:\Users\UWe\AppData\Local\Google\Chrome SxS\Application\chrome.bat () ->  --profile-directory=Default --app-id=mfpiaehgjbbfednooihadalhehabhcjo
ShortcutWithArgument: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Notizen – Notizen & Listen.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory="Profile 3" --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki
ShortcutWithArgument: C:\Users\UWe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\3e04146466ee503\Uwе - Сhrоmе.lnk -> C:\Users\UWe\AppData\Local\Google\Chrome SxS\Application\chrome.bat () -> --profile-directory="Profile 2"

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-13 20:18 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-13 20:18 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-02-21 22:38 - 2016-02-21 22:38 - 00230064 _____ () D:\Program Files (x86)\Notepad++\NppShell_06.dll
2017-01-23 19:00 - 2017-01-23 19:00 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-01-23 19:00 - 2017-01-23 19:00 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-01-23 19:00 - 2017-01-23 19:00 - 42130432 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-12-14 19:22 - 2016-12-14 19:22 - 02216448 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\roottools.dll
2016-10-15 18:25 - 2016-12-13 00:36 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-10-15 18:25 - 2016-12-13 00:35 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-09-29 19:11 - 2016-09-29 19:11 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-01-10 21:03 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-01-10 21:03 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-01-10 21:03 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-01-10 21:03 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-01-10 21:03 - 2016-12-21 07:48 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-01-10 21:03 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-01-10 21:03 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-12-15 00:39 - 2016-12-08 09:03 - 02412888 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-15 00:39 - 2016-12-08 09:03 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
2017-01-11 18:59 - 2017-01-11 18:59 - 31167576 _____ () C:\Users\UWe\AppData\Local\Google\Chrome\User Data\PepperFlash\24.0.0.194\pepflashplayer.dll
2016-04-26 19:22 - 2016-12-13 00:35 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-10-15 18:25 - 2016-12-13 00:35 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-10-15 18:25 - 2016-12-13 00:35 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ==========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2015-11-18 01:16 - 2015-11-18 01:14 - 00007799 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 na2m-pr.licenses.adobe.com
127.0.0.1 na4r.services.adobe.com
127.0.0.1 ims-na1-prprod.adobelogin.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 practivate.adobe.de
127.0.0.1 209-34-83-73.ood.opsource.net
127.0.0.1 3dns.adobe.com
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 3dns-5.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sea.adobe.de
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 activate-sjc0.adobe.de
127.0.0.1 activate.adobe.com
127.0.0.1 activate.adobe.de
127.0.0.1 activate.wip.adobe.com
127.0.0.1 activate.wip1.adobe.com
127.0.0.1 activate.wip2.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 activate.wip3.adobe.de
127.0.0.1 activate.wip4.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns.adobe.de

Da befinden sich 126 zusätzliche Einträge.


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\Control Panel\Desktop\\Wallpaper -> D:\Haupt Sicherung\Pictures\final_fantasy_xv_wallpaper_v2_by_visionstudio_ff-blog.com.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000000"
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\StartupApproved\Run: => "GalaxyClient"
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\StartupApproved\Run: => "Google Update"
HKU\S-1-5-21-2759712002-1790162856-1979884355-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_5053E9DA201401E8119CE2704010ED59"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [{85DB5A9E-55F7-4E82-9EBF-F412C4F8D900}] => D:\Program Files\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{DC1886E0-EC03-4742-9C8C-0A4BA188232C}] => D:\Program Files\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{310586C2-D3C6-470E-A23D-9BC1B8A6E1AB}] => D:\Program Files\Steam\steamapps\common\NARUTO SHIPPUDEN Ultimate Ninja STORM 4\NSUNS4.exe
FirewallRules: [{3F0A939D-0AC1-411B-A185-DA7FDDCBD4F0}] => D:\Program Files\Steam\steamapps\common\NARUTO SHIPPUDEN Ultimate Ninja STORM 4\NSUNS4.exe
FirewallRules: [{0B98425D-DAF7-4879-BDD2-405B19B24612}] => D:\Program Files\Steam\steamapps\common\ShareX\ShareX_Launcher.exe
FirewallRules: [{B4105377-CA76-4013-935C-B0870B52AC1A}] => D:\Program Files\Steam\steamapps\common\ShareX\ShareX_Launcher.exe
FirewallRules: [{B1DD6A46-F964-4C60-842A-26DEF66F88B9}] => D:\Program Files\Steam\steamapps\common\Tropico 4\Tropico4.exe
FirewallRules: [{718B2083-F625-4924-95A8-074AA3873B53}] => D:\Program Files\Steam\steamapps\common\Tropico 4\Tropico4.exe
FirewallRules: [UDP Query User{1761235E-03A5-45E3-BB28-C1AD4FC56F0C}D:\haupt sicherung\save\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => D:\haupt sicherung\save\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{2B978A27-5252-4B1D-99CD-9F75AB7663E4}D:\haupt sicherung\save\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => D:\haupt sicherung\save\curse\minecraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{A7D7E1AE-A755-4B81-881A-563E4A8C3ECF}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => C:\program files\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [TCP Query User{50AB6879-4E30-46F4-B14D-F6F5FA6AD351}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => C:\program files\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [{151E4865-355A-47E7-B4A6-68DCC7D47E5B}] => D:\Program Files\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe
FirewallRules: [{A0CD38CC-CB63-40F0-8E36-34F9EA7639C9}] => D:\Program Files\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe
FirewallRules: [{8924B64D-37A2-42E7-95A5-BC8F74D35FC7}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\mod_tools\Sublime\sublime_text.exe
FirewallRules: [{A6D332C0-89D1-4C52-BF87-044815099AC3}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\mod_tools\Sublime\sublime_text.exe
FirewallRules: [{DB3072D6-FE24-4F5C-AA01-857D82B78275}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\mod_tools\Tiled\tiled.exe
FirewallRules: [{203BBFAA-8664-4748-81AD-0D18F5CD7737}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\mod_tools\Tiled\tiled.exe
FirewallRules: [{019B2CF6-D6EC-4C11-8676-3913F8C7F658}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\mod_tools\FMOD_Designer\fmod_designer.exe
FirewallRules: [{6646DD7D-9A05-40D6-A7F1-A68CE2FA5AE6}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\mod_tools\FMOD_Designer\fmod_designer.exe
FirewallRules: [{7D629EBF-F04D-4289-BE77-3CA30CBA764D}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\mod_tools\Spriter\Spriter.exe
FirewallRules: [{A41AE9DA-91F7-444E-A5BB-29C8EDD1E9F8}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\mod_tools\Spriter\Spriter.exe
FirewallRules: [{A2A80F0B-A263-436D-9F2E-1E9E220F1C6F}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\ModUploader.exe
FirewallRules: [{BB63D83C-F17B-48AA-B6F5-FAE89C1CC50A}] => D:\Program Files\Steam\steamapps\common\Don't Starve Mod Tools\ModUploader.exe
FirewallRules: [{4C50908F-CDCA-4390-9C28-0D27E3EC173B}] => D:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{95075DC0-99DA-4D2C-A078-55793529EAE7}] => D:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{56F06D30-3303-40E7-B847-EA0141942833}] => D:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{F71AEBAC-F717-44A0-B11E-C46B67E1B8ED}] => D:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{B99BCFF1-CA64-4DD6-9E18-206C8E6168F3}] => D:\Program Files\Steam\steamapps\common\primal_carnage\Binaries\Win32\PrimalCarnageGame.exe
FirewallRules: [{ACF54B8A-A5C9-4E26-8F99-4A1A85AB4F64}] => D:\Program Files\Steam\steamapps\common\primal_carnage\Binaries\Win32\PrimalCarnageGame.exe
FirewallRules: [{CE4A6D4A-90E3-4624-BB0B-2703D564E644}] => D:\Program Files\Steam\steamapps\common\outtheresomewhere\ots.exe
FirewallRules: [{82242145-2176-4F32-BDB5-4CEB4A213952}] => D:\Program Files\Steam\steamapps\common\outtheresomewhere\ots.exe
FirewallRules: [{606A9C9E-3D8A-4819-AD3B-C48D73F50B6F}] => D:\Program Files\Steam\steamapps\common\Revolution Ace\Binaries\Win32\ShmupGame.exe
FirewallRules: [{FCF24171-F067-45A2-BB34-487CADD16BEC}] => D:\Program Files\Steam\steamapps\common\Revolution Ace\Binaries\Win32\ShmupGame.exe
FirewallRules: [{371A941C-1E0C-4677-AF2B-881B52A923C2}] => D:\Program Files\Steam\steamapps\common\Revolution Ace\EQLauncher.exe
FirewallRules: [{9CD41DE9-7EC0-4CA1-B0EE-573E70EE3963}] => D:\Program Files\Steam\steamapps\common\Revolution Ace\EQLauncher.exe
FirewallRules: [{91AF46A2-CD7B-40E3-96FA-600A76ECE450}] => D:\Program Files\Steam\steamapps\common\The Hat Man Shadow Ward\The Hat Man.exe
FirewallRules: [{C70E474F-7FC3-4698-A50F-EF8E75E4BD66}] => D:\Program Files\Steam\steamapps\common\The Hat Man Shadow Ward\The Hat Man.exe
FirewallRules: [{C46E2BD4-C685-4B70-B646-ACE892862F47}] => D:\Program Files\Steam\steamapps\common\PARTICLEMACE\PARTICLEMACE_executable.exe
FirewallRules: [{4658C9E4-5C57-4AA5-96D3-3BC8836E5894}] => D:\Program Files\Steam\steamapps\common\PARTICLEMACE\PARTICLEMACE_executable.exe
FirewallRules: [{655F21A8-E4A2-420D-8A45-9EB8A175625B}] => D:\Program Files\Steam\steamapps\common\Howler\Howler.exe
FirewallRules: [{EFADA1E3-CE1C-4873-B283-79818FE8B288}] => D:\Program Files\Steam\steamapps\common\Howler\Howler.exe
FirewallRules: [{53F87DF2-7112-4AAA-9DCD-573612F29467}] => D:\Program Files\Steam\steamapps\common\Morphopolis\project.exe
FirewallRules: [{38260CD4-DFF0-409A-A1C6-339BBA94E807}] => D:\Program Files\Steam\steamapps\common\Morphopolis\project.exe
FirewallRules: [{E85AA388-2199-4B96-AA7D-F8E729F914E8}] => D:\Program Files\Steam\steamapps\common\Saviors\Saviors.exe
FirewallRules: [{903DDB62-B1DF-4B69-AC85-DC531B8589A9}] => D:\Program Files\Steam\steamapps\common\Saviors\Saviors.exe
FirewallRules: [{ABEC8798-C5F9-419A-A40C-9F7904B1DF0B}] => D:\Program Files\Steam\steamapps\common\Polarity\Polarity.exe
FirewallRules: [{4D152AA7-1FF2-4FDD-82E4-8365CED026BC}] => D:\Program Files\Steam\steamapps\common\Polarity\Polarity.exe
FirewallRules: [{BB4FEFAD-7560-474E-8EF3-54F74EDD770D}] => D:\Program Files\Steam\steamapps\common\Airscape\nw.exe
FirewallRules: [{67F6C8B4-793E-41FF-886C-1B4C4837F5EB}] => D:\Program Files\Steam\steamapps\common\Airscape\nw.exe
FirewallRules: [{111F1D80-8366-4763-805F-CABCF213302B}] => D:\Program Files\Steam\steamapps\common\Intergalactic Bubbles\Intergalactic Bubbles.exe
FirewallRules: [{3C9F04D5-00F3-4BB9-AD71-016C474F6444}] => D:\Program Files\Steam\steamapps\common\Intergalactic Bubbles\Intergalactic Bubbles.exe
FirewallRules: [{24BDA5E8-4387-42C0-A4E0-A1EFDC3122AF}] => D:\Program Files\Steam\steamapps\common\Rolling Sun\Bin64\RollingSun.exe
FirewallRules: [{85264155-372E-4FFF-9D5A-6D96F9A0EC01}] => D:\Program Files\Steam\steamapps\common\Rolling Sun\Bin64\RollingSun.exe
FirewallRules: [{826D5DDD-9426-4A36-8C03-F0BF9928CFF8}] => D:\Program Files\Steam\steamapps\common\Labyronia\Game.exe
FirewallRules: [{72956207-E167-4709-A00B-15C49E7AEE20}] => D:\Program Files\Steam\steamapps\common\Labyronia\Game.exe
FirewallRules: [{BCEF0356-3661-4260-B5BB-ECD117D002EF}] => D:\Program Files\Steam\steamapps\common\Gun Rocket\GunRocketBuildWithGamepadSupport.exe
FirewallRules: [{F32DC046-F1C7-4021-9ADB-C85B193D2AA9}] => D:\Program Files\Steam\steamapps\common\Gun Rocket\GunRocketBuildWithGamepadSupport.exe
FirewallRules: [{8E106DA5-027E-4FC3-BB60-7BDBF175A1E4}] => D:\Program Files\Steam\steamapps\common\Labyronia RPG 2\Game.exe
FirewallRules: [{8FF486D6-4B9D-4C84-B01A-E26D327DE456}] => D:\Program Files\Steam\steamapps\common\Labyronia RPG 2\Game.exe
FirewallRules: [{D1020106-398E-4EA7-8E4C-A41A24C045AE}] => D:\Program Files\Steam\steamapps\common\Legend of Mysteria\EQLauncher.exe
FirewallRules: [{CC1077CB-E4D6-4E27-8A2B-793658534300}] => D:\Program Files\Steam\steamapps\common\Legend of Mysteria\EQLauncher.exe
FirewallRules: [{DB99E286-0F7D-48E5-A371-9C2280034456}] => D:\Program Files\Steam\steamapps\common\The Chosen RPG\EQLauncher.exe
FirewallRules: [{F97B2F09-A068-4CF1-8D83-82C5E451C176}] => D:\Program Files\Steam\steamapps\common\The Chosen RPG\EQLauncher.exe
FirewallRules: [{2AA1511D-5F48-4E99-8626-D29E0D02C4A2}] => D:\Program Files\Steam\steamapps\common\Sins Of The Demon\Game.exe
FirewallRules: [{46859F5A-7C4C-47E3-AE44-50640FCE8B6E}] => D:\Program Files\Steam\steamapps\common\Sins Of The Demon\Game.exe
FirewallRules: [{FBE9F54E-C68F-4233-BD84-F18007286ABD}] => D:\Program Files\Steam\steamapps\common\Spaceport Hope\space.exe
FirewallRules: [{E39581C9-2E27-4207-90F3-62EF57041CB0}] => D:\Program Files\Steam\steamapps\common\Spaceport Hope\space.exe
FirewallRules: [{1C55A65F-A50D-4925-8F0A-5FDAC2CF6D6D}] => D:\Program Files\Steam\steamapps\common\Storm of Spears\Storm of Spears.exe
FirewallRules: [{C72E3AFA-399A-47DD-8FDC-2C9EE67F9091}] => D:\Program Files\Steam\steamapps\common\Storm of Spears\Storm of Spears.exe
FirewallRules: [{0D42E046-7027-4BAC-86DC-ABB154368511}] => D:\Program Files\Steam\steamapps\common\Waveform\Waveform.exe
FirewallRules: [{D69A4F7F-2264-432B-93F1-F23E900D474C}] => D:\Program Files\Steam\steamapps\common\Waveform\Waveform.exe
FirewallRules: [UDP Query User{534C8B13-E124-46E4-9FAB-E2CE1E2C67EA}D:\program files\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => D:\program files\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{39A9E25C-8C85-4D94-A120-1228A038CBB5}D:\program files\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => D:\program files\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [{B4BD2DAE-4FF9-4952-A819-915583C3CE3E}] => D:\Program Files\Steam\steamapps\common\Chronicle\Chronicle.exe
FirewallRules: [{64FCECAE-A281-40E4-B28C-139B96D22EE6}] => D:\Program Files\Steam\steamapps\common\Chronicle\Chronicle.exe
FirewallRules: [UDP Query User{CB95B990-CD80-4FA8-9192-393DFF2D700F}C:\program files\java\jre1.8.0_92\bin\javaw.exe] => C:\program files\java\jre1.8.0_92\bin\javaw.exe
FirewallRules: [TCP Query User{D6336ACA-14E3-4D7F-821F-41E0DF8609D0}C:\program files\java\jre1.8.0_92\bin\javaw.exe] => C:\program files\java\jre1.8.0_92\bin\javaw.exe
FirewallRules: [UDP Query User{8977473C-193C-4DBD-97C1-AA00299741EB}D:\program files (x86)\overwatch\overwatch.exe] => D:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{6D02125B-CFE3-4532-B0D7-DBDC128B1CE1}D:\program files (x86)\overwatch\overwatch.exe] => D:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{3D7E6698-941C-4562-8893-90D1BA89E3F2}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D045011F-00FA-415F-B1F1-5F3C733D5C4C}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{ACD94FCA-2BC9-47F9-B676-CF34E3936188}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{97259B18-B189-4C37-B4EC-DF73BE6D3800}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [UDP Query User{C9233346-4063-486E-BC91-16B71E7B3AD1}D:\program files\maxon\team render client r17\cinema 4d teamrender client.exe] => D:\program files\maxon\team render client r17\cinema 4d teamrender client.exe
FirewallRules: [TCP Query User{8B45C3A4-A531-4036-9B82-9EE326492705}D:\program files\maxon\team render client r17\cinema 4d teamrender client.exe] => D:\program files\maxon\team render client r17\cinema 4d teamrender client.exe
FirewallRules: [{2480BBA9-86EA-4102-9997-997AEF66858D}] => D:\Program Files\Steam\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{784805A8-192F-4F83-A8CF-38D0C5D0BBFE}] => D:\Program Files\Steam\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{D5BE5AE4-B954-4D94-A19F-2A8AAF94903A}] => D:\Program Files\Steam\steamapps\common\RaceTheSun\RaceTheSun.exe
FirewallRules: [{7568F640-EB98-4858-B3EF-45C52DE0A064}] => D:\Program Files\Steam\steamapps\common\RaceTheSun\RaceTheSun.exe
FirewallRules: [{30BCEF24-6E79-4ECA-87F6-F7F61918BC45}] => D:\Program Files\Steam\steamapps\common\Worms Clan Wars - Speech Bank Editor\SBEditor.exe
FirewallRules: [{735A53FC-E56E-48F0-B300-15F1DF8A960B}] => D:\Program Files\Steam\steamapps\common\Worms Clan Wars - Speech Bank Editor\SBEditor.exe
FirewallRules: [{757A6D0A-8410-40DE-A070-B08743C9D397}] => D:\Program Files\Steam\steamapps\common\Worms Clan Wars Editor\WCWEditor.exe
FirewallRules: [{DC2BDF6A-5172-4331-9923-0ECEFCC0B6B3}] => D:\Program Files\Steam\steamapps\common\Worms Clan Wars Editor\WCWEditor.exe
FirewallRules: [{9E3266A6-9B68-44E9-85D1-8C195367B3D3}] => D:\Program Files\Steam\steamapps\common\Worms Clan Wars\WormsClanWars.exe
FirewallRules: [{03B3AF56-6CA9-4C33-865D-14F39A592537}] => D:\Program Files\Steam\steamapps\common\Worms Clan Wars\WormsClanWars.exe
FirewallRules: [UDP Query User{39C08D33-E5C0-4A20-9A20-EF95E00A6126}D:\program files (x86)\rollercoaster tycoon world\rollercoaster tycoon world.exe] => D:\program files (x86)\rollercoaster tycoon world\rollercoaster tycoon world.exe
FirewallRules: [TCP Query User{8B5755FE-0EA0-4D2B-B0E1-C579EB04D59D}D:\program files (x86)\rollercoaster tycoon world\rollercoaster tycoon world.exe] => D:\program files (x86)\rollercoaster tycoon world\rollercoaster tycoon world.exe
FirewallRules: [{5C97CF95-850E-49AF-AAF5-44ACE9A0A406}] => D:\Program Files\Steam\steamapps\common\Dig or Die\DigOrDie.exe
FirewallRules: [{8CD839B2-93BE-4527-BC8B-DA814039AD66}] => D:\Program Files\Steam\steamapps\common\Dig or Die\DigOrDie.exe
FirewallRules: [{DC35FCE1-C754-40C2-8925-C0605FF4110E}] => D:\Programme (x86)\Microsoft Visual Studio 12.0\Common7\IDE\devenv.exe
FirewallRules: [{F865BD3C-8207-451A-9B67-D366066ABE4A}] => D:\Programme (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{1A29A560-32FF-4368-8323-640EFAAE185F}] => D:\Program Files\Steam\steamapps\common\Freedom Planet\FP.exe
FirewallRules: [{1CB0192A-9053-4642-A1AC-B7E171A8BC4F}] => D:\Program Files\Steam\steamapps\common\Freedom Planet\FP.exe
FirewallRules: [{4EE77CC3-3830-46B3-8438-C0D8C2144F11}] => D:\Program Files\Steam\steamapps\common\Hell Yeah\HELLYEAH.exe
FirewallRules: [{C7E0F81F-453E-455B-A504-D3116C41BF80}] => D:\Program Files\Steam\steamapps\common\Hell Yeah\HELLYEAH.exe
FirewallRules: [{0ADF5E86-8C14-44CF-8F9C-7A19CE35B6AC}] => D:\Program Files\Steam\steamapps\common\Jet Set Radio\jsrsetup.exe
FirewallRules: [{EA5E65E5-D776-4881-877D-1696ADA6E178}] => D:\Program Files\Steam\steamapps\common\Jet Set Radio\jsrsetup.exe
FirewallRules: [{8BAF9B06-F2A0-4067-980C-3FD17CF27DFA}] => D:\Program Files\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{801D1409-676C-4E9E-A5CC-D1EC34406A32}] => D:\Program Files\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [UDP Query User{AFD17705-E342-4729-BB1E-1BE75FB172E1}D:\haupt sicherung\save\scrap mechanic 0.1.15\release\scrapmechanic.exe] => D:\haupt sicherung\save\scrap mechanic 0.1.15\release\scrapmechanic.exe
FirewallRules: [TCP Query User{80503F6B-D36F-4BC9-8EAD-86A8113DCF14}D:\haupt sicherung\save\scrap mechanic 0.1.15\release\scrapmechanic.exe] => D:\haupt sicherung\save\scrap mechanic 0.1.15\release\scrapmechanic.exe
FirewallRules: [UDP Query User{AE73F206-030F-4661-976A-D825A3D85C10}C:\program files\java\jre1.8.0_66\bin\javaw.exe] => C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [TCP Query User{5FA395E3-0FD1-43ED-8085-77F9CF71AC06}C:\program files\java\jre1.8.0_66\bin\javaw.exe] => C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{62269C73-B914-4ECA-9B0E-B3E26A0D943F}] => D:\Program Files\Steam\steamapps\common\Besiege\Besiege.exe
FirewallRules: [{4CCB8C0B-0C8E-43D7-94FE-A3B3439E90A2}] => D:\Program Files\Steam\steamapps\common\Besiege\Besiege.exe
FirewallRules: [{735B31A8-73F6-474E-9106-0864BBD7722F}] => D:\Program Files\Steam\steamapps\common\Creativerse\Creativerse.exe
FirewallRules: [{2A282D4B-7EDC-4AD8-BD14-6F39FBC5B548}] => D:\Program Files\Steam\steamapps\common\Creativerse\Creativerse.exe
FirewallRules: [{8E43E36D-8D38-4FA8-923B-A68ACBB83624}] => D:\Program Files\Steam\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{0F1A0E2D-DF82-4109-B53C-C2A15C8866DF}] => D:\Program Files\Steam\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{238073FD-8A93-43DA-9D4F-632594E01332}] => D:\Program Files\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{5D6F0740-B1B7-4859-8423-ED96E6455928}] => D:\Program Files\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [UDP Query User{6A6230DF-24BD-428A-A0D5-CD49C6D08AEB}D:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => D:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{B4278234-4A74-4ACC-8578-48B14EF4CB06}D:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => D:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{A15E39CA-F14F-4297-97C3-1E89909145BB}] => D:\Program Files\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{D3C03BD1-7DD2-491F-8841-AB93D2FE7EED}] => D:\Program Files\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{B7961A21-5528-4F20-A81F-0B3D2DA84767}] => D:\Program Files\Steam\Steam.exe
FirewallRules: [{52043F54-AC2D-4CBE-BD48-F5BE80595A21}] => D:\Program Files\Steam\Steam.exe
FirewallRules: [{A6F0548E-2B5B-478B-9646-C0709C3EA227}] => D:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{8C62C7E6-43AF-4237-917A-20E67EDC298A}] => D:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{1572CA56-5CCA-4342-B13B-245FD12813A0}] => D:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CE1192D0-BE27-45E5-B307-5939BD04EAAF}] => D:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{17DC3EAD-8C4E-4EA5-B836-3A7574C2EB34}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{D61CFFB2-E326-4017-97B8-7710D24F4CC6}] => D:\Program Files\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{E63A0015-B59A-4E6F-B35D-85A16CD6A658}] => D:\Program Files\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{29928419-91E5-418F-A5C2-CCFAFDF52009}] => D:\Program Files\Steam\steamapps\common\ACE\Binaries\Win32\CyphGame.exe
FirewallRules: [{B6902221-F7E4-48A8-AE9B-B1CB7C36F4A2}] => D:\Program Files\Steam\steamapps\common\ACE\Binaries\Win32\CyphGame.exe
FirewallRules: [TCP Query User{5DB28B84-BD81-4843-BD5E-8AADF6BA1DEC}C:\program files\java\jre1.8.0_66\bin\java.exe] => C:\program files\java\jre1.8.0_66\bin\java.exe
FirewallRules: [UDP Query User{69E0F1BC-5058-4A68-8618-75BFC9078790}C:\program files\java\jre1.8.0_66\bin\java.exe] => C:\program files\java\jre1.8.0_66\bin\java.exe
FirewallRules: [{82A0BA38-07F2-46CC-B3C5-72300C1C5CEF}] => D:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{B919FE4E-04A5-4702-89E4-8FFB58333A78}] => D:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{165C575E-AE76-4DC7-ADA6-79BEC5CE13C0}D:\haupt sicherung\click'n'load v2 emulator\cnl2_emu.exe] => D:\haupt sicherung\click'n'load v2 emulator\cnl2_emu.exe
FirewallRules: [UDP Query User{ED6E1D6C-3B71-4E64-A916-2B357E2DDE1F}D:\haupt sicherung\click'n'load v2 emulator\cnl2_emu.exe] => D:\haupt sicherung\click'n'load v2 emulator\cnl2_emu.exe
FirewallRules: [TCP Query User{FDB9ED79-28C0-4DBE-8B1D-90FB1BDCD260}D:\program files\epic games\4.10\engine\binaries\win64\ue4editor.exe] => D:\program files\epic games\4.10\engine\binaries\win64\ue4editor.exe
FirewallRules: [UDP Query User{45CB75F1-2C77-4C1E-B8A3-5F62A3F7A211}D:\program files\epic games\4.10\engine\binaries\win64\ue4editor.exe] => D:\program files\epic games\4.10\engine\binaries\win64\ue4editor.exe
FirewallRules: [TCP Query User{7FAEAD14-AC90-4935-A9CA-7F2C86B13ADA}D:\program files (x86)\galaxyclient\games\worms forts - under siege\wf.exe] => D:\program files (x86)\galaxyclient\games\worms forts - under siege\wf.exe
FirewallRules: [UDP Query User{51872F45-B13F-41C5-ACE4-4227915019BB}D:\program files (x86)\galaxyclient\games\worms forts - under siege\wf.exe] => D:\program files (x86)\galaxyclient\games\worms forts - under siege\wf.exe
FirewallRules: [{EF308D56-58D4-4E88-958D-EB59ED93D7F9}] => D:\Program Files\Steam\steamapps\common\Lara Croft and the Temple of Osiris\LC2.exe
FirewallRules: [{86AC7352-5AB3-408D-BFAE-EF6A74D69613}] => D:\Program Files\Steam\steamapps\common\Lara Croft and the Temple of Osiris\LC2.exe
FirewallRules: [{A00C5BEF-5059-4B74-ADEE-7F3DF7900BC0}] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\The Crew (Worldwide)\TheCrew.exe
FirewallRules: [{DA781880-A8FA-488D-85E8-E95D25713349}] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\The Crew (Worldwide)\TheCrew.exe
FirewallRules: [TCP Query User{D55C69D7-098E-423D-80AC-F4BE855D48B6}D:\program files\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => D:\program files\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [UDP Query User{2F428767-7C80-4224-8D32-FB318BB68188}D:\program files\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => D:\program files\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{54487352-2944-4ADF-91B9-8AC2F420908B}D:\program files (x86)\antichamber\binaries\win32\udk.exe] => D:\program files (x86)\antichamber\binaries\win32\udk.exe
FirewallRules: [UDP Query User{3B9F688C-B8C4-4F49-A2AF-E42BF94C0F0F}D:\program files (x86)\antichamber\binaries\win32\udk.exe] => D:\program files (x86)\antichamber\binaries\win32\udk.exe
FirewallRules: [{54B615A6-CF0D-4B0D-B204-0F2B9C828DCD}] => D:\Program Files\Steam\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe
FirewallRules: [{4DD13F81-B2B8-4E68-AA51-144CA044BE9A}] => D:\Program Files\Steam\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe
FirewallRules: [{5FB5FD71-DBAF-42DD-81D6-1D3C9431EAEE}] => D:\Program Files\Steam\steamapps\common\Call of Duty - Infinite Warfare\iw7_ship.exe
FirewallRules: [{69254E8E-9B22-47C5-9A6D-22CB66A0D981}] => D:\Program Files\Steam\steamapps\common\Call of Duty - Infinite Warfare\iw7_ship.exe
FirewallRules: [{C6D847D5-ED7D-4DF2-BF8E-6C375A2C77B7}] => D:\Program Files\Steam\steamapps\common\Call of Duty Modern Warfare Remastered\h1_mp64_ship.exe
FirewallRules: [{752786F8-5FFE-4CC8-9255-5619E295D4EA}] => D:\Program Files\Steam\steamapps\common\Call of Duty Modern Warfare Remastered\h1_mp64_ship.exe
FirewallRules: [{D3769110-C844-42CE-B835-5FFD2066571E}] => D:\Program Files\Steam\steamapps\common\Call of Duty Modern Warfare Remastered\h1_sp64_ship.exe
FirewallRules: [{96D3158E-E6EB-461B-9B62-B8E7BF22499B}] => D:\Program Files\Steam\steamapps\common\Call of Duty Modern Warfare Remastered\h1_sp64_ship.exe
FirewallRules: [{969AD10B-D7AB-4A0A-AE38-D475F0A4A712}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [TCP Query User{63839ACA-8DF6-418D-9EEC-C60368E3560E}D:\program files (x86)\dishonored die maske des zorns game of the year edition\binaries\win32\dishonored.exe] => D:\program files (x86)\dishonored die maske des zorns game of the year edition\binaries\win32\dishonored.exe
FirewallRules: [UDP Query User{6CF54468-A7C1-4DC4-A631-876BEF8C44EA}D:\program files (x86)\dishonored die maske des zorns game of the year edition\binaries\win32\dishonored.exe] => D:\program files (x86)\dishonored die maske des zorns game of the year edition\binaries\win32\dishonored.exe
FirewallRules: [{56DA4E37-BA23-4BA4-AEFC-4EC1B9603F2A}] => D:\Program Files\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe
FirewallRules: [{13C2B602-6604-443B-8B25-B1DB8AA733C5}] => D:\Program Files\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe
FirewallRules: [{935A7C3F-DEAC-4F82-8D25-D030877D5AF4}] => D:\Program Files\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{C3FCA436-18DC-4F86-9C1D-B3AAEC125BF0}] => D:\Program Files\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{33180263-7F6F-4528-BC11-2CF269DA44BE}] => D:\Program Files\Steam\steamapps\common\The Escapists\TheEscapists.exe
FirewallRules: [{BEEE9717-B75E-4D7E-BC74-D7472DAA529B}] => D:\Program Files\Steam\steamapps\common\The Escapists\TheEscapists.exe
FirewallRules: [{5A0342CC-9169-494D-B22C-09100B132B09}] => D:\Program Files (x86)\Pantera Entertainment\Theme Park Studio\win64\ThemeParkStudio.exe
FirewallRules: [{0026395E-CEB3-4759-87A1-791B12CA023F}] => D:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{6FA6CFEE-22CA-4FFC-B18D-8BF1C51A6646}] => D:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{83F6312E-F79F-4EC2-BFE4-73DF02A5D732}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{9F942BEB-0688-4144-99AD-9ABA1FB8191C}] => D:\Program Files\Steam\steamapps\common\Chronicle\WorkshopTool\WorkshopManager.exe
FirewallRules: [{6C815367-6F02-4E80-9FA0-8D19EC47B7A7}] => D:\Program Files\Steam\steamapps\common\Chronicle\WorkshopTool\WorkshopManager.exe
FirewallRules: [{BC2D69B6-378F-4B53-BADC-2A605A053D7C}] => D:\Program Files\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe
FirewallRules: [{2A0E3F95-24F6-4576-8871-158F0250FBF5}] => D:\Program Files\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe
FirewallRules: [{F06BF9E6-0B23-4A7E-A4E5-9CEAB7091807}] => D:\Program Files\Steam\steamapps\common\Viridi\Viridi.exe
FirewallRules: [{D48B5ED6-E8AE-4D59-B3B4-8B121E277EC2}] => D:\Program Files\Steam\steamapps\common\Viridi\Viridi.exe
FirewallRules: [{22B5D9EA-5104-43AC-89AA-8BA690117C33}] => D:\Program Files\Steam\steamapps\common\Streamline\hns\Binaries\Win64\Streamline.exe
FirewallRules: [{7E48417F-D29F-4580-855B-86CD673BF9EB}] => D:\Program Files\Steam\steamapps\common\Streamline\hns\Binaries\Win64\Streamline.exe
FirewallRules: [{9F5B85FA-983B-48C1-AC8B-33692047D505}] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{8D1C9651-E3FA-46FC-AA7A-418AD4AD71DB}] => C:\WINDOWS\system32\rundll32.exe
FirewallRules: [{E1B28F4B-328B-4E4F-8FC3-DDDE1F7425BF}] => 㩃啜敳獲啜敗䅜灰慄慴剜慯業杮獜湳獜湳攮數
FirewallRules: [{DA378570-FA87-47BE-AA40-71B6ADF7FCFA}] => 㩃啜敳獲啜敗䅜灰慄慴剜慯業杮獜湳獜癡略⹰硥e
FirewallRules: [{B39906D9-7A94-4766-B86C-D7FBE2463FB1}] => D:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8A091072-4722-4102-9948-4DD56D461B62}] => D:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{988D041D-EF54-4A9F-BE22-2E4D0AAA9319}] => C:\Windows\System32\rundll32.exe
FirewallRules: [{E1772166-FB84-448C-929F-77E5550520D8}] => C:\Windows\System32\rundll32.exe

==================== Wiederherstellungspunkte =========================

ACHTUNG: Systemwiederherstellung ist deaktiviert

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (01/30/2017 02:08:04 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\MFC80U.DLL".
Die abhängige Assemblierung "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/30/2017 02:08:01 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:
hr=0xC004F074
Befehlszeilenargumente:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (01/30/2017 02:07:31 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:
hr=0xC004F074
Befehlszeilenargumente:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (01/30/2017 02:07:14 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe".
Die abhängige Assemblierung "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/30/2017 02:07:14 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe".
Die abhängige Assemblierung "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/30/2017 02:06:28 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe".
Die abhängige Assemblierung "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/30/2017 02:06:28 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe".
Die abhängige Assemblierung "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/30/2017 02:06:11 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe".
Die abhängige Assemblierung "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/30/2017 02:06:04 AM) (Source: DbxSvc) (EventID: 320) (User: )
Description: Failed to connect to the driver: (-2147024894) Das System kann die angegebene Datei nicht finden.

Error: (01/30/2017 01:33:00 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0


Systemfehler:
=============
Error: (01/30/2017 02:16:37 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA LocalSystem Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/30/2017 02:08:19 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Google Update-Dienst (gupdate)" wurde aufgrund folgenden Fehlers nicht gestartet: 
Das System kann die angegebene Datei nicht finden.

Error: (01/30/2017 02:06:07 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 und der APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (01/30/2017 02:05:20 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 und der APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (01/29/2017 08:36:16 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk1\DR1.

Error: (01/29/2017 07:39:54 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk1\DR1.

Error: (01/29/2017 07:39:51 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk1\DR1.

Error: (01/29/2017 07:39:48 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk1\DR1.

Error: (01/29/2017 07:39:46 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk1\DR1.

Error: (01/29/2017 07:39:43 PM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk1\DR1.


CodeIntegrity:
===================================
  Date: 2017-01-26 20:17:24.343
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-26 20:13:43.374
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-26 20:13:11.028
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-26 20:12:26.604
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-01-25 19:46:57.797
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-01-23 19:01:26.183
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-01-23 19:01:26.180
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-01-23 19:01:26.176
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-01-22 19:21:43.841
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2017-01-22 19:21:43.730
  Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-4670K CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 60%
Installierter physikalischer RAM: 16313.34 MB
Verfügbarer physikalischer RAM: 6419.08 MB
Summe virtueller Speicher: 38841.34 MB
Verfügbarer virtueller Speicher: 27324.06 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:116.45 GB) (Free:25.01 GB) NTFS
Drive d: (Elements) (Fixed) (Total:1863.01 GB) (Free:346.71 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 117.4 GB) (Disk ID: 9840B943)
Partition 1: (Not Active) - (Size=116.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 000E0E24)
Partition 1: (Active) - (Size=1863 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         
So sollten alle angeforderten Logs sein

Alt 30.01.2017, 20:51   #11
M-K-D-B
/// TB-Ausbilder
 
Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung - Standard

Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung



Servus,



ich glaube für dich ist hier Endstation...

Du hast da mindestens eine illegale/gecrackte Software auf deinem Rechner:
Adobe & Windows 10


Lesestoff:
Illegale Software: Cracks, Keygens und Co

Bitte lesen => http://www.trojaner-board.de/95393-c...-software.html

Es geht weiter, wenn du alles Illegale entfernt hast.

Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.
__________________
Gruß
M-K-D-B


==========================================================
offline vom 22.12.2018 bis 01.01.2019
==========================================================

Das Trojaner-Board unterstützen

Alt 30.01.2017, 21:38   #12
KoggeHD
 
Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung - Standard

Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung



Ok...,

Das ist ja mal scheiße, da ein Freund von mir den Pc fertig gemacht hatte und er mir sagte das er von dem beiden noch original versionen rumliegen hatte. -.- da werde ich wohl mal mit dem ein ernstes Wort reden müssen.
Dir aber erstmal Danke das du dich soweit um mich und mein Pc gekümmert hast und das du das offen gelegt hast. Ich werde mich dann wieder melden wenn ich das geklärt habe und die gecrackten Versionen entsorgt habe.

so genervt von ein Kumpel war ich lange nicht mehr.

Alt 31.01.2017, 20:24   #13
M-K-D-B
/// TB-Ausbilder
 
Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung - Standard

Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung



Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Solltest Du das Thema erneut brauchen, schicke mir bitte eine PM.

Jeder andere bitte hier klicken und einen eigenen Thread erstellen.
__________________
Gruß
M-K-D-B


==========================================================
offline vom 22.12.2018 bis 01.01.2019
==========================================================

Das Trojaner-Board unterstützen

Antwort

Themen zu Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung
blockiert, browser, chrome stürzt ab, datei, defender, dll, einstellungen, entfernen, fehler, fehlermeldung, forum, gelöscht, google, home, log, malwarebytes, namen, neu, problem, probleme, programm, schutz, sekunden, suche, taskleiste, windows, windows defender plötzlich inaktiv



Ähnliche Themen: Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung


  1. Windows 8.1 - 3 Tabs öffnen beim start von Chrome
    Log-Analyse und Auswertung - 21.12.2016 (8)
  2. WIN10 Pro Version 1607 Fehlermeldung beim Ausschalten
    Alles rund um Windows - 26.09.2016 (2)
  3. Gadgetbox Search öffnet sich immer mit im tab beim start von Google Chrome
    Plagegeister aller Art und deren Bekämpfung - 04.06.2016 (24)
  4. Microsoft Edge: Beim ersten Start immer andere Startseite
    Plagegeister aller Art und deren Bekämpfung - 21.03.2016 (23)
  5. Google chrome stürtzt ab und Fehlermeldung beim Start "SecurityUtility.dll"
    Log-Analyse und Auswertung - 11.12.2015 (14)
  6. Google chrome stürtzt ab und Fehlermeldung beim Start "SecurityUtility.dll"
    Log-Analyse und Auswertung - 26.08.2015 (1)
  7. Google chrome stürtzt ab und Fehlermeldung beim Start "SecurityUtility.dll"
    Alles rund um Windows - 25.08.2015 (1)
  8. Fehlermeldung beim Start: Server ist ausgelastet / WINDOWS 7 64 bit
    Plagegeister aller Art und deren Bekämpfung - 07.05.2015 (23)
  9. Win 7: RegSvr32 Fehlermeldung beim Start und blockiertes Avira Programm
    Log-Analyse und Auswertung - 03.01.2015 (11)
  10. Trend Micro Titanium Internet Security dauerhaft deaktiviert-Start nicht möglich
    Log-Analyse und Auswertung - 25.04.2014 (9)
  11. Windows 7 Google Chrome Adware (fun2save) installiert sich immer wieder selbst
    Log-Analyse und Auswertung - 08.01.2014 (9)
  12. Windows XP Nach Installation von HP Player immer zwei Startseiten beim Öffnen von Google chrome "start.iminent.com" und "Search gol"
    Log-Analyse und Auswertung - 08.10.2013 (5)
  13. Sicherheitscenter ist beim Start des Computers immer deaktiviert Windows 7
    Log-Analyse und Auswertung - 01.10.2013 (5)
  14. Windows XP Updates nicht mehr möglich /Windows Firewall ist immer beim Start deaktiviert
    Antiviren-, Firewall- und andere Schutzprogramme - 26.05.2013 (82)
  15. Windows Fehlermeldung beim Start
    Plagegeister aller Art und deren Bekämpfung - 28.03.2013 (19)
  16. Firewall beim Start IMMER deaktiviert
    Plagegeister aller Art und deren Bekämpfung - 12.11.2009 (35)
  17. Fehlermeldung beim Start von Windows
    Log-Analyse und Auswertung - 13.10.2005 (6)

Zum Thema Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung - Erstmal Guten Tag, Ich habe vor ein paar Tagen ein anscheint verseuchtes Programm installiert, was inzwischen wieder gelöscht ist anscheint aber noch irgendwas da ist was nicht da sein sollte. - Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung...
Archiv
Du betrachtest: Win10 Pro: Programm installiert, danach Chrome Probleme, Windows Defender dauerhaft deaktiviert und beim PC start immer andere Fehlermeldung auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.