| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Win 10: Bildschirmtastatur zeigt aktivität ohne Eingabe, Lautstärke an/aus, Browser Fenster öffnen sich, Virus?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
18.05.2017, 20:53
| #1 |
| |  Win 10: Bildschirmtastatur zeigt aktivität ohne Eingabe, Lautstärke an/aus, Browser Fenster öffnen sich, Virus? Hallo zusammen, ich habe im laufe meiner Zeit schon den ein oder anderen Virus erfolgreich bekämpft und würde mich selber als vom "Fach" bezeichnen, aber diesmal bin ich mit meiner Erfahrung am Ende. Folgende Symptome plagen mich seit einigen Monaten. In unregelmäßigen Abständen, teilweise vergehen Tage und Wochen, oder aber in kürzesten Abständen 1. Öffnen sich Browser Fenster von allein mit der Startseite und dem Standardbrowser 2. Zeitgleich werden die Lautsprecher aus gemacht 3. Der Standard Mediaplayer (Groove Musik) öffnet sich 4. und zeitgleich öffnet sich das Standard- Email Programm Das wiederholt sich wie gesagt in kürzesten Intervallen oder längeren. Außerdem werden Tastatureingaben verfälscht, weil permanent strg gedrückt wird. Wenn ich also etwa w eingebe wird daraus str + w und das schließt mein Fenster. Ich konnte dies überprüfen, indem ich die Bildschirmtastatur aktiviert hatte und meine Funktastatur von Logitech (K800), samt Funkempfänger getrennt habe. Ich sah dann das strg gedrückt wurde, obwohl keine Eingabe von mir erfolgte  .esweiteren werden auch permanet Zeichenketten abgespielt, also so etwas: ^^^^^^^^^^^^^^^^ ....., beobachtet in der Eingabeaufforderung. Das ganze passiert trotz getrennter Internetverbindung und schließt eigentlich einen Trojaner aus. Das Betriebssystem ist Win 10 mit allen aktuellen eingespielten Updates. Ich habe eine längere Zeit auf einen seperaten Anti Viren Scanner verzichtet und nutze den von Microsoft, weil der PC als HTPC dient und ich damit überwiegend Medien konsumiere (BluRay) und Spiele spiele. Es ist also keine Produktivumgebung  .Ich habe bereits mit HijackThis, Avast, Search and Destroy und Ad Aware scans gemacht und mein System untersucht, leider ohne Erfolg. Ich poste euch in den Folgeeinträgen die mit dem Tool FRST erstellten Logs und hoffe Ihr könnt mir weiterhelfen: Gruß Michael  P.s. Es wurden bei mir Funk- Rauchmelder vor Monaten installiert, sowie seit kurzem Funk-Verteilerschlüssel für die Heizung. Da der Funkempfänger für meine Tastatur aber getrennt war, und das Problem trotzdem auftritt schließe ich einen Zusammenhang vorerst aus. Ich habe zusätzlich auch eine Funkfernbedienung für die Imon Steuerung (Infrarot) ausgeschaltet, schließe aber einen mögliches Treiberproblem nicht komplett aus. FRST Log FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 14-05-2017
durchgeführt von Hier steht mein Klarname (Administrator) auf DESKTOP-GK5LQJP (18-05-2017 19:07:13)
Gestartet von C:\Users\Hier steht mein Klarname\Downloads
Geladene Profile: Hier steht mein Klarname (Verfügbare Profile: Hier steht mein Klarname)
Platform: Windows 10 Pro Version 1703 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
() C:\Program Files (x86)\Fatal1ty Utility\F-Stream Tuning\Bin\IOMonitorSrv.exe
() C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
(Team MediaPortal) C:\Program Files (x86)\Team MediaPortal\MP2-Server\MP2-Server.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Program Files (x86)\ASRock Utility\APP Shop\AsrAPPShop.exe
() C:\Program Files (x86)\Fatal1ty Utility\F-Stream Tuning\Bin\AsrSP.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(ASRock Incorporation) C:\Program Files (x86)\Fatal1ty Utility\F-Stream Tuning\Bin\FSTU.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(ASRock Incorporation) C:\Program Files (x86)\Fatal1ty Utility\F-Stream Tuning\Bin\AsrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(ASRock) C:\Program Files\ASRock Utility\XFast RAM\asrRd.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Team MediaPortal) C:\Program Files (x86)\Team MediaPortal\MP2-Client\Tools\MP2-ClientLauncher\MP2-ClientLauncher.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Team MediaPortal) C:\Program Files (x86)\Team MediaPortal\MP2-ServiceMonitor\MP2-ServiceMonitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Corporation) C:\Windows\System32\osk.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe
(GOG.com) C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GOG Galaxy Notifications Renderer.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe
(SoundGraph, Inc.) C:\Program Files (x86)\SoundGraph\iMON\iMON.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\CTxfispi.exe
(SoundGraph, Inc.) C:\Program Files (x86)\SoundGraph\iMON\system\SG_ShellMon64.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17032.10331.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser_crashreporter.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
(Avast Software) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3113592 2015-08-26] (Logitech, Inc.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15033976 2015-11-20] (Logitech Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-27] (Intel Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [303928 2017-05-09] (Apple Inc.)
HKLM\...\Run: [ISCT Tray] => C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [5860656 2014-08-25] (Intel Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [28734456 2017-05-16] (Dropbox, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67896 2017-05-09] (Apple Inc.)
HKLM-x32\...\Run: [PowerDVD14Agent] => C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [803880 2016-10-03] (CyberLink Corp.)
HKLM-x32\...\Run: [iMON] => C:\Program Files (x86)\SoundGraph\iMON\iMON.exe [3833856 2011-12-02] (SoundGraph, Inc.)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [221216 2015-11-18] (Geek Software GmbH)
HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe [241789 2010-02-18] (Creative Technology Ltd)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [1223168 2016-12-09] (Cisco Systems, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\Run: [MP2 ClientLauncher] => C:\Program Files (x86)\Team MediaPortal\MP2-Client\Tools\MP2-ClientLauncher\MP2-ClientLauncher.exe [343552 2015-09-07] (Team MediaPortal)
HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\Run: [MP2 ServiceMonitor] => C:\Program Files (x86)\Team MediaPortal\MP2-ServiceMonitor\MP2-ServiceMonitor.exe [1594880 2015-09-07] (Team MediaPortal)
HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [4952128 2017-05-18] (GOG.com)
HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\Run: [EADM] => C:\Users\Hier steht mein Klarname\Origin\Origin.exe [3044848 2017-01-12] (Electronic Arts)
HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\Run: [WallpaperEngine] => F:\SteamLibrary\steamapps\common\wallpaper_engine\wallpaper32.exe [735232 2017-04-27] ()
HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [804352 2017-03-18] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.16.0.dll [2017-05-16] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2017-04-13]
ShortcutTarget: Killer Network Manager.lnk -> C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Rivet Networks)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{364c132d-bfbc-4ce0-abd9-a3794a45386f}: [DhcpNameServer] 192.168.178.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-05-06] (Oracle Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-06] (Oracle Corporation)
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://files.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
FireFox:
========
FF DefaultProfile: ssm9sfc1.default
FF ProfilePath: C:\Users\Hier steht mein Klarname\AppData\Roaming\Mozilla\Firefox\Profiles\ssm9sfc1.default [2017-05-18]
FF NetworkProxy: Mozilla\Firefox\Profiles\ssm9sfc1.default -> type", 4
FF Extension: (Firebug) - C:\Users\Hier steht mein Klarname\AppData\Roaming\Mozilla\Firefox\Profiles\ssm9sfc1.default\Extensions\firebug@software.joehewitt.com.xpi [2017-03-01]
FF Extension: (Adblock Plus) - C:\Users\Hier steht mein Klarname\AppData\Roaming\Mozilla\Firefox\Profiles\ssm9sfc1.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-23]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2015-11-28] [ist nicht signiert]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-04-07] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-04-07] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-04-07] (VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-06] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-06] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-05-01] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-05-01] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-18] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Hier steht mein Klarname\AppData\Local\Google\Chrome\User Data\Default [2017-05-18]
CHR Extension: (Google Präsentationen) - C:\Users\Hier steht mein Klarname\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-21]
CHR Extension: (Google Docs) - C:\Users\Hier steht mein Klarname\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-21]
CHR Extension: (Google Drive) - C:\Users\Hier steht mein Klarname\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-21]
CHR Extension: (YouTube) - C:\Users\Hier steht mein Klarname\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-21]
CHR Extension: (Google-Suche) - C:\Users\Hier steht mein Klarname\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-21]
CHR Extension: (Adobe Acrobat) - C:\Users\Hier steht mein Klarname\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-05-18]
CHR Extension: (Google Tabellen) - C:\Users\Hier steht mein Klarname\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-21]
CHR Extension: (Google Docs Offline) - C:\Users\Hier steht mein Klarname\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-10-04]
CHR Extension: (Flash® Player for YouTube™) - C:\Users\Hier steht mein Klarname\AppData\Local\Google\Chrome\User Data\Default\Extensions\lajdkhdcndkniopfefocbgbkofflagpm [2017-01-08]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Hier steht mein Klarname\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-31]
CHR Extension: (Google Mail) - C:\Users\Hier steht mein Klarname\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-21]
CHR Extension: (Chrome Media Router) - C:\Users\Hier steht mein Klarname\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-18]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-04-03] (Apple Inc.)
R2 ASRockIOMon; C:\Program Files (x86)\Fatal1ty Utility\F-Stream Tuning\Bin\IOMonitorSrv.exe [463112 2014-07-31] ()
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1522184 2017-05-02] ()
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2016-12-08] (Creative Labs) [Datei ist nicht signiert]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [429056 2013-10-28] (Creative Technology Ltd) [Datei ist nicht signiert]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-06] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [48944 2017-05-16] (Dropbox, Inc.)
R2 DokanMounter; C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe [11776 2012-05-19] () [Datei ist nicht signiert]
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [383016 2017-05-05] (EasyAntiCheat Ltd)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [512576 2017-05-18] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7955008 2017-05-18] (GOG.com)
S3 HnGSteamService; F:\SteamLibrary\steamapps\common\Heroes & Generals\hngservice.exe [777512 2017-05-03] (Reto-Moto ApS)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-07-27] (Intel Corporation)
R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [451072 2015-11-24] (Rivet Networks) [Datei ist nicht signiert]
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193144 2015-11-20] (Logitech Inc.)
S4 lxcg_device; C:\Windows\system32\lxcgcoms.exe [451584 2005-07-25] ( )
S4 lxcg_device; C:\Windows\SysWOW64\lxcgcoms.exe [537520 2007-04-29] ( )
R2 MP2-Server; C:\Program Files (x86)\Team MediaPortal\MP2-Server\MP2-Server.exe [334848 2015-09-07] (Team MediaPortal) [Datei ist nicht signiert]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [492664 2017-04-26] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [492664 2017-04-26] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-01] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425592 2017-04-26] (NVIDIA Corporation)
S4 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2016-05-25] ()
S4 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [107832 2016-05-25] ()
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4088608 2016-09-21] (Safer-Networking Ltd.) [Datei ist nicht signiert]
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [235984 2016-11-24] (Safer-Networking Ltd.) [Datei ist nicht signiert]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-03-20] (Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10883824 2017-03-17] (TeamViewer GmbH)
S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [56040 2015-11-19] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 ArdDrv; C:\WINDOWS\SysWOW64\Drivers\ArdDrv.sys [21288 2017-05-18] (RW-Everything)
R3 AsrAutoChkUpdDrv; C:\WINDOWS\SysWOW64\Drivers\AsrAutoChkUpdDrv.sys [22280 2017-05-18] (ASRock Incorporation)
R3 AsrDrv101; C:\Windows\SysWOW64\Drivers\AsrDrv101.sys [22280 2015-11-27] (ASRock Incorporation)
S3 AsrHidFilter; C:\WINDOWS\system32\DRIVERS\AsrHidFilter.sys [20232 2014-06-30] (ASRock Inc.)
R0 AsrRamDisk; C:\WINDOWS\System32\drivers\AsrRamDisk.sys [40200 2013-08-02] (ASRock Inc.)
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [314016 2016-04-02] ()
R1 BfLwf; C:\WINDOWS\system32\DRIVERS\bwcW10x64.sys [146504 2015-11-20] (Rivet Networks, LLC.)
R3 BST88SRV; C:\WINDOWS\system32\drivers\bst88e.sys [485120 2015-06-11] (Bestunar Inc.)
R2 Dokan; C:\Windows\system32\drivers\dokan.sys [106888 2012-05-19] (Windows (R) Win 7 DDK provider)
R3 ikbevent; C:\WINDOWS\system32\DRIVERS\ikbevent.sys [22216 2014-05-27] ()
R3 imsevent; C:\WINDOWS\system32\DRIVERS\imsevent.sys [22728 2014-05-27] ()
R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD.sys [44744 2014-05-27] ()
R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2017-03-18] (Qualcomm Atheros, Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [68384 2015-06-11] (Logitech Inc.)
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [43680 2016-04-02] ()
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2017-04-13] (Malwarebytes)
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2015-08-21] (Riverbed Technology, Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a2b0acab06663645\nvlddmkm.sys [14456944 2017-05-02] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-04-26] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [47736 2017-04-26] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [59448 2017-05-02] (NVIDIA Corporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [220672 2017-03-18] (Microsoft Corporation)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva64-6.sys [52592 2016-12-09] (Cisco Systems, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
S3 WsAudioDevice_383; C:\WINDOWS\system32\drivers\VirtualAudio.sys [31080 2016-02-29] (Wondershare)
R2 {C5F942FD-1110-4664-86CE-0C6BDA305235}; C:\Program Files (x86)\CyberLink\PowerDVD14\Common\NavFilter\000.fcl [29896 2016-10-06] (CyberLink Corp.)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-18 19:45 - 2017-05-18 19:45 - 23681024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 21353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 20505600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 20374424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 19335168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 12787200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 11870208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 08320920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 08244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 07931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 06759512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 06292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 05776384 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 05557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 04848440 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 04730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 04544000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 04469832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 04446208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 04396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 03672064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-05-18 19:45 - 2017-05-18 19:45 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 03655680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 03116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 02969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 02957824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-05-18 19:45 - 2017-05-18 19:45 - 02859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 02651648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 02635336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 02499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 02444192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-05-18 19:45 - 2017-05-18 19:45 - 02443776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 02435584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 02399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 02330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 02298880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 02259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 02158544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 02102272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 02085280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 02077184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-05-18 19:45 - 2017-05-18 19:45 - 02056192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-05-18 19:45 - 2017-05-18 19:45 - 02008576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-05-18 19:45 - 2017-05-18 19:45 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01854880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01852776 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01803264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01628160 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01611776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01604312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01600512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01557288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01452960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01433600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01411128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01325456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01320352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01295872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01285120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 01257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01242624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 01103872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01075712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01051648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 01024416 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaserver.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 00970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 00872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00775824 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 00750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00741784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaserver.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 00722944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-05-18 19:45 - 2017-05-18 19:45 - 00716440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00712600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-05-18 19:45 - 2017-05-18 19:45 - 00708712 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00707072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00673112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00667040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00651680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00626520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00605936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00599576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00559000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-05-18 19:45 - 2017-05-18 19:45 - 00543640 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00523296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-05-18 19:45 - 2017-05-18 19:45 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-05-18 19:45 - 2017-05-18 19:45 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00409504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-05-18 19:45 - 2017-05-18 19:45 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00388000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-05-18 19:45 - 2017-05-18 19:45 - 00387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00362496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00207264 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00142240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2017-05-18 19:45 - 2017-05-18 19:45 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2017-05-18 19:45 - 2017-05-18 19:45 - 00105456 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00095584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2017-05-18 19:45 - 2017-05-18 19:45 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2017-05-18 19:45 - 2017-05-18 19:45 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-05-18 19:45 - 2017-05-18 19:45 - 00032004 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-05-18 19:45 - 2017-05-18 19:45 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00027040 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2017-05-18 19:45 - 2017-05-18 19:45 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-05-18 19:45 - 2017-05-18 19:45 - 00000000 ____D C:\Windows.old
2017-05-18 19:44 - 2017-03-17 23:48 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DxToolsReportGenerator.dll
2017-05-18 19:44 - 2017-03-17 23:08 - 17777152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCaptureReplay.dll
2017-05-18 19:44 - 2017-03-17 23:05 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DxToolsReportGenerator.dll
2017-05-18 19:44 - 2017-03-17 23:02 - 00393216 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2017-05-18 19:44 - 2017-03-17 22:59 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsProxyStub.dll
2017-05-18 19:44 - 2017-03-17 22:59 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARP12Debug.dll
2017-05-18 19:44 - 2017-03-17 22:57 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARPDebug.dll
2017-05-18 19:44 - 2017-03-17 22:53 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXGIDebug.dll
2017-05-18 19:44 - 2017-03-17 22:52 - 04897280 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe
2017-05-18 19:44 - 2017-03-17 22:49 - 01309184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11_3SDKLayers.dll
2017-05-18 19:44 - 2017-03-17 22:49 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1debug3.dll
2017-05-18 19:44 - 2017-03-17 22:48 - 13785600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCaptureReplay.dll
2017-05-18 19:44 - 2017-03-17 22:47 - 06806016 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12warp.dll
2017-05-18 19:44 - 2017-03-17 22:46 - 00370176 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2017-05-18 19:44 - 2017-03-17 22:44 - 01977344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll
2017-05-18 19:44 - 2017-03-17 22:44 - 01174528 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCap.exe
2017-05-18 19:44 - 2017-03-17 22:44 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsExperiment.dll
2017-05-18 19:44 - 2017-03-17 22:44 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsCapture.dll
2017-05-18 19:44 - 2017-03-17 22:43 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsMonitor.dll
2017-05-18 19:44 - 2017-03-17 22:43 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsReporting.dll
2017-05-18 19:44 - 2017-03-17 22:43 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARP12Debug.dll
2017-05-18 19:44 - 2017-03-17 22:43 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsProxyStub.dll
2017-05-18 19:44 - 2017-03-17 22:41 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARPDebug.dll
2017-05-18 19:44 - 2017-03-17 22:39 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXGIDebug.dll
2017-05-18 19:44 - 2017-03-17 22:38 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf_gputiming.dll
2017-05-18 19:44 - 2017-03-17 22:35 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11_3SDKLayers.dll
2017-05-18 19:44 - 2017-03-17 22:35 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1debug3.dll
2017-05-18 19:44 - 2017-03-17 22:33 - 05141504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12warp.dll
2017-05-18 19:44 - 2017-03-17 22:33 - 03648000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsRemoteEngine.exe
2017-05-18 19:44 - 2017-03-17 22:30 - 01480704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsOfflineAnalysis.dll
2017-05-18 19:44 - 2017-03-17 22:30 - 00926208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCap.exe
2017-05-18 19:44 - 2017-03-17 22:30 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsExperiment.dll
2017-05-18 19:44 - 2017-03-17 22:30 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsCapture.dll
2017-05-18 19:44 - 2017-03-17 22:29 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsMonitor.dll
2017-05-18 19:44 - 2017-03-17 22:29 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsReporting.dll
2017-05-18 19:44 - 2017-03-17 22:25 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf_gputiming.dll
2017-05-18 19:43 - 2017-05-18 19:43 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-05-18 19:43 - 2017-05-18 19:43 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2017-05-18 19:43 - 2017-05-18 19:43 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-05-18 19:43 - 2017-05-18 19:43 - 00000000 ____D C:\Program Files\MSBuild
2017-05-18 19:43 - 2017-05-18 19:43 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-05-18 19:43 - 2017-05-18 18:50 - 00000000 ____D C:\Program Files (x86)\MSBuild
2017-05-18 19:43 - 2017-05-18 18:47 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2017-05-18 19:43 - 2017-02-10 12:26 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-05-18 19:43 - 2017-02-10 12:26 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-05-18 19:43 - 2017-02-10 12:26 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-05-18 19:43 - 2017-02-10 12:21 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-05-18 19:43 - 2017-02-10 12:21 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-05-18 19:43 - 2017-02-10 12:21 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-05-18 19:07 - 2017-05-18 19:07 - 00030424 _____ C:\Users\Hier steht mein Klarname\Downloads\FRST.txt
2017-05-18 19:06 - 2017-05-18 19:06 - 02429952 _____ (Farbar) C:\Users\Hier steht mein Klarname\Downloads\FRST64.exe
2017-05-18 19:05 - 2017-05-18 19:05 - 00000000 ____D C:\ProgramData\USOShared
2017-05-18 19:02 - 2017-05-18 19:02 - 00000000 ___HD C:\OneDriveTemp
2017-05-18 19:02 - 2017-05-18 19:02 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Local\DBG
2017-05-18 19:01 - 2017-05-18 19:01 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-05-18 19:00 - 2017-05-18 19:00 - 00000020 ___SH C:\Users\Hier steht mein Klarname\ntuser.ini
2017-05-18 18:57 - 2017-05-18 19:02 - 00003310 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-05-18 18:57 - 2017-05-18 19:00 - 00003162 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner
2017-05-18 18:57 - 2017-05-18 19:00 - 00003120 _____ C:\WINDOWS\System32\Tasks\AsrKM
2017-05-18 18:57 - 2017-05-18 19:00 - 00003072 _____ C:\WINDOWS\System32\Tasks\AsrSP.EXE
2017-05-18 18:57 - 2017-05-18 19:00 - 00003058 _____ C:\WINDOWS\System32\Tasks\AsrAPPShop
2017-05-18 18:57 - 2017-05-18 18:58 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2017-05-18 18:57 - 2017-05-18 18:58 - 00007623 _____ C:\WINDOWS\diagerr.xml
2017-05-18 18:57 - 2017-05-18 18:57 - 00003778 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2017-05-18 18:57 - 2017-05-18 18:57 - 00003556 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-05-18 18:57 - 2017-05-18 18:57 - 00003554 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2017-05-18 18:57 - 2017-05-18 18:57 - 00003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-05-18 18:57 - 2017-05-18 18:57 - 00003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-18 18:57 - 2017-05-18 18:57 - 00003392 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1492100703
2017-05-18 18:57 - 2017-05-18 18:57 - 00003332 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-05-18 18:57 - 2017-05-18 18:57 - 00002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-18 18:57 - 2017-05-18 18:57 - 00002968 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-18 18:57 - 2017-05-18 18:57 - 00002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-18 18:57 - 2017-05-18 18:57 - 00002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-18 18:57 - 2017-05-18 18:57 - 00002786 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-18 18:57 - 2017-05-18 18:57 - 00002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-05-18 18:57 - 2017-05-18 18:57 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-05-18 18:57 - 2017-05-18 18:57 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple
2017-05-18 18:55 - 2017-05-18 18:55 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-05-18 18:50 - 2017-03-18 22:56 - 02233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-05-18 18:49 - 2017-05-18 19:01 - 00000000 ____D C:\Users\Hier steht mein Klarname
2017-05-18 18:49 - 2017-05-18 18:55 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-05-18 18:49 - 2017-05-18 18:49 - 00000000 _SHDL C:\Users\Hier steht mein Klarname\Vorlagen
2017-05-18 18:49 - 2017-05-18 18:49 - 00000000 _SHDL C:\Users\Hier steht mein Klarname\Startmenü
2017-05-18 18:49 - 2017-05-18 18:49 - 00000000 _SHDL C:\Users\Hier steht mein Klarname\Netzwerkumgebung
2017-05-18 18:49 - 2017-05-18 18:49 - 00000000 _SHDL C:\Users\Hier steht mein Klarname\Lokale Einstellungen
2017-05-18 18:49 - 2017-05-18 18:49 - 00000000 _SHDL C:\Users\Hier steht mein Klarname\Eigene Dateien
2017-05-18 18:49 - 2017-05-18 18:49 - 00000000 _SHDL C:\Users\Hier steht mein Klarname\Druckumgebung
2017-05-18 18:49 - 2017-05-18 18:49 - 00000000 _SHDL C:\Users\Hier steht mein Klarname\Documents\Eigene Videos
2017-05-18 18:49 - 2017-05-18 18:49 - 00000000 _SHDL C:\Users\Hier steht mein Klarname\Documents\Eigene Musik
2017-05-18 18:49 - 2017-05-18 18:49 - 00000000 _SHDL C:\Users\Hier steht mein Klarname\Documents\Eigene Bilder
2017-05-18 18:49 - 2017-05-18 18:49 - 00000000 _SHDL C:\Users\Hier steht mein Klarname\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-05-18 18:49 - 2017-05-18 18:49 - 00000000 _SHDL C:\Users\Hier steht mein Klarname\AppData\Local\Verlauf
2017-05-18 18:49 - 2017-05-18 18:49 - 00000000 _SHDL C:\Users\Hier steht mein Klarname\AppData\Local\Anwendungsdaten
2017-05-18 18:49 - 2017-05-18 18:49 - 00000000 _SHDL C:\Users\Hier steht mein Klarname\Anwendungsdaten
2017-05-18 18:48 - 2017-05-18 19:04 - 00062308 _____ C:\WINDOWS\system32\BMXStateBkp-{00000006-00000000-00000000-00001102-0000000B-00431102}.rfx
2017-05-18 18:48 - 2017-05-18 19:04 - 00062308 _____ C:\WINDOWS\system32\BMXState-{00000006-00000000-00000000-00001102-0000000B-00431102}.rfx
2017-05-18 18:48 - 2017-05-18 19:04 - 00000820 _____ C:\WINDOWS\system32\DVCState-{00000006-00000000-00000000-00001102-0000000B-00431102}.rfx
2017-05-18 18:48 - 2017-05-18 19:02 - 02028744 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-05-18 18:48 - 2017-05-18 19:01 - 00000000 ____D C:\ProgramData\NVIDIA
2017-05-18 18:48 - 2017-05-18 18:51 - 00000000 ____D C:\WINDOWS\SysWOW64\data
2017-05-18 18:48 - 2017-05-18 18:51 - 00000000 ____D C:\WINDOWS\system32\data
2017-05-18 18:48 - 2017-05-18 18:50 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-05-18 18:48 - 2017-05-18 18:50 - 00000000 ____D C:\ProgramData\Creative
2017-05-18 18:48 - 2017-05-18 18:50 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-05-18 18:48 - 2017-05-18 18:50 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-05-18 18:48 - 2017-05-18 18:48 - 01931144 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2017-05-18 18:48 - 2017-05-18 18:48 - 00466520 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2017-05-18 18:48 - 2017-05-18 18:48 - 00445016 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2017-05-18 18:48 - 2017-05-18 18:48 - 00123480 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2017-05-18 18:48 - 2017-05-18 18:48 - 00109144 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2017-05-18 18:48 - 2017-05-18 18:48 - 00000159 ___RH C:\WINDOWS\ctfile.rfc
2017-05-18 18:48 - 2017-05-18 18:48 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2017-05-18 18:48 - 2017-05-18 18:48 - 00000000 ____D C:\Program Files (x86)\OpenAL
2017-05-18 18:48 - 2017-05-01 22:52 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-05-18 18:48 - 2017-05-01 22:51 - 06437312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-05-18 18:48 - 2017-05-01 22:51 - 02479552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-05-18 18:48 - 2017-05-01 22:51 - 01762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-05-18 18:48 - 2017-05-01 22:51 - 00548800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-05-18 18:48 - 2017-05-01 22:51 - 00392312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-05-18 18:48 - 2017-05-01 22:51 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-05-18 18:48 - 2017-05-01 22:51 - 00069752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-05-18 18:48 - 2017-04-25 23:11 - 07944687 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-05-18 18:48 - 2009-06-29 10:56 - 00212992 _____ C:\WINDOWS\system32\APOMgr64.DLL
2017-05-18 18:48 - 2009-06-29 10:54 - 00164864 _____ C:\WINDOWS\SysWOW64\APOMngr.DLL
2017-05-18 18:48 - 2009-02-17 17:33 - 00113152 _____ (Creative Technology Ltd) C:\WINDOWS\system32\cttele64.dll
2017-05-18 18:48 - 2009-02-17 17:33 - 00106496 _____ (Creative Technology Ltd) C:\WINDOWS\SysWOW64\cttele32.dll
2017-05-18 18:48 - 2009-02-06 18:53 - 00089088 _____ C:\WINDOWS\system32\CmdRtr64.DLL
2017-05-18 18:48 - 2009-02-06 18:52 - 00073728 _____ C:\WINDOWS\SysWOW64\CmdRtr.DLL
2017-05-18 18:47 - 2017-05-18 18:55 - 00217120 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-05-18 18:47 - 2017-05-18 18:48 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-05-18 18:32 - 2017-05-18 18:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-05-18 18:25 - 2017-05-18 19:00 - 00000000 ___DC C:\WINDOWS\Panther
2017-05-18 18:25 - 2017-05-18 18:31 - 00000000 ___HD C:\$WINDOWS.~BT
2017-05-18 18:24 - 2017-05-18 18:25 - 00000036 _____ C:\WINDOWS\progress.ini
2017-05-18 18:15 - 2017-05-18 19:00 - 00000000 ___HD C:\$GetCurrent
2017-05-18 18:14 - 2017-05-18 19:00 - 00000000 ____D C:\Windows10Upgrade
2017-05-18 18:14 - 2017-05-18 18:14 - 06385872 _____ (Microsoft Corporation) C:\Users\Hier steht mein Klarname\Downloads\Windows10Upgrade28085.exe
2017-05-18 18:14 - 2017-05-18 18:14 - 06385872 _____ (Microsoft Corporation) C:\Users\Hier steht mein Klarname\Downloads\Windows10Upgrade28085 (1).exe
2017-05-18 18:14 - 2017-05-18 18:14 - 00000731 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 10-Upgrade-Assistent.lnk
2017-05-18 18:14 - 2017-05-18 18:14 - 00000719 _____ C:\Users\Hier steht mein Klarname\Desktop\Windows 10-Upgrade-Assistent.lnk
2017-05-18 17:57 - 2017-05-18 18:57 - 00002264 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-05-18 17:57 - 2017-05-18 18:57 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-05-18 17:56 - 2017-05-18 17:57 - 01130328 _____ (Google Inc.) C:\Users\Hier steht mein Klarname\Downloads\ChromeSetup.exe
2017-05-18 17:52 - 2017-05-18 18:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2017-05-18 17:52 - 2017-05-18 17:52 - 00001822 _____ C:\Users\Public\Desktop\iTunes.lnk
2017-05-18 17:52 - 2017-05-18 17:52 - 00000000 ____D C:\Program Files\iTunes
2017-05-18 17:52 - 2017-05-18 17:52 - 00000000 ____D C:\Program Files\iPod
2017-05-18 17:52 - 2017-05-18 17:52 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2017-05-16 23:01 - 2017-05-16 23:01 - 00048944 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-05-14 20:20 - 2017-05-14 20:20 - 00001349 _____ C:\Users\Hier steht mein Klarname\Desktop\ApacheJMeter - Verknüpfung.lnk
2017-05-13 19:35 - 2017-05-13 19:35 - 00000000 ____D C:\ProgramData\.mono
2017-05-13 19:26 - 2017-05-13 19:26 - 00000202 _____ C:\Users\Hier steht mein Klarname\Desktop\Dungeons 2.url
2017-05-13 00:07 - 2017-05-13 00:07 - 00000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
2017-05-13 00:07 - 2017-05-13 00:07 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy
2017-05-10 21:05 - 2017-03-04 08:26 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2017-05-06 13:00 - 2017-05-18 18:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-05-06 13:00 - 2017-05-06 13:00 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-05-06 12:59 - 2017-05-06 12:59 - 00738368 _____ (Oracle Corporation) C:\Users\Hier steht mein Klarname\Downloads\JavaSetup8u131.exe
2017-05-06 12:59 - 2017-05-06 12:59 - 00000000 ____D C:\Program Files (x86)\Java
2017-05-06 10:52 - 2017-05-06 10:52 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-05-06 10:52 - 2017-05-06 10:52 - 00002124 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2017-05-06 10:52 - 2017-05-06 10:52 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-05-06 10:50 - 2017-05-06 10:50 - 01109640 _____ C:\Users\Hier steht mein Klarname\Downloads\SCC2016-CIDE-Short-CMR.pdf
2017-05-05 17:06 - 2017-05-05 17:06 - 00867718 _____ C:\TDSSKiller.3.1.0.15_05.05.2017_17.06.04_log.txt
2017-05-05 17:04 - 2017-05-05 17:05 - 00010554 _____ C:\TDSSKiller.3.1.0.15_05.05.2017_17.04.51_log.txt
2017-05-05 16:28 - 2017-05-05 16:29 - 00117314 _____ C:\TDSSKiller.3.1.0.15_05.05.2017_16.28.12_log.txt
2017-05-05 16:28 - 2017-05-05 16:28 - 04922400 _____ (AO Kaspersky Lab) C:\Users\Hier steht mein Klarname\Downloads\tdsskiller.exe
2017-05-05 01:17 - 2017-05-05 01:17 - 00000234 _____ C:\Users\Hier steht mein Klarname\Desktop\Tom Clancy's Ghost Recon® Wildlands.url
2017-05-04 18:48 - 2017-05-04 18:48 - 00000000 ____D C:\Users\Hier steht mein Klarname\ansel
2017-05-04 18:30 - 2017-05-18 18:55 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2017-05-04 18:30 - 2017-05-18 18:55 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2017-05-04 18:30 - 2017-05-06 14:33 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2017-05-04 18:30 - 2017-05-04 18:30 - 00001159 _____ C:\Users\Hier steht mein Klarname\Desktop\MSI Afterburner.lnk
2017-05-04 18:30 - 2017-05-04 18:30 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2017-05-04 18:29 - 2017-05-04 18:29 - 00000000 ____D C:\Users\Hier steht mein Klarname\Downloads\4.3.0
2017-05-04 18:05 - 2017-05-04 18:05 - 00000000 ____D C:\Users\Hier steht mein Klarname\Downloads\SmartConnect(v5.0.10.2907_64bit)
2017-05-04 18:04 - 2017-05-04 18:04 - 22032717 _____ C:\Users\Hier steht mein Klarname\Downloads\ME(v11.0.0.1158_MEI).zip
2017-05-04 18:04 - 2017-05-04 18:04 - 11692328 _____ C:\Users\Hier steht mein Klarname\Downloads\SmartConnect(v5.0.10.2907_64bit).zip
2017-05-04 18:02 - 2017-05-04 18:02 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Roaming\NVIDIA
2017-05-04 17:59 - 2017-05-01 22:14 - 00134592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-05-04 17:59 - 2017-03-10 23:17 - 00536864 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-05-04 17:59 - 2017-03-10 23:17 - 00525600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-05-04 17:59 - 2017-03-10 23:17 - 00254240 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-05-04 17:59 - 2017-03-10 23:17 - 00233760 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-05-04 17:57 - 2017-05-02 00:38 - 40201848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 35388864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 35281528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 28623480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 11056456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 11024384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 10547440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 09245744 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 09014792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 08805232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 04092088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 03792320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 03607464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 03247736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 01988032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438205.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 01600560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 01589696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438205.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 01278528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 01276128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 01054144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 00995736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 00993872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 00991168 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 00960960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 00911992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 00821184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 00776048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 00688968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 00651200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 00618744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 00612088 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 00609912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 00577728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 00499320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 00218040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2017-05-04 17:57 - 2017-05-02 00:38 - 00059448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-05-04 17:57 - 2017-05-02 00:38 - 00046008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2017-05-04 17:57 - 2017-05-02 00:38 - 00045061 _____ C:\WINDOWS\system32\nvinfo.pb
2017-05-04 17:57 - 2017-05-02 00:38 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-05-04 17:57 - 2017-05-02 00:38 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-05-04 17:55 - 2017-05-04 17:55 - 40376862 _____ C:\Users\Hier steht mein Klarname\Downloads\MSIAfterburnerSetup.zip
2017-05-04 17:49 - 2016-11-24 22:53 - 01951680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437609.dll
2017-05-04 17:49 - 2016-11-24 22:53 - 01586744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437609.dll
2017-05-04 17:48 - 2017-05-04 17:48 - 00000000 ____D C:\NVIDIA
2017-05-04 17:47 - 2016-12-05 10:44 - 393960896 _____ (NVIDIA Corporation) C:\Users\Hier steht mein Klarname\Downloads\376.09-desktop-win10-64bit-international-whql.exe
2017-05-04 17:45 - 2017-05-18 18:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-05-04 17:45 - 2017-05-04 18:02 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Local\NVIDIA Corporation
2017-05-04 17:45 - 2017-05-04 17:52 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Local\NVIDIA
2017-05-04 17:45 - 2017-05-04 17:45 - 00001489 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-05-04 17:45 - 2017-04-26 07:37 - 01882232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-05-04 17:45 - 2017-04-26 07:37 - 01755256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-05-04 17:45 - 2017-04-26 07:37 - 01473144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-05-04 17:45 - 2017-04-26 07:37 - 01317496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-05-04 17:45 - 2017-04-26 07:37 - 00121464 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-05-04 17:44 - 2017-05-04 17:46 - 393473175 _____ C:\Users\Hier steht mein Klarname\Downloads\nvidia_376.09_w1064.zip
2017-05-04 17:44 - 2017-04-26 07:37 - 00153720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-05-04 17:44 - 2017-04-26 07:37 - 00127608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-05-04 17:44 - 2017-04-26 07:37 - 00047736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2017-05-04 17:44 - 2017-04-26 07:03 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-05-04 17:42 - 2017-05-04 17:44 - 80175936 _____ (NVIDIA Corporation) C:\Users\Hier steht mein Klarname\Downloads\GeForce_Experience_v3.5.0.76.exe
2017-05-04 10:25 - 2017-05-04 17:05 - 00000000 ____D C:\Users\Hier steht mein Klarname\Downloads\settings
2017-05-04 10:25 - 2017-05-04 17:05 - 00000000 ____D C:\Users\Hier steht mein Klarname\Downloads\DDU Logs
2017-05-04 10:25 - 2017-05-04 10:25 - 01171888 _____ (Igor Pavlov) C:\Users\Hier steht mein Klarname\Downloads\DDU v17.0.6.4.exe
2017-05-04 10:25 - 2017-05-04 10:25 - 00000000 ____D C:\Users\Hier steht mein Klarname\Downloads\x64
2017-05-04 10:25 - 2017-04-28 14:20 - 01497640 _____ C:\Users\Hier steht mein Klarname\Downloads\Display Driver Uninstaller.exe
2017-05-04 10:25 - 2017-04-27 17:21 - 00591360 _____ C:\Users\Hier steht mein Klarname\Downloads\Display Driver Uninstaller.pdb
2017-05-04 10:25 - 2015-09-06 13:26 - 00000224 _____ C:\Users\Hier steht mein Klarname\Downloads\Display Driver Uninstaller.exe.config
2017-05-03 20:46 - 2017-05-03 20:46 - 00000000 ____D C:\Users\Hier steht mein Klarname\Documents\Elder Scrolls Online
2017-05-03 20:46 - 2017-05-03 20:46 - 00000000 ____D C:\ProgramData\Elder Scrolls Online
2017-05-03 20:23 - 2017-05-18 18:55 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Elder Scrolls Online
2017-05-03 20:23 - 2017-05-03 20:23 - 00000000 ___HD C:\Program Files (x86)\Zero G Registry
2017-05-03 20:23 - 2017-05-03 20:23 - 00000000 ____D C:\WINDOWS\jre
2017-05-03 20:22 - 2017-05-03 20:22 - 00000000 ___HD C:\Users\Hier steht mein Klarname\InstallAnywhere
2017-05-02 17:27 - 2017-05-02 17:27 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Local\TslGame
2017-05-02 17:04 - 2017-05-02 17:04 - 00000202 _____ C:\Users\Hier steht mein Klarname\Desktop\PLAYERUNKNOWN'S BATTLEGROUNDS.url
2017-05-01 12:04 - 2017-05-01 12:04 - 00000202 _____ C:\Users\Hier steht mein Klarname\Desktop\Blackwell Epiphany.url
2017-04-28 16:51 - 2017-04-28 16:51 - 00000202 _____ C:\Users\Hier steht mein Klarname\Desktop\Resident Evil Revelations Biohazard Revelations.url
2017-04-28 14:18 - 2017-04-28 14:18 - 00000202 _____ C:\Users\Hier steht mein Klarname\Desktop\Little Nightmares.url
2017-04-28 13:31 - 2017-04-28 13:31 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Local\ESET
2017-04-28 13:28 - 2017-04-28 13:28 - 03136128 _____ (ESET) C:\Users\Hier steht mein Klarname\Downloads\eset_internet_security_live_installer.exe
2017-04-28 11:11 - 2017-04-28 11:11 - 04944232 _____ C:\Users\Hier steht mein Klarname\Downloads\Chmielewski09-performancemessung.pdf
2017-04-28 10:44 - 2017-04-28 10:44 - 00131485 _____ C:\Users\Hier steht mein Klarname\Downloads\Brandes_Testumgebungen.pdf
2017-04-27 22:30 - 2017-05-05 01:35 - 00383016 _____ (EasyAntiCheat Ltd) C:\WINDOWS\SysWOW64\EasyAntiCheat.exe
2017-04-27 19:05 - 2017-04-27 19:09 - 00362304 _____ C:\Users\Hier steht mein Klarname\Downloads\DELL_U2414H-MONITOR_A00-00_DRVR_H7M0G(1).exe
2017-04-27 18:38 - 2017-04-27 18:38 - 00000218 _____ C:\Users\Hier steht mein Klarname\Desktop\Quake Champions.url
2017-04-27 18:34 - 2017-04-27 18:34 - 41320000 _____ (AMD Inc.) C:\Users\Hier steht mein Klarname\Downloads\radeon-crimson-relive-17.4.4-minimalsetup-170426_64bit.exe
2017-04-26 19:21 - 2017-04-26 19:21 - 00029720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2017-04-26 19:21 - 2017-04-26 19:21 - 00029720 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2017-04-25 17:46 - 2017-04-25 17:46 - 00362304 _____ C:\Users\Hier steht mein Klarname\Downloads\DELL_U2414H-MONITOR_A00-00_DRVR_H7M0G.exe
2017-04-25 17:46 - 2017-04-25 17:46 - 00000000 ____D C:\Dell
2017-04-25 17:31 - 2017-04-27 18:35 - 00000060 _____ C:\ProgramData\SoftwareUpdateTemp.xml
2017-04-25 17:30 - 2017-04-25 17:31 - 41305000 _____ (AMD Inc.) C:\Users\Hier steht mein Klarname\Downloads\radeon-crimson-relive-17.4.2-minimalsetup-170411_64bit.exe
2017-04-25 16:57 - 2017-04-25 16:57 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Local\GOG.com
2017-04-23 20:00 - 2017-04-23 20:00 - 00000202 _____ C:\Users\Hier steht mein Klarname\Desktop\Wallpaper Engine.url
2017-04-23 00:04 - 2017-04-23 00:04 - 00000202 _____ C:\Users\Hier steht mein Klarname\Desktop\The Elder Scrolls Online Tamriel Unlimited.url
2017-04-19 20:38 - 2017-04-19 20:38 - 00973359 _____ C:\Users\Hier steht mein Klarname\Downloads\RESTLab-Skalierbarkeit-Oliver-Beren-Kaul-kurz-und-gut.pdf
2017-04-18 18:59 - 2017-04-18 18:59 - 00000000 ____D C:\Users\Hier steht mein Klarname\.cisco
2017-04-18 18:58 - 2017-05-18 18:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco
2017-04-18 18:58 - 2017-04-18 18:58 - 05029824 _____ (Cisco Systems, Inc.) C:\Users\Hier steht mein Klarname\Downloads\anyconnect-win-4.4.00243-core-vpn-webdeploy-k9.exe
2017-04-18 18:58 - 2017-04-18 18:58 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Local\Cisco
2017-04-18 18:58 - 2017-04-18 18:58 - 00000000 ____D C:\ProgramData\Cisco
2017-04-18 18:58 - 2017-04-18 18:58 - 00000000 ____D C:\Program Files (x86)\Cisco
2017-04-18 18:58 - 2016-12-09 17:36 - 00245576 ____R (Cisco Systems, Inc.) C:\WINDOWS\system32\Drivers\acsock64.sys
2017-04-18 18:57 - 2017-04-18 19:03 - 00000000 ____D C:\Users\Hier steht mein Klarname\Desktop\apache-jmeter-3.2
2017-04-18 18:56 - 2017-04-18 18:57 - 53451348 _____ C:\Users\Hier steht mein Klarname\Downloads\apache-jmeter-3.2.zip
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-05-18 19:47 - 2017-03-18 23:03 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-05-18 19:45 - 2017-03-18 23:06 - 00000000 ____D C:\WINDOWS\Setup
2017-05-18 19:45 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-05-18 19:45 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-05-18 19:45 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-05-18 19:45 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-05-18 19:45 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-05-18 19:45 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-05-18 19:45 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Provisioning
2017-05-18 19:45 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-05-18 19:45 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-05-18 19:45 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-05-18 19:45 - 2017-03-18 22:51 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-05-18 19:45 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-05-18 19:43 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2017-05-18 19:43 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\MUI
2017-05-18 19:43 - 2017-03-18 22:56 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2017-05-18 19:43 - 2017-03-18 22:56 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2017-05-18 19:43 - 2017-03-18 22:56 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2017-05-18 19:43 - 2017-03-18 22:56 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2017-05-18 19:43 - 2017-03-18 22:56 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2017-05-18 19:43 - 2017-03-18 22:56 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2017-05-18 19:43 - 2017-03-18 22:56 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2017-05-18 19:43 - 2017-03-18 22:56 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2017-05-18 19:43 - 2017-03-18 22:56 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2017-05-18 19:43 - 2017-03-18 22:56 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2017-05-18 19:43 - 2017-03-18 22:56 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2017-05-18 19:43 - 2017-03-18 22:56 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2017-05-18 19:43 - 2017-03-18 22:56 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2017-05-18 19:43 - 2017-03-18 22:56 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2017-05-18 19:43 - 2017-03-18 22:56 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2017-05-18 19:43 - 2017-03-18 22:56 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2017-05-18 19:43 - 2017-03-18 22:56 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2017-05-18 19:43 - 2017-03-18 22:56 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2017-05-18 19:07 - 2017-03-31 23:45 - 00000000 ____D C:\FRST
2017-05-18 19:05 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\USOPrivate
2017-05-18 19:04 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF
2017-05-18 19:04 - 2015-11-27 12:21 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2017-05-18 19:03 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-05-18 19:03 - 2015-11-27 12:13 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Local\Packages
2017-05-18 19:02 - 2017-03-20 06:41 - 00862506 _____ C:\WINDOWS\system32\perfh007.dat
2017-05-18 19:02 - 2017-03-20 06:41 - 00190956 _____ C:\WINDOWS\system32\perfc007.dat
2017-05-18 19:02 - 2015-11-27 17:01 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Roaming\SoundGraph
2017-05-18 19:02 - 2015-11-27 12:15 - 00002417 _____ C:\Users\Hier steht mein Klarname\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-05-18 19:02 - 2015-11-27 12:15 - 00000000 ___RD C:\Users\Hier steht mein Klarname\OneDrive
2017-05-18 19:01 - 2016-10-08 23:27 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Local\ConnectedDevicesPlatform
2017-05-18 19:00 - 2017-03-18 23:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-05-18 19:00 - 2016-01-16 17:41 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0
2017-05-18 19:00 - 2016-01-16 17:28 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 14.0
2017-05-18 19:00 - 2015-11-27 22:19 - 00022280 _____ (ASRock Incorporation) C:\WINDOWS\SysWOW64\Drivers\AsrAutoChkUpdDrv.sys
2017-05-18 19:00 - 2015-11-27 22:18 - 00021288 _____ (RW-Everything) C:\WINDOWS\SysWOW64\Drivers\ArdDrv.sys
2017-05-18 19:00 - 2015-11-27 12:13 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-05-18 18:59 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows NT
2017-05-18 18:58 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-05-18 18:58 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Registration
2017-05-18 18:58 - 2017-03-18 13:40 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-05-18 18:57 - 2017-03-20 06:43 - 00000000 ____D C:\WINDOWS\HoloShell
2017-05-18 18:57 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-05-18 18:57 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-05-18 18:57 - 2016-10-08 23:25 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-05-18 18:57 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-05-18 18:56 - 2017-03-18 23:03 - 00000000 __RHD C:\Users\Public\Libraries
2017-05-18 18:55 - 2017-04-13 19:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2017-05-18 18:55 - 2017-03-31 22:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2017-05-18 18:55 - 2017-03-18 13:40 - 03407872 _____ C:\WINDOWS\system32\config\BBI
2017-05-18 18:55 - 2017-01-10 22:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
2017-05-18 18:55 - 2016-10-04 11:21 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lynda.com
2017-05-18 18:55 - 2016-09-08 20:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimCity™
2017-05-18 18:55 - 2016-09-01 20:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
2017-05-18 18:55 - 2016-08-24 21:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stronghold HD [GOG.com]
2017-05-18 18:55 - 2016-05-05 00:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBrains
2017-05-18 18:55 - 2016-01-16 17:28 - 00000000 ____D C:\WINDOWS\SysWOW64\1033
2017-05-18 18:55 - 2016-01-16 17:28 - 00000000 ____D C:\WINDOWS\system32\1033
2017-05-18 18:55 - 2015-12-08 21:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24
2017-05-18 18:55 - 2015-12-08 21:32 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2
2017-05-18 18:55 - 2015-11-28 13:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2017-05-18 18:55 - 2015-11-28 00:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2017-05-18 18:55 - 2015-11-27 22:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2017-05-18 18:55 - 2015-11-27 18:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters
2017-05-18 18:55 - 2015-11-27 16:58 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kodi
2017-05-18 18:55 - 2015-11-27 16:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 14
2017-05-18 18:55 - 2015-11-27 13:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
2017-05-18 18:55 - 2015-11-27 13:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2017-05-18 18:55 - 2015-11-27 13:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2017-05-18 18:55 - 2015-11-27 13:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2017-05-18 18:55 - 2015-11-27 13:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-05-18 18:55 - 2015-11-27 13:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-05-18 18:51 - 2017-03-31 22:12 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2017-05-18 18:51 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-05-18 18:51 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\spool
2017-05-18 18:51 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-05-18 18:51 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-05-18 18:51 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-05-18 18:51 - 2016-09-22 12:00 - 00000000 ____D C:\WINDOWS\system32\P
2017-05-18 18:50 - 2017-04-13 22:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Killer Networking
2017-05-18 18:50 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2017-05-18 18:50 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-05-18 18:50 - 2016-12-17 15:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2017-05-18 18:50 - 2016-09-22 12:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Asmedia Technology
2017-05-18 18:50 - 2016-05-22 12:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2017-05-18 18:50 - 2016-04-02 00:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.1
2017-05-18 18:50 - 2016-02-06 22:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2017-05-18 18:50 - 2016-01-16 17:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015
2017-05-18 18:50 - 2016-01-16 17:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
2017-05-18 18:50 - 2015-11-28 14:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Futuremark
2017-05-18 18:50 - 2015-11-27 22:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility
2017-05-18 18:50 - 2015-11-27 22:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fatal1ty Utility
2017-05-18 18:50 - 2015-11-27 18:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Team MediaPortal
2017-05-18 18:50 - 2015-11-27 17:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoundGraph
2017-05-18 18:50 - 2015-11-27 12:21 - 00000000 ____D C:\Program Files\Intel
2017-05-18 18:49 - 2016-06-10 23:37 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2017-05-18 18:48 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Help
2017-05-18 18:48 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-05-18 18:48 - 2016-07-11 14:22 - 00000000 ____D C:\Temp
2017-05-18 18:32 - 2015-11-27 13:22 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-05-18 18:15 - 2016-11-19 14:25 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\LocalLow\Mozilla
2017-05-18 17:57 - 2015-11-27 13:22 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Local\Google
2017-05-18 17:57 - 2015-11-27 13:15 - 00000000 ____D C:\Program Files (x86)\Google
2017-05-18 17:52 - 2015-11-27 17:22 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2017-05-18 17:52 - 2015-11-27 17:22 - 00000000 ____D C:\Program Files\Common Files\Apple
2017-05-18 17:50 - 2017-04-13 19:11 - 00000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2017-05-18 16:23 - 2015-11-27 22:52 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Local\CrashDumps
2017-05-18 16:09 - 2016-05-22 12:57 - 00000000 ____D C:\Program Files (x86)\GalaxyClient
2017-05-18 01:00 - 2015-11-27 22:41 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Roaming\TS3Client
2017-05-18 00:57 - 2015-11-28 00:25 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Local\Battle.net
2017-05-17 23:13 - 2015-11-28 00:24 - 00000000 ____D C:\Program Files (x86)\Battle.net
2017-05-17 00:27 - 2016-07-11 14:06 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Local\ElevatedDiagnostics
2017-05-17 00:12 - 2016-06-10 23:31 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Local\Ubisoft Game Launcher
2017-05-16 21:16 - 2015-12-19 21:00 - 00548392 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2017-05-13 19:35 - 2016-01-30 21:28 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Roaming\Kalypso Media
2017-05-13 16:37 - 2017-04-13 18:24 - 00158880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw7ADD.tmp
2017-05-13 16:29 - 2015-11-27 13:20 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-05-11 17:30 - 2015-11-28 14:42 - 00000000 ____D C:\Users\Hier steht mein Klarname\Documents\The Witcher 3
2017-05-10 22:11 - 2015-11-27 18:03 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Roaming\talisman
2017-05-10 20:57 - 2015-12-09 20:58 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-05-10 20:55 - 2015-12-09 20:58 - 156335152 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-05-07 10:25 - 2016-11-18 19:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-05-07 10:25 - 2015-11-27 13:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-05-06 13:07 - 2015-11-27 13:16 - 00000000 ____D C:\ProgramData\Oracle
2017-05-06 10:52 - 2015-11-27 13:16 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Local\Adobe
2017-05-05 16:31 - 2015-11-28 16:17 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Local\Logitech
2017-05-04 20:30 - 2017-04-13 18:24 - 01007160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw795F.tmp
2017-05-04 20:30 - 2017-04-13 18:24 - 00569192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw7A5E.tmp
2017-05-04 20:30 - 2017-04-13 18:24 - 00339696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw7A5F.tmp
2017-05-04 20:30 - 2017-04-13 18:24 - 00334576 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\asw7833.tmp
2017-05-04 20:30 - 2017-04-13 18:24 - 00311808 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\asw77D4.tmp
2017-05-04 20:30 - 2017-04-13 18:24 - 00190256 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\asw7804.tmp
2017-05-04 20:30 - 2017-04-13 18:24 - 00128648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw7A3D.tmp
2017-05-04 20:30 - 2017-04-13 18:24 - 00101152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw798F.tmp
2017-05-04 20:30 - 2017-04-13 18:24 - 00075704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw7A4E.tmp
2017-05-04 20:30 - 2017-04-13 18:24 - 00049016 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\asw7854.tmp
2017-05-04 20:30 - 2017-04-13 18:24 - 00038296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw7A1D.tmp
2017-05-04 20:30 - 2017-04-13 18:24 - 00032600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw793F.tmp
2017-05-04 17:59 - 2016-04-02 00:43 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-05-04 17:36 - 2016-10-08 23:17 - 00018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2017-05-04 00:43 - 2016-10-08 23:17 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2017-05-02 17:27 - 2016-10-31 19:58 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Local\UnrealEngine
2017-04-28 10:41 - 2015-12-08 21:19 - 00000000 ___RD C:\Users\Hier steht mein Klarname\Dropbox
2017-04-27 20:16 - 2015-11-27 22:41 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2017-04-26 19:21 - 2017-04-03 19:52 - 00547352 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2017-04-26 19:21 - 2017-04-03 19:52 - 00478744 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2017-04-26 19:21 - 2016-09-21 20:56 - 01041432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2017-04-26 19:21 - 2016-09-21 20:56 - 01041432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2017-04-23 20:02 - 2015-11-27 12:24 - 00000000 ____D C:\ProgramData\Package Cache
2017-04-19 20:19 - 2015-11-27 13:22 - 00000000 ____D C:\Users\Hier steht mein Klarname\AppData\Local\Dropbox
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-11-27 12:16 - 2017-04-13 22:03 - 0000000 _____ () C:\Users\Hier steht mein Klarname\AppData\Local\Driver_LOM_8161Present.flag
2016-06-10 23:29 - 2016-06-10 23:29 - 0002106 _____ () C:\Users\Hier steht mein Klarname\AppData\Local\recently-used.xbel
2016-07-04 10:16 - 2016-07-04 10:16 - 0000000 _____ () C:\Users\Hier steht mein Klarname\AppData\Local\{B417841C-6EA3-4227-AA8E-0E579D2C4719}
2017-04-25 17:31 - 2017-04-27 18:35 - 0000060 _____ () C:\ProgramData\SoftwareUpdateTemp.xml
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-05-18 18:47
==================== Ende von FRST.txt ============================
|
|
18.05.2017, 20:55
| #2 |
| | Addition LogCode:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 14-05-2017
durchgeführt von Hier steht mein Klarname (18-05-2017 19:07:53)
Gestartet von C:\Users\Hier steht mein Klarname\Downloads
Windows 10 Pro Version 1703 (X64) (2017-05-18 17:00:15)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3517512992-2048216950-1168510833-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3517512992-2048216950-1168510833-503 - Limited - Disabled)
Gast (S-1-5-21-3517512992-2048216950-1168510833-501 - Limited - Disabled)
Hier steht mein Klarname (S-1-5-21-3517512992-2048216950-1168510833-1001 - Administrator - Enabled) => C:\Users\Hier steht mein Klarname
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Disabled - Out of date) {A16C3F68-9280-E053-1818-342707FECF4D}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
3DMark (HKLM-x32\...\{12d6e0d7-21d5-4755-9da2-70352c6f7558}) (Version: 1.5.915.0 - Futuremark)
3DMark (Version: 1.5.915.0 - Futuremark) Hidden
7-Zip 15.12 (x64) (HKLM\...\7-Zip) (Version: 15.12 - Igor Pavlov)
7-Zip 16.04 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1604-000001000000}) (Version: 16.04.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version: - Hidden Path Entertainment, Ensemble Studios)
Age of Empires® III: Complete Collection (HKLM\...\Steam App 105450) (Version: - Ensemble Studios)
Anno 1404 (HKLM\...\Steam App 33250) (Version: - Blue Byte)
Anno 1404: Venice (HKLM\...\Steam App 33350) (Version: - Blue Byte)
Ansel (Version: 382.05 - NVIDIA Corporation) Hidden
APP Shop v1.0.22 (HKLM-x32\...\{90242E9B-BC60-46E3-8EE7-8E953F702280}_is1) (Version: 1.0.22 - ASRock Inc.)
Apple Application Support (32-Bit) (HKLM-x32\...\{E92BB800-BCC5-4C25-8102-AC2C3B7C7C1E}) (Version: 5.5 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{9C912B1E-06DD-43EF-BB2B-45CB2C88BAAE}) (Version: 5.5 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{0A596141-97D5-45FA-9281-98DFAF48D579}) (Version: 10.3.2.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.)
Arma 3 (HKLM\...\Steam App 107410) (Version: - Bohemia Interactive)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.8.000 - Asmedia Technology)
ASRock App Charger v1.0.6 (HKLM\...\ASRock App Charger_is1) (Version: 1.0.6 - ASRock Inc.)
ASRock Key Master v1.0.8 (HKLM-x32\...\ASRock Key Master_is1) (Version: 1.0.8 - )
ASRock Restart to UEFI v1.0.5 (HKLM-x32\...\ASRock Restart to UEFI_is1) (Version: 1.0.5 - )
ASRock XFast RAM v3.0.3 (HKLM\...\ASRock XFast RAM_is1) (Version: - ASRock Inc.)
Azure AD Authentication Connected Service (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Blackwell Epiphany (HKLM\...\Steam App 236930) (Version: - Wadjet Eye Games)
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5931 - CDBurnerXP)
Cisco AnyConnect Diagnostics and Reporting Tool (HKLM-x32\...\{F038D9EC-E763-43D0-834A-0C4CA328C0F4}) (Version: 4.4.00243 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.4.00243 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (x32 Version: 4.4.00243 - Cisco Systems, Inc.) Hidden
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version: - Colossal Order Ltd.)
Conan Exiles (HKLM\...\Steam App 440900) (Version: - Funcom)
Cossacks 3 (HKLM\...\Steam App 333420) (Version: - GSC Game World)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
Counter-Strike: Source (HKLM\...\Steam App 240) (Version: - Valve)
Crusader Kings II (HKLM\...\Steam App 203770) (Version: - Paradox Development Studio)
Cry of Fear (HKLM\...\Steam App 223710) (Version: - Team Psykskallar)
CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.6924.58 - CyberLink Corp.)
DARK SOULS III (HKLM\...\Steam App 374320) (Version: - FromSoftware, Inc.)
Darkest Dungeon (HKLM-x32\...\Steam App 262060) (Version: - Red Hook Studios)
Dead by Daylight (HKLM\...\Steam App 381210) (Version: - Behaviour Digital Inc.)
Dead Rising 4 (HKLM\...\Steam App 543460) (Version: - Capcom Game Studio Vancouver, Inc.)
Deadlight (HKLM\...\Steam App 211400) (Version: - Tequila Works, S.L.)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
DiRT 3 Complete Edition (HKLM\...\Steam App 321040) (Version: - Codemasters Racing Studio)
Dokan Library 0.5.3 (HKLM-x32\...\DokanLibrary) (Version: - )
Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.03 - Creative Technology Limited)
Don't Starve Together (HKLM\...\Steam App 322330) (Version: - Klei Entertainment)
Dotfuscator and Analytics Community Edition 5.19.0 (x32 Version: 5.19.0.2930 - PreEmptive Solutions) Hidden
DRAGON BALL XENOVERSE (HKLM\...\Steam App 323470) (Version: - DIMPS)
Dropbox (HKLM-x32\...\Dropbox) (Version: 26.4.24 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.59.1 - Dropbox, Inc.) Hidden
DTS Connect Pack (HKLM-x32\...\DTS Connect Pack) (Version: 1.00 - Creative Technology Limited)
Duke Nukem Forever (HKLM\...\Steam App 57900) (Version: - Gearbox Software)
Dungeons 2 (HKLM\...\Steam App 262280) (Version: - Realmforge Studios)
Dying Light (HKLM\...\Steam App 239140) (Version: - Techland)
Europa Universalis IV (HKLM-x32\...\Steam App 236850) (Version: - Paradox Development Studio)
FileZilla Client 3.14.1 (HKLM-x32\...\FileZilla Client) (Version: 3.14.1 - Tim Kosse)
Final Exam (HKLM\...\Steam App 233190) (Version: - Mighty Rocket Studio)
F-Stream Tuning v2.0.271 (HKLM-x32\...\F-Stream Tuning_is1) (Version: 2.0.271 - ASRock Inc.)
Gabriel Knight - Sins of the Fathers (HKLM-x32\...\Steam App 262000) (Version: - Phoenix Online Studios)
GameRanger (HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\GameRanger) (Version: - GameRanger Technologies)
Gauntlet™ (HKLM\...\Steam App 258970) (Version: - Arrowhead Game Studios)
Gear Up (HKLM\...\Steam App 214420) (Version: - Doctor Entertainment AB)
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Half-Life 2: Deathmatch (HKLM\...\Steam App 320) (Version: - Valve)
Heroes & Generals (HKLM\...\Steam App 227940) (Version: - Reto-Moto)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HuniePop (HKLM-x32\...\Steam App 339800) (Version: - HuniePot)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
iMON (HKLM-x32\...\{C96A23CB-DDE6-4DEF-AD83-D5D5037D4316}) (Version: 8.12 - SoundGraph)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.6.0.1029 - Intel Corporation)
Intel(R) Smart Connect Technology (HKLM\...\{94A137EA-92EF-441C-A7E2-6757CC08EA82}) (Version: 5.0.10.2907 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{F0C7385A-9D20-45F3-8101-05D383885180}) (Version: 12.6.1.25 - Apple Inc.)
Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
JetBrains WebStorm 2016.1.1 (HKLM-x32\...\WebStorm 2016.1.1) (Version: 145.597.6 - JetBrains s.r.o.)
Killer Bandwidth Control Filter Driver (Version: 1.1.56.1651 - Rivet Networks) Hidden
Killer E220x Drivers (Version: 1.1.56.1651 - Rivet Networks) Hidden
Killer Network Manager (Version: 1.1.56.1651 - Rivet Networks) Hidden
Killer Performance Suite (HKLM-x32\...\{DB8A465E-67BE-4450-9C9A-FECEA6222B95}) (Version: 1.1.56.1651 - Rivet Networks)
Killing Floor 2 (HKLM-x32\...\Steam App 232090) (Version: - Tripwire Interactive)
Kingdom Wars 2: Battles (HKLM-x32\...\Steam App 253190) (Version: - Reverie World Studios, INC)
Kingdom: New Lands (HKLM\...\Steam App 496300) (Version: - Noio)
Kodi (HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\Kodi) (Version: - XBMC-Foundation)
LAV Filters 0.63.0 (HKLM-x32\...\lavfilters_is1) (Version: 0.63.0 - Hendrik Leppkes)
Left 4 Dead 2 (HKLM\...\Steam App 550) (Version: - Valve)
Legend of Grimrock 2 (HKLM-x32\...\Steam App 251730) (Version: - Almost Human Games)
LEGO Batman: The Videogame (HKLM\...\Steam App 21000) (Version: - Traveller's Tales)
LEGO® The Lord of the Rings™ (HKLM\...\Steam App 214510) (Version: - Traveller's Tales)
Little Nightmares (HKLM\...\Steam App 424840) (Version: - Tarsier Studios)
Logitech Gaming Software 8.76 (HKLM\...\Logitech Gaming Software) (Version: 8.76.155 - Logitech Inc.)
Logitech SetPoint 6.67 (HKLM\...\sp6) (Version: 6.67.83 - Logitech)
Logitech Unifying-Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
MediaPortal 2 (HKLM-x32\...\{b06e7b7f-15a7-4e49-ac60-085f34abb68b}) (Version: 2.0.0.1509 - Team MediaPortal)
MediaPortal 2 (x32 Version: 2.0.0.1509 - Team MediaPortal) Hidden
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.24720 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio Community 2015 (HKLM-x32\...\{10569041-3f7b-4637-80ae-53dd6f8aed08}) (Version: 14.0.23107.156 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Might and Magic Heroes VII (HKLM-x32\...\Uplay Install 1176) (Version: - Ubisoft)
Mordheim: City of the Damned (HKLM\...\Steam App 276810) (Version: - Rogue Factor)
Mortal Kombat X (HKLM\...\Steam App 307780) (Version: - NetherRealm Studios)
Mother Russia Bleeds (HKLM\...\Steam App 361300) (Version: - Le Cartel Studio)
Mozilla Firefox 53.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 53.0.2 (x86 de)) (Version: 53.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 53.0.2.6333 - Mozilla)
MSBuild/NuGet Integration 14.0 (x86) (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
MSI Afterburner 4.3.0 (HKLM-x32\...\Afterburner) (Version: 4.3.0 - MSI Co., LTD)
Multi-Device Hybrid Apps using C# - Templates - ENU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Napoleon: Total War (HKLM\...\Steam App 34030) (Version: - The Creative Assembly)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.05 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.5.0.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.5.0.76 - NVIDIA Corporation)
NVIDIA Grafiktreiber 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.05 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (Version: 3.5.0.76 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.4.5.0 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
Of Orcs And Men (HKLM\...\Steam App 216910) (Version: - Cyanide Studio - Spiders Studios)
Okhlos (HKLM\...\Steam App 400180) (Version: - Coffee Powered Machine)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.2 (HKLM-x32\...\{F5CAB1AF-7B1A-4CEC-B829-A3F699473AE1}) (Version: 4.12.9782 - Apache Software Foundation)
Orcs Must Die! 2 (HKLM\...\Steam App 201790) (Version: - Robot Entertainment)
Orcs Must Die! Unchained (HKLM\...\Steam App 427270) (Version: - Robot Entertainment)
Origin (HKLM-x32\...\Origin) (Version: 10.3.5.6379 - Electronic Arts, Inc.)
PDF24 Creator 7.4.1 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.2.1 - pdfforge)
Pillars of Eternity (HKLM\...\Steam App 291650) (Version: - Obsidian Entertainment)
Planet Coaster (HKLM\...\Steam App 493340) (Version: - Frontier Developments)
Plants vs. Zombies: Game of the Year (HKLM\...\Steam App 3590) (Version: - PopCap Games, Inc.)
PLAYERUNKNOWN'S BATTLEGROUNDS (HKLM\...\Steam App 578080) (Version: - Bluehole, Inc.)
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
Prison Architect (HKLM-x32\...\Steam App 233450) (Version: - Introversion Software)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
R.U.S.E (HKLM\...\Steam App 21970) (Version: - Eugen Systems)
Resident Evil 6 / Biohazard 6 (HKLM-x32\...\Steam App 221040) (Version: - Capcom)
Resident Evil 7 / Biohazard 7 Teaser: Beginning Hour (HKLM\...\Steam App 530620) (Version: - CAPCOM Co., Ltd.)
Resident Evil Revelations / Biohazard Revelations (HKLM\...\Steam App 222480) (Version: - Capcom)
RimWorld (HKLM\...\Steam App 294100) (Version: - Ludeon Studios)
Rise of Nations: Extended Edition (HKLM\...\Steam App 287450) (Version: - SkyBox Labs)
Rise of the Tomb Raider (HKLM\...\Steam App 391220) (Version: - Crystal Dynamics)
RivaTuner Statistics Server 6.5.0 (HKLM-x32\...\RTSS) (Version: 6.5.0 - Unwinder)
Rocksmith® 2014 Edition - Remastered (HKLM\...\Steam App 221680) (Version: - Ubisoft - San Francisco)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.4 - Rockstar Games)
Roslyn Language Services - x86 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (x32 Version: 14.0.24723 - Microsoft Corporation) Hidden
Runaway: The Dream of the Turtle (HKLM-x32\...\Steam App 7220) (Version: - Pendulo Studios)
SafeZone Stable 3.55.2393.596 (x32 Version: 3.55.2393.596 - Avast Software) Hidden
Shadow Tactics - Blades of the Shogun 1.1.2 (HKLM-x32\...\{BB762706-65FA-44C1-B2BB-EF29CA88D7CE}_is1) (Version: 1.1.2 - Daedalic Entertainment GmbH)
SHIELD Streaming (Version: 7.1.0360 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.5.0.76 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM-x32\...\steam app 8930) (Version: - 2K Games, Inc.)
Sid Meier's Civilization VI (HKLM\...\Steam App 289070) (Version: - Firaxis)
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.96.5684 - Electronic Arts)
Sound Blaster X-Fi (HKLM-x32\...\{0282C872-4B44-444B-9818-54FBD7D50ECD}) (Version: 1.0 - Creative Technology Limited)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Starbound (HKLM\...\Steam App 211820) (Version: - )
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Stardew Valley (HKLM\...\Steam App 413150) (Version: - ConcernedApe)
Stronghold Crusader Extreme HD (HKLM\...\Steam App 16700) (Version: - Firefly Studios)
Stronghold Crusader HD (HKLM\...\Steam App 40970) (Version: - FireFly Studios)
Stronghold HD (HKLM\...\Steam App 40950) (Version: - FireFly Studios)
Stronghold HD (HKLM-x32\...\1207658712_is1) (Version: 2.3.0.6 - GOG.com)
Sunless Sea (HKLM\...\Steam App 304650) (Version: - Failbetter Games)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Team Explorer for Microsoft Visual Studio 2015 (x32 Version: 14.0.24712 - Microsoft Corporation) Hidden
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.75813 - TeamViewer)
Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
The Curious Expedition (HKLM\...\Steam App 358130) (Version: - Maschinen-Mensch)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 1.5.0.0 - Zenimax Online Studios)
The Elder Scrolls Online: Tamriel Unlimited (HKLM\...\Steam App 306130) (Version: - Zenimax Online Studios)
The Walking Dead (HKLM\...\Steam App 207610) (Version: - Telltale Games)
The Walking Dead: Season Two (HKLM\...\Steam App 261030) (Version: - Telltale Games)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.31.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Blood and Wine (HKLM-x32\...\Blood and Wine_is1) (Version: 1.24.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.24.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Hearts of Stone (HKLM-x32\...\Hearts of Stone_is1) (Version: 1.24.0.0 - GOG.com)
Titan Quest Anniversary Edition (HKLM\...\Steam App 475150) (Version: - Iron Lore Entertainment)
Tom Clancy's Ghost Recon Wildlands (HKLM-x32\...\Uplay Install 1771) (Version: - Ubisoft)
Total War: WARHAMMER (HKLM\...\Steam App 364360) (Version: - Creative Assembly)
TypeScript Power Tool (x32 Version: 1.7.4.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 (x32 Version: 1.7.4.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 1.7.4.0 (HKLM-x32\...\{33e2204a-4ec6-4458-895a-47e2a404d990}) (Version: 1.7.24720.0 - Microsoft Corporation)
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 7.3 - Ubisoft)
Valkyria Chronicles™ (HKLM-x32\...\Steam App 294860) (Version: - SEGA)
video2brain Desktop App (HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\bfe81a058ff573be) (Version: 1.3.2.86 - Lynda.com)
Visual Studio 2015 Update 1 (KB3022398) (HKLM-x32\...\{fcaa9dba-9438-48b6-ad91-4e9b4cc7084a}) (Version: 14.0.24720 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.5.1 - VideoLAN)
VS Update core components (x32 Version: 14.0.24720 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
Wallpaper Engine (HKLM\...\Steam App 431960) (Version: - Kristjan Skutta)
Warhammer: End Times - Vermintide (HKLM\...\Steam App 235540) (Version: - Fatshark)
WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
Windows 10-Upgrade-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17387 - Microsoft Corporation)
Windows Driver Package - Cambridge Silicon Radio Ltd. (CSRBC) USB (04/18/2016 4.0.0.0) (HKLM\...\8A16728DE2DE2DB40A9EF311003DB2D28EEE314B) (Version: 04/18/2016 4.0.0.0 - Cambridge Silicon Radio Ltd.)
Windows Driver Package - Cambridge Silicon Radio Ltd. (USBSPI) USB (04/19/2016 4.0.0.0) (HKLM\...\5C00634278C5A46A7470A44A7B0B318710C5110E) (Version: 04/19/2016 4.0.0.0 - Cambridge Silicon Radio Ltd.)
Windows-Treiberpaket - Bestunar (BST88SRV) Media (06/11/2015 1.9.0611.0) (HKLM\...\FA84458CBF69D8CB137C3EBD56E161508C364E8C) (Version: 06/11/2015 1.9.0611.0 - Bestunar)
Windows-Treiberpaket - Bestunar (BSTPROSRV) Media (05/28/2015 1.1.0528.0) (HKLM\...\C687955292B4343E62B882DF849C8BDD326C2AAF) (Version: 05/28/2015 1.1.0528.0 - Bestunar)
Zombie Army Trilogy (HKLM\...\Steam App 301640) (Version: - Rebellion)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {118DB725-127C-4265-8ACE-7AF657BB2D7F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-06] (Dropbox, Inc.)
Task: {18C3D7BD-8F40-4D16-833C-04C1CAB8AF84} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-05-18] (Google Inc.)
Task: {24E08287-691F-4380-8A18-8440642107C7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {2A27C20B-3C77-49C7-874E-4C41FD8C0C51} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-04-26] (NVIDIA Corporation)
Task: {362E8672-174C-4C74-8A76-D4DFF05BA156} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-04-26] (NVIDIA Corporation)
Task: {557A850D-1873-47A4-8FCF-8FAC28AC93BA} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-02-14] (Apple Inc.)
Task: {59082E35-06F2-4F73-8121-9910791F7D47} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-04-26] (NVIDIA Corporation)
Task: {5C0A8BD3-AFF7-4D1D-B94C-6B76E50A9C98} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\Windows\system32\MRT.exe [2017-05-10] (Microsoft Corporation)
Task: {61554797-F95A-4773-BD4A-23739CFC4060} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-04-26] (NVIDIA Corporation)
Task: {67B6E182-0DB2-4287-930F-6E0BEED2D384} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2017-05-10] (Microsoft Corporation)
Task: {9813C1CB-E353-4630-AB11-AFE713903C41} - System32\Tasks\AsrSP.EXE => C:\Program Files (x86)\Fatal1ty Utility\F-Stream Tuning\Bin\AsrSP.EXE [2014-12-02] ()
Task: {A63E194A-1DDC-49C3-879E-68E919F57D07} - System32\Tasks\AsrAPPShop => C:\Program Files (x86)\ASRock Utility\APP Shop\AsrAPPShop.exe [2015-11-11] ()
Task: {A75C9F54-3D28-4372-A9CA-4447C31A87FF} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-06] (Dropbox, Inc.)
Task: {AFC5E673-46A7-486E-886A-5A1303640502} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-05-18] (Google Inc.)
Task: {B883D4C1-06A0-4D2A-A35B-BB6DEA7B7EFF} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2016-10-24] ()
Task: {C3AEE4EF-0B34-4F0B-856A-FB8FF7C8B70F} - System32\Tasks\AsrKM => C:\Program Files (x86)\ASRock Utility\Key Master\AsrKM.exe [2014-04-23] ()
Task: {C8AAB542-2ACD-4D45-B5D7-767DA9D075D3} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-04-26] (NVIDIA Corporation)
Task: {D3C84BC8-41F5-42CD-9A58-5A2582214C52} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-04-26] (NVIDIA Corporation)
Task: {D9CD1FA9-31CD-4AE0-A999-A58560062DF0} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-04-26] (NVIDIA Corporation)
Task: {FECD2436-7B32-4D17-AAE3-7FE44ECAC4DB} - System32\Tasks\SafeZone scheduled Autoupdate 1492100703 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-03-22] (Avast Software)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2016-09-01 18:12 - 2016-09-01 18:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-05-09 00:44 - 2017-05-09 00:44 - 01354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-11-27 22:18 - 2014-07-31 17:17 - 00463112 _____ () C:\Program Files (x86)\Fatal1ty Utility\F-Stream Tuning\Bin\IOMonitorSrv.exe
2012-05-19 02:03 - 2012-05-19 02:03 - 00011776 _____ () C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
2017-05-04 17:44 - 2017-04-26 07:37 - 01147512 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-03-18 22:58 - 2017-03-18 22:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2015-10-16 12:02 - 2015-10-16 12:02 - 00043480 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
2015-11-27 22:19 - 2015-11-11 16:03 - 06101768 _____ () C:\Program Files (x86)\ASRock Utility\APP Shop\AsrAPPShop.exe
2015-11-27 22:18 - 2014-12-02 19:06 - 02646528 _____ () C:\Program Files (x86)\Fatal1ty Utility\F-Stream Tuning\Bin\AsrSP.EXE
2017-03-18 22:59 - 2017-03-20 06:43 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2015-11-20 23:41 - 2015-11-20 23:41 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2015-11-20 23:41 - 2015-11-20 23:41 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2017-03-18 22:58 - 2017-03-18 22:58 - 00047616 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUITelemetry.dll
2017-03-18 22:58 - 2017-03-18 22:58 - 02328576 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll
2017-03-18 22:58 - 2017-03-18 22:58 - 02836480 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIDataModel.dll
2017-04-27 17:25 - 2017-04-27 17:25 - 02167664 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17032.10331.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2016-12-16 17:09 - 2016-12-16 17:09 - 00123384 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17032.10331.0_x64__8wekyb3d8bbwe\GNSDK_FP.DLL
2017-05-18 17:57 - 2017-05-09 11:13 - 03767640 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libglesv2.dll
2017-05-18 17:57 - 2017-05-09 11:13 - 00100696 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libegl.dll
2016-12-09 18:09 - 2016-12-09 18:09 - 00073728 _____ () C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
2015-09-04 12:27 - 2015-09-04 12:27 - 00093696 _____ () C:\Program Files (x86)\Team MediaPortal\MP2-Server\Plugins\SlimTv.Service3\MPIPTvSource.ax
2015-09-04 12:27 - 2015-09-04 12:27 - 00629760 _____ () C:\Program Files (x86)\Team MediaPortal\MP2-Server\Plugins\SlimTv.Service3\System.Data.SQLite.dll
2015-09-04 12:27 - 2015-09-04 12:27 - 00131584 _____ () C:\Program Files (x86)\Team MediaPortal\MP2-Server\Plugins\SlimTv.Service3\StreamingServer.dll
2017-03-31 22:06 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2017-03-31 22:06 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2017-03-31 22:06 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2017-03-31 22:06 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2017-03-31 22:06 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2017-05-04 17:44 - 2017-04-26 07:37 - 00900216 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-05-04 17:44 - 2017-04-26 07:37 - 65709176 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2017-05-04 17:44 - 2017-04-26 07:03 - 02442360 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2017-05-04 17:44 - 2017-04-26 07:03 - 00361920 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2017-05-04 17:44 - 2017-04-26 07:03 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2017-05-04 17:44 - 2017-04-26 07:03 - 00384120 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2017-05-04 17:44 - 2017-04-26 07:03 - 00467392 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2017-05-04 17:44 - 2017-04-26 07:03 - 00572024 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-05-22 12:57 - 2017-05-18 16:09 - 00507968 _____ () C:\Program Files (x86)\GalaxyClient\PocoUtil.dll
2016-05-22 12:57 - 2016-09-19 16:42 - 53018112 _____ () C:\Program Files (x86)\GalaxyClient\libcef.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 01076800 _____ () C:\Program Files (x86)\GalaxyClient\PocoNet.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 01854528 _____ () C:\Program Files (x86)\GalaxyClient\PocoData.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 00393280 _____ () C:\Program Files (x86)\GalaxyClient\PocoDataSQLite.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 01589312 _____ () C:\Program Files (x86)\GalaxyClient\PocoFoundation.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 00307776 _____ () C:\Program Files (x86)\GalaxyClient\PocoNetSSL.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 00330816 _____ () C:\Program Files (x86)\GalaxyClient\PocoJSON.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 00104000 _____ () C:\Program Files (x86)\GalaxyClient\zlib.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 00520768 _____ () C:\Program Files (x86)\GalaxyClient\PocoXML.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 00272448 _____ () C:\Program Files (x86)\GalaxyClient\PocoZip.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 00680000 _____ () C:\Program Files (x86)\GalaxyClient\sqlite.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 00425536 _____ () C:\Program Files (x86)\GalaxyClient\pcre.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 00157760 _____ () C:\Program Files (x86)\GalaxyClient\PocoCrypto.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 00152128 _____ () C:\Program Files (x86)\GalaxyClient\expat.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 01589312 _____ () C:\ProgramData\GOG.com\Galaxy\redists\PocoFoundation.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 00330816 _____ () C:\ProgramData\GOG.com\Galaxy\redists\PocoJSON.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 00507968 _____ () C:\ProgramData\GOG.com\Galaxy\redists\PocoUtil.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 00104000 _____ () C:\ProgramData\GOG.com\Galaxy\redists\zlib.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 00425536 _____ () C:\ProgramData\GOG.com\Galaxy\redists\pcre.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 00520768 _____ () C:\ProgramData\GOG.com\Galaxy\redists\PocoXML.dll
2016-05-22 12:57 - 2017-05-18 16:09 - 00152128 _____ () C:\ProgramData\GOG.com\Galaxy\redists\expat.dll
2016-05-22 12:57 - 2016-09-19 16:42 - 01738752 _____ () C:\Program Files (x86)\GalaxyClient\libglesv2.dll
2016-05-22 12:57 - 2016-09-19 16:42 - 00078848 _____ () C:\Program Files (x86)\GalaxyClient\libegl.dll
2015-11-27 16:33 - 2016-10-03 06:06 - 00875288 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\common\UNO\UNO.dll
2015-11-27 16:33 - 2013-12-10 09:39 - 00074240 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Common\Koan\_ctypes.pyd
2015-11-27 16:33 - 2013-12-10 09:39 - 00285184 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Common\Koan\_hashlib.pyd
2015-11-27 16:33 - 2013-12-10 09:39 - 00040960 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Common\Koan\_socket.pyd
2015-11-27 16:33 - 2013-12-10 09:39 - 00721920 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Common\Koan\_ssl.pyd
2015-11-27 17:01 - 2006-11-28 10:31 - 00102400 _____ () C:\Program Files (x86)\SoundGraph\iMON\HookUsb.dll
2017-05-04 20:30 - 2017-03-22 12:34 - 68870688 _____ () C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\123simsen.com -> www.123simsen.com
Da befinden sich 7933 mehr Seiten.
==================== Hosts Inhalt: ==========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2015-10-30 09:24 - 2017-03-31 22:24 - 00454348 ____R C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123haustiereundmehr.com
127.0.0.1 123moviedownload.com
127.0.0.1 www.123moviedownload.com
Da befinden sich 15592 zusätzliche Einträge.
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Hier steht mein Klarname\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "ISCT Tray"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "IAStorIcon"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "PDFPrint"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKLM\...\StartupApproved\Run32: => "Aimersoft Helper Compact.exe"
HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-3517512992-2048216950-1168510833-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{8415601F-EC1A-4F78-B623-BD2B38C66599}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{1985963F-CAAF-4850-A9EE-4C0F433049DB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{EAF6ED7A-8167-4995-8CB9-1DDA958AA752}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{92DBF07A-AB2A-4EA0-A156-25428709392E}] => (Allow) F:\SteamLibrary\steamapps\common\Dungeons2\mono\bin\mono.exe
FirewallRules: [{A3FDF753-6813-4DBD-81C7-FE9DAA48E138}] => (Allow) F:\SteamLibrary\steamapps\common\Dungeons2\mono\bin\mono.exe
FirewallRules: [{9B9FED8E-9660-4800-8D86-5813F6EE6EBE}] => (Allow) F:\SteamLibrary\steamapps\common\Dungeons2\Dungeons2.exe
FirewallRules: [{F8FCF57F-B4FC-4963-A5CF-B12B2D407FCA}] => (Allow) F:\SteamLibrary\steamapps\common\Dungeons2\Dungeons2.exe
FirewallRules: [UDP Query User{687C02E0-B0F7-42E7-AE1C-8E07050F7C18}D:\games\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Block) D:\games\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{9843DAE7-E741-4FB1-B110-9B322413DBF5}D:\games\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Block) D:\games\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{305615F3-1EA3-431D-A4B0-28D6DED9E8C2}D:\games\starcraft ii\versions\base52910\sc2_x64.exe] => (Block) D:\games\starcraft ii\versions\base52910\sc2_x64.exe
FirewallRules: [TCP Query User{DB6C81D1-28F7-4FC9-ABB8-86E344EED888}D:\games\starcraft ii\versions\base52910\sc2_x64.exe] => (Block) D:\games\starcraft ii\versions\base52910\sc2_x64.exe
FirewallRules: [{45DFDE26-7DF6-42B1-B71A-5D3572946221}] => (Allow) F:\Tom Clancy's Ghost Recon Wildlands\GRW.exe
FirewallRules: [UDP Query User{18AFEFE7-ABD2-4589-BE8F-78A2D12A8E87}D:\games\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe] => (Block) D:\games\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{8A8FC78C-51AD-48A7-9216-A03FDABC4315}D:\games\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe] => (Block) D:\games\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{BC7E114C-9BB6-4A2B-9D90-BED570B92488}F:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) F:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [TCP Query User{EAEB50B5-8325-4875-9D4D-B31661796E4D}F:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) F:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [{26532C10-812C-4BC7-9A6A-E4CCFC60FAEC}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596_0\SZBrowser.exe
FirewallRules: [{33223C59-B594-4607-B806-FCF37CAA0E09}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4B48931C-A105-4956-8D9F-25DCBDE0C14F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{E1983941-9C26-48F3-BF02-7975F7EA3C76}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{6A154EBB-9027-4C49-A5A5-4F87379EB145}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{9DCCEFB3-2CCB-47D3-BCDB-77D5663EE5A7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{A1AF90E3-F70C-49A5-A495-F1E44A062D02}] => (Allow) F:\SteamLibrary\steamapps\common\Blackwell Epiphany\epiphany.exe
FirewallRules: [{30BB236A-F8AC-43CE-B59B-8409FB729C4C}] => (Allow) F:\SteamLibrary\steamapps\common\Blackwell Epiphany\epiphany.exe
FirewallRules: [{874C78DD-3427-4F88-92EC-2F99CB07B145}] => (Allow) E:\SteamLibrary\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{D39B44F2-4CA3-472C-A939-50F6D87E38D2}] => (Allow) E:\SteamLibrary\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{CECA1246-BFE5-4305-8E8D-94026115C542}] => (Allow) F:\SteamLibrary\steamapps\common\RESIDENT EVIL REVELATIONS\rerev.exe
FirewallRules: [{2F6452AF-1A34-47D6-B6F0-5E439B423FBC}] => (Allow) F:\SteamLibrary\steamapps\common\RESIDENT EVIL REVELATIONS\rerev.exe
FirewallRules: [{D6AA25F4-77FD-4D0A-8482-7F29D03A9B57}] => (Allow) F:\SteamLibrary\steamapps\common\Little Nightmares\Atlas\Binaries\Win64\LittleNightmares.exe
FirewallRules: [{35D9BD09-5C2B-4F42-BEB4-74B2DBDED0B5}] => (Allow) F:\SteamLibrary\steamapps\common\Little Nightmares\Atlas\Binaries\Win64\LittleNightmares.exe
FirewallRules: [UDP Query User{0E63602F-150A-46D0-914B-740800A99135}D:\games\heroes of the storm\versions\base52860\heroesofthestorm_x64.exe] => (Block) D:\games\heroes of the storm\versions\base52860\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{614B78ED-3A3C-49DF-A1A6-770E16743CEF}D:\games\heroes of the storm\versions\base52860\heroesofthestorm_x64.exe] => (Block) D:\games\heroes of the storm\versions\base52860\heroesofthestorm_x64.exe
FirewallRules: [{74F1495E-E94F-457D-BB98-AC60649F21CB}] => (Allow) F:\SteamLibrary\steamapps\common\wallpaper_engine\launcher.exe
FirewallRules: [{293E98FF-F486-4C7D-A098-78F190C2A96E}] => (Allow) F:\SteamLibrary\steamapps\common\wallpaper_engine\launcher.exe
FirewallRules: [{E4584DB4-41BC-4A19-937A-B8A1A3CBD55C}] => (Allow) F:\SteamLibrary\steamapps\common\Zenimax Online\zosSteamStarter.exe
FirewallRules: [{9DEB4E14-C7FB-4D32-94E5-235618796B33}] => (Allow) F:\SteamLibrary\steamapps\common\Zenimax Online\zosSteamStarter.exe
FirewallRules: [UDP Query User{AD35A555-EA78-4913-8EC7-74C5C70DE04B}D:\games\heroes of the storm\versions\base52647\heroesofthestorm_x64.exe] => (Block) D:\games\heroes of the storm\versions\base52647\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{86B79E81-C30D-42DE-B003-D1B4C1CF25B3}D:\games\heroes of the storm\versions\base52647\heroesofthestorm_x64.exe] => (Block) D:\games\heroes of the storm\versions\base52647\heroesofthestorm_x64.exe
FirewallRules: [{D81695C1-B0A0-4049-A0E1-C158B5ADF656}] => (Allow) E:\SteamLibrary\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{F38C5E0A-9107-4690-9F66-05E0483A6103}] => (Allow) E:\SteamLibrary\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{08AE5F61-E29C-4775-8783-43C7A2B93B30}] => (Allow) F:\SteamLibrary\steamapps\common\LEGO Lord of the Rings\LEGOLOTR.exe
FirewallRules: [{AB118178-9080-49E1-A947-E65E9C8F9588}] => (Allow) F:\SteamLibrary\steamapps\common\LEGO Lord of the Rings\LEGOLOTR.exe
FirewallRules: [{11695F1C-7691-47F4-A641-E2B48ECF2D5F}] => (Allow) F:\SteamLibrary\steamapps\common\Planet Coaster\PlanetCoaster.exe
FirewallRules: [{9BE06415-94D1-464A-A88D-299C23EE0AE9}] => (Allow) F:\SteamLibrary\steamapps\common\Planet Coaster\PlanetCoaster.exe
FirewallRules: [UDP Query User{C7457B1F-27B4-4884-A02A-78A7B9F5D254}D:\games\gta v\gta5.exe] => (Block) D:\games\gta v\gta5.exe
FirewallRules: [TCP Query User{B13A30E7-8CC0-46AA-B066-BF7F774A993B}D:\games\gta v\gta5.exe] => (Block) D:\games\gta v\gta5.exe
FirewallRules: [{5103C222-0F63-4E71-BFA6-62232D745620}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{F598B6BF-3D3E-41BF-9F99-F5F7D7B26139}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{70C7031A-3EE0-45A0-879C-582BB4BECF71}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{5991342A-A14A-470B-AFF6-E5EE3C776790}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [UDP Query User{3D5FFB3E-4E7E-44DB-83F2-BBE5A28985C4}D:\games\heroes of the storm\versions\base52351\heroesofthestorm_x64.exe] => (Block) D:\games\heroes of the storm\versions\base52351\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{0C790E13-060B-48A1-B8D2-602E518EE761}D:\games\heroes of the storm\versions\base52351\heroesofthestorm_x64.exe] => (Block) D:\games\heroes of the storm\versions\base52351\heroesofthestorm_x64.exe
FirewallRules: [{7A6F96AA-1B06-4F78-A747-84ACE526870A}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596\SZBrowser.exe
FirewallRules: [UDP Query User{01A6234D-D813-47A4-BAA1-E54ADDEF4589}F:\steamlibrary\steamapps\common\total war warhammer\warhammer.exe] => (Allow) F:\steamlibrary\steamapps\common\total war warhammer\warhammer.exe
FirewallRules: [TCP Query User{E7B2F058-8E2E-4B7C-9FC2-82FA71FAD633}F:\steamlibrary\steamapps\common\total war warhammer\warhammer.exe] => (Allow) F:\steamlibrary\steamapps\common\total war warhammer\warhammer.exe
FirewallRules: [{EDC1E806-F0B0-42A0-B438-E68E448839F9}] => (Allow) D:\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{B76C7905-B8F5-4EB5-91F9-BC0C93E91FAC}] => (Allow) D:\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [UDP Query User{4CEF785C-D9B6-4DFE-A971-BCA198988F81}D:\games\heroes of the storm\versions\base52124\heroesofthestorm_x64.exe] => (Allow) D:\games\heroes of the storm\versions\base52124\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{2B81C696-7707-4AEA-A588-842F9F333164}D:\games\heroes of the storm\versions\base52124\heroesofthestorm_x64.exe] => (Allow) D:\games\heroes of the storm\versions\base52124\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{9C40890E-76A6-422E-A2FE-B8C4C57389D6}D:\games\starcraft ii\versions\base51702\sc2_x64.exe] => (Allow) D:\games\starcraft ii\versions\base51702\sc2_x64.exe
FirewallRules: [TCP Query User{6910FD1E-D5F5-4E31-8F11-DA559C456EE0}D:\games\starcraft ii\versions\base51702\sc2_x64.exe] => (Allow) D:\games\starcraft ii\versions\base51702\sc2_x64.exe
FirewallRules: [{B790D69C-45C5-423D-A334-326E65F76561}] => (Allow) E:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe
FirewallRules: [{FBFFFC47-040A-48AF-B092-C0CF6B3B1BEC}] => (Allow) E:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe
FirewallRules: [{C8AF409E-0225-4ECF-BE80-57864172590F}] => (Allow) F:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI_DX12.exe
FirewallRules: [{C43D1B3B-43A0-44AF-8216-DF7BC6241FB5}] => (Allow) F:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI_DX12.exe
FirewallRules: [{C631A443-496F-444B-84E9-B4AEE3C8C779}] => (Allow) F:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI.exe
FirewallRules: [{30BF2BF5-5DFB-4E38-B509-FA8D85865789}] => (Allow) F:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\Base\Binaries\Win64Steam\CivilizationVI.exe
FirewallRules: [{11D909AD-6470-44F1-86CE-FDC53D9CFD47}] => (Allow) E:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe
FirewallRules: [{5217637D-068A-4F4E-B1BA-962E7A8DDF95}] => (Allow) E:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe
FirewallRules: [{22FF5094-0F47-4C53-8646-599CFA7D7210}] => (Allow) F:\SteamLibrary\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
FirewallRules: [{E9BE4FB4-B147-4EF9-A56D-0C6B752E7DE4}] => (Allow) F:\SteamLibrary\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
FirewallRules: [{53458E20-A4C6-4B31-AA5E-7DBC6D92122B}] => (Allow) E:\SteamLibrary\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{B4F16707-636D-4F39-B536-9E26490165C8}] => (Allow) E:\SteamLibrary\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{3F6CAA43-320F-47B6-ACFB-4671A6A97FB2}] => (Allow) F:\SteamLibrary\steamapps\common\DeadRising4\deadrising4.exe
FirewallRules: [{C36DE6FD-C91A-4EA5-A4E8-F821D39388E4}] => (Allow) F:\SteamLibrary\steamapps\common\DeadRising4\deadrising4.exe
FirewallRules: [{D9F23590-6013-44DA-9C82-4CBCE4EB0CC8}] => (Allow) D:\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{CD037C85-4F07-4A21-B6FB-1144C772F88A}] => (Allow) D:\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{C2C9FE81-F2A3-416F-A636-4A3ED653DDB0}] => (Allow) E:\SteamLibrary\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{3913EEA3-315B-476D-9C7E-5C7881422B82}] => (Allow) E:\SteamLibrary\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{BBF2FFFC-717D-445E-A3BC-EB473A8D20A6}] => (Allow) D:\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{0662A5B8-C244-48CC-B5E3-ACF3D741C1F6}] => (Allow) D:\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{59DA149A-D4C2-4A32-86A1-8BF7343D8D96}] => (Allow) D:\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{720C5163-4303-412C-83BD-87A08F86FB65}] => (Allow) D:\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{0B43D987-CB78-44F4-8FC8-CF762697859B}] => (Allow) D:\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{25945D68-CF3A-496B-942B-8847DF522DCB}] => (Allow) D:\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{3A807C41-C6FF-42F2-B4B9-0AE01BE4A002}] => (Allow) D:\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{A392AA46-2F82-492A-96D9-03169C6694CB}] => (Allow) D:\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{DC4B98F8-E1B8-4542-B323-ABEE1B62FB2D}] => (Allow) F:\SteamLibrary\steamapps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{B0D0E5EE-7B9D-4E7B-B3E8-2848993EBD20}] => (Allow) F:\SteamLibrary\steamapps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{7B1B2D00-C39F-4733-AA7B-1F2A330E3B4E}] => (Allow) F:\SteamLibrary\steamapps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
FirewallRules: [{F16F198D-7A99-4349-8CF2-FB2508DE0E03}] => (Allow) F:\SteamLibrary\steamapps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
FirewallRules: [{0D8226F1-C182-4B72-963F-C381C8092FF0}] => (Allow) F:\SteamLibrary\steamapps\common\SunlessSea\Sunless Sea.exe
FirewallRules: [{27867B60-7429-4B10-998F-A7D6252684FC}] => (Allow) F:\SteamLibrary\steamapps\common\SunlessSea\Sunless Sea.exe
FirewallRules: [UDP Query User{BCF21577-95E4-4B13-AB44-6626EB1FE69A}F:\steamlibrary\steamapps\common\arma 3\arma3.exe] => (Allow) F:\steamlibrary\steamapps\common\arma 3\arma3.exe
FirewallRules: [TCP Query User{74FEC1F1-73F4-413F-BD53-1CCBB94E5F15}F:\steamlibrary\steamapps\common\arma 3\arma3.exe] => (Allow) F:\steamlibrary\steamapps\common\arma 3\arma3.exe
FirewallRules: [{BFD23B36-A238-4FAF-9534-9D73C55D81D0}] => (Allow) F:\SteamLibrary\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox.exe
FirewallRules: [{BAF131B5-FC73-4C39-88CD-1927207B806B}] => (Allow) F:\SteamLibrary\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox.exe
FirewallRules: [{8FB9F265-E632-411A-A6CA-FD04098D0A5C}] => (Allow) F:\SteamLibrary\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox_BE.exe
FirewallRules: [{4DD088F7-7576-48CC-B217-01516B9E12CF}] => (Allow) F:\SteamLibrary\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox_BE.exe
FirewallRules: [UDP Query User{461A5822-235B-4E43-AD1C-7441E225C7D4}E:\steamlibrary\steamapps\common\rise of nations\rise.exe] => (Block) E:\steamlibrary\steamapps\common\rise of nations\rise.exe
FirewallRules: [TCP Query User{CF322ACA-1EE0-4EA3-AA41-9CF6FC79DC42}E:\steamlibrary\steamapps\common\rise of nations\rise.exe] => (Block) E:\steamlibrary\steamapps\common\rise of nations\rise.exe
FirewallRules: [{ACAFC476-BF3A-4B8A-AD07-216761640DF2}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{87F5ADFF-0A6C-46E2-BF8C-D18E8BCCBB14}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe
FirewallRules: [{A0AEE3FA-C06D-4994-B29B-4FD14E9968E7}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe
FirewallRules: [{EBE0444B-BA6C-4B9E-814D-AC6C544A6597}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe
FirewallRules: [{6C705D66-C8BE-4C11-AF45-73611A4A2CF0}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe
FirewallRules: [{E4E7B8E7-32B8-4F50-B9C3-9F5F78AD7D0D}] => (Allow) E:\SteamLibrary\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{507440E9-6ED5-469D-8B90-9C9AD9EDAF1C}] => (Allow) E:\SteamLibrary\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [UDP Query User{5487C434-C99F-4863-96C0-1412C26D9734}F:\steamlibrary\steamapps\common\total war warhammer\warhammer.exe] => (Allow) F:\steamlibrary\steamapps\common\total war warhammer\warhammer.exe
FirewallRules: [TCP Query User{AB569E4C-A37C-4AD0-9709-DDB0200B21B8}F:\steamlibrary\steamapps\common\total war warhammer\warhammer.exe] => (Allow) F:\steamlibrary\steamapps\common\total war warhammer\warhammer.exe
FirewallRules: [{AECA0735-6AAA-4FF4-B34E-26FA64EB7BE8}] => (Allow) F:\SteamLibrary\steamapps\common\GearUp\bin\Traktor.Amalgam.App.exe
FirewallRules: [{D68B5193-170B-41B0-88A7-11887D6A5D36}] => (Allow) F:\SteamLibrary\steamapps\common\GearUp\bin\Traktor.Amalgam.App.exe
FirewallRules: [UDP Query User{D9FAB551-BAF3-4CB7-AEC8-C8E7E61510ED}F:\diabloiii\diablo iii\x64\diablo iii64.exe] => (Block) F:\diabloiii\diablo iii\x64\diablo iii64.exe
FirewallRules: [TCP Query User{523A452C-43A9-4EDB-86D1-6FA953B77CC3}F:\diabloiii\diablo iii\x64\diablo iii64.exe] => (Block) F:\diabloiii\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{F4FCA9FF-AD50-44A6-A435-B5B2585D3C4B}F:\steamlibrary\steamapps\common\cry of fear\cof.exe] => (Allow) F:\steamlibrary\steamapps\common\cry of fear\cof.exe
FirewallRules: [TCP Query User{AF778F83-7E00-4087-BEB2-F1E71A22611E}F:\steamlibrary\steamapps\common\cry of fear\cof.exe] => (Allow) F:\steamlibrary\steamapps\common\cry of fear\cof.exe
FirewallRules: [{4154A57E-ECA1-4A6F-905C-7C719CA02D49}] => (Allow) F:\SteamLibrary\steamapps\common\Cry of Fear\CoFLaunchApp.exe
FirewallRules: [{399E6F6A-7337-4EB3-93DE-B83414A11F9D}] => (Allow) F:\SteamLibrary\steamapps\common\Cry of Fear\CoFLaunchApp.exe
FirewallRules: [{BA40869E-A59B-4636-A081-82F7C292920B}] => (Allow) F:\SteamLibrary\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
FirewallRules: [{12E48360-A5BE-46DD-8486-65894105700A}] => (Allow) F:\SteamLibrary\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
FirewallRules: [{A5E2EBF8-52BB-43D5-AEC0-4A3D23F00D92}] => (Allow) F:\SteamLibrary\steamapps\common\The Walking Dead Season Two\TheWalkingDead2.exe
FirewallRules: [{66F2CE48-30D7-4715-8905-5D69C068C0AE}] => (Allow) F:\SteamLibrary\steamapps\common\The Walking Dead Season Two\TheWalkingDead2.exe
FirewallRules: [UDP Query User{4898BDAC-5B24-46B2-8EDB-85DA58704A3B}F:\steamlibrary\steamapps\common\orcsmustdieunchained\binaries\win64\spitfiregame.exe] => (Allow) F:\steamlibrary\steamapps\common\orcsmustdieunchained\binaries\win64\spitfiregame.exe
FirewallRules: [TCP Query User{A6F0B6D2-E797-4569-9781-25DBCBE54540}F:\steamlibrary\steamapps\common\orcsmustdieunchained\binaries\win64\spitfiregame.exe] => (Allow) F:\steamlibrary\steamapps\common\orcsmustdieunchained\binaries\win64\spitfiregame.exe
FirewallRules: [{D44F3F16-BA59-4AC5-B217-C01F456AB891}] => (Allow) F:\SteamLibrary\steamapps\common\MK10\Binaries\Retail\MKXLauncher.exe
FirewallRules: [{C9F23EF7-2278-4401-89F7-CC9176A18556}] => (Allow) F:\SteamLibrary\steamapps\common\MK10\Binaries\Retail\MKXLauncher.exe
FirewallRules: [{4DE1B302-3414-43DD-AC60-460F44040880}] => (Allow) F:\SteamLibrary\steamapps\common\MK10\Binaries\Retail\MK10.exe
FirewallRules: [{09D63A10-6B8C-4EDB-8156-18BB6F34631C}] => (Allow) F:\SteamLibrary\steamapps\common\MK10\Binaries\Retail\MK10.exe
FirewallRules: [{64154DB6-1642-49FF-ACA4-BB7644DD8505}] => (Allow) F:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe
FirewallRules: [{42D6642A-233D-4378-B545-40C1D8EF89B5}] => (Allow) F:\SteamLibrary\steamapps\common\Stardew Valley\Stardew Valley.exe
FirewallRules: [{25EDF80F-64AF-4C54-9BE7-C9BF341096A6}] => (Allow) F:\SteamLibrary\steamapps\common\OrcsMustDieUnchained\Dashboard\Bin\SpitfireDashboard.exe
FirewallRules: [{0BB79B93-2495-4D8C-86FA-10558AE75FC8}] => (Allow) F:\SteamLibrary\steamapps\common\OrcsMustDieUnchained\Dashboard\Bin\SpitfireDashboard.exe
FirewallRules: [UDP Query User{91CC3828-BFD8-4A4A-BA6E-1CF7B332FAB9}F:\steamlibrary\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe] => (Allow) F:\steamlibrary\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe
FirewallRules: [TCP Query User{0719E0D1-4D77-4B40-8474-6B4AA8488936}F:\steamlibrary\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe] => (Allow) F:\steamlibrary\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe
FirewallRules: [{10EEACD1-FD7E-46B5-AF84-96F62F4279AC}] => (Allow) F:\SteamLibrary\steamapps\common\Orcs Must Die 2\build\release\OrcsMustDie2.exe
FirewallRules: [{3367192B-124B-4854-AC63-D8625D28D7A5}] => (Allow) F:\SteamLibrary\steamapps\common\Orcs Must Die 2\build\release\OrcsMustDie2.exe
FirewallRules: [{EDC404BF-B08E-4585-A455-119B1FD1E9B3}] => (Allow) F:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{E0209E33-3560-45C2-8DEF-4E638AC78AAD}] => (Allow) F:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{55822B41-A910-4C91-9C6C-05D9EFCE7ADC}] => (Allow) F:\SteamLibrary\steamapps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{425E7A24-0159-42CF-9562-59CA3697F9FE}] => (Allow) F:\SteamLibrary\steamapps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{5D1AA418-8BF6-4816-B8E8-096E29CE616F}] => (Allow) F:\SteamLibrary\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{6178F812-BF0F-4601-B3BF-D35BFDF24819}] => (Allow) F:\SteamLibrary\steamapps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{AFAF4CCA-BC34-445C-9132-897AD79167F2}] => (Allow) F:\SteamLibrary\steamapps\common\RESIDENT EVIL 7 biohazard Demo\re7trial.exe
FirewallRules: [{98C255AB-3071-4F86-A7FF-8E45CACA020D}] => (Allow) F:\SteamLibrary\steamapps\common\RESIDENT EVIL 7 biohazard Demo\re7trial.exe
FirewallRules: [{B7C7B301-B053-42A5-9A2F-96911B6D2BBB}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{D63BBE34-1A6A-4A9D-84E4-1E9C796A77AD}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{76795D90-6228-4C1D-977E-9D08F5A268B0}] => (Allow) F:\SteamLibrary\steamapps\common\Half-Life 2 Deathmatch\hl2.exe
FirewallRules: [{5AE08301-3BFE-4DF8-B33C-52D222472483}] => (Allow) F:\SteamLibrary\steamapps\common\Half-Life 2 Deathmatch\hl2.exe
FirewallRules: [UDP Query User{C2BE1511-EED6-4741-9F2A-467723E7448D}D:\games\heroes of the storm\versions\base48548\heroesofthestorm_x64.exe] => (Block) D:\games\heroes of the storm\versions\base48548\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{41DAE25C-A9AE-4D6F-9B18-6B4092835CB4}D:\games\heroes of the storm\versions\base48548\heroesofthestorm_x64.exe] => (Block) D:\games\heroes of the storm\versions\base48548\heroesofthestorm_x64.exe
FirewallRules: [{635057AC-776B-4956-A0E5-9D76C00A73BC}] => (Allow) F:\Shadow Tactics - Blades of the Shogun\Shadow Tactics.exe
FirewallRules: [{A7CC777B-2EFE-4A5D-84ED-E91D444F81DF}] => (Allow) F:\Shadow Tactics - Blades of the Shogun\Shadow Tactics.exe
FirewallRules: [{52204CC5-C636-4BDD-99EF-B89F9FDF6F6A}] => (Allow) F:\SteamLibrary\steamapps\common\mordheim\mordheim.exe
FirewallRules: [{BE4DCBA4-E9D2-4D39-BA7F-CB9B1F84829D}] => (Allow) F:\SteamLibrary\steamapps\common\mordheim\mordheim.exe
FirewallRules: [{C4ACFD51-5231-4DDE-BFBF-C5A68C34E564}] => (Allow) F:\SteamLibrary\steamapps\common\Warhammer End Times Vermintide\binaries\vermintide.exe
FirewallRules: [{D600A2AD-7756-4119-8986-3C301F16F353}] => (Allow) F:\SteamLibrary\steamapps\common\Warhammer End Times Vermintide\binaries\vermintide.exe
FirewallRules: [{2D3CA5E3-B8EA-4173-9F03-307751DCFACE}] => (Allow) F:\SteamLibrary\steamapps\common\Warhammer End Times Vermintide\launcher\launcher.exe
FirewallRules: [{8C7D867C-BC0C-4B4B-AC92-5DBCEE0C7CC9}] => (Allow) F:\SteamLibrary\steamapps\common\Warhammer End Times Vermintide\launcher\launcher.exe
FirewallRules: [{491FC75B-5B4B-4EF0-963C-2BA0E5249450}] => (Allow) F:\SteamLibrary\steamapps\common\Titan Quest Anniversary Edition\WorkshopTool\TQWorkshopTool.exe
FirewallRules: [{2FA69F7A-0E0A-4AAA-BD8F-1EEF2CE4BF05}] => (Allow) F:\SteamLibrary\steamapps\common\Titan Quest Anniversary Edition\WorkshopTool\TQWorkshopTool.exe
FirewallRules: [{0AF56289-5CDD-4DCE-9E2C-F07BDA81936B}] => (Allow) F:\SteamLibrary\steamapps\common\Titan Quest Anniversary Edition\TQ.exe
FirewallRules: [{881BE059-4130-4FD0-9F33-0478E420113B}] => (Allow) F:\SteamLibrary\steamapps\common\Titan Quest Anniversary Edition\TQ.exe
FirewallRules: [{515540E0-8AD8-4DDC-9E13-11DC24717F18}] => (Allow) F:\SteamLibrary\steamapps\common\Okhlos\Okhlos.exe
FirewallRules: [{C4778F0A-1730-4F84-9651-6B5E3F933856}] => (Allow) F:\SteamLibrary\steamapps\common\Okhlos\Okhlos.exe
FirewallRules: [{94E71CD0-0A28-480E-977F-593D4815B6CE}] => (Allow) F:\SteamLibrary\steamapps\common\DiRT 3 Complete Edition\dirt3_game.exe
FirewallRules: [{9FDA36FA-9EC0-4C77-876F-0F0DCB90A017}] => (Allow) F:\SteamLibrary\steamapps\common\DiRT 3 Complete Edition\dirt3_game.exe
FirewallRules: [{40D5D4DC-0016-4EA0-94C8-044D3BBABA14}] => (Allow) D:\Steam\steamapps\common\Cossacks 3\modman.exe
FirewallRules: [{EAF9E8A4-4193-4E7B-86CD-70F6614056F7}] => (Allow) D:\Steam\steamapps\common\Cossacks 3\modman.exe
FirewallRules: [{114D710A-CAFE-4237-AE87-E2A08DAAE189}] => (Allow) F:\SteamLibrary\steamapps\common\Crusader Kings II\CK2game.exe
FirewallRules: [{531615BB-5A03-44E8-9906-AB4F30CFAF09}] => (Allow) F:\SteamLibrary\steamapps\common\Crusader Kings II\CK2game.exe
FirewallRules: [{734A63F3-DA66-425E-94AE-4BFA19D91D2F}] => (Allow) F:\SteamLibrary\steamapps\common\Plants Vs Zombies\PlantsVsZombies.exe
FirewallRules: [{5B3C6969-E3B0-4F77-9186-CBA7212617A5}] => (Allow) F:\SteamLibrary\steamapps\common\Plants Vs Zombies\PlantsVsZombies.exe
FirewallRules: [UDP Query User{D2B80A31-C1B9-4747-95FF-A375778F6CBB}F:\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) F:\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe
FirewallRules: [TCP Query User{F428ACAE-7B51-4812-822C-ED93415ABE1A}F:\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) F:\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe
FirewallRules: [{AACC6917-171E-4631-89F4-2CD1A827DC77}] => (Allow) F:\SteamLibrary\steamapps\common\Rocksmith2014\Rocksmith2014.exe
FirewallRules: [{206E638D-7582-41CE-A008-C49C5FCC1856}] => (Allow) F:\SteamLibrary\steamapps\common\Rocksmith2014\Rocksmith2014.exe
FirewallRules: [{C556AE5E-6C2C-4EE7-918E-3FD54144EDB9}] => (Allow) F:\SteamLibrary\steamapps\common\Rise of the Tomb Raider\ROTTR.exe
FirewallRules: [{0288E53C-DA47-41A3-A844-5DC08C0265E1}] => (Allow) F:\SteamLibrary\steamapps\common\Rise of the Tomb Raider\ROTTR.exe
FirewallRules: [{35D362E1-77EE-4B25-84BF-9D12000B3F40}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1C02EFF0-8264-43DC-AE89-394724CB12FD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{A43A8356-3418-4538-B1CA-0F8BDD923D02}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe
FirewallRules: [UDP Query User{2E979B54-0F0E-4252-B09A-07BB07A575BA}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe
FirewallRules: [{140E0C00-E8A7-4694-87BD-4C88A64F55A1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{66D10926-E681-495A-ACA5-D54F56C9B24E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{28B2664D-E6A5-4241-A1B0-13D4D3B25D3D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{09B595DC-D71E-4AB7-BF17-2B299CE7827F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{4D7ED18F-CBA6-471F-ABF6-6CFFFB2A0A95}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{A8827455-FD19-445F-B6C8-52C7BB705F4F}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{3A132B9C-E341-4CCC-80D1-E1C4489DD9D8}] => (Allow) D:\Steam\steamapps\common\Broforce\Broforce_beta.exe
FirewallRules: [{E2A9DADE-AC55-4CFA-B9E2-682E1C7110E2}] => (Allow) D:\Steam\steamapps\common\Broforce\Broforce_beta.exe
FirewallRules: [{F5CC2D81-7C55-4E0F-A101-314E26781CFD}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MP2-Client\MP2-Client.exe
FirewallRules: [{C7A6EF83-9154-4DE9-BD91-46758196C80B}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MP2-Client\MP2-Client.exe
FirewallRules: [{A785F8D1-2CBE-4087-A6B8-715AFD1B1C9E}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MP2-Client\MP2-Client.exe
FirewallRules: [{8AB52023-4175-4C1A-9429-58A8F46412A4}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MP2-Client\MP2-Client.exe
FirewallRules: [{2F553983-F752-44EE-9AD8-A2A4C91E753F}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MP2-Server\MP2-Server.exe
FirewallRules: [{22FAA22E-6450-4D77-869F-E00C3A577311}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MP2-Server\MP2-Server.exe
FirewallRules: [{21E6A230-9949-4C92-BAC9-F6202A064444}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MP2-Server\MP2-Server.exe
FirewallRules: [{A27E77A7-7F16-49C3-AA6A-B850B0013765}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MP2-Server\MP2-Server.exe
FirewallRules: [{305D08C3-1243-4E70-8FD0-EBACDDC38ED8}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MP2-ServiceMonitor\MP2-ServiceMonitor.exe
FirewallRules: [{D40DB03D-DF39-4261-8C93-89A24639FD11}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MP2-ServiceMonitor\MP2-ServiceMonitor.exe
FirewallRules: [{ED1873CF-2C4F-4246-A977-F84F3608A6A7}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MP2-ServiceMonitor\MP2-ServiceMonitor.exe
FirewallRules: [{1DD552F2-960A-4180-99FF-8C4F24E8BBD7}] => (Allow) C:\Program Files (x86)\Team MediaPortal\MP2-ServiceMonitor\MP2-ServiceMonitor.exe
FirewallRules: [TCP Query User{4846E95F-D5BF-4A2B-995C-42DED2BFAFD6}C:\program files (x86)\team mediaportal\mp2-server\plugins\slimtv.service3\setuptv.exe] => (Allow) C:\program files (x86)\team mediaportal\mp2-server\plugins\slimtv.service3\setuptv.exe
FirewallRules: [UDP Query User{3D218B0C-D780-4B75-A23C-85A2389C7D70}C:\program files (x86)\team mediaportal\mp2-server\plugins\slimtv.service3\setuptv.exe] => (Allow) C:\program files (x86)\team mediaportal\mp2-server\plugins\slimtv.service3\setuptv.exe
FirewallRules: [{77B62886-AB4D-4758-AFCF-A2108018661B}] => (Allow) D:\Steam\steamapps\common\AoW3\AoW3Launcher.exe
FirewallRules: [{95A746E8-092A-49E6-BEFB-352F2C3AF443}] => (Allow) D:\Steam\steamapps\common\AoW3\AoW3Launcher.exe
FirewallRules: [{4C7803DF-738D-42EA-A540-15F08F3D2A88}] => (Allow) D:\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{63661D21-B4FB-43C8-A118-08DC3ADE6B3E}] => (Allow) D:\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [TCP Query User{5FF8A478-6765-4D22-8303-4E71C5C91FE9}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{36B9F6E8-039E-4E40-9DE9-65D34B3C0C26}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [{E52E1B79-83C5-44E1-8B54-A0499D230412}] => (Allow) D:\Steam\steamapps\common\Europa Universalis IV\eu4.exe
FirewallRules: [{E4EEF7BB-8DC8-4277-BAC7-D31693A95809}] => (Allow) D:\Steam\steamapps\common\Europa Universalis IV\eu4.exe
FirewallRules: [TCP Query User{6E58C24D-967C-4B69-86D3-498A583EAE3B}C:\program files\logitech gaming software\lcore.exe] => (Block) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{4586EDA0-4D9E-4AE6-B63A-4A3D7E66868C}C:\program files\logitech gaming software\lcore.exe] => (Block) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [{3266EA34-CDD7-4706-AECE-24B83B91273E}] => (Allow) D:\Steam\steamapps\common\Valkyria Chronicles\Launcher.exe
FirewallRules: [{F595BF5B-5C9F-41A7-A70B-101A506AE77C}] => (Allow) D:\Steam\steamapps\common\Valkyria Chronicles\Launcher.exe
FirewallRules: [TCP Query User{36F73B82-269E-4229-BB10-448743D27F92}C:\program files (x86)\team mediaportal\mp2-servicemonitor\mp2-servicemonitor.exe] => (Block) C:\program files (x86)\team mediaportal\mp2-servicemonitor\mp2-servicemonitor.exe
FirewallRules: [UDP Query User{22CC4C38-11B0-4961-A22C-46E03076ADBE}C:\program files (x86)\team mediaportal\mp2-servicemonitor\mp2-servicemonitor.exe] => (Block) C:\program files (x86)\team mediaportal\mp2-servicemonitor\mp2-servicemonitor.exe
FirewallRules: [{B5A15C4D-66FF-4D3A-963D-954B916EC770}] => (Allow) D:\Steam\steamapps\common\AoW3\AoW3.exe
FirewallRules: [{312CE668-A20D-4C66-BCD9-30AD79D66809}] => (Allow) D:\Steam\steamapps\common\AoW3\AoW3.exe
FirewallRules: [{6CB61CBA-02B9-4729-ABB7-DF532F489E93}] => (Allow) D:\Steam\steamapps\common\AoW3\AoW3_Debug.exe
FirewallRules: [{DDA8461C-F0AC-4A2D-AB6E-7F575D5FE119}] => (Allow) D:\Steam\steamapps\common\AoW3\AoW3_Debug.exe
FirewallRules: [{9C8FEAFE-CDD8-4536-B17C-6387A01B381A}] => (Allow) E:\SteamLibrary\steamapps\common\Resident Evil 6\BH6.exe
FirewallRules: [{3B02E220-79D5-407E-B2F3-7EF0C906553E}] => (Allow) E:\SteamLibrary\steamapps\common\Resident Evil 6\BH6.exe
FirewallRules: [{54531A0D-C24D-40CA-A405-2FD82A94D7D2}] => (Allow) D:\Steam\steamapps\common\7 Days To Die\7DaysToDie_EAC.exe
FirewallRules: [{564AF784-B381-426F-B010-21641E2792A3}] => (Allow) D:\Steam\steamapps\common\7 Days To Die\7DaysToDie_EAC.exe
FirewallRules: [{61F72462-8507-4E16-985D-4B51EECE19D6}] => (Allow) D:\Steam\steamapps\common\7 Days To Die\7DaysToDie.exe
FirewallRules: [{C45D25BC-12F3-43D7-9B3A-90ACBB716FDA}] => (Allow) D:\Steam\steamapps\common\7 Days To Die\7DaysToDie.exe
FirewallRules: [{F106EA40-BE6E-4ECE-A1D8-348FB7DC4F8C}] => (Allow) D:\Steam\steamapps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe
FirewallRules: [{7DD1CF95-26E7-4001-8880-65B3C9A4ED7A}] => (Allow) D:\Steam\steamapps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe
FirewallRules: [{DC82AF07-0883-4DD4-A5B8-0BE1594CF97B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4E462FFC-5B3B-4B16-AA4B-EB2DA8CA6159}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4C4F46A5-6E98-47DD-9C72-49CC3796342E}] => (Allow) D:\Steam\steamapps\common\nmrih\sdk\hl2.exe
FirewallRules: [{8DF4B9B4-C329-4EA0-A793-2057CCD19D38}] => (Allow) D:\Steam\steamapps\common\nmrih\sdk\hl2.exe
FirewallRules: [{FA6C87AC-BC70-45BC-8595-B526F38C1BFF}] => (Allow) E:\SteamLibrary\steamapps\common\HuniePop\HuniePop.exe
FirewallRules: [{117798C0-29FA-47FA-AAAE-BA98B25489DE}] => (Allow) E:\SteamLibrary\steamapps\common\HuniePop\HuniePop.exe
FirewallRules: [{C2D43C99-6FD4-41F8-840D-B941F193F6D4}] => (Allow) E:\SteamLibrary\steamapps\common\Gabriel Knight 1\GK1.exe
FirewallRules: [{9A9103F2-D747-4BDC-96B9-C08FB6D62A85}] => (Allow) E:\SteamLibrary\steamapps\common\Gabriel Knight 1\GK1.exe
FirewallRules: [{A6405B51-CDA2-4459-B7E9-4BD4FDB5EEE2}] => (Allow) E:\SteamLibrary\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{5C136621-9DAB-4A93-902F-CA4A1FF4DD46}] => (Allow) E:\SteamLibrary\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{74EC7039-389F-4004-8CD5-B5BC7FCEF7C9}] => (Allow) E:\SteamLibrary\steamapps\common\Legend of Grimrock 2\grimrock2.exe
FirewallRules: [{67246915-515F-470D-9655-7B11E4093D09}] => (Allow) E:\SteamLibrary\steamapps\common\Legend of Grimrock 2\grimrock2.exe
FirewallRules: [{D22340D6-3AC7-4867-984D-42C10917E8D4}] => (Allow) D:\Steam\steamapps\common\CastleCrashers\castle.exe
FirewallRules: [{11FDFCAC-E1F6-4602-8B88-F0815EB60999}] => (Allow) D:\Steam\steamapps\common\CastleCrashers\castle.exe
FirewallRules: [{4B77374F-A5FE-42A0-8D10-7771D9C49A6D}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{43D02A00-413A-4771-9A2C-37FFF9B2C978}] => (Allow) E:\SteamLibrary\steamapps\common\Runaway The Dream of the Turtle\RunawayTDOTT.exe
FirewallRules: [{D4EF39F9-4129-4B8D-B2D2-E95BB18514F9}] => (Allow) E:\SteamLibrary\steamapps\common\Runaway The Dream of the Turtle\RunawayTDOTT.exe
FirewallRules: [{FAA4CD6C-EE9E-4DE3-A608-28CE5E9BBAA8}] => (Allow) E:\SteamLibrary\steamapps\common\Runaway The Dream of the Turtle\Video card setup.exe
FirewallRules: [{A7071EA9-39CD-4DD4-A483-0312EAEF7DF0}] => (Allow) E:\SteamLibrary\steamapps\common\Runaway The Dream of the Turtle\Video card setup.exe
FirewallRules: [{0D0EE39C-3007-4C5A-8616-8ED281D6BE10}] => (Allow) E:\SteamLibrary\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{4D192491-F225-409E-B351-49962041EA21}] => (Allow) E:\SteamLibrary\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [TCP Query User{90B1677C-0CF5-41CD-99C0-CF8F317548D1}D:\games\gta v\gta5.exe] => (Allow) D:\games\gta v\gta5.exe
FirewallRules: [UDP Query User{4C1198E9-F2D2-493D-95E1-98B2D2706C18}D:\games\gta v\gta5.exe] => (Allow) D:\games\gta v\gta5.exe
FirewallRules: [{066584D6-FBFD-4B14-853B-B2FDF733B14A}] => (Allow) D:\Steam\steamapps\common\Talisman\Talisman.exe
FirewallRules: [{ED180AA0-DAB7-4B68-ACBE-63A8BF87A9C6}] => (Allow) D:\Steam\steamapps\common\Talisman\Talisman.exe
FirewallRules: [{A71040BC-4720-45A9-9360-A1FAA650C10D}] => (Allow) E:\SteamLibrary\steamapps\common\KW2 Battles\kw2b.exe
FirewallRules: [{CC7EA4A7-BC77-4731-A2F3-075948D00B43}] => (Allow) E:\SteamLibrary\steamapps\common\KW2 Battles\kw2b.exe
FirewallRules: [{34E59914-7819-4F71-B50A-E102F96D22A8}] => (Allow) E:\SteamLibrary\steamapps\common\KW2 Battles\options.exe
FirewallRules: [{4A03EE9B-BD13-4ADD-9671-F40EDCCA74B3}] => (Allow) E:\SteamLibrary\steamapps\common\KW2 Battles\options.exe
FirewallRules: [{F0676573-11B5-4560-9D8C-769BF5EF268C}] => (Allow) E:\SteamLibrary\steamapps\common\KW2 Battles\Editor.exe
FirewallRules: [{3434CA63-0814-4562-8307-68262A5E2361}] => (Allow) E:\SteamLibrary\steamapps\common\KW2 Battles\Editor.exe
FirewallRules: [{A7868654-74AF-41D7-8ABF-545EDACDB8E3}] => (Allow) D:\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [{B0A7633D-36B3-4655-B068-3CE80C1B04F5}] => (Allow) D:\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [{7EF598BD-4898-4F24-9BA4-7DA8694BE27E}] => (Allow) E:\SteamLibrary\steamapps\common\Anno 1404\Addon.exe
FirewallRules: [{7FC381BA-21EB-4C31-8AF1-D53D21CDC41D}] => (Allow) E:\SteamLibrary\steamapps\common\Anno 1404\Addon.exe
FirewallRules: [{2B1564A5-C9D8-4B59-926A-F5BD7512DE1C}] => (Allow) E:\SteamLibrary\steamapps\common\Anno 1404\Anno4.exe
FirewallRules: [{3F8A21ED-D5EE-4207-91D7-01A782E9637F}] => (Allow) E:\SteamLibrary\steamapps\common\Anno 1404\Anno4.exe
FirewallRules: [TCP Query User{47882BC3-4970-47F0-99A1-3BBE5A51B58F}E:\steamlibrary\steamapps\common\anno 1404\tools\addonweb.exe] => (Allow) E:\steamlibrary\steamapps\common\anno 1404\tools\addonweb.exe
FirewallRules: [UDP Query User{132E56A7-48B7-4F4C-B1EA-A7406029F194}E:\steamlibrary\steamapps\common\anno 1404\tools\addonweb.exe] => (Allow) E:\steamlibrary\steamapps\common\anno 1404\tools\addonweb.exe
FirewallRules: [{A06796FB-C2ED-4336-BA68-B80918026639}] => (Allow) E:\SteamLibrary\steamapps\common\Age Of Empires 3\bin\age3.exe
FirewallRules: [{19567B14-AEFD-4405-81DC-AF85AD3EEFD6}] => (Allow) E:\SteamLibrary\steamapps\common\Age Of Empires 3\bin\age3.exe
FirewallRules: [{63A39A67-0636-4419-B3D6-FE1DA3AAC306}] => (Allow) E:\SteamLibrary\steamapps\common\Age Of Empires 3\bin\age3x.exe
FirewallRules: [{AD578D31-BD40-46BC-81DE-FE29CED46267}] => (Allow) E:\SteamLibrary\steamapps\common\Age Of Empires 3\bin\age3x.exe
FirewallRules: [{5BF1E71E-DA67-485E-A2DB-4CF8725CD8C2}] => (Allow) E:\SteamLibrary\steamapps\common\Age Of Empires 3\bin\age3y.exe
FirewallRules: [{D52FEF80-F192-48D0-9267-1B7DC832792A}] => (Allow) E:\SteamLibrary\steamapps\common\Age Of Empires 3\bin\age3y.exe
FirewallRules: [TCP Query User{BFB5B234-39B1-4795-A9D5-D0C9E8F79650}E:\steamlibrary\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe] => (Allow) E:\steamlibrary\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [UDP Query User{99B7ECE3-53C5-46F5-AB4C-B35B1DF48607}E:\steamlibrary\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe] => (Allow) E:\steamlibrary\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [TCP Query User{D5013D20-F9E6-4814-AE0C-C73D197AEA03}E:\gog\stronghold hd\stronghold.exe] => (Allow) E:\gog\stronghold hd\stronghold.exe
FirewallRules: [UDP Query User{C1480596-3E25-4575-AE7A-8AD964C05A4D}E:\gog\stronghold hd\stronghold.exe] => (Allow) E:\gog\stronghold hd\stronghold.exe
FirewallRules: [{6063B016-3BD8-4357-8174-73BDEE45D54B}] => (Allow) E:\SteamLibrary\steamapps\common\Stronghold\Stronghold.exe
FirewallRules: [{56AD224A-6E21-4B7F-85BA-7FADC989247F}] => (Allow) E:\SteamLibrary\steamapps\common\Stronghold\Stronghold.exe
FirewallRules: [TCP Query User{E9A48F54-58CC-47DE-B04E-623A5AC5B0DF}C:\users\Hier steht mein Klarname\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\Hier steht mein Klarname\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [UDP Query User{A3D7AA04-F4D5-409A-8C4F-D108A62C9995}C:\users\Hier steht mein Klarname\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\Hier steht mein Klarname\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [TCP Query User{9A3FBB47-5F3A-49D4-B7E5-6FA2E60DE10E}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [UDP Query User{0E4C0354-A67D-4722-8223-6E988B64175D}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [{6B7EBAE4-9940-470E-95FF-1E97E2D2FA67}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{B1EFF8E0-3D0A-4404-9299-BF1CE5B36EDD}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{F949BEAF-B380-4B20-8BF9-B2A41EA94332}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{81A9F16B-5C71-424B-B700-63B5C176CD78}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{46886209-6B17-4306-9E36-4B38C1470805}] => (Allow) D:\Ubisoft Game Launcher\games\Might and Magic Heroes VII\Binaries\Win64\MMH7Game-Win64-Shipping.exe
FirewallRules: [{A4F24801-ADEE-45FE-95D6-5EB8F3E6FE1B}] => (Allow) E:\SteamLibrary\steamapps\common\Dying Light\DyingLightGame.exe
FirewallRules: [{0ED2AB14-05B2-41C3-8FA5-DC4063F54750}] => (Allow) E:\SteamLibrary\steamapps\common\Dying Light\DyingLightGame.exe
FirewallRules: [{2542C1CA-FA0D-4981-99B7-F44A004866FF}] => (Allow) D:\Steam\steamapps\common\7 Days To Die\7dLauncher.exe
FirewallRules: [{84DD39C6-C517-4072-8148-06DEE85CA32C}] => (Allow) D:\Steam\steamapps\common\7 Days To Die\7dLauncher.exe
FirewallRules: [{7BD0BE22-76F9-4F17-A846-80CEEF67FEA2}] => (Allow) D:\Steam\steamapps\common\DB Xenoverse\DBXV.exe
FirewallRules: [{2D56E420-50E6-475F-96DF-8463A8DBDD80}] => (Allow) D:\Steam\steamapps\common\DB Xenoverse\DBXV.exe
FirewallRules: [{69DC666B-B1FD-4995-BBD2-774EB0D57CBA}] => (Allow) D:\Steam\steamapps\common\Zombie Army Trilogy\Launcher\ZATLauncher.exe
FirewallRules: [{27C8B775-3D2A-4EB4-A29B-C9CAA8E6E9A2}] => (Allow) D:\Steam\steamapps\common\Zombie Army Trilogy\Launcher\ZATLauncher.exe
FirewallRules: [{DA86D16D-31D2-4B56-83AF-211FC3431821}] => (Allow) C:\Windows\SysWOW64\lxcgcoms.exe
FirewallRules: [{3A7E4964-C8CF-43B5-BE16-DDB4F24C2A4B}] => (Allow) C:\Windows\SysWOW64\lxcgcoms.exe
FirewallRules: [{A70E3F94-C4ED-40C8-8541-8F4BA7740061}] => (Allow) D:\Steam\steamapps\common\RimWorld\RimWorldWin.exe
FirewallRules: [{97ADF9AC-4D7A-4DDE-81BE-43FCBDEB486F}] => (Allow) D:\Steam\steamapps\common\RimWorld\RimWorldWin.exe
FirewallRules: [{702894FB-3128-45DA-A06D-D582F2DA4D28}] => (Allow) E:\SteamLibrary\steamapps\common\Napoleon Total War\Napoleon.exe
FirewallRules: [{2E6F8A2C-082B-423B-B483-47BD6E5184F0}] => (Allow) E:\SteamLibrary\steamapps\common\Napoleon Total War\Napoleon.exe
FirewallRules: [{72820D37-5E88-407E-BC79-04FE6285A1C4}] => (Allow) E:\SteamLibrary\steamapps\common\Lego Batman\LEGOBatman.exe
FirewallRules: [{D4AA2009-8861-44EF-BD0A-F947EC7314AA}] => (Allow) E:\SteamLibrary\steamapps\common\Lego Batman\LEGOBatman.exe
FirewallRules: [{109A41A4-13C5-4C9E-83D6-37577AD91DD9}] => (Allow) E:\SteamLibrary\steamapps\common\Kingdom New Lands\Kingdom.exe
FirewallRules: [{F210E0D2-32B5-478B-A857-91C19E96EC91}] => (Allow) E:\SteamLibrary\steamapps\common\Kingdom New Lands\Kingdom.exe
FirewallRules: [{37A481B9-EA84-4D9D-AB37-361CB81BDEA4}] => (Allow) E:\SteamLibrary\steamapps\common\Of Orcs And Men\OfOrcsAndMen_Steam.exe
FirewallRules: [{90782155-291E-4A48-AA52-09E9C20CF7DA}] => (Allow) E:\SteamLibrary\steamapps\common\Of Orcs And Men\OfOrcsAndMen_Steam.exe
FirewallRules: [{5EE2F51E-BE03-41E7-AC2D-B24FB2422515}] => (Allow) D:\Steam\steamapps\common\The Curious Expedition\electron.exe
FirewallRules: [{B70A2F03-F020-4F22-A8D5-15C8EEBB869A}] => (Allow) D:\Steam\steamapps\common\The Curious Expedition\electron.exe
FirewallRules: [{947A096D-92C5-43E7-B392-BBBF2C2F5A29}] => (Allow) D:\Steam\steamapps\common\R.U.S.E\Ruse.exe
FirewallRules: [{F407F0E6-A961-4A03-B5DC-C2E7781B287A}] => (Allow) D:\Steam\steamapps\common\R.U.S.E\Ruse.exe
FirewallRules: [{53C92BAB-BB65-4400-B5D7-002164FD6F30}] => (Allow) D:\Steam\steamapps\common\Mother Russia Bleeds\Mother Russia Bleeds.exe
FirewallRules: [{AF590E0F-A6E3-4C81-BEFA-D008B45E6E17}] => (Allow) D:\Steam\steamapps\common\Mother Russia Bleeds\Mother Russia Bleeds.exe
FirewallRules: [{958D9C3B-7903-4663-B3CC-C26B3C3E11CF}] => (Allow) D:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{8C66D075-67F9-4525-B50C-36730DDB2214}] => (Allow) D:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{D5ABAAE8-09F3-4436-B9EC-5240C5FDA5DD}] => (Allow) D:\Steam\steamapps\common\Gauntlet\binaries\gauntlet.exe
FirewallRules: [{A738FCCB-2C9A-4DBC-A467-D00832FB04F2}] => (Allow) D:\Steam\steamapps\common\Gauntlet\binaries\gauntlet.exe
FirewallRules: [{5F8505D9-1818-413B-B58B-1C8C1CE6DD3A}] => (Allow) D:\Steam\steamapps\common\Cossacks 3\cossacks.exe
FirewallRules: [{BFFBD4B7-FA0C-4F00-9641-53304096799C}] => (Allow) D:\Steam\steamapps\common\Cossacks 3\cossacks.exe
FirewallRules: [{C332A026-B259-42C0-AA62-C41270A5AEC7}] => (Allow) D:\Steam\steamapps\common\Cossacks 3\config.exe
FirewallRules: [{72E00AB6-1AD1-4DF8-AEEB-0E208122156B}] => (Allow) D:\Steam\steamapps\common\Cossacks 3\config.exe
FirewallRules: [{6C30D6B9-4793-4F6E-8136-470DDE349C2F}] => (Allow) D:\Steam\steamapps\common\Cossacks 3\editor.exe
FirewallRules: [{86F3046B-8276-4DEA-B881-C12FA893E91B}] => (Allow) D:\Steam\steamapps\common\Cossacks 3\editor.exe
FirewallRules: [{60ACD583-649A-4E79-AD65-4ED4D50A68E2}] => (Allow) F:\SteamLibrary\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{D18038AF-A111-4658-A6C4-F5C3EB2218A8}] => (Allow) F:\SteamLibrary\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{09C25C0B-B4A6-445D-AE96-17877C1AEEFF}] => (Allow) F:\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{35FCED7D-1F75-41E5-8560-A6B58C885854}] => (Allow) F:\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{5E2C5A35-BEB6-44EA-8327-7F9B313E3E34}] => (Allow) F:\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe
FirewallRules: [{937E76C1-3FD4-4C87-ABCC-4C0DCF1ADEA1}] => (Allow) F:\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe
FirewallRules: [{FDB8175D-E24B-43AC-A352-81FDC3EE3E58}] => (Allow) F:\SteamLibrary\steamapps\common\Final Exam\final_exam.exe
FirewallRules: [{33C49643-698D-4B30-B0C6-6BBC30E64092}] => (Allow) F:\SteamLibrary\steamapps\common\Final Exam\final_exam.exe
FirewallRules: [{3473DAED-1C71-4D09-8374-2CC20EB8FF45}] => (Allow) F:\SteamLibrary\steamapps\common\Duke Nukem Forever\System\DukeForever.exe
FirewallRules: [{20FD22E3-772E-44C4-A6F1-47F8AFAE50E7}] => (Allow) F:\SteamLibrary\steamapps\common\Duke Nukem Forever\System\DukeForever.exe
FirewallRules: [{877A4973-1B96-453D-8AEF-858399E81A81}] => (Allow) F:\SteamLibrary\steamapps\common\Deadlight\Binaries\Win32\LOTDGame.exe
FirewallRules: [{23CEEA1D-F984-4980-B84A-C92740E4441E}] => (Allow) F:\SteamLibrary\steamapps\common\Deadlight\Binaries\Win32\LOTDGame.exe
FirewallRules: [{29EE0ACE-37AB-4492-AD62-0B4B34CDA53E}] => (Allow) F:\SteamLibrary\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{E610C3A9-1F36-46B1-BE16-60EE727D42FE}] => (Allow) F:\SteamLibrary\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
==================== Wiederherstellungspunkte =========================
ACHTUNG: Systemwiederherstellung ist deaktiviert
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (05/18/2017 07:02:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iMONAUDnldMng.exe, Version: 8.0.0.408, Zeitstempel: 0x4d9eb921
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.15063.0, Zeitstempel: 0xa82cc161
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0004142e
ID des fehlerhaften Prozesses: 0x223c
Startzeit der fehlerhaften Anwendung: 0x01d2cff8862301b8
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\SoundGraph\iMON\iMONAUDnldMng.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: 6e55173c-95d1-497f-bac1-68ba157f77e4
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/18/2017 07:02:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: iMONAUDnldMng.exe, Version: 8.0.0.408, Zeitstempel: 0x4d9eb921
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.15063.0, Zeitstempel: 0xa82cc161
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0004142e
ID des fehlerhaften Prozesses: 0x223c
Startzeit der fehlerhaften Anwendung: 0x01d2cff8862301b8
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\SoundGraph\iMON\iMONAUDnldMng.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: ae849ecf-44b2-478f-91c9-be02415196bc
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (05/18/2017 07:01:38 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-GK5LQJP)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2147024865. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (05/18/2017 07:01:38 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-GK5LQJP)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2147024865. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (05/18/2017 07:01:38 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-GK5LQJP)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2147024865. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (05/18/2017 07:01:38 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-GK5LQJP)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (05/18/2017 07:01:38 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-GK5LQJP)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (05/18/2017 07:01:38 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-GK5LQJP)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (05/18/2017 07:01:38 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-GK5LQJP)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (05/18/2017 07:00:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: LogonUI.exe, Version: 10.0.15063.0, Zeitstempel: 0xccf07184
Name des fehlerhaften Moduls: USBKeyCredentialProvider.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x53d9fa55
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000002b4a8
ID des fehlerhaften Prozesses: 0x95c
Startzeit der fehlerhaften Anwendung: 0x01d2cff8387ea83a
Pfad der fehlerhaften Anwendung: C:\WINDOWS\system32\LogonUI.exe
Pfad des fehlerhaften Moduls: USBKeyCredentialProvider.dll
Berichtskennung: 5f755da6-20cd-4600-9d32-8026191814e4
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Systemfehler:
=============
Error: (05/18/2017 07:01:38 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-GK5LQJP)
Description: Ein DCOM-Server konnte nicht gestartet werden: Microsoft.Windows.Cortana_1.8.12.15063_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXx19q0gyvntjc9d3jsjsfaertqgy617se.mca als Nicht verfügbar/Nicht verfügbar. Fehler:
"31"
Aufgetreten beim Start dieses Befehls:
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (05/18/2017 07:01:38 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-GK5LQJP)
Description: Ein DCOM-Server konnte nicht gestartet werden: Microsoft.Windows.Cortana_1.8.12.15063_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca als Nicht verfügbar/Nicht verfügbar. Fehler:
"31"
Aufgetreten beim Start dieses Befehls:
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (05/18/2017 07:01:38 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-GK5LQJP)
Description: Ein DCOM-Server konnte nicht gestartet werden: Microsoft.Windows.Cortana_1.8.12.15063_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXjytc7c0yvwb8n3cw0r82k4364sd1s7bv.mca als Nicht verfügbar/Nicht verfügbar. Fehler:
"31"
Aufgetreten beim Start dieses Befehls:
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (05/18/2017 06:58:20 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "BranchCache" wurde mit dem folgenden dienstspezifischen Fehler beendet:
Dieses Programm wurde durch eine Gruppenrichtlinie geblockt. Wenden Sie sich an den Systemadministrator, um weitere Informationen zu erhalten.
Error: (05/18/2017 06:58:16 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: Dieser Computer ist als Mitglied einer Arbeitsgruppe konfiguriert, nicht als
Mitglied einer Domäne. Der Anmeldedienst braucht bei dieser
Konfiguration nicht gestartet zu sein.
Error: (05/18/2017 06:57:48 PM) (Source: WinRM) (EventID: 10142) (User: )
Description: Der WinRM-Dienst kann den Listener mit der Adresse * und der Transporteinstellung "HTTP" nicht migrieren. Ein Listener mit dieser Adress- und Transportkonfiguration ist bereits vorhanden.
Error: (05/18/2017 06:55:49 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "SDWSCService" ist vom Dienst "wscsvc" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
Error: (05/18/2017 06:55:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "CldFlt" wurde aufgrund folgenden Fehlers nicht gestartet:
Die Anforderung wird nicht unterstützt.
Error: (05/18/2017 06:55:02 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Der Dienst "lxcg_device" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.
Error: (05/18/2017 06:54:02 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: Der Server "{A47979D2-C419-11D9-A5B4-001185AD2B89}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
CodeIntegrity:
===================================
Date: 2017-05-18 19:07:23.587
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-18 19:07:23.585
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-18 19:07:23.575
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-18 19:07:23.574
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-18 19:06:50.045
Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-18 19:06:50.044
Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-18 19:06:49.778
Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-18 19:06:49.776
Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-18 19:06:47.921
Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-18 19:06:47.920
Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume6\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-4690K CPU @ 3.50GHz
Prozentuale Nutzung des RAM: 35%
Installierter physikalischer RAM: 12236.26 MB
Verfügbarer physikalischer RAM: 7924.48 MB
Summe virtueller Speicher: 14668.26 MB
Verfügbarer virtueller Speicher: 9676.19 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:118.69 GB) (Free:26.78 GB) NTFS
Drive d: (Spiele) (Fixed) (Total:232.88 GB) (Free:4.79 GB) NTFS
Drive e: (Spiele 2) (Fixed) (Total:238.35 GB) (Free:7.53 GB) NTFS
Drive f: (Spiele 3) (Fixed) (Total:894.13 GB) (Free:263.02 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 0631DC06)
Partition: GPT.
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 894.3 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 70C058B5)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
20.05.2017, 19:57
| #3 |
| | Win 10: Bildschirmtastatur zeigt aktivität ohne Eingabe, Lautstärke an/aus, Browser Fenster öffnen sich, Virus? Update:
__________________Ich habe jetzt zunächst einmal meinen Funkempfänger von Logitech und meinen X-Box Controller getrennt, sowie die Gerätetreiber für das VR-Display von Imon deinstalliert Mittels Keylogger (Tool Actual Keylogger) habe ich die Eingaben mitgeloggt. Leider zeigt der Keylogger nur die Keystrokes an die gerade im aktiven Programm passieren und ich habe auch erst aufzeichnen können, als es bereits passierte. Hier ein paar Mitschnitte aus den Programmen, die aufgerufen werden. Desktop: Code:
ATTFilter Time: 20.05.2017 20:31:08
Window Caption: Desktop
Application path: C:\Windows\explorer.exe
Username: Mein Benutzername
Keystrokes:
QQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQ
Code:
ATTFilter Time: 20.05.2017 20:31:18
Window Caption: Neuer Tab - Google Chrome
Application path: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Username: Mein Benutzername
Keystrokes:
QQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQwQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQwQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQQtQQQ[ZIRKUMFLEX]QQQrQQQQoQQQja
Code:
ATTFilter Time: 20.05.2017 20:31:18
Window Caption: Groove-Musik
Application path: C:\Windows\System32\ApplicationFrameHost.exe
Username: Mein Benutzername
Keystrokes:
[Home][Del][ZIRKUMFLEX][F1][F2]
Code:
ATTFilter Time: 20.05.2017 20:34:50
Window Caption: Mail
Application path: C:\Windows\System32\ApplicationFrameHost.exe
Username: Mein Benutzername
Keystrokes:
[STRG]5[STRG][AKUT]D[AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT][AKUT]QQQQ[Del]6[F8][ZIRKUMFLEX][F2]5[STRG][AKUT][Ins]ßQ[PgUp][STRG]MD
Für jede weitere Empfehlung/Rat wäre ich sehr dankbar. P.s. Ich weiß das wohl eine Neuinstallation die "einfachste" Lösung wäre, aber solange ich die Ursache nicht kenne, weiß ich auch nicht ob sich das Problem dadurch lösen würde. |
|
| Themen zu Win 10: Bildschirmtastatur zeigt aktivität ohne Eingabe, Lautstärke an/aus, Browser Fenster öffnen sich, Virus? |
| audio aus, avast, bildschirm, browser, browser öffnet fenster, email, fenster öffnen sich, hijack, hijackthis, internetverbindung, logitech, mediaplayer, microsoft, musik, node.js, problem, scan, seite, spiele, startseite, tastatureingaben, trojaner, unregelmäßige, verbindung, viren, viren scanner, virus, virus?, wiederholt, windowsapps, öffnet |
Linear-Darstellung
