Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Windows 10: rundll32.exe CPU Auslastung

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 30.08.2018, 02:23   #1
Michi55
 
Windows 10: rundll32.exe CPU Auslastung - Standard

Windows 10: rundll32.exe CPU Auslastung



Mein Problem ist folgendes, sobald ich meine Computer hochfahre passiert es in letzter Zeit das sich die Datei rundll32.exe mehrmals meldet und somit meine CPU und Arbeitsspeicher auf 100% auslastet. Ich bin mir nicht ganz sicher ob das jetzt ein Virus sein soll da er sich mal nicht meldet mal doch also Frage ich hier mal aus Sicherheit nach. Es gibt auch keine großen Angaben wo sich diese exe startet also ich meine damit in meinem Task Manager zeigt sich an das sie über NVContainer läuft und über avast Dateien. Hauptsächlich großartig raus lesen kann ich da nie was da mein Computer demnach komplett einfriert.

Hier ist die FRST File:

Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 23.08.2018
durchgeführt von micha (Administrator) auf DESKTOP-AHG77M6 (30-08-2018 02:21:58)
Gestartet von D:\FRST
Geladene Profile: micha (Verfügbare Profile: micha)
Platform: Windows 10 Home Version 1803 17134.228 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Ralink Technology, Corp.) C:\Program Files (x86)\TOTOLINK\Common\RaRegistry64.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(Ralink Technology, Corp.) C:\Program Files (x86)\TOTOLINK\Common\RaRegistry.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Parsec) C:\Program Files\Parsec\pservice.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Scarlet.Crush Productions) D:\ScpServer\bin\ScpService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Electronic Arts) D:\Origin\OriginWebHelperService.exe
(CyberGhost S.A.) C:\Program Files\CyberGhost 6\CyberGhost.Service.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Akamai Technologies, Inc.) C:\Users\micha\AppData\Local\Akamai\netsession_win.exe
(f.lux Software LLC) C:\Users\micha\AppData\Local\FluxSoftware\Flux\flux.exe
(Akamai Technologies, Inc.) C:\Users\micha\AppData\Local\Akamai\netsession_win.exe
(Valve Corporation) D:\Program Files (x86)\Steam\Steam.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.0_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9217024 2017-04-13] (Realtek Semiconductor)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242392 2018-08-26] (AVAST Software)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [316392 2018-05-11] (Adobe Systems, Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => D:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5885352 2018-05-30] (LogMeIn Inc.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ACHTUNG
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Run: [Discord] => C:\Users\micha\AppData\Local\Discord\app-0.0.301\Discord.exe [57816920 2018-04-30] (Discord Inc.)
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Run: [Akamai NetSession Interface] => C:\Users\micha\AppData\Local\Akamai\netsession_win.exe [4586456 2018-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 6\CyberGhost.exe [1398352 2018-06-11] (CyberGhost S.A.)
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Run: [f.lux] => C:\Users\micha\AppData\Local\FluxSoftware\Flux\flux.exe [1806344 2018-07-03] (f.lux Software LLC)
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [3207968 2018-08-27] (Valve Corporation)
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Run: [Spotify] => C:\Users\micha\AppData\Roaming\Spotify\Spotify.exe [24453008 2018-08-29] (Spotify Ltd)
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Run: [Ubisoft Game Launcher] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe [470872 2018-08-23] (Ubisoft)
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Run: [AvastBrowserAutoLaunch_E8760D060CAF6C1EB31EBFCD30386D60] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1734024 2018-08-13] (AVAST Software)
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Run: [Parsec.App.0] => C:\Users\micha\AppData\Roaming\Parsec\electron\parsec.exe [80666112 2018-07-27] (Parsec Cloud, Inc.)
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Run: [EpicGamesLauncher] => "D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Ralink Wireless Utility.lnk [2017-07-03]
ShortcutTarget: Ralink Wireless Utility.lnk -> C:\Program Files (x86)\TOTOLINK\Common\RaUI.exe (Ralink Technology, Corp.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TOTOLINK Wireless Utility.lnk [2016-07-08]
ShortcutTarget: TOTOLINK Wireless Utility.lnk -> C:\Program Files (x86)\TOTOLINK\Common\RaUI.exe (Ralink Technology, Corp.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{93c5caab-8ba9-482e-afd0-628435dae7b9}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{ecf2f916-80d0-4af9-a1ef-9348dea31aa0}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre-10.0.2\bin\ssv.dll => Keine Datei
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre-10.0.2\bin\jp2ssv.dll [2018-07-18] (Oracle Corporation)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_30_0_0_154.dll [2018-08-19] ()
FF Plugin: @java.com/DTPlugin,version=13.0.2 -> C:\Program Files\Java\jre-10.0.2\bin\dtplugin\npDeployJava1.dll [2018-07-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=13.0.2.0 -> C:\Program Files\Java\jre-10.0.2\bin\plugin2\npjp2.dll [2018-07-18] (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_154.dll [2018-08-19] ()
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npNxGameEU.dll [2016-10-28] (Nexon)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-08-21] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-08-21] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3159779420-2504212275-734065462-1001: @my.com/Games -> C:\Users\micha\AppData\Local\MyComGames\NPMyComDetector.dll [Keine Datei]

Chrome: 
=======
CHR Profile: C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default [2018-08-30]
CHR Extension: (Präsentationen) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (BetterTTV) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2017-11-20]
CHR Extension: (Docs) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-08]
CHR Extension: (YouTube) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-08]
CHR Extension: (Adblock Plus) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-08-28]
CHR Extension: (Avast Online Security (BETA)) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2018-08-17]
CHR Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-08-20]
CHR Extension: (FrankerFaceZ) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2018-06-11]
CHR Extension: (Tabellen) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Google Docs Offline) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-17]
CHR Extension: (Avast Online Security) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-04-18]
CHR Extension: (Black red shards) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpjlkkaalgfbbegfnjoclhfidancjpch [2018-01-13]
CHR Extension: (Instant Gaming) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbnoedlobifdhbpjkcfhcbdcjhampmne [2018-02-02]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (vidIQ Vision for YouTube) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pachckjkecffpdphbpmfolblodfkgbhl [2018-08-29]
CHR Extension: (Google Mail) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-08]
CHR Extension: (Chrome Media Router) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-08-02]
CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lobonlhedgiilkfmbbbfhkaoefacipgj] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2321384 2018-05-11] (Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2128872 2018-05-11] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7994520 2018-08-26] (AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-12] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [322464 2018-08-26] (AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-12] (AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2018-08-26] (AVAST Software)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2016-08-09] (BitRaider, LLC)
R2 CG6Service; C:\Program Files\CyberGhost 6\CyberGhost.Service.exe [204880 2018-06-11] (CyberGhost S.A.)
R2 Ds3Service; D:\ScpServer\bin\ScpService.exe [381952 2014-03-13] (Scarlet.Crush Productions) [Datei ist nicht signiert]
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [774272 2018-08-23] (EasyAntiCheat Ltd)
S3 GalaxyClientService; D:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [686664 2018-07-31] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [8942664 2018-07-31] (GOG.com)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3346856 2018-05-30] (LogMeIn Inc.)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc.)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [8019808 2018-03-29] (INCA Internet Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-30] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-30] (NVIDIA Corporation)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2212672 2018-08-07] (Electronic Arts)
R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3083080 2018-08-07] (Electronic Arts)
R2 Parsec; C:\Program Files\Parsec\pservice.exe [190536 2018-07-27] (Parsec)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2016-12-07] ()
R2 RalinkRegistryWriter; C:\Program Files (x86)\TOTOLINK\Common\RaRegistry.exe [383280 2013-09-12] (Ralink Technology, Corp.)
R2 RalinkRegistryWriter64; C:\Program Files (x86)\TOTOLINK\Common\RaRegistry64.exe [452912 2013-09-12] (Ralink Technology, Corp.)
S3 RaMediaServer; C:\Program Files (x86)\TOTOLINK\Common\RaMediaServer.exe [1863680 2013-09-12] (Ralink) [Datei ist nicht signiert]
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10945776 2017-12-15] (TeamViewer GmbH)
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [142440 2017-12-14] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4451616 2018-04-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [106904 2018-08-03] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [199712 2018-08-26] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [229384 2018-08-26] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [201320 2018-08-26] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [346664 2018-08-26] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [59568 2018-08-26] (AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15360 2018-07-14] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [249016 2018-08-26] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46968 2018-08-26] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [163272 2018-08-26] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111864 2018-08-26] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [87904 2018-08-28] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1027720 2018-08-26] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [467232 2018-08-26] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [214800 2018-08-26] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [381560 2018-08-26] (AVAST Software)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2016-08-09] (BitRaider)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 netr28x; C:\WINDOWS\System32\drivers\netr28x.sys [2537984 2018-04-12] (MediaTek Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_f5be1f8d25335236\nvlddmkm.sys [17212744 2018-08-22] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30656 2018-07-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69544 2018-07-30] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [65792 2018-07-30] (NVIDIA Corporation)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
R3 VBAudioVACMME; C:\WINDOWS\system32\DRIVERS\vbaudio_cable64_win7.sys [41192 2014-09-02] (Windows (R) Win 7 DDK provider)
R3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [53128 2018-01-19] (Benjamin Höglinger-Stelzer)
S3 VUSB3HUB; C:\WINDOWS\System32\drivers\ViaHub3.sys [227840 2013-12-11] (VIA Technologies, Inc.)
S3 VUSBSTOR; C:\WINDOWS\System32\Drivers\vusbstor.sys [86064 2013-01-18] (VIA Technologies, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [48656 2018-08-29] (Wellbia.com Co., Ltd.)
S3 X6va063; \??\C:\WINDOWS\SysWoW64\Drivers\X6va063 [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2018-08-30 01:44 - 2018-08-30 00:10 - 002413056 _____ (Farbar) C:\Users\micha\Desktop\FRST64.exe
2018-08-30 01:15 - 2018-08-30 01:21 - 000000140 _____ C:\WINDOWS\Reimage.ini
2018-08-30 00:27 - 2018-08-30 01:31 - 000000000 ____D C:\ProgramData\SecTaskMan
2018-08-30 00:27 - 2018-08-30 00:27 - 000000889 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spy Protector.lnk
2018-08-30 00:27 - 2018-08-30 00:27 - 000000884 _____ C:\Users\Public\Desktop\Security Task Manager.lnk
2018-08-30 00:27 - 2018-08-30 00:27 - 000000884 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Task Manager.lnk
2018-08-30 00:12 - 2018-08-30 02:21 - 000000000 ____D C:\FRST
2018-08-29 17:05 - 2018-08-29 17:05 - 000000000 ____D C:\Users\micha\AppData\LocalLow\Codename Entertainment
2018-08-29 01:26 - 2018-08-29 01:33 - 000000140 _____ C:\WINDOWS\restoro.ini
2018-08-28 15:05 - 2018-08-21 12:24 - 000132408 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2018-08-28 15:02 - 2018-08-22 18:14 - 001420648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2018-08-28 15:02 - 2018-08-22 18:14 - 001093640 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2018-08-28 15:02 - 2018-08-22 18:14 - 000628560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2018-08-28 15:02 - 2018-08-22 18:14 - 000518832 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 040348400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 035251600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 004354208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 003770072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 002016600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439907.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 001564496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 001469144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439907.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 001218056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 000751264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 000609496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 031252104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 025967968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 017756392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 015170608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 013733544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 011277848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 004128112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 001350792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 001160520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 001067288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 000908032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 000817800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 000656352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2018-08-27 21:27 - 2018-08-27 21:27 - 000000643 _____ C:\Users\Public\Desktop\League of Legends.lnk
2018-08-27 21:27 - 2018-08-27 21:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2018-08-27 20:50 - 2018-08-28 23:39 - 000000000 ___RD C:\Users\micha\Creative Cloud Files
2018-08-26 19:28 - 2018-08-26 19:28 - 000379608 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2018-08-23 18:59 - 2018-08-23 18:59 - 000000000 ____D C:\ProgramData\For Honor Data
2018-08-17 20:18 - 2018-08-23 18:59 - 000000000 ____D C:\Users\micha\AppData\Roaming\EasyAntiCheat
2018-08-14 19:36 - 2018-08-03 05:39 - 007519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-08-14 19:36 - 2018-08-03 05:25 - 006568784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-08-14 19:36 - 2018-08-03 05:23 - 025846784 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-08-14 19:36 - 2018-08-03 05:18 - 022714880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-08-14 19:35 - 2018-08-03 10:39 - 021389368 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-08-14 19:35 - 2018-08-03 10:39 - 000790304 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-08-14 19:35 - 2018-08-03 10:25 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2018-08-14 19:35 - 2018-08-03 10:25 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-08-14 19:35 - 2018-08-03 10:24 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2018-08-14 19:35 - 2018-08-03 10:24 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2018-08-14 19:35 - 2018-08-03 10:24 - 000046592 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2018-08-14 19:35 - 2018-08-03 10:22 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2018-08-14 19:35 - 2018-08-03 10:21 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2018-08-14 19:35 - 2018-08-03 10:21 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2018-08-14 19:35 - 2018-08-03 10:21 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2018-08-14 19:35 - 2018-08-03 10:21 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-08-14 19:35 - 2018-08-03 10:20 - 004049408 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2018-08-14 19:35 - 2018-08-03 10:20 - 003652608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-08-14 19:35 - 2018-08-03 10:20 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2018-08-14 19:35 - 2018-08-03 10:19 - 001661440 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-08-14 19:35 - 2018-08-03 09:45 - 000663128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2018-08-14 19:35 - 2018-08-03 09:43 - 020383720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-08-14 19:35 - 2018-08-03 09:33 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2018-08-14 19:35 - 2018-08-03 09:33 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-08-14 19:35 - 2018-08-03 09:32 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2018-08-14 19:35 - 2018-08-03 09:30 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2018-08-14 19:35 - 2018-08-03 09:29 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2018-08-14 19:35 - 2018-08-03 09:29 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-08-14 19:35 - 2018-08-03 09:28 - 002895360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-08-14 19:35 - 2018-08-03 09:27 - 004050432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2018-08-14 19:35 - 2018-08-03 09:27 - 001469952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2018-08-14 19:35 - 2018-08-03 07:41 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2018-08-14 19:35 - 2018-08-03 06:49 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2018-08-14 19:35 - 2018-08-03 05:47 - 001034624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-08-14 19:35 - 2018-08-03 05:47 - 000128920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys
2018-08-14 19:35 - 2018-08-03 05:46 - 000272296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2018-08-14 19:35 - 2018-08-03 05:46 - 000269248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-08-14 19:35 - 2018-08-03 05:41 - 000568600 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2018-08-14 19:35 - 2018-08-03 05:41 - 000077608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2018-08-14 19:35 - 2018-08-03 05:41 - 000061736 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2018-08-14 19:35 - 2018-08-03 05:40 - 001221048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-08-14 19:35 - 2018-08-03 05:40 - 001064744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2018-08-14 19:35 - 2018-08-03 05:40 - 001030952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-08-14 19:35 - 2018-08-03 05:40 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2018-08-14 19:35 - 2018-08-03 05:40 - 000228136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ucx01000.sys
2018-08-14 19:35 - 2018-08-03 05:40 - 000136488 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-08-14 19:35 - 2018-08-03 05:40 - 000072800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2018-08-14 19:35 - 2018-08-03 05:39 - 009091480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-08-14 19:35 - 2018-08-03 05:39 - 007436120 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-08-14 19:35 - 2018-08-03 05:39 - 002829216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-08-14 19:35 - 2018-08-03 05:39 - 001457136 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-08-14 19:35 - 2018-08-03 05:39 - 000709824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-08-14 19:35 - 2018-08-03 05:39 - 000692240 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2018-08-14 19:35 - 2018-08-03 05:39 - 000170936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-08-14 19:35 - 2018-08-03 05:39 - 000114080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2018-08-14 19:35 - 2018-08-03 05:39 - 000075160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2018-08-14 19:35 - 2018-08-03 05:39 - 000031648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys
2018-08-14 19:35 - 2018-08-03 05:38 - 002765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-08-14 19:35 - 2018-08-03 05:38 - 001945792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-08-14 19:35 - 2018-08-03 05:38 - 001285536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-08-14 19:35 - 2018-08-03 05:38 - 001258288 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-08-14 19:35 - 2018-08-03 05:38 - 001140576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-08-14 19:35 - 2018-08-03 05:38 - 001097648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-08-14 19:35 - 2018-08-03 05:38 - 000983016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-08-14 19:35 - 2018-08-03 05:38 - 000885856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-08-14 19:35 - 2018-08-03 05:38 - 000713368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2018-08-14 19:35 - 2018-08-03 05:38 - 000604576 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-08-14 19:35 - 2018-08-03 05:38 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2018-08-14 19:35 - 2018-08-03 05:38 - 000115640 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2018-08-14 19:35 - 2018-08-03 05:27 - 000061032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2018-08-14 19:35 - 2018-08-03 05:26 - 006043600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-08-14 19:35 - 2018-08-03 05:25 - 002255008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-08-14 19:35 - 2018-08-03 05:25 - 001622296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-08-14 19:35 - 2018-08-03 05:25 - 001131064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-08-14 19:35 - 2018-08-03 05:25 - 000583120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2018-08-14 19:35 - 2018-08-03 05:25 - 000568568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-08-14 19:35 - 2018-08-03 05:25 - 000539168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2018-08-14 19:35 - 2018-08-03 05:18 - 022007808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-08-14 19:35 - 2018-08-03 05:17 - 004380160 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-08-14 19:35 - 2018-08-03 05:17 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgid.sys
2018-08-14 19:35 - 2018-08-03 05:16 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-08-14 19:35 - 2018-08-03 05:16 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsProxyStub.dll
2018-08-14 19:35 - 2018-08-03 05:16 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2018-08-14 19:35 - 2018-08-03 05:15 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-08-14 19:35 - 2018-08-03 05:15 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2018-08-14 19:35 - 2018-08-03 05:14 - 004867584 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-08-14 19:35 - 2018-08-03 05:14 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2018-08-14 19:35 - 2018-08-03 05:14 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-08-14 19:35 - 2018-08-03 05:14 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSAssessment.dll
2018-08-14 19:35 - 2018-08-03 05:13 - 019404288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-08-14 19:35 - 2018-08-03 05:13 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-08-14 19:35 - 2018-08-03 05:13 - 003395072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-08-14 19:35 - 2018-08-03 05:13 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-08-14 19:35 - 2018-08-03 05:13 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-08-14 19:35 - 2018-08-03 05:12 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-08-14 19:35 - 2018-08-03 05:12 - 002738688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-08-14 19:35 - 2018-08-03 05:12 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-08-14 19:35 - 2018-08-03 05:12 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2018-08-14 19:35 - 2018-08-03 05:12 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-08-14 19:35 - 2018-08-03 05:12 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2018-08-14 19:35 - 2018-08-03 05:11 - 007577088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-08-14 19:35 - 2018-08-03 05:11 - 005746688 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2018-08-14 19:35 - 2018-08-03 05:11 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-08-14 19:35 - 2018-08-03 05:11 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-08-14 19:35 - 2018-08-03 05:11 - 002172928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-08-14 19:35 - 2018-08-03 05:11 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-08-14 19:35 - 2018-08-03 05:11 - 000983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2018-08-14 19:35 - 2018-08-03 05:11 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2018-08-14 19:35 - 2018-08-03 05:11 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-08-14 19:35 - 2018-08-03 05:10 - 001535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-08-14 19:35 - 2018-08-03 05:10 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2018-08-14 19:35 - 2018-08-03 05:09 - 005776896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-08-14 19:35 - 2018-08-03 05:09 - 004615680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-08-14 19:35 - 2018-08-03 05:09 - 004529664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe
2018-08-14 19:35 - 2018-08-03 05:09 - 001932288 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeangle.dll
2018-08-14 19:35 - 2018-08-03 05:09 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-08-14 19:35 - 2018-08-03 05:09 - 001550848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-08-14 19:35 - 2018-08-03 05:09 - 001395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-08-14 19:35 - 2018-08-03 05:09 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2018-08-14 19:35 - 2018-08-03 05:09 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-08-14 19:35 - 2018-08-03 05:09 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-08-14 19:35 - 2018-08-03 05:08 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2018-08-14 19:35 - 2018-08-03 05:08 - 002236928 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-08-14 19:35 - 2018-08-03 05:08 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-08-14 19:35 - 2018-08-03 05:08 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-08-14 19:35 - 2018-08-03 05:08 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-08-14 19:35 - 2018-08-03 05:08 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2018-08-14 19:35 - 2018-08-03 05:08 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-08-14 19:35 - 2018-08-03 05:08 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-08-14 19:35 - 2018-08-03 05:08 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-08-14 19:35 - 2018-08-03 05:08 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-08-14 19:35 - 2018-08-03 05:08 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-08-14 19:35 - 2018-08-03 05:07 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-08-14 19:35 - 2018-08-03 05:07 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-08-14 19:35 - 2018-08-03 05:07 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2018-08-14 19:35 - 2018-08-03 05:07 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2018-08-14 19:35 - 2018-08-03 05:06 - 004191232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-08-14 19:35 - 2018-08-03 05:06 - 001000448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2018-08-14 19:35 - 2018-08-03 05:06 - 000856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2018-08-14 19:35 - 2018-08-03 05:06 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-08-14 19:35 - 2018-08-03 05:06 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2018-08-14 19:35 - 2018-08-03 05:06 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-08-14 19:35 - 2018-08-03 05:05 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2018-08-14 19:35 - 2018-08-03 05:05 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-08-14 19:35 - 2018-08-03 05:05 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-08-14 19:35 - 2018-08-03 05:04 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2018-08-14 19:35 - 2018-08-03 03:54 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2018-08-10 14:42 - 2018-08-28 15:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-08-10 14:42 - 2018-08-28 15:04 - 000000000 ____D C:\Users\micha\AppData\Local\NVIDIA
2018-08-10 14:42 - 2018-08-11 11:37 - 000000000 ____D C:\Users\micha\AppData\Local\NVIDIA Corporation
2018-08-10 14:42 - 2018-08-10 14:42 - 000001450 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2018-08-10 14:42 - 2018-07-30 21:14 - 001311784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2018-08-10 14:42 - 2018-07-30 21:14 - 000206760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2018-08-10 14:42 - 2018-07-30 21:14 - 000185256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2018-08-10 14:42 - 2018-07-30 21:14 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2018-08-10 14:41 - 2018-08-30 01:33 - 000000000 ____D C:\ProgramData\NVIDIA
2018-08-10 14:41 - 2018-08-28 15:05 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-08-10 14:41 - 2018-08-21 12:15 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2018-08-10 14:41 - 2018-08-21 12:14 - 005947600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2018-08-10 14:41 - 2018-08-21 12:14 - 002612264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2018-08-10 14:41 - 2018-08-21 12:14 - 001767632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2018-08-10 14:41 - 2018-08-21 12:14 - 000634352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2018-08-10 14:41 - 2018-08-21 12:14 - 000450768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2018-08-10 14:41 - 2018-08-21 12:14 - 000124216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2018-08-10 14:41 - 2018-08-21 12:14 - 000083440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2018-08-10 14:41 - 2018-08-10 14:41 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2018-08-10 14:41 - 2018-08-03 00:32 - 008273432 _____ C:\WINDOWS\system32\nvcoproc.bin
2018-08-10 14:41 - 2018-08-01 11:52 - 000553376 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2018-08-10 14:41 - 2018-08-01 11:52 - 000458312 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2018-08-10 14:40 - 2018-08-21 14:16 - 000044335 _____ C:\WINDOWS\system32\nvinfo.pb
2018-08-10 14:40 - 2018-08-01 11:50 - 002002448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439882.dll
2018-08-10 14:40 - 2018-08-01 11:50 - 001467920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439882.dll
2018-08-10 14:40 - 2018-07-30 21:14 - 000069544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2018-08-10 14:40 - 2018-07-30 21:14 - 000065792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2018-08-10 14:40 - 2018-07-30 21:14 - 000047648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2018-08-10 14:38 - 2018-08-10 14:51 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-08-09 18:47 - 2018-08-09 18:47 - 000000044 _____ C:\Users\micha\Desktop\SomeStuff.txt
2018-08-09 17:50 - 2018-08-09 17:50 - 000000000 ____D C:\Program Files (x86)\NCWest
2018-08-08 01:53 - 2018-07-14 08:46 - 023862784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-08-08 01:53 - 2018-07-14 08:42 - 019525632 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2018-08-08 01:52 - 2018-07-15 02:58 - 000094112 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2018-08-08 01:52 - 2018-07-15 02:56 - 001523240 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2018-08-08 01:52 - 2018-07-15 02:44 - 006587392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-08-08 01:52 - 2018-07-15 02:44 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2018-08-08 01:52 - 2018-07-15 02:43 - 012710400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-08-08 01:52 - 2018-07-15 02:42 - 008624128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2018-08-08 01:52 - 2018-07-15 02:42 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-08-08 01:52 - 2018-07-15 02:41 - 000169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2018-08-08 01:52 - 2018-07-15 02:41 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2018-08-08 01:52 - 2018-07-15 02:39 - 001787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2018-08-08 01:52 - 2018-07-15 02:39 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2018-08-08 01:52 - 2018-07-15 02:38 - 002051584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2018-08-08 01:52 - 2018-07-15 02:38 - 001180160 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2018-08-08 01:52 - 2018-07-15 02:38 - 001004032 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2018-08-08 01:52 - 2018-07-15 02:38 - 000615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2018-08-08 01:52 - 2018-07-15 02:36 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2018-08-08 01:52 - 2018-07-15 01:28 - 001327424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2018-08-08 01:52 - 2018-07-15 01:18 - 005657600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2018-08-08 01:52 - 2018-07-15 01:17 - 011901440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-08-08 01:52 - 2018-07-15 01:15 - 007987712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2018-08-08 01:52 - 2018-07-15 01:14 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2018-08-08 01:52 - 2018-07-15 01:13 - 001452544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2018-08-08 01:52 - 2018-07-15 01:13 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2018-08-08 01:52 - 2018-07-15 01:13 - 000775168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2018-08-08 01:52 - 2018-07-15 01:13 - 000485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2018-08-08 01:52 - 2018-07-15 01:11 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2018-08-08 01:52 - 2018-07-14 06:37 - 000375712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-08-08 01:52 - 2018-07-14 06:37 - 000230304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2018-08-08 01:52 - 2018-07-14 06:23 - 000760888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2018-08-08 01:52 - 2018-07-14 06:22 - 006813744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-08-08 01:52 - 2018-07-14 06:22 - 001144664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2018-08-08 01:52 - 2018-07-14 06:22 - 000510392 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2018-08-08 01:52 - 2018-07-14 06:22 - 000203560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2018-08-08 01:52 - 2018-07-14 06:21 - 000722824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-08-08 01:52 - 2018-07-14 06:21 - 000192920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2018-08-08 01:52 - 2018-07-14 06:20 - 000184472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2018-08-08 01:52 - 2018-07-14 06:19 - 002535032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2018-08-08 01:52 - 2018-07-14 06:19 - 001946752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-08-08 01:52 - 2018-07-14 06:19 - 000981920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2018-08-08 01:52 - 2018-07-14 06:19 - 000636944 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2018-08-08 01:52 - 2018-07-14 06:19 - 000483024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-08-08 01:52 - 2018-07-14 06:18 - 002563984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-08-08 01:52 - 2018-07-14 06:18 - 002371416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-08-08 01:52 - 2018-07-14 06:18 - 001017584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2018-08-08 01:52 - 2018-07-14 06:18 - 000930712 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2018-08-08 01:52 - 2018-07-14 06:18 - 000613176 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2018-08-08 01:52 - 2018-07-14 06:18 - 000443216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2018-08-08 01:52 - 2018-07-14 06:18 - 000376216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2018-08-08 01:52 - 2018-07-14 06:17 - 006527056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2018-08-08 01:52 - 2018-07-14 06:17 - 002420632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-08-08 01:52 - 2018-07-14 06:17 - 000743320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2018-08-08 01:52 - 2018-07-14 06:16 - 002331576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2018-08-08 01:52 - 2018-07-14 06:16 - 001143096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2018-08-08 01:52 - 2018-07-14 06:16 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2018-08-08 01:52 - 2018-07-14 06:15 - 001559368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2018-08-08 01:52 - 2018-07-14 06:15 - 001174552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2018-08-08 01:52 - 2018-07-14 06:15 - 000829856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2018-08-08 01:52 - 2018-07-14 06:01 - 006647296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2018-08-08 01:52 - 2018-07-14 05:59 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2018-08-08 01:52 - 2018-07-14 05:59 - 005883392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2018-08-08 01:52 - 2018-07-14 05:59 - 003553280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2018-08-08 01:52 - 2018-07-14 05:58 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2018-08-08 01:52 - 2018-07-14 05:58 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2018-08-08 01:52 - 2018-07-14 05:58 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-08-08 01:52 - 2018-07-14 05:57 - 007057920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2018-08-08 01:52 - 2018-07-14 05:57 - 004331008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2018-08-08 01:52 - 2018-07-14 05:57 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2018-08-08 01:52 - 2018-07-14 05:57 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 004559872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 002900992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 002697216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Controls.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 001703936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Controls.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 001558016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 000257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschap.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgr.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 001124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000993792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000582144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2018-08-08 01:52 - 2018-07-14 05:55 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2018-08-08 01:52 - 2018-07-14 05:55 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreCommonProxyStub.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\datamarketsvc.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2018-08-08 01:52 - 2018-07-14 05:55 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 003319808 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 001537024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000603648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2018-08-08 01:52 - 2018-07-14 05:54 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\PushToInstall.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\raschap.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\EasPolicyManagerBrokerPS.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 004770816 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 001825792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 001668096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgrSvc.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 000450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 000396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 000220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2018-08-08 01:52 - 2018-07-14 05:52 - 000972800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2018-08-08 01:52 - 2018-07-14 05:52 - 000790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2018-08-08 01:52 - 2018-07-14 05:52 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-08-08 01:52 - 2018-07-14 05:52 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2018-08-08 01:52 - 2018-07-14 05:52 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2018-08-08 01:52 - 2018-07-14 05:51 - 003376640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2018-08-08 01:52 - 2018-07-14 05:51 - 002904576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-08-08 01:52 - 2018-07-14 05:51 - 001804288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-08-08 01:52 - 2018-07-14 05:51 - 001747968 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-08-08 01:52 - 2018-07-14 05:51 - 001304064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2018-08-08 01:52 - 2018-07-14 05:51 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2018-08-08 01:52 - 2018-07-14 05:51 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 001773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 001457664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 001359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-08-08 01:52 - 2018-07-14 05:49 - 000884736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2018-08-08 01:52 - 2018-07-13 06:30 - 002718624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-08-07 21:49 - 2018-08-09 17:50 - 000001480 _____ C:\Users\Public\Desktop\Blade & Soul.lnk
2018-08-07 21:49 - 2018-08-07 21:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCSOFT
2018-08-07 21:47 - 2018-08-07 21:47 - 000000000 ____D C:\Program Files\NCWest
2018-08-05 13:39 - 2013-01-07 16:56 - 001721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2018-08-01 13:03 - 2018-08-29 23:43 - 000002542 _____ C:\WINDOWS\System32\Tasks\BlueStacksHelper
2018-07-31 17:59 - 2018-07-31 18:03 - 000000000 ____D C:\Users\micha\AppData\Roaming\Tunngle
2018-07-31 17:59 - 2016-04-26 16:10 - 000048824 _____ (Tunngle.net GmbH) C:\WINDOWS\system32\Drivers\tap0901t.sys
2018-07-31 16:43 - 2018-07-31 16:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2018-07-31 16:43 - 2018-07-31 16:43 - 000000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2018-07-31 14:54 - 2018-07-31 14:54 - 000000000 ____D C:\Users\micha\AppData\Roaming\dnSpy
2018-07-31 14:33 - 2018-07-31 14:33 - 000000000 ____D C:\Users\micha\AppData\Local\dnSpy
2018-07-31 14:14 - 2018-07-31 14:20 - 000000583 _____ C:\Users\micha\.bash_history
2018-07-31 14:11 - 2018-07-31 14:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git
2018-07-31 14:11 - 2018-07-31 14:11 - 000000000 ____D C:\ProgramData\Git
2018-07-31 13:54 - 2018-07-31 13:54 - 000000000 ____D C:\Users\micha\AppData\Local\NuGet
2018-07-31 13:54 - 2018-07-31 13:54 - 000000000 ____D C:\Users\micha\.nuget
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\3082
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\2052
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1055
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1049
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1046
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1045
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1042
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1041
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1040
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1036
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1033
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1031
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1029
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1028
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\3082
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\2052
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1055
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1049
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1046
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1045
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1042
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1041
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1040
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1036
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1033
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1031
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1029
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1028
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\Program Files (x86)\Entity Framework Tools
2018-07-31 13:49 - 2018-07-31 13:49 - 000000000 ____D C:\Program Files (x86)\NuGet
2018-07-31 13:48 - 2018-07-31 13:48 - 000001803 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend für Visual Studio 2017.lnk
2018-07-31 13:48 - 2018-07-31 13:48 - 000000000 ____D C:\Program Files\Microsoft SQL Server
2018-07-31 13:48 - 2018-07-31 13:48 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2018-07-31 13:47 - 2018-07-31 13:47 - 000000000 ____D C:\Users\micha\AppData\Roaming\NuGet
2018-07-31 09:34 - 2018-07-31 09:34 - 000000000 ____D C:\Users\micha\AppData\Local\Wasntafairfight
2018-07-31 09:33 - 2018-07-31 09:34 - 000000000 ____D C:\Users\micha\AppData\Roaming\Resanance
2018-07-31 09:33 - 2018-07-31 09:33 - 000001676 _____ C:\Users\Public\Desktop\Resanance.lnk
2018-07-31 09:33 - 2018-07-31 09:33 - 000001676 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Resanance.lnk
2018-07-31 09:33 - 2018-07-31 09:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resanance

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2018-08-30 02:16 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-08-30 01:37 - 2018-06-01 15:45 - 001718588 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-08-30 01:37 - 2018-04-12 18:13 - 000741854 _____ C:\WINDOWS\system32\perfh007.dat
2018-08-30 01:37 - 2018-04-12 18:13 - 000149526 _____ C:\WINDOWS\system32\perfc007.dat
2018-08-30 01:37 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2018-08-30 01:33 - 2018-06-01 15:37 - 000000000 ____D C:\Users\micha\AppData\Local\LogMeIn Hamachi
2018-08-30 01:31 - 2018-06-01 15:43 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-08-30 01:31 - 2018-06-01 15:37 - 000000000 ____D C:\Users\micha
2018-08-30 01:31 - 2018-04-11 23:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-08-30 01:13 - 2016-07-12 00:08 - 000000000 ____D C:\Users\micha\AppData\Roaming\TS3Client
2018-08-30 01:11 - 2018-06-01 15:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-08-30 00:39 - 2018-07-29 15:44 - 000000000 ____D C:\Users\micha\AppData\Roaming\Parsec
2018-08-29 23:45 - 2018-01-08 21:13 - 000000000 ____D C:\Users\micha\AppData\Roaming\Spotify
2018-08-29 23:45 - 2018-01-08 21:13 - 000000000 ____D C:\Users\micha\AppData\Local\Spotify
2018-08-29 23:43 - 2018-07-15 00:23 - 000003804 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-08-29 23:43 - 2018-06-12 13:34 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2018-08-29 23:43 - 2018-06-01 15:43 - 000003558 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-08-29 23:43 - 2018-06-01 15:43 - 000003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000003334 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-08-29 23:43 - 2018-06-01 15:43 - 000003196 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000003152 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000003016 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000003016 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000003016 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000002914 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000002856 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3159779420-2504212275-734065462-1001
2018-08-29 23:43 - 2018-06-01 15:43 - 000002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000002754 _____ C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-michal.giza@gmx.de
2018-08-29 23:43 - 2018-06-01 15:43 - 000002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2018-08-29 22:43 - 2016-07-14 23:02 - 000000000 ____D C:\Users\micha\AppData\Local\ElevatedDiagnostics
2018-08-29 22:42 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-08-29 22:32 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-08-29 22:31 - 2016-07-15 01:38 - 000000000 ____D C:\Users\micha\AppData\Local\CrashDumps
2018-08-29 16:42 - 2017-08-21 22:03 - 000000000 ____D C:\ProgramData\Origin
2018-08-29 14:02 - 2017-08-21 22:04 - 000000000 ____D C:\Users\micha\AppData\Roaming\Origin
2018-08-29 14:01 - 2017-08-22 14:18 - 000000000 ____D C:\Program Files (x86)\Origin Games
2018-08-29 11:36 - 2016-07-09 02:35 - 000000000 ____D C:\Users\micha\AppData\Local\Warframe
2018-08-29 11:00 - 2016-07-27 01:03 - 000048656 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2018-08-29 10:52 - 2017-03-12 22:11 - 000007606 _____ C:\Users\micha\AppData\Local\Resmon.ResmonCfg
2018-08-29 10:51 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-08-29 01:01 - 2018-06-02 12:28 - 000000000 ____D C:\Users\micha\AppData\Local\D3DSCache
2018-08-28 23:57 - 2018-06-12 13:34 - 000000000 ____D C:\Program Files (x86)\Adobe
2018-08-28 23:57 - 2016-08-16 20:55 - 000000000 ____D C:\temp
2018-08-28 23:57 - 2016-08-12 20:01 - 000000000 ____D C:\ProgramData\Adobe
2018-08-28 23:56 - 2016-07-08 20:18 - 000000000 ____D C:\Users\micha\AppData\Roaming\Adobe
2018-08-28 23:39 - 2016-08-12 20:31 - 000000000 ____D C:\Users\micha\AppData\Local\Adobe
2018-08-28 19:44 - 2018-06-01 15:21 - 000087904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2018-08-28 15:05 - 2017-10-01 12:20 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-08-27 21:26 - 2016-12-03 03:19 - 000000000 ____D C:\Users\micha\AppData\Local\Battle.net
2018-08-27 20:48 - 2016-07-09 03:59 - 000000000 ____D C:\ProgramData\Package Cache
2018-08-27 14:07 - 2016-08-10 22:57 - 000000000 ____D C:\Users\micha\AppData\Local\Ubisoft Game Launcher
2018-08-27 11:44 - 2018-06-01 15:43 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2018-08-27 11:44 - 2018-02-10 20:49 - 000000000 ____D C:\Program Files (x86)\BlueStacks
2018-08-26 19:28 - 2018-06-01 15:21 - 001027720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2018-08-26 19:28 - 2018-06-01 15:21 - 000467232 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-08-26 19:28 - 2018-06-01 15:21 - 000381560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2018-08-26 19:28 - 2018-06-01 15:21 - 000346664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbloga.sys
2018-08-26 19:28 - 2018-06-01 15:21 - 000229384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2018-08-26 19:28 - 2018-06-01 15:21 - 000214800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2018-08-26 19:28 - 2018-06-01 15:21 - 000201320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2018-08-26 19:28 - 2018-06-01 15:21 - 000199712 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2018-08-26 19:28 - 2018-06-01 15:21 - 000163272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2018-08-26 19:28 - 2018-06-01 15:21 - 000111864 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2018-08-26 19:28 - 2018-06-01 15:21 - 000059568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2018-08-26 19:28 - 2018-06-01 15:21 - 000046968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2018-08-26 19:28 - 2018-04-12 01:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2018-08-26 19:28 - 2017-12-21 22:21 - 000249016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2018-08-23 18:59 - 2016-07-23 19:21 - 000000000 ____D C:\Users\micha\OneDrive\Documents\My Games
2018-08-23 13:37 - 2017-09-07 16:56 - 000000000 ____D C:\ProgramData\Epic
2018-08-23 13:31 - 2018-02-23 22:10 - 000000000 ____D C:\Users\micha\AppData\Roaming\Wargaming.net
2018-08-23 13:29 - 2016-08-12 17:44 - 000000000 ____D C:\ProgramData\boost_interprocess
2018-08-23 13:28 - 2016-07-13 19:17 - 000000000 ____D C:\Users\micha\AppData\Local\Bluestacks
2018-08-22 18:12 - 2017-11-09 04:25 - 004858000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2018-08-20 19:47 - 2018-04-12 10:48 - 000002497 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2018-08-19 13:45 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-08-19 13:45 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-08-18 17:20 - 2017-01-01 03:45 - 000000000 ____D C:\Users\micha\AppData\Local\PAYDAY 2
2018-08-18 12:55 - 2018-07-29 15:44 - 000000000 ____D C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Parsec
2018-08-16 10:44 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-08-15 14:00 - 2018-06-12 13:34 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-08-15 10:54 - 2017-12-02 13:54 - 000000000 ___RD C:\Users\micha\3D Objects
2018-08-15 10:54 - 2016-07-08 20:18 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-08-15 10:53 - 2018-06-01 15:34 - 000251648 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2018-08-15 10:53 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-08-15 10:53 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-08-15 10:53 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2018-08-15 10:53 - 2018-04-12 01:38 - 000000000 ___RD C:\Program Files\Windows Defender
2018-08-15 10:53 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2018-08-15 10:53 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-08-15 10:53 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-08-15 10:53 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2018-08-14 19:39 - 2016-07-08 22:47 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-08-14 19:38 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-08-14 19:38 - 2016-07-08 22:47 - 137343192 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-08-13 08:28 - 2018-06-01 15:37 - 000002436 _____ C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-08-13 08:28 - 2016-07-08 20:20 - 000000000 ___RD C:\Users\micha\OneDrive
2018-08-12 22:04 - 2016-08-03 21:00 - 000000000 ____D C:\Users\micha\AppData\Roaming\discord
2018-08-10 14:42 - 2017-10-01 12:20 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-08-10 14:41 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\Help
2018-08-10 12:49 - 2016-07-26 09:52 - 000000000 ____D C:\Users\micha\AppData\Roaming\obs-studio
2018-08-09 11:42 - 2016-07-08 20:34 - 000002300 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-08-09 11:42 - 2016-07-08 20:34 - 000002259 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-08-08 11:08 - 2016-12-03 03:43 - 000000000 ____D C:\Users\micha\AppData\Local\Jagex
2018-08-08 10:38 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\UNP
2018-08-08 10:38 - 2018-04-12 01:38 - 000000000 ___RD C:\WINDOWS\PrintDialog
2018-08-08 10:38 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2018-08-07 21:49 - 2016-07-08 20:29 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-08-07 21:47 - 2016-09-05 21:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCWest
2018-08-06 17:19 - 2018-04-12 01:41 - 000836480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-08-06 17:19 - 2018-04-12 01:41 - 000181120 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-08-03 08:11 - 2018-07-11 19:06 - 000000000 ____D C:\ProgramData\Packages
2018-08-02 07:11 - 2016-08-08 14:12 - 000000000 ____D C:\Users\micha\AppData\Roaming\vlc
2018-07-31 13:51 - 2018-03-29 12:47 - 000000000 ____D C:\Users\micha\AppData\Roaming\Visual Studio Setup
2018-07-31 13:50 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-07-31 13:50 - 2018-03-29 12:48 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2018-07-31 13:49 - 2018-03-29 12:47 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2018-07-31 13:48 - 2018-03-29 12:48 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2018-07-31 13:46 - 2018-03-29 12:49 - 000000000 ____D C:\Users\micha\OneDrive\Documents\Visual Studio 2017
2018-07-31 09:33 - 2018-01-22 13:56 - 000000000 ____D C:\Program Files\VB

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-07-09 01:47 - 2017-05-13 19:34 - 000000134 _____ () C:\Users\micha\AppData\Roaming\CSharpAnalytics-MeasurementQueue
2016-07-09 01:40 - 2017-05-13 19:34 - 000000443 _____ () C:\Users\micha\AppData\Roaming\CSharpAnalytics-MeasurementSession
2018-01-22 14:12 - 2018-01-22 14:51 - 000034139 _____ () C:\Users\micha\AppData\Roaming\VoiceMeeterDefault.xml
2017-07-27 12:50 - 2017-07-27 12:50 - 000002610 _____ () C:\Users\micha\AppData\Local\recently-used.xbel
2017-03-12 22:11 - 2018-08-29 10:52 - 000007606 _____ () C:\Users\micha\AppData\Local\Resmon.ResmonCfg

Einige Dateien in TEMP:
====================
2018-08-07 22:54 - 2018-08-29 11:30 - 000000000 _____ () C:\Users\micha\AppData\Local\Temp\3fc1552ba19ee3472398342b0fadfa41.dll
2018-08-07 22:54 - 2018-08-29 11:00 - 000000076 _____ () C:\Users\micha\AppData\Local\Temp\ecfc50d44093669aca188e25f0317b43.dll
2018-06-01 15:36 - 2018-07-30 19:50 - 000731016 _____ (NVIDIA Corporation) C:\Users\micha\AppData\Local\Temp\nvSCPAPI64.dll
2018-06-05 14:49 - 2018-07-30 19:50 - 000395656 _____ (NVIDIA Corporation) C:\Users\micha\AppData\Local\Temp\nvStInst.exe
2018-08-30 01:15 - 2018-08-30 01:15 - 015220672 _____ (Reimage) C:\Users\micha\AppData\Local\Temp\ReimagePackage.exe
2018-08-29 01:26 - 2018-08-29 01:26 - 013279008 _____ (Restoro) C:\Users\micha\AppData\Local\Temp\RestoroSetup.exe

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2018-06-01 15:34

==================== Ende von FRST.txt ============================
         

Alt 30.08.2018, 02:27   #2
Michi55
 
Windows 10: rundll32.exe CPU Auslastung - Standard

Windows 10: rundll32.exe CPU Auslastung



hier ist der erste Teil der Addition File:

Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 23.08.2018
durchgeführt von micha (30-08-2018 02:22:23)
Gestartet von D:\FRST
Windows 10 Home Version 1803 17134.228 (X64) (2018-06-01 13:43:23)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3159779420-2504212275-734065462-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3159779420-2504212275-734065462-503 - Limited - Disabled)
Gast (S-1-5-21-3159779420-2504212275-734065462-501 - Limited - Disabled)
micha (S-1-5-21-3159779420-2504212275-734065462-1001 - Administrator - Enabled) => C:\Users\micha
WDAGUtilityAccount (S-1-5-21-3159779420-2504212275-734065462-504 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 18.011.20058 - Adobe Systems Incorporated)
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Akamai) (Version:  - Akamai Technologies, Inc)
Apple Application Support (64-Bit) (HKLM\...\{A6B0442B-E159-444B-B49D-6B9AC531EAE3}) (Version: 4.3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
AuraKingdom-DE (HKLM-x32\...\AuraKingdom-DE) (Version:  - )
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.6.2349 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 68.0.746.59 - AVAST Software)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.136.333 - AVAST Software) Hidden
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - )
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Black Desert Online (HKLM-x32\...\{C1F96C92-7B8C-485F-A9CD-37A0708A2A60}) (Version: 1.0.0.7 - Kakao Games Europe B.V.)
Blade & Soul (HKLM-x32\...\{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.260 - NC Interactive, LLC) Hidden
Blade & Soul (HKLM-x32\...\InstallShield_{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.260 - NC Interactive, LLC)
Blender (HKLM\...\{E29A1273-2E7A-40E7-AA63-428A11D59429}) (Version: 2.79.2 - Blender Foundation)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
ClickOnce Bootstrapper Package for Microsoft .NET Framework (HKLM-x32\...\{D1844DC3-B378-47CC-AB40-7FC16C79A2CD}) (Version: 4.7.02558 - Microsoft Corporation) Hidden
Crossout Launcher 1.0.3.18 (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\CrossOutLauncher_is1) (Version:  - )
CyberGhost 6 (HKLM\...\CyberGhost 6_is1) (Version:  - CyberGhost S.R.L.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dauntless (HKLM\...\{03AFDFA7-7A23-41B1-AAC2-3898591127D3}) (Version: 1.00.0000 - Ihr Firmenname)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
DiagnosticsHub_CollectionService (HKLM\...\{5FC8BCBB-3408-48B0-BAF0-839490F7AE65}) (Version: 15.6.27309 - Microsoft Corporation) Hidden
Discord (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 399.07 - NVIDIA Corporation) Hidden
Dogecoin Core (64-bit) (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Dogecoin Core (64-bit)) (Version: 1.10.0 - Dogecoin Core project)
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.12 - Electronic Arts)
Dungeons 2 (HKLM-x32\...\1436885138_is1) (Version: 1.6.1.31 - GOG.com)
EAX4 Unified Redist (HKLM-x32\...\{89661B04-C646-4412-B6D3-5E19F02F1F37}) (Version: 4.001 - Creative Labs)
Elsword (HKLM-x32\...\Elsword_de_is1) (Version:  - Gameforge 4D GmbH)
En Masse Launcher (HKLM-x32\...\{5d5e6f2b-6c03-4f96-8cd7-c16318764bc8}_is1) (Version: 1.0 - En Masse Entertainment)
Entity Framework 6.1.3 Tools  for Visual Studio 15 (HKLM-x32\...\{F8C0447E-D45C-4E52-94E8-C6340AAC9DB8}) (Version: 6.1.60104.0 - Microsoft Corporation) Hidden
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
f.lux (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Flux) (Version:  - f.lux Software LLC)
FINAL FANTASY XIV ONLINE (HKLM-x32\...\{2B41E132-07DF-4925-A3D3-F2D1765CCDFE}) (Version: 1.0.0000 - SQUARE ENIX CO., LTD.)
Fotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GhostMouse (HKLM-x32\...\GhostMouse_is1) (Version: Free V3.2.3 - ghost-mouse.com)
GIMP 2.8.22 (HKLM\...\GIMP-2_is1) (Version: 2.8.22 - The GIMP Team)
Git version 2.18.0 (HKLM\...\Git_is1) (Version: 2.18.0 - The Git Development Community)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 68.0.3440.106 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Grand Theft Multiplayer (HKLM-x32\...\GrandTheftMultiplayer) (Version:  - Grand Theft Multiplayer Team)
Gtk# for .Net 2.12.26 (HKLM-x32\...\{BC25B808-A11C-4C9F-9C0A-6682E47AAB83}) (Version: 2.12.26 - Xamarin, Inc.)
Gwent (HKLM-x32\...\1971477531_is1) (Version: 0.9.24.3.432 - GOG.com)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.0.6.4 - Hi-Rez Studios)
icecap_collection_neutral (HKLM-x32\...\{12C1EC05-F936-4A80-821E-7AAC64C4E6FF}) (Version: 15.6.27413 - Microsoft Corporation) Hidden
icecap_collection_x64 (HKLM\...\{C8E22DF4-5498-4B61-93CF-3081BE95A1BA}) (Version: 15.6.27413 - Microsoft Corporation) Hidden
icecap_collectionresources (HKLM-x32\...\{13A88904-8BD3-4A9C-9A64-2B09C9CBC1FD}) (Version: 15.6.27406 - Microsoft Corporation) Hidden
icecap_collectionresourcesx64 (HKLM-x32\...\{983A2CE0-E694-4DE3-9310-CB73EFB94E5A}) (Version: 15.6.27406 - Microsoft Corporation) Hidden
IntelliTraceProfilerProxy (HKLM-x32\...\{ACBAA378-519A-441D-9349-C0AAD8DEAD04}) (Version: 15.0.17289.01 - Microsoft Corporation) Hidden
Java 10.0.2 (64-bit) (HKLM\...\{EECB2736-D013-5AC5-9917-7656712F6931}) (Version: 10.0.2.0 - Oracle Corporation)
Java 8 Update 181 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
KB4023057 (HKLM\...\{264FDD69-C4DF-476F-B1B8-7DCEE4AF839B}) (Version: 2.4.0.0 - Microsoft Corporation)
KRITIKA (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\EME_GAME_kritika) (Version:  - allm)
Kumulatives Microsoft .NET Framework Intellisense Pack für Visual Studio (Deutsch) (HKLM-x32\...\{4DFD6FF3-9A29-4F31-AEE1-D44E016C5AD4}) (Version: 4.7.02558 - Microsoft Corporation) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League client alpha (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\League client alpha 1.0) (Version: 1.0 - Riot Games, Inc)
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Lightworks (HKLM-x32\...\{E94DD4E4-7746-472c-AA7B-1242FED0CFC8}) (Version: 14.0.0.0 - EditShare)
LogMeIn Hamachi (HKLM-x32\...\{892DB406-ADF8-4C30-9840-8438AF5B8763}) (Version: 2.2.0.607 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.607 - LogMeIn, Inc.)
LOOT Version 0.12.5 (HKLM-x32\...\{BF634210-A0D4-443F-A657-0DCE38040374}_is1) (Version: 0.12.5 - LOOT Team)
Luna Online: Reborn (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Luna_Online_Reborn_Suba_Games_is1) (Version: 2016.10.20 - Suba Games)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\OneDriveSetup.exe) (Version: 18.131.0701.0007 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{3c3aafc8-d898-43ec-998f-965ffdae065a}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.15.3248.309 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.8.106.0 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2017 (HKLM\...\{7099743B-B67C-47CB-8978-D72F6F685E89}) (Version: 14.0.1000.169 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2017 (HKLM-x32\...\{E1AC4A1E-F203-4355-9FC5-1F404347AAB2}) (Version: 14.0.1000.169 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Movie Maker (HKLM-x32\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD)
My.com Game Center (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\MyComGames) (Version: 3.198 - My.com B.V.)
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version:  - NCSOFT)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.14 - Black Tree Gaming)
NosTale (HKLM-x32\...\Nostale(DE)_is1) (Version:  - Gameforge 4D GmbH)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.6 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 399.07 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 399.07 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.14.1.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.1.48 - NVIDIA Corporation)
NVIDIA Grafiktreiber 399.07 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 399.07 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 18.0.1 - OBS Project)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.25.7131 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{46225f57-204e-40de-a5d1-d39dc46e7313}) (Version: latest - ppy Pty Ltd)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
paint.net (HKLM\...\{E8FA8815-3817-4128-A814-E2EAC456ADF0}) (Version: 4.0.21 - dotPDN LLC)
Parsec (HKLM-x32\...\Parsec) (Version:  - Parsec Cloud Inc.)
Path of Building version 1.4.95 (HKLM-x32\...\{72FA9AB7-189F-4BDE-8856-72DEB90C157B}_is1) (Version: 1.4.95 - Openarl)
Pixelmon Launcher (Beta) (HKLM-x32\...\{1D32F448-1BEE-431D-8ABA-9FA2F86AF046}) (Version: 2.1.5 - Ikara Software Limited) Hidden
Pixelmon Launcher (Beta) (HKLM-x32\...\Pixelmon Launcher (Beta) 2.1.5) (Version: 2.1.5 - Ikara Software Limited)
PlanetSide 2 (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\DG0-PlanetSide 2) (Version:  - Sony Online Entertainment)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8117 - Realtek Semiconductor Corp.)
Resanance (HKLM\...\{07BB6181-E1D0-4283-87D0-BE4819535A3C}) (Version: 2.1.3 - WasntAFairFight)
Revelation Online (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Revelation Online) (Version: 1.64 - My.com B.V.)
RivaTuner Statistics Server 7.1.0 (HKLM-x32\...\RTSS) (Version: 7.1.0 - Unwinder)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.3.1 - Rockstar Games)
RuneScape Launcher 2.2.4 (HKLM\...\RuneScape Launcher_is1) (Version: 2.2.4 - Jagex Ltd)
Sacred 2 - Fallen Angel (HKLM-x32\...\{1023383E-D9F6-478C-A965-23A4657B3C9A}) (Version: 2.43.0.0 - Deep Silver)
Security Task Manager 2.3 (HKLM-x32\...\Security Task Manager) (Version: 2.3 - Neuber Software)
Silkroad (HKLM-x32\...\Silkroad) (Version:  - )
Skyforge MyCom (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Skyforge MyCom) (Version: 1.141 - My.com B.V.)
Spore™ (HKLM-x32\...\{4BDCC41C-FFE7-40a4-BCB6-B558916868F7}) (Version: 1.7.0.0 - Electronic Arts)
Spotify (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Spotify) (Version: 1.0.88.353.g15c26ea1 - Spotify AB)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
StarCraft (HKLM-x32\...\StarCraft) (Version:  - Blizzard Entertainment)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steam Customizer (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Steam Customizer) (Version: 1.00.00.00 - Blumont)
Streamlabs Chatbot version 1.0.2.17 (HKLM-x32\...\{08D3C5BB-C492-4916-B111-725081845380}_is1) (Version: 1.0.2.17 - Streamlabs)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.0.6447 - TeamViewer)
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version:  - Gameforge4d)
The Witcher 3 - Wild Hunt - Game of the Year Edition (HKLM-x32\...\1495134320_is1) (Version: 1.30.0.0 - GOG.com)
Tom Clancy's Splinter Cell (HKLM-x32\...\Uplay Install 109) (Version:  - Ubisoft)
TOTOLINK RT2870 Wireless LAN Card (HKLM-x32\...\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}) (Version: 1.5.26.0 - TOTOLINK)
TreeSize Free V4.2.2 (HKLM-x32\...\TreeSize Free_is1) (Version: 4.2.2 - JAM Software)
Twin Saga DE (HKLM-x32\...\Twin Saga DE) (Version:  - )
Unity (HKLM-x32\...\Unity) (Version: 5.6.3p1 - Unity Technologies ApS)
Unreal Development Kit: 2015-01 (HKLM\...\UDK-f4ff4afd-afe0-495f-857d-85b7b5d955e4) (Version:  - Epic Games, Inc.)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 21.1 - Ubisoft)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version:  - VB-Audio Software)
vcpp_crt.redist.clickonce (HKLM-x32\...\{1ACBC664-45C6-448E-8B9B-39948766C139}) (Version: 14.13.26020 - Microsoft Corporation) Hidden
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio Community 2017 (HKLM-x32\...\e75d9a13) (Version: 15.6.27428.2015 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.3 - VideoLAN)
VS Immersive Activate Helper (HKLM-x32\...\{8A2BDA07-3417-46C1-9058-CB32BC63E30E}) (Version: 16.0.76.0 - Microsoft Corporation) Hidden
VS JIT Debugger (HKLM\...\{F8F52853-A1A7-42C7-A082-5A6D5853BB0B}) (Version: 16.0.76.0 - Microsoft Corporation) Hidden
vs_BlendMsi (HKLM-x32\...\{C5D83E0F-12E7-4BA3-98E6-DAE0E73B5BF9}) (Version: 15.0.27205 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsi (HKLM-x32\...\{A68D7884-F036-4A0D-AE1A-410E0311E135}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsires (HKLM-x32\...\{91DDDFB5-1782-48C2-BA2A-8F4D9DE39D27}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
vs_clickoncesigntoolmsi (HKLM-x32\...\{6A1ECF65-2CBF-4B33-9D4A-D1C0A0E5FE45}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32\...\{C2749223-157E-48F0-9410-A510361D6803}) (Version: 15.6.27406 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{5297D80E-CD92-48D8-9DB0-301AB3205772}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32\...\{BFFA2FFB-1095-4ADD-A352-368806D2412B}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{02DD895F-089F-4A63-81A9-78D00142AF20}) (Version: 15.6.27406 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{E6A92308-33DF-494B-A91A-3B80FBC97F2B}) (Version: 15.6.27406 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{8EB2C670-04C2-482D-BACD-B4095E27FD39}) (Version: 15.6.27309 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{6B45EEA3-85F8-4B26-B952-6830A45F2688}) (Version: 15.6.27323 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{13E08AD0-D6AC-44C4-9F5B-0AE2EB56B105}) (Version: 15.6.27421 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{0D3A6730-43CE-4AF6-BDF7-4D0660296C60}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_SQLClickOnceBootstrappermsi (HKLM-x32\...\{5779B6DD-604A-41CE-BC3D-9D4BDDA22AD2}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32\...\{1AC6CC3D-7724-4D84-9270-798A2191AB1C}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
Warface My.Com (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Warface My.Com) (Version: 1.42 - My.com B.V.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.60 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-26] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-26] (AVAST Software)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2018-03-19] ()
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-26] (AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2018-06-24] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2018-06-24] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-26] (AVAST Software)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-08-21] (NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-26] (AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2018-06-24] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2018-06-24] (Alexander Roshal)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0356CB03-832D-46F8-ADD7-AA826BA6A3E6} - System32\Tasks\BlueStacksHelper => D:\BlackStacks\BlueStacks\Client\Helper\BlueStacksHelper.exe
Task: {0C80C165-A162-445C-99AA-4C1B24890407} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG
Task: {0FA9A222-1D50-4C91-9482-84814A54CCB4} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-07-30] (NVIDIA Corporation)
Task: {1086BF3A-3E94-473D-B125-E8575A63D7AE} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-08-26] (AVAST Software)
Task: {135C55CE-B992-4F88-863C-89368AE5BA7E} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-michal.giza@gmx.de => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-05-11] (Adobe Systems, Incorporated)
Task: {13BE21E9-78D2-4D6E-8FB5-A53D31BA23E9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-07-30] (NVIDIA Corporation)
Task: {15C1FDB7-E055-4937-91E7-32CA4C5F1733} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2016-08-15] (Microsoft)
Task: {19B44A01-F0C8-4572-8464-9E7635718C8D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-07-30] (NVIDIA Corporation)
Task: {31F0BF05-5E86-4A4A-8DE3-3E8C569FCC95} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-08-26] (AVAST Software)
Task: {5172DD08-A695-4FEE-9D7F-F1D27E8B77B1} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-michal.giza@gmx.de => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {552A518C-5953-440C-9CB3-3124B18C1888} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-12] (AVAST Software)
Task: {6064EA36-8B2C-4457-A838-1C20A84418C5} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-04-12] (AVAST Software)
Task: {62F89C21-8A2E-4EC3-BF26-A1360D9833EC} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-30] (NVIDIA Corporation)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {6B67A65B-7D2E-437C-A1F2-5D65FB05BE93} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_Plugin.exe [2018-08-19] (Adobe Systems Incorporated)
Task: {76ADD661-3B8F-484E-8A61-6CAEBA239A18} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2016-08-15] (Microsoft Corporation)
Task: {77461216-DF0F-42AD-8C56-0097B341C714} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-07-30] (NVIDIA Corporation)
Task: {7902636F-EFA8-41A6-90DB-B3638C6BA854} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-07-30] (NVIDIA Corporation)
Task: {7B0A9C83-AD9E-4AD6-87E5-9B451B84A090} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2016-08-15] (Microsoft Corporation)
Task: {7CD3F24F-E1DB-45D6-A9E8-015FAD606A2A} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-30] (NVIDIA Corporation)
Task: {8D0EE528-887F-4E6A-B75F-762881DBF4E9} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-08-19] (Adobe Systems Incorporated)
Task: {8FBB3E1D-5FC8-4078-8A32-EC6764A6E77A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-08] (Google Inc.)
Task: {9606B37F-2302-4C17-83F7-025F258CAB43} - System32\Tasks\Microsoft\Windows\Setup\Notifier => C:\WINDOWS\system32\Notifier.exe
Task: {9F5DAABC-A52D-4F0B-9DD9-68D8008D8314} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2016-08-15] (Microsoft Corporation)
Task: {A60238BF-F75E-4BF7-9206-1485AA0D7E96} - System32\Tasks\TweakBit\PCRepairKit\Start PCRepairKit оn logon => C:\Program Files (x86)\TweakBit\PCRepairKit\PCRepairKit.exe <==== ACHTUNG
Task: {B36DFFC6-3FE0-4EDC-9A88-FB5AD4D96EC3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-07-30] (NVIDIA Corporation)
Task: {B852256D-A4C6-432B-831D-81D3E685E265} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-03-21] (Adobe Systems Incorporated)
Task: {BA8AF83D-6D43-4307-9B56-70318D273DE1} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {BE57A7F8-C6AA-4EB3-B99F-B1B588FA4505} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-08] (Google Inc.)
Task: {BEED8C8C-B50B-4187-BA17-CA789037EB60} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-30] (NVIDIA Corporation)
Task: {CAC4652A-6CB5-49E9-9788-BE3B217695EF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-07-30] (NVIDIA Corporation)
Task: {D525D7C3-891E-4D65-9B65-9A6FADF92CE0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {F42FA26F-EA33-4FEA-81DF-A707759462E0} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-30] (NVIDIA Corporation)
Task: {FCBF0BF1-BD4D-493F-90EC-31811C34F47B} - System32\Tasks\S-1-5-21-3159779420-2504212275-734065462-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2018-04-12] (Microsoft Corporation)
Task: {FF5D9199-2233-46C3-8A67-7C062C5B9673} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2016-08-15] (Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)


==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)


==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-03-19 01:40 - 2018-03-19 01:40 - 000230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2016-12-07 13:50 - 2016-12-07 15:07 - 000076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2016-07-05 15:23 - 2016-07-05 15:23 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-07-05 15:23 - 2016-07-05 15:23 - 001354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2018-08-10 14:42 - 2018-07-30 21:14 - 001314856 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-08-14 19:35 - 2018-08-03 05:09 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-07-17 11:56 - 2018-07-17 11:57 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-07-17 11:56 - 2018-07-17 11:57 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-07-17 11:56 - 2018-07-17 11:57 - 022373888 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-07-17 11:56 - 2018-07-17 11:57 - 002610176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\skypert.dll
2018-07-17 11:56 - 2018-07-17 11:56 - 000653824 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-07-11 19:04 - 2018-07-11 19:06 - 001922224 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2018-08-28 23:37 - 2018-08-27 21:41 - 001054496 _____ () D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\SDL2.dll
2018-08-28 23:37 - 2018-08-27 22:52 - 098006816 _____ () D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libcef.dll
2018-08-28 23:37 - 2018-08-27 22:52 - 004443424 _____ () D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libglesv2.dll
2018-08-28 23:37 - 2018-08-27 22:52 - 000100128 _____ () D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libegl.dll
2018-08-11 23:14 - 2018-08-11 23:15 - 035124224 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-08-11 23:14 - 2018-08-11 23:14 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-08-11 23:14 - 2018-08-11 23:14 - 006417408 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-09-26 15:44 - 2017-09-26 15:44 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-08-11 23:14 - 2018-08-11 23:14 - 009010176 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-08-10 14:42 - 2018-07-30 21:14 - 095437352 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2018-08-10 14:42 - 2018-07-30 21:14 - 003029032 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libglesv2.dll
2018-08-10 14:42 - 2018-07-30 21:14 - 000149544 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libegl.dll
2018-08-09 11:42 - 2018-08-08 02:41 - 004855640 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\libglesv2.dll
2018-08-09 11:42 - 2018-08-08 02:41 - 000115544 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\libegl.dll
2018-03-07 11:29 - 2018-03-07 11:29 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-08-26 19:28 - 2018-08-26 19:28 - 000575704 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-08-28 23:37 - 2018-08-27 21:41 - 000874784 _____ () D:\Program Files (x86)\Steam\SDL2.dll
2018-08-28 23:37 - 2018-08-27 22:11 - 002646304 _____ () D:\Program Files (x86)\Steam\video.dll
2018-07-25 10:54 - 2016-09-01 03:02 - 004969248 _____ () D:\Program Files (x86)\Steam\v8.dll
2018-07-25 10:54 - 2017-12-20 03:43 - 000695584 _____ () D:\Program Files (x86)\Steam\libavformat-57.dll
2018-07-25 10:54 - 2017-12-20 03:43 - 000351520 _____ () D:\Program Files (x86)\Steam\libavresample-3.dll
2018-07-25 10:54 - 2017-12-20 03:43 - 000847136 _____ () D:\Program Files (x86)\Steam\libavutil-55.dll
2018-07-25 10:54 - 2017-12-20 03:43 - 005137696 _____ () D:\Program Files (x86)\Steam\libavcodec-57.dll
2018-07-25 10:54 - 2017-12-20 03:43 - 000783648 _____ () D:\Program Files (x86)\Steam\libswscale-4.dll
2018-07-25 10:55 - 2016-09-01 03:02 - 001563936 _____ () D:\Program Files (x86)\Steam\icui18n.dll
2018-07-25 10:55 - 2016-09-01 03:02 - 001195296 _____ () D:\Program Files (x86)\Steam\icuuc.dll
2018-08-28 23:37 - 2018-08-27 22:11 - 001015584 _____ () D:\Program Files (x86)\Steam\bin\chromehtml.DLL
2018-07-25 10:54 - 2016-07-05 00:17 - 000266560 _____ () D:\Program Files (x86)\Steam\openvr_api.dll
2018-08-10 14:42 - 2018-07-30 21:14 - 001032744 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\Public\AppData:CSM [476]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2016-07-08 20:51 - 2018-08-16 10:44 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
         
__________________


Alt 30.08.2018, 02:30   #3
Michi55
 
Windows 10: rundll32.exe CPU Auslastung - Standard

Windows 10: rundll32.exe CPU Auslastung



hier ist der 2 Teil:

Code:
ATTFilter
==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3159779420-2504212275-734065462-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\micha\Desktop\dark_souls_14-wallpaper-1920x1080 (1).jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\StartupFolder: => "TOTOLINK Wireless Utility.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Ralink Wireless Utility.lnk"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "CyberGhost"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "Wargaming.net Game Center"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "Ubisoft Game Launcher"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_E8760D060CAF6C1EB31EBFCD30386D60"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "Parsec.App.0"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "EpicGamesLauncher"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [UDP Query User{D8776B8B-5BC6-4D75-9075-44AB95741E71}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe
FirewallRules: [TCP Query User{6B3EBC67-2ECC-4C77-A074-89187F6FF373}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe
FirewallRules: [UDP Query User{82BE2723-E95C-455E-B2C2-CC0ED991A8C5}D:\program files (x86)\steam\steamapps\common\robocraft\robocraftclient.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\robocraft\robocraftclient.exe
FirewallRules: [TCP Query User{6E56281B-2036-49E9-80D1-53405270254A}D:\program files (x86)\steam\steamapps\common\robocraft\robocraftclient.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\robocraft\robocraftclient.exe
FirewallRules: [UDP Query User{F67E7C5C-1B0E-4D5F-B0AE-33EE1A719CD4}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe
FirewallRules: [TCP Query User{24C30A40-6A79-48F4-983C-6B329C771B1F}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe
FirewallRules: [UDP Query User{B5610E42-64E0-446D-B077-BAA817816105}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe
FirewallRules: [TCP Query User{EFAA7423-F523-4A91-A108-E4E54F0F1BC6}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe
FirewallRules: [{463DDEC0-03A8-4802-A16C-98EE6A6ED5AC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Hacknet\Hacknet.exe
FirewallRules: [{1F5485D4-4257-46B9-B9F0-FABEE1B5DA56}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Hacknet\Hacknet.exe
FirewallRules: [{AEF9D428-68A6-4E33-86DD-5D5ABD5FDBBF}] => (Allow) D:\Program Files (x86)\Elsword\data\x2.exe
FirewallRules: [{7B7E1694-4DE9-49BD-AADD-7C730791209E}] => (Allow) D:\Program Files (x86)\Elsword\data\x2.exe
FirewallRules: [UDP Query User{2A922BD4-35F0-4E9A-8EA2-B7C77444F398}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe
FirewallRules: [TCP Query User{EE29EF98-3E21-427B-AABB-DE276E1A79FF}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe
FirewallRules: [UDP Query User{09425192-4554-487F-8FA9-7F30FDA3DDD1}D:\program files (x86)\steam\steamapps\common\hideandshriek\hideandshriek\binaries\win64\hideandshriek-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\hideandshriek\hideandshriek\binaries\win64\hideandshriek-win64-shipping.exe
FirewallRules: [TCP Query User{DDACAAF8-057B-4820-9E66-D2B3C284398C}D:\program files (x86)\steam\steamapps\common\hideandshriek\hideandshriek\binaries\win64\hideandshriek-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\hideandshriek\hideandshriek\binaries\win64\hideandshriek-win64-shipping.exe
FirewallRules: [UDP Query User{9F4A549E-C208-4733-8ED3-2014292585A4}D:\program files (x86)\steam\steamapps\common\flameintheflood\rivergame\binaries\win64\rivergame-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\flameintheflood\rivergame\binaries\win64\rivergame-win64-shipping.exe
FirewallRules: [TCP Query User{08593028-4355-4366-A7AD-4866BAF5B1F4}D:\program files (x86)\steam\steamapps\common\flameintheflood\rivergame\binaries\win64\rivergame-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\flameintheflood\rivergame\binaries\win64\rivergame-win64-shipping.exe
FirewallRules: [{39C512D6-AF41-438F-B242-7E7303B1AD1F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\FlameInTheFlood\RiverGame.exe
FirewallRules: [{919EEBFD-04A7-454C-B08B-FB8218596AD9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\FlameInTheFlood\RiverGame.exe
FirewallRules: [UDP Query User{E84F28D2-0917-4184-935F-AC42D6F340D3}D:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\x64\gameclient.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\x64\gameclient.exe
FirewallRules: [TCP Query User{69AE1187-3CBB-413E-A6AE-E66958EC1D3C}D:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\x64\gameclient.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\x64\gameclient.exe
FirewallRules: [UDP Query User{7B8CF5CF-B9F2-4599-B6B6-88F8B1715185}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe
FirewallRules: [TCP Query User{4024A72B-76ED-4814-A515-8EBA30304E1C}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe
FirewallRules: [UDP Query User{65838931-A862-40B4-B87A-E99856A873B5}D:\pbe\rads\projects\league_client\releases\0.0.1.184\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.184\deploy\leagueclient.exe
FirewallRules: [TCP Query User{3F8CB6B9-0CB6-49C7-9AEF-86E669EE2920}D:\pbe\rads\projects\league_client\releases\0.0.1.184\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.184\deploy\leagueclient.exe
FirewallRules: [{0F1F9892-39EF-4D3B-9B48-77C36B152E0B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Wild Eight\wildeight.exe
FirewallRules: [{42497D78-862A-4E94-9223-6404DBE1DA58}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Wild Eight\wildeight.exe
FirewallRules: [UDP Query User{395B16D5-DFBA-4CFD-BB24-72A486509E89}D:\pbe\rads\projects\league_client\releases\0.0.1.180\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.180\deploy\leagueclient.exe
FirewallRules: [TCP Query User{647CDCDE-3DA0-4451-A529-1E9249E4263A}D:\pbe\rads\projects\league_client\releases\0.0.1.180\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.180\deploy\leagueclient.exe
FirewallRules: [{B97E0998-F786-4D5E-B1AF-4D56F5C44558}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{5863A2BB-C2EE-4940-8166-26CEDE4A0560}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [UDP Query User{700861F5-F77B-4AC3-AB05-949B922C27FC}D:\program files (x86)\steam\steamapps\common\terraria\tmodloaderserver.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\terraria\tmodloaderserver.exe
FirewallRules: [TCP Query User{671CEBDC-FE09-4A84-AB1C-3723FE7C46F8}D:\program files (x86)\steam\steamapps\common\terraria\tmodloaderserver.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\terraria\tmodloaderserver.exe
FirewallRules: [UDP Query User{1042F777-F94D-46C2-9958-B6A77C002B1D}D:\pbe\rads\projects\league_client\releases\0.0.1.179\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.179\deploy\leagueclient.exe
FirewallRules: [TCP Query User{CA7DA81A-7D5B-4074-9C42-A8D165D3CE51}D:\pbe\rads\projects\league_client\releases\0.0.1.179\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.179\deploy\leagueclient.exe
FirewallRules: [UDP Query User{0A257A1D-DDA0-45FC-80BD-15D9EEBADD7B}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe
FirewallRules: [TCP Query User{7C798D77-2E2C-44F8-B3D2-7C79C62B85E7}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe
FirewallRules: [UDP Query User{AE380F3E-2C4A-403D-9A72-5C5DFAFBDD6A}D:\program files (x86)\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe
FirewallRules: [TCP Query User{05258B21-77A8-4A9A-9BB6-9EA55C990DED}D:\program files (x86)\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe
FirewallRules: [UDP Query User{094BDD89-D77B-4A12-8A4D-486B1CC85A6E}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe
FirewallRules: [TCP Query User{451E1AC2-677B-4700-BAA8-D4306A7F973D}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe
FirewallRules: [UDP Query User{C69271E9-4AE3-49F9-8423-3A56A49DDDA2}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe
FirewallRules: [TCP Query User{3DF73DFD-BAF0-4945-9D3C-5CD94B728244}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe
FirewallRules: [{EE7CFE06-A8A0-4B06-99B5-9280490AE85F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Shakes & Fidget\Shakes and Fidget.exe
FirewallRules: [{2E856D76-C5F2-4219-A7D0-E4F46801E3D1}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Shakes & Fidget\Shakes and Fidget.exe
FirewallRules: [UDP Query User{1D39E606-93E9-493A-A56A-2B6275CD54AE}D:\program files\unity\editor\unity.exe] => (Block) D:\program files\unity\editor\unity.exe
FirewallRules: [TCP Query User{E35E2CE5-DDD6-486D-8CB5-B8B0D74126DA}D:\program files\unity\editor\unity.exe] => (Block) D:\program files\unity\editor\unity.exe
FirewallRules: [{E35FC619-8F9E-4150-A35C-A131A28CA7E7}] => (Block) D:\Program Files\Unity\Editor\Data\Tools\nodejs\node.exe
FirewallRules: [{7E893C9E-30DF-44AD-90A3-EC2D961F7530}] => (Allow) D:\Program Files\Unity\Editor\Data\Tools\nodejs\node.exe
FirewallRules: [{C73729E0-BDF6-41B2-9D79-7C50FD9DA477}] => (Block) D:\Program Files\Unity\Editor\Unity.exe
FirewallRules: [{1FD3FCE4-CDA9-4199-8A32-BA10E4F34751}] => (Allow) D:\Program Files\Unity\Editor\Unity.exe
FirewallRules: [UDP Query User{D29F7DD5-A88E-4BF1-B410-86EE8A046E67}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe
FirewallRules: [TCP Query User{0034D87D-9077-4418-AB59-210C699AC524}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe
FirewallRules: [UDP Query User{04B73D3A-297C-49B5-A087-F886307CD6C0}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.134\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.134\deploy\leagueclient.exe
FirewallRules: [TCP Query User{F74B17A7-839A-4C71-9F3E-1DB8C40B9418}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.134\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.134\deploy\leagueclient.exe
FirewallRules: [UDP Query User{30ED66FD-76EB-41F1-B253-AA49C6B70860}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.133\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.133\deploy\leagueclient.exe
FirewallRules: [TCP Query User{EE2EF2C1-3ECA-4788-8B20-C36A5C936127}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.133\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.133\deploy\leagueclient.exe
FirewallRules: [{B3E04B9E-4057-4BCD-929B-1DF408E34947}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SlayTheSpire\SlayTheSpire.exe
FirewallRules: [{0013BE87-C8FC-465B-BA1B-EF1FFB356554}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SlayTheSpire\SlayTheSpire.exe
FirewallRules: [{375A74C0-7209-4066-BCDE-E99316E67367}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Terra Lander\bin\terraLander.exe
FirewallRules: [{F3BCD1B1-F159-406E-8D11-2EF0850AD452}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Terra Lander\bin\terraLander.exe
FirewallRules: [UDP Query User{30619DF7-F80A-4A4E-9BFA-51C70048A4DF}D:\program files (x86)\steam\steamapps\common\hunt showdown\bin\win_x64\gamelauncher.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\hunt showdown\bin\win_x64\gamelauncher.exe
FirewallRules: [TCP Query User{DD6E09FE-97A2-4EEC-A560-D268D9FE3043}D:\program files (x86)\steam\steamapps\common\hunt showdown\bin\win_x64\gamelauncher.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\hunt showdown\bin\win_x64\gamelauncher.exe
FirewallRules: [UDP Query User{655093CA-A180-4F3B-92D9-414B592A772D}D:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe] => (Block) D:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [TCP Query User{AB4BBCAA-D8BD-46E9-B472-8FD9C95C4150}D:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe] => (Block) D:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{3ADB870D-F67E-43AB-BF03-CB2DDC0EFAAB}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe
FirewallRules: [TCP Query User{1FEC9917-6FB5-4CB5-AD51-2B46B3A70086}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe
FirewallRules: [UDP Query User{03A96129-A829-43A4-B98A-E1F00AAF8959}D:\battle\battle.net\battle.net.exe] => (Allow) D:\battle\battle.net\battle.net.exe
FirewallRules: [TCP Query User{BFAE3B0C-AEB6-4599-94E8-DAA0D00DDF1F}D:\battle\battle.net\battle.net.exe] => (Allow) D:\battle\battle.net\battle.net.exe
FirewallRules: [UDP Query User{C6F3711C-0CF6-4264-83DA-DEE1C9DD0A8D}D:\program files\dogecoin\dogecoin-qt.exe] => (Allow) D:\program files\dogecoin\dogecoin-qt.exe
FirewallRules: [TCP Query User{2F026BF4-FE67-434E-AF95-1A8D1FD2741D}D:\program files\dogecoin\dogecoin-qt.exe] => (Allow) D:\program files\dogecoin\dogecoin-qt.exe
FirewallRules: [UDP Query User{077A69D2-12B5-4F68-B229-E38E1A0DC297}D:\pbe\rads\projects\league_client\releases\0.0.1.142\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.142\deploy\leagueclient.exe
FirewallRules: [TCP Query User{29E0C26C-7ECC-49D7-BEE6-C6FE307F7B40}D:\pbe\rads\projects\league_client\releases\0.0.1.142\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.142\deploy\leagueclient.exe
FirewallRules: [UDP Query User{19C70BA1-340F-4B71-9E70-7566299DA173}D:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\x86\gameclient.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\x86\gameclient.exe
FirewallRules: [TCP Query User{9013B16E-70B0-488E-AD15-478620F57FAA}D:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\x86\gameclient.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\x86\gameclient.exe
FirewallRules: [UDP Query User{D9D29DFD-8014-4ADB-9E51-A543E6C460D3}D:\pbe\rads\projects\league_client\releases\0.0.1.139\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.139\deploy\leagueclient.exe
FirewallRules: [TCP Query User{B2213044-9265-42E8-899E-F8106E64026E}D:\pbe\rads\projects\league_client\releases\0.0.1.139\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.139\deploy\leagueclient.exe
FirewallRules: [UDP Query User{B334A7E7-2206-4A9F-8253-7851E849F284}D:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) D:\programdata\wargaming.net\gamecenter\wgc.exe
FirewallRules: [TCP Query User{D6D56D05-2FD2-4D71-A0B3-681D61759E89}D:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) D:\programdata\wargaming.net\gamecenter\wgc.exe
FirewallRules: [UDP Query User{19C5CFEF-059B-4756-B16E-57C35F60B1E8}D:\pbe\rads\projects\league_client\releases\0.0.1.138\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.138\deploy\leagueclient.exe
FirewallRules: [TCP Query User{8C79B042-82B4-4DAD-BCC8-84CBEAE28226}D:\pbe\rads\projects\league_client\releases\0.0.1.138\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.138\deploy\leagueclient.exe
FirewallRules: [UDP Query User{D895E73A-D9CF-4C3C-BD31-A463F6B6038B}D:\program files (x86)\heroes of the storm\versions\base62424\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base62424\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{12B8DDB3-9F9F-4D74-8D89-111F8D288A53}D:\program files (x86)\heroes of the storm\versions\base62424\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base62424\heroesofthestorm_x64.exe
FirewallRules: [{88A552DD-EB06-450A-8735-B6A5DC54863C}] => (Allow) D:\DOWNLOADS\BlackDesert_Downloader.exe
FirewallRules: [{2AFD6F75-4393-459F-A16E-5C03E2EB5630}] => (Allow) D:\DOWNLOADS\BlackDesert_Launcher.exe
FirewallRules: [{90391BD0-9250-4D9D-9CED-2321F18DDFAE}] => (Allow) D:\DOWNLOADS\bin64\BlackDesert64.exe
FirewallRules: [{C9045C98-3DB1-4530-9C31-B4CF3C15B8C8}] => (Allow) D:\DOWNLOADS\bin\BlackDesert32.exe
FirewallRules: [{2C8FA673-BF3B-4FB9-9CE9-86E37460EE31}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe
FirewallRules: [{87EE7EE7-7A2B-4219-9819-66F9AEB9939E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe
FirewallRules: [{08DAF1C7-644D-4059-B317-1CEC0C99E093}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe
FirewallRules: [UDP Query User{681EBF88-B62A-43E4-8240-7385A369E093}D:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [TCP Query User{F7F20EA4-1EDC-490E-9BF8-D29F63CA4BA8}D:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [{2D7B700F-F14E-4A65-9DB5-ABB9019CD2CD}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{CAF682CE-FA0B-48FE-B099-0D8D0F3070ED}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{CC9FC7FC-6DBE-4ADB-BE51-806393CD6B41}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{2EB3DF3B-4AF6-4912-9DF9-D188531DC975}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{232A2284-2CA7-43F1-96BE-637A5AA77625}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{FED781C6-BF8A-4AAF-A863-5B6E24223A6B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{69ED0E0E-D474-4373-AF80-6CB168DFF449}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ASTRONEER Early Access\Astro.exe
FirewallRules: [{5330CD0B-8D8D-477F-8719-11D00CB0D5C5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ASTRONEER Early Access\Astro.exe
FirewallRules: [{9D380808-ACD2-429A-BBA6-BF64B5EF4A59}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{C2E612C5-1EDB-4C03-AE63-846036B9E0DD}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{75E6D924-A782-45FE-BD58-126BA18D5930}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{B5FBF4DF-4938-4560-8871-045CB94727B0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{99758573-F513-43A1-A9C6-E410FE1F8361}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{0EB45A46-014D-47B6-8A77-38E0D1480AF8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{1BD72CDB-13B0-489F-82E6-74A1CA810D7F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{628921C1-E523-4F81-9C88-F4E40004631D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{60CC11EE-08A8-4578-BD17-855B948CF166}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{32350FAE-A858-4739-8390-7EFA3BE24FEF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{9FF647B8-944F-4339-8244-88E33C1610CB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{3AC2EEA5-2BD2-49B9-8C70-3A53F99E39F3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [UDP Query User{86051AFC-1D37-4220-B29D-E50A780129ED}C:\users\micha\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\micha\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{822388C3-91EB-4C06-B0CE-9876AB95259F}C:\users\micha\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\micha\appdata\roaming\spotify\spotify.exe
FirewallRules: [{DDE74714-0AC6-47EB-A169-E196A67C93B2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dead Age\DeadAge.exe
FirewallRules: [{FBB6D1DB-E5E9-4D52-BE35-87117F3C2579}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dead Age\DeadAge.exe
FirewallRules: [{F7B18489-850B-4DC1-A070-9EE220B8B32D}] => (Allow) D:\BOT\Streamlabs Chatbot\Streamlabs Chatbot.exe
FirewallRules: [{35A7E8B6-C063-4AFD-B206-31E92D0C064E}] => (Allow) D:\BOT\Streamlabs Chatbot\Streamlabs Chatbot.exe
FirewallRules: [{045E2F1A-A7BE-4975-BAF5-BD5770619403}] => (Allow) D:\BOT\Streamlabs Chatbot\Streamlabs Chatbot.exe
FirewallRules: [{7ECA6DEC-4F78-4D59-8856-6837E23FE4A1}] => (Allow) D:\BOT\Streamlabs Chatbot\Streamlabs Chatbot.exe
FirewallRules: [{D438BB9C-33CE-462E-A148-AB3E751698CE}] => (Allow) D:\BOT\Streamlabs Chatbot\Streamlabs Chatbot.exe
FirewallRules: [{48B1ADF5-751F-4847-98D2-0A29DEBDA593}] => (Allow) D:\BOT\Streamlabs Chatbot\Streamlabs Chatbot.exe
FirewallRules: [{806EF647-B4B6-4D4E-B816-251F86F57BBB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{3966CBC2-4A8D-4000-AF8F-44ACAAE372ED}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{C65ACC19-BD5C-454D-90A3-751A141870CF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{A6EF24C7-E661-4828-B651-DF596F8C2FD4}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{9950F996-7BFF-4D64-9F57-9BB84F45E06B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{4CBF7C9F-7CD2-4882-B862-C7F921B92EE4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{BE98A2E2-A67E-4196-B6D2-40D6E20F5038}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{A474E12E-616F-417B-8460-A404AF0B7F3A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{17BC820A-A8E2-4C09-AF05-B585EB455434}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\FINAL FANTASY XIV Online\boot\ffxivboot.exe
FirewallRules: [{F557BA14-1530-4B48-BBBC-35616C8F7AA5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\FINAL FANTASY XIV Online\boot\ffxivboot.exe
FirewallRules: [{60D95F83-A049-4042-B26A-59B1AF5031CC}] => (Allow) D:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe
FirewallRules: [{5152E920-5841-489E-B99D-EE2E4BB4971F}] => (Allow) D:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe
FirewallRules: [{1C86BB6F-A855-46C7-B769-CE1A2DDA2198}] => (Allow) D:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [{C2205704-BD11-4A3C-AAF4-553D558CF364}] => (Allow) D:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [{A4CF4C92-AD4A-43C4-A068-00EE45A9FEB0}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{862C23D7-39B2-4E4F-A997-912FA34DFF56}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [UDP Query User{45B9CE6C-49F6-49FC-BDF0-197A10CAD6D4}D:\program files (x86)\overwatch\overwatch.exe] => (Allow) D:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{4DFB35A9-76CE-47FF-B402-4E8DAAE0C8A4}D:\program files (x86)\overwatch\overwatch.exe] => (Allow) D:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{449DCBE1-5924-468C-8C5B-DD3304AA97AE}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Reigns Her Majesty\Reigns2.exe
FirewallRules: [{B24B8B13-4F90-44AF-B014-C352576E0E11}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Reigns Her Majesty\Reigns2.exe
FirewallRules: [{B5037A19-5902-4B37-BDFE-ABBC31680158}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Deceit\bin\win_x64\Deceit.exe
FirewallRules: [{851C44DD-4F17-437E-9B9A-3765C556C601}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Deceit\bin\win_x64\Deceit.exe
FirewallRules: [UDP Query User{F8B2F7AB-990D-49B5-A5CC-BCEA08EC446A}D:\program files (x86)\heroes of the storm\versions\base60522\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base60522\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{F638074B-505A-426C-BC4E-9D9FA4D03182}D:\program files (x86)\heroes of the storm\versions\base60522\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base60522\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{57549BD2-356C-4CB8-9A1B-13A6D7FE8C81}D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [TCP Query User{BFC72891-9351-4AE9-BAE6-57669C71B157}D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [{BE08BE07-1F19-4B57-A75D-DDF8F18DEF4C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Bit Heroes\Bit Heroes.exe
FirewallRules: [{AC389156-2FB3-413C-8565-D4C991117A4C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Bit Heroes\Bit Heroes.exe
FirewallRules: [UDP Query User{F36A415A-57ED-45C5-A9CA-195FEA2E66B1}D:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe
FirewallRules: [TCP Query User{A83C7F3C-215A-4EBD-B0FB-754552A465DF}D:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe
FirewallRules: [{E38A4E7F-65AA-459B-9545-374BD17E6FEB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Fallout\FalloutLauncher.exe
FirewallRules: [{4916C30D-244A-46FA-8CBF-2D5F06368D49}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Fallout\FalloutLauncher.exe
FirewallRules: [UDP Query User{499A9238-2BB2-4755-86F0-ADA169ACA0F3}D:\program files (x86)\heroes of the storm\versions\base57589\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base57589\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{EFCA951F-9559-45E0-8F3F-32A804252B40}D:\program files (x86)\heroes of the storm\versions\base57589\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base57589\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{BE58046F-C544-4CD5-A6D2-15855AECCAF4}D:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe
FirewallRules: [TCP Query User{A0406A34-2378-439C-87AC-0FEA47136CF2}D:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe
FirewallRules: [{9F6A94ED-C90B-46FD-B79E-AF6814EF38BB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Outlast\OutlastLauncher.exe
FirewallRules: [{0C305948-867F-4E0D-906E-0483000FD4C2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Outlast\OutlastLauncher.exe
FirewallRules: [{F06D8A7E-2C85-4104-A040-00160D67ADAA}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Human Fall Flat\Human.exe
FirewallRules: [{A77EE7BF-8B68-44D0-86F1-D7E13537A3AB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Human Fall Flat\Human.exe
FirewallRules: [{754459E4-BC61-4A71-8A3C-380B7C0B67AE}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together Dedicated Server\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [{7BA7F404-F8F8-46E5-9DA0-7537891A717D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together Dedicated Server\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [UDP Query User{C4BD7623-3843-434F-B589-A0C990E1E50C}D:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) D:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [TCP Query User{E621E4FF-C1A5-4927-BC66-BF74486AE300}D:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) D:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{2E0CD30C-AE4C-4EA7-AA09-285A0F9F773C}D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [TCP Query User{31127FFB-BBC8-4BF5-AC27-3EE476358869}D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [{4B6F05AA-E6E4-4604-96AB-93ABF53E518B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Relic Hunters Zero\RelicHuntersZero.exe
FirewallRules: [{52B4AB8F-14E4-42EE-B2EE-85B8C8DE3CA0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Relic Hunters Zero\RelicHuntersZero.exe
FirewallRules: [UDP Query User{1C19A8E0-B658-483C-8317-E1BE7209FE8E}C:\program files\java\jre1.8.0_141\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_141\bin\javaw.exe
FirewallRules: [TCP Query User{9099A826-D680-44D2-A99A-D21E0910F872}C:\program files\java\jre1.8.0_141\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_141\bin\javaw.exe
FirewallRules: [{C17F6BA1-5B19-4E80-BD27-3652E7FABD24}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{9942A09C-26AD-4F6B-A5D3-EAAB29D99FA7}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{8A241E1C-4E9B-4081-8DCC-36C522654F80}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Monaco\MONACO.exe
FirewallRules: [{882EFFC4-F90D-4600-A287-E3C289337A6A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Monaco\MONACO.exe
FirewallRules: [UDP Query User{7DC32BAF-5002-474C-B372-9D9F80620001}D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{3DE17916-29A1-40D8-B482-DB41C02F8E82}D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{2AB92C4C-8995-446E-AA43-EAC3D4032EC1}D:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{AADD7DC7-148E-4F9B-A24E-719C7B8A2464}D:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [{5887A680-5836-4A96-A2D3-1212FECC83A7}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Storm Riders\stormriders.exe
FirewallRules: [{DB0C7C4B-2D8F-48D0-8EF3-7C144DED1B01}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Storm Riders\stormriders.exe
FirewallRules: [UDP Query User{7389B9ED-7885-4AF0-B0CA-9E5C67E7A2F4}D:\program files (x86)\steam\steamapps\common\supraball\binaries\win32\udk.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\supraball\binaries\win32\udk.exe
FirewallRules: [TCP Query User{34693554-4417-4FEB-86E1-2F89A641F6F4}D:\program files (x86)\steam\steamapps\common\supraball\binaries\win32\udk.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\supraball\binaries\win32\udk.exe
FirewallRules: [{E38B7E21-064F-4099-AF72-7EFD50B13B45}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Doodle God Blitz\DoodleGod.exe
FirewallRules: [{93CF2C54-BAA1-496D-855F-DF08151D24C8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Doodle God Blitz\DoodleGod.exe
FirewallRules: [{E0FE1892-1FF7-4313-8D16-F2A0F82062B7}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Evoland 2\Evoland2.exe
FirewallRules: [{09642757-87B5-4C5D-829B-61DD2372C8F7}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Evoland 2\Evoland2.exe
FirewallRules: [UDP Query User{53171712-4FC0-418D-85BB-05A0BE8BCF27}D:\program files (x86)\heroes of the storm\versions\base56705\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base56705\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{815DCF6F-54DF-4955-BEB6-679AF348FB2C}D:\program files (x86)\heroes of the storm\versions\base56705\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base56705\heroesofthestorm_x64.exe
FirewallRules: [{49250F40-73D4-4997-9705-350C8CBB3EC3}] => (Allow) D:\Program Files\Lightworks\ntcardvt.exe
FirewallRules: [{9C739078-1AD6-4D93-9677-DB4177BB91D4}] => (Allow) D:\Program Files\Lightworks\ntcardvt.exe
FirewallRules: [{4FCB5C0A-7F4E-4BAD-BD02-5E7B78EB9F4A}] => (Allow) D:\Program Files\Lightworks\lightworks.exe
FirewallRules: [{27D3C144-83BB-4A58-B2F5-66A740136032}] => (Allow) D:\Program Files\Lightworks\lightworks.exe
FirewallRules: [{7564ED41-9A52-466A-A036-391B2628A834}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\This War of Mine\Storyteller.exe
FirewallRules: [{D9990A96-B212-4BFA-A1E1-9969B41790AD}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\This War of Mine\Storyteller.exe
FirewallRules: [{4F74DCC5-0349-4903-9813-4DD4BCF7A85B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{809F4DB8-575D-45A1-A833-BD6797066713}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{76036C84-D088-47D2-9784-BD3B61AB8005}] => (Allow) D:\Program Files (x86)\Origin Games\Spore\Sporebin\SporeApp.exe
FirewallRules: [{43D2883B-8F93-42EA-B198-6E2E30EA6A07}] => (Allow) D:\Program Files (x86)\Origin Games\Spore\Sporebin\SporeApp.exe
FirewallRules: [{DC7DD9E2-031B-49EB-89DA-EEDB5191603C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{54671A0A-6BBE-4F8D-B1F4-E20BEC8DAE99}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [UDP Query User{E7543084-157B-47B4-B0DA-4A261FC681C5}D:\program files (x86)\heroes of the storm\versions\base56361\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base56361\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{532173ED-FFDC-4980-B8A9-3EEC8A6B5794}D:\program files (x86)\heroes of the storm\versions\base56361\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base56361\heroesofthestorm_x64.exe
FirewallRules: [{A79524B4-E117-443C-8952-E3C9336DDA30}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Borderlands\Binaries\Borderlands.exe
FirewallRules: [{9C52FDB1-029C-4B09-B2F6-44BDD9D0FA6E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Borderlands\Binaries\Borderlands.exe
FirewallRules: [UDP Query User{0F5EB395-1526-4554-8CC7-F631307D762E}D:\program files (x86)\secondlifeviewer\slvoice.exe] => (Allow) D:\program files (x86)\secondlifeviewer\slvoice.exe
FirewallRules: [TCP Query User{26CDFCCD-CEBD-486D-AD26-07196F54E850}D:\program files (x86)\secondlifeviewer\slvoice.exe] => (Allow) D:\program files (x86)\secondlifeviewer\slvoice.exe
FirewallRules: [{493F81C3-F8E2-4C7E-89E2-66D27A89F81D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Naev\naev.exe
FirewallRules: [{87902C9A-78B6-4F13-8238-2F4ED39B3032}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Naev\naev.exe
FirewallRules: [UDP Query User{0F1B19A9-BB74-4BFB-9EE4-B91AD9134640}D:\program files (x86)\heroes of the storm\versions\base55288\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base55288\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{D6B1CCDD-66FD-4013-A533-A5E5E4115ACD}D:\program files (x86)\heroes of the storm\versions\base55288\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base55288\heroesofthestorm_x64.exe
FirewallRules: [{0D210DA0-AC48-4DEF-9916-79216094932A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Loading Screen Simulator\LSS.exe
FirewallRules: [{84E75F32-4667-4993-9418-55D176448B1C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Loading Screen Simulator\LSS.exe
FirewallRules: [{86008E8F-C2BC-49B3-8467-A31D4D16DD78}] => (Allow) D:\Program Files (x86)\VoidElsword\VoidElsword\data\x2.exe
FirewallRules: [{71DF7D94-090A-4C46-9FDC-40DA0BE1BFD1}] => (Allow) D:\Program Files (x86)\VoidElsword\VoidElsword\data\x2.exe
FirewallRules: [{BFFD7DF4-BDC4-4DA2-95EB-4461A17BB653}] => (Allow) D:\Program Files (x86)\VoidElsword\VoidElsword\voidels.exe
FirewallRules: [{769D43E8-71B5-474D-AC7D-96C0A20C3F58}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{BE83FC17-30A0-42F6-9655-418E989F717B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [UDP Query User{EF6F3C1F-4008-4351-B59E-85CCE6B90C47}D:\game lol\tower\tower master.exe] => (Allow) D:\game lol\tower\tower master.exe
FirewallRules: [TCP Query User{3BBA9B4D-B920-4004-8447-ED321CA57A36}D:\game lol\tower\tower master.exe] => (Allow) D:\game lol\tower\tower master.exe
FirewallRules: [{5A7BAEE1-04C1-47C5-BD38-65A761704458}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Aetherspace\Aetherspace.exe
FirewallRules: [{C59C3584-18A1-40A9-8DD3-16C44B2824A5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Aetherspace\Aetherspace.exe
FirewallRules: [{F9FC0A3E-7E43-47C8-8AE2-471766764659}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{08A5D94D-7077-4DE4-9B0C-A670BE336F2F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{E0DA3B57-2BA1-4E2A-B8DA-099E3996EC1E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Realm Grinder\RealmGrinderDesktop.exe
FirewallRules: [{70F45F46-FA1D-44BC-B95F-D44B40BC81EC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Realm Grinder\RealmGrinderDesktop.exe
FirewallRules: [{3E0E7EE9-8E88-4060-A73F-08F0448481A1}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Trimmer Tycoon\trimmer.exe
FirewallRules: [{C632FAFF-BF8D-42FE-A375-D258ECFA4DD4}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Trimmer Tycoon\trimmer.exe
FirewallRules: [UDP Query User{129EBDA0-7E85-43B0-ABAC-20370A234156}D:\program files (x86)\steam\steamapps\common\awesomenauts\awesomenauts.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\awesomenauts\awesomenauts.exe
FirewallRules: [TCP Query User{4F285DB1-D60C-46F6-A0B4-55B5FAD192B6}D:\program files (x86)\steam\steamapps\common\awesomenauts\awesomenauts.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\awesomenauts\awesomenauts.exe
FirewallRules: [{A541405C-7957-483B-B6B4-9DB675C87CCB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
FirewallRules: [{746E4871-E1D1-4BA1-A945-FD8AD6CD0602}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
FirewallRules: [{05955E79-D252-4062-946E-5B27BCB19887}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ArtOfWar\gslaunchershell.exe
FirewallRules: [{DF1CB45A-516D-4D98-AB3E-099EEB91A2E6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ArtOfWar\gslaunchershell.exe
FirewallRules: [{E1ECA67F-8B89-4C69-8BA2-3AE744A58A16}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Zombidle\Zombidle.exe
FirewallRules: [{92554198-9B37-4388-9400-CFEC0C62CE12}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Zombidle\Zombidle.exe
FirewallRules: [{5A038F0E-4FAC-4557-8F6E-4AB118EF680B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Detective Butler Maiden Voyage Murder\DetectiveButler.exe
FirewallRules: [{F57DEE76-FB10-4D11-8CFF-A330E2924A19}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Detective Butler Maiden Voyage Murder\DetectiveButler.exe
FirewallRules: [UDP Query User{DB9F8A0B-31FE-41E6-97F0-7E3D75BF075B}D:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) D:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{43E617AD-7EE6-4565-94C6-888E6F171FED}D:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) D:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{E29ED5F0-5852-434D-87FD-78644C15D253}D:\steamcmd\gm\srcds.exe] => (Allow) D:\steamcmd\gm\srcds.exe
FirewallRules: [TCP Query User{D190A97B-F699-4BB0-BA01-857799FD07CA}D:\steamcmd\gm\srcds.exe] => (Allow) D:\steamcmd\gm\srcds.exe
FirewallRules: [UDP Query User{280BB6EE-5EF6-4ACD-926B-F54FBAD95C91}D:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{2FD47C7A-6954-4533-B64A-6FEF6C664D3A}D:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [{B8DDADA2-F71B-4FB5-9F8F-4A8CE5DCFD73}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Learn to Fly 3\Learn to Fly 3.exe
FirewallRules: [{8F421B90-C7E0-4295-A229-3F183F13B565}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Learn to Fly 3\Learn to Fly 3.exe
FirewallRules: [UDP Query User{D7C6CCB4-DFE1-487C-981D-76ECB8ADB4D3}D:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) D:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [TCP Query User{DE91F0BD-CC0A-4CE2-8A71-8E75CC70A44D}D:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) D:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{4E79CA4B-034E-472E-A2EB-B96484A39A67}D:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe
FirewallRules: [TCP Query User{A02AD116-9EEC-4404-B8A4-C989E275CB74}D:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe
FirewallRules: [UDP Query User{10FE95D1-B729-4F5D-B275-6B86175965F5}C:\program files\java\jre1.8.0_131\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\java.exe
FirewallRules: [TCP Query User{C0A03FDE-A1CD-4B30-9052-D9E63A0009AB}C:\program files\java\jre1.8.0_131\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\java.exe
FirewallRules: [{F380AA90-958C-4AD5-807A-7AA4A4E71D5D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [{0D937F35-CF61-4C64-A8D0-1EE05E323AA0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [{6270E8F0-9CE9-4DEF-BFAB-AC93026EDF54}] => (Allow) LPort=25565
FirewallRules: [{3EBF5D3E-A1D0-4D7B-9BA5-038E0A9FD5F1}] => (Block) C:\programdata\oracle\java\javapath_target_10286093\java.exe
FirewallRules: [{0CAFB781-AB9B-4143-A5D9-AA8FBC43D1B9}] => (Block) C:\programdata\oracle\java\javapath_target_10286093\java.exe
FirewallRules: [UDP Query User{BEF45744-8A91-4A40-8A68-129E7F48436A}C:\programdata\oracle\java\javapath_target_10286093\java.exe] => (Allow) C:\programdata\oracle\java\javapath_target_10286093\java.exe
FirewallRules: [TCP Query User{0F31A8D8-5874-434E-90F7-2A59CB160C65}C:\programdata\oracle\java\javapath_target_10286093\java.exe] => (Allow) C:\programdata\oracle\java\javapath_target_10286093\java.exe
FirewallRules: [{DE44897A-7874-469A-98A8-CF5586404E3E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together Dedicated Server\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [{8DA0E8B3-4BA9-47EC-80C8-89323179A262}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together Dedicated Server\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [{9A57AD60-FED4-4C80-AEE5-160172C4CC9C}] => (Block) C:\program files\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [{4FA58189-1190-4BBD-9610-3DF3B25B1997}] => (Block) C:\program files\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [UDP Query User{493E57FA-AE6D-4CBA-8A2F-0F2D139D266A}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [TCP Query User{BA96421F-BB78-4B0C-8580-C72561237A50}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [{EB0F4CCD-060C-4796-BB77-41EDF2BAD0E0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [{0110D5C0-CFB3-4501-A5DB-D5322D6288E3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [{7AA0FA71-8719-4ACC-8FC3-B1E47555F0F1}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Mighty Party\Mighty_party.exe
FirewallRules: [{E250C57D-A268-4E39-B4C3-A77D0191B880}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Mighty Party\Mighty_party.exe
FirewallRules: [{F5B6C364-2842-4949-BAD1-9C6EA5802972}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ibomber defense pacific\iBomberDefensePacific.exe
FirewallRules: [{BE246E4C-A65F-4110-AA1C-A96F3D8DB02A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ibomber defense pacific\iBomberDefensePacific.exe
FirewallRules: [{3DFCBCF5-D973-465E-B954-326A5B3E7F15}] => (Block) D:\program files (x86)\steam\steamapps\common\lms\lms.exe
FirewallRules: [{83B27691-2C94-427D-99C3-1745BAF1E777}] => (Block) D:\program files (x86)\steam\steamapps\common\lms\lms.exe
FirewallRules: [UDP Query User{FEB31DF8-465B-4EF4-B2B2-6D386A67D5B2}D:\program files (x86)\steam\steamapps\common\lms\lms.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\lms\lms.exe
FirewallRules: [TCP Query User{14623B61-8561-4C6E-BC90-827024B01DEB}D:\program files (x86)\steam\steamapps\common\lms\lms.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\lms\lms.exe
FirewallRules: [{C05A2DE7-412E-439A-A79D-EBA443450351}] => (Block) D:\program files (x86)\steam\steamapps\common\lms\launcher.exe.new.exe
FirewallRules: [{EFB33B4F-0C03-4367-B7E8-272426A73999}] => (Block) D:\program files (x86)\steam\steamapps\common\lms\launcher.exe.new.exe
FirewallRules: [UDP Query User{3B0361EA-8D7E-4E14-A0B9-BE0E12EB8B4D}D:\program files (x86)\steam\steamapps\common\lms\launcher.exe.new.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\lms\launcher.exe.new.exe
FirewallRules: [TCP Query User{7FA7F31F-535E-4202-9881-76BDE1A5C714}D:\program files (x86)\steam\steamapps\common\lms\launcher.exe.new.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\lms\launcher.exe.new.exe
FirewallRules: [{E0607F6B-DC63-4BF8-A321-4E1B08643229}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Alien Swarm Reactive Drop\reactivedrop.exe
FirewallRules: [{8AFAB501-FF93-4C78-8A5E-DFFB2EBBB123}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Alien Swarm Reactive Drop\reactivedrop.exe
FirewallRules: [{50107E27-DB8C-411D-B20E-5E58F782BBBC}] => (Block) D:\program files (x86)\steam\steamapps\common\skyforge\mycomgames\mycomgames.exe
FirewallRules: [{3E6073DB-A3E2-4463-8B6E-4DB120D9925D}] => (Block) D:\program files (x86)\steam\steamapps\common\skyforge\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{9B8457D4-1879-4054-B82D-16D101DB69B8}D:\program files (x86)\steam\steamapps\common\skyforge\mycomgames\mycomgames.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\skyforge\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{58140E27-4C72-4A53-872C-F05FCAA4E185}D:\program files (x86)\steam\steamapps\common\skyforge\mycomgames\mycomgames.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\skyforge\mycomgames\mycomgames.exe
FirewallRules: [{9C3AD2C3-9999-487E-981D-7D135A08DD6D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{D23464D5-7192-49BE-94AB-BF9BDF770943}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{E15BAE7E-04D3-4F03-BDC3-FF32E12CEC52}] => (Block) D:\program files\teamspeak 3 client\ts3client_win64.exe
FirewallRules: [{E17126D7-407A-490D-8730-31B79809D134}] => (Block) D:\program files\teamspeak 3 client\ts3client_win64.exe
FirewallRules: [UDP Query User{776FDAF0-B9E2-4D7B-B71F-CCA285260C5C}D:\program files\teamspeak 3 client\ts3client_win64.exe] => (Allow) D:\program files\teamspeak 3 client\ts3client_win64.exe
FirewallRules: [TCP Query User{389C6C49-E9DF-45A4-8CF4-ED07669935A9}D:\program files\teamspeak 3 client\ts3client_win64.exe] => (Allow) D:\program files\teamspeak 3 client\ts3client_win64.exe
FirewallRules: [{64F0356A-0475-4E55-935C-08DEB1A522C4}] => (Allow) D:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe
FirewallRules: [{0202DDDC-E503-4FF6-921C-374B8509EADB}] => (Allow) D:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe
FirewallRules: [{38E39E1A-31BB-49BC-9CED-53EA77A81261}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Polarity\Polarity.exe
FirewallRules: [{1518F7E1-2C9D-4139-A12C-C009CA2272A3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Polarity\Polarity.exe
FirewallRules: [{D4D6EDF0-2179-4F3C-BE43-87F90F2B1EBC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Splatter\Splatter_Steam.exe
FirewallRules: [{4FD9FAE0-5E63-4382-95F3-BAA305C0D876}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Splatter\Splatter_Steam.exe
FirewallRules: [{3AC7E4F5-A060-442A-883D-F92C83F563F8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Sins Of The Demon\Game.exe
FirewallRules: [{7649DD8C-9DC0-4E8B-BAA2-569EE7299EC5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Sins Of The Demon\Game.exe
FirewallRules: [{7D6738A6-9FE3-4BD0-B755-1EDBBD6F941D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Deformers Alpha NA\bin\win7\deformers.exe
FirewallRules: [{3B86B22C-A6D4-41A4-876E-87BE94960550}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Deformers Alpha NA\bin\win7\deformers.exe
FirewallRules: [{D3719985-AD48-4565-8B8B-430DE2E8B0D9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe
FirewallRules: [{83649719-2ABB-4243-8033-7975FDE89D22}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe
FirewallRules: [{C886CE39-FA5C-4CC1-A2DF-90BC55DB4CE5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\NEKOPARA Vol. 0\nekopara_vol0.exe
FirewallRules: [{16DF8876-FEFF-4260-9982-1ABEF5B3CB46}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\NEKOPARA Vol. 0\nekopara_vol0.exe
FirewallRules: [UDP Query User{24A9DB34-6519-4681-ABFB-ABC33E3CF261}D:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{AFECB3EB-9CD4-4342-B027-ACA4E624AD18}D:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [{A4CE1FF5-61BE-4F57-B6EC-249775E8EC2F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{14EEF12F-269E-497A-AD79-3C2266BFFF2A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{E88203BF-420F-48DC-8C9A-D84D266DBC33}] => (Block) D:\mygames\revelation online\game\tianyu.exe
FirewallRules: [{7F248F7C-38B8-40A1-9506-476AA53BB325}] => (Block) D:\mygames\revelation online\game\tianyu.exe
FirewallRules: [UDP Query User{2D119868-6749-44D2-882B-EE1334A6AD4C}D:\mygames\revelation online\game\tianyu.exe] => (Allow) D:\mygames\revelation online\game\tianyu.exe
FirewallRules: [TCP Query User{A7CE1225-C6AF-45F6-AB79-4E66B3DDC34F}D:\mygames\revelation online\game\tianyu.exe] => (Allow) D:\mygames\revelation online\game\tianyu.exe
FirewallRules: [{286CC2A5-BF0F-4E24-9C08-A0038F93D32D}] => (Block) C:\users\micha\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{3191684A-DF00-4494-AA9E-46D654879299}] => (Block) C:\users\micha\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{2421F720-5722-49FF-A250-A730F9D99058}C:\users\micha\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\micha\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{32668634-FCBF-47F4-ABAA-24B967086CF0}C:\users\micha\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\micha\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{2EFBEECE-28B1-4B44-9B4D-068E3491C446}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TigerKnight_EW\frontend\bin\frontend.exe
FirewallRules: [{32B7BB86-C3A4-40BC-9DEA-B002A6A990E6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TigerKnight_EW\frontend\bin\frontend.exe
FirewallRules: [{38E4EDC5-E6AC-46AD-9558-4ECF0C2C295B}] => (Allow) D:\AeriaGames\TwinSaga-DE\game.bin
FirewallRules: [{B9DEA8DB-9AEC-4A55-B7E4-6A0083C0AC06}] => (Allow) D:\AeriaGames\TwinSaga-DE\game.bin
FirewallRules: [{62A584BB-9B84-4124-9C18-0A9A77F0469D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Legend of Dungeon Master\LoDM.exe
FirewallRules: [{38E61B98-E028-4936-BB7C-2BCDF0A811F5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Legend of Dungeon Master\LoDM.exe
FirewallRules: [{2C96ED0E-1515-450B-AFAE-6D2C6CAB0066}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TigerKnight_EW\frontend\bin\frontend.exe
FirewallRules: [{08685DA3-A54C-4551-8776-EE64E88D8D25}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TigerKnight_EW\frontend\bin\frontend.exe
FirewallRules: [{A7F083A6-2652-48D3-8925-92C2BD60E6E8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\firstassault\Shipping\nxsteam.exe
FirewallRules: [{D4DC13DA-9728-4A43-955F-574F307783FF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\firstassault\Shipping\nxsteam.exe
FirewallRules: [UDP Query User{B12BB99B-5470-45C9-9FB9-5C43E1ACAABB}D:\program files (x86)\steam\steamapps\common\freestylefootball\fsefootball.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\freestylefootball\fsefootball.exe
FirewallRules: [TCP Query User{12CD2186-95D1-4951-A4BA-AA8957CCDA20}D:\program files (x86)\steam\steamapps\common\freestylefootball\fsefootball.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\freestylefootball\fsefootball.exe
FirewallRules: [UDP Query User{83685552-63DA-46E6-A9AF-DD5A402F339F}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [TCP Query User{48B2193C-DF11-41C1-9C69-95A69751A919}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [{24D3F8B6-0708-49EF-916E-CED34A4084CE}] => (Allow) D:\VoidElsword\VoidElsword\data\x2.exe
FirewallRules: [{F809092D-D855-4112-9D29-23CB00DD4C7D}] => (Allow) D:\VoidElsword\VoidElsword\data\x2.exe
FirewallRules: [{0A3DBC49-9019-4C57-AECF-520FBBB9E3F0}] => (Allow) D:\VoidElsword\VoidElsword\voidels.exe
FirewallRules: [{642C7AF0-FE75-4E09-AAC2-ABBD7BD8200D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Half dead\HalfDead.exe
FirewallRules: [{5ADA164E-5896-4AC4-917A-C81ABFB7CBD0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Half dead\HalfDead.exe
FirewallRules: [{11328F19-E0E0-4955-9FF8-17BEEE745507}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\MOBIUS FINAL FANTASY\mobiusff.exe
FirewallRules: [{E36A6E6F-FF45-415E-A2BD-5CB33197514A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\MOBIUS FINAL FANTASY\mobiusff.exe
FirewallRules: [UDP Query User{6A8353EF-F297-47A7-87D8-7BBDF8CD2EED}D:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe
FirewallRules: [TCP Query User{B6373873-7194-4888-B8B2-D3689C5A36BF}D:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe
FirewallRules: [{E7EF2C85-E6D3-4002-B631-6C5631232D14}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Airscape\EQLauncher.exe
FirewallRules: [{ECFE3314-5CC7-4A0A-AD63-9947745533AC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Airscape\EQLauncher.exe
FirewallRules: [{72E5433B-0A9E-4FB8-89AD-D123091CDC98}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Guild Quest\guild-quest.exe
FirewallRules: [{CF663751-A584-486E-B81E-56665223AA91}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Guild Quest\guild-quest.exe
FirewallRules: [{738DA67F-416A-42E5-B818-949B7F526FC9}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Prince of Persia Sands of Time\POP.EXE
FirewallRules: [{B91D407C-AF9C-4BFC-8526-B797B7D4E40F}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Prince of Persia Sands of Time\POP.EXE
FirewallRules: [{45E911E0-4EF3-493C-B631-62D1731B3B0E}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Prince of Persia Sands of Time\PrinceOfPersia.EXE
FirewallRules: [{42571EC3-98E9-4C89-AFAA-4A102D3DF15D}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Prince of Persia Sands of Time\PrinceOfPersia.EXE
FirewallRules: [UDP Query User{937331BA-12AF-423F-8384-37C4483CF54D}D:\program files (x86)\steam\steamapps\common\drop alive\drop alive.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\drop alive\drop alive.exe
FirewallRules: [TCP Query User{1832347D-F1FE-4B78-9232-ADBA2950857B}D:\program files (x86)\steam\steamapps\common\drop alive\drop alive.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\drop alive\drop alive.exe
FirewallRules: [UDP Query User{8C2D0C88-17CC-430D-AF2B-773133E78818}D:\steamcmd\steamapps\common\don't starve together dedicated server\bin\dontstarve_dedicated_server_nullrenderer.exe] => (Allow) D:\steamcmd\steamapps\common\don't starve together dedicated server\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [TCP Query User{A35667AF-12B7-43AE-95B2-0F56AF939E2D}D:\steamcmd\steamapps\common\don't starve together dedicated server\bin\dontstarve_dedicated_server_nullrenderer.exe] => (Allow) D:\steamcmd\steamapps\common\don't starve together dedicated server\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [UDP Query User{536CBC4C-C7F1-481C-BB22-2FEA6080CA02}D:\program files (x86)\steam\steamapps\common\astroneer early access\astro\binaries\win64\astro-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\astroneer early access\astro\binaries\win64\astro-win64-shipping.exe
FirewallRules: [TCP Query User{F40D0043-4086-4D37-A7EE-0B57D9E66EF2}D:\program files (x86)\steam\steamapps\common\astroneer early access\astro\binaries\win64\astro-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\astroneer early access\astro\binaries\win64\astro-win64-shipping.exe
FirewallRules: [{21D27FEA-7075-435F-A45D-BBE9E3E185BD}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Subnautica\Subnautica.exe
FirewallRules: [{312037C6-A453-46E5-9DBC-1C164FA50E5B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Subnautica\Subnautica.exe
FirewallRules: [{2A45AAD6-1DE7-495F-8B43-E9D47011749F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [{C83BE758-3A3E-475C-ABB6-8B670D683357}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [UDP Query User{0ADE3405-198A-4D32-92C4-A8595C5EB7CF}D:\program files (x86)\steam\steamapps\common\artofwar\game\u1game.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\artofwar\game\u1game.exe
FirewallRules: [TCP Query User{DBEED763-126C-452D-975B-528E0DA4F49B}D:\program files (x86)\steam\steamapps\common\artofwar\game\u1game.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\artofwar\game\u1game.exe
FirewallRules: [{BF54AD54-8F6C-4D54-A4EE-D45B095BCC42}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Clicker Guild\guild.exe
FirewallRules: [{9537265A-776A-4A9B-8EFC-08ECEA2CBAB2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Clicker Guild\guild.exe
FirewallRules: [UDP Query User{8ABAC630-D0E8-4FBC-8620-D51A3B1FD123}D:\program files (x86)\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe
FirewallRules: [TCP Query User{41A83E52-A29A-49F0-BE4A-1B6430442ECA}D:\program files (x86)\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe
FirewallRules: [UDP Query User{062B5542-BA8F-4E7C-9102-FFFF7CCBD2F1}D:\program files (x86)\heroes of the storm\versions\base48760\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base48760\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{5AA75062-D3A5-4263-A8ED-C190944AE68F}D:\program files (x86)\heroes of the storm\versions\base48760\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base48760\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{72FAAF42-547C-4805-99DD-BE06707BD089}D:\program files (x86)\black desert online\bin64\blackdesert64.exe] => (Allow) D:\program files (x86)\black desert online\bin64\blackdesert64.exe
FirewallRules: [TCP Query User{052AAA41-73BD-4219-8188-5A2CF23184D2}D:\program files (x86)\black desert online\bin64\blackdesert64.exe] => (Allow) D:\program files (x86)\black desert online\bin64\blackdesert64.exe
FirewallRules: [{45E58EBE-0C58-41FB-99B1-76E0C811601D}] => (Allow) C:\Users\micha\Downloads\BlackDesert_Downloader.exe
FirewallRules: [{7CFCA33D-09AA-4B36-9139-58B07B375FDA}] => (Allow) C:\Users\micha\Downloads\BlackDesert_Launcher.exe
FirewallRules: [{CC3431E9-86C7-48FF-A9FA-A81E0B450AC0}] => (Allow) C:\Users\micha\Downloads\bin64\BlackDesert64.exe
FirewallRules: [{53854287-038E-40B7-A103-386EF41B269A}] => (Allow) C:\Users\micha\Downloads\bin\BlackDesert32.exe
FirewallRules: [UDP Query User{2B049154-1E76-4E38-AB0C-4112B05EA5C6}D:\program files (x86)\heroes of the storm\versions\base48548\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base48548\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{84B3FFBC-7164-4A70-B213-57E6CBA17573}D:\program files (x86)\heroes of the storm\versions\base48548\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base48548\heroesofthestorm_x64.exe
FirewallRules: [{684A1397-3FB1-40D9-A1D0-2163D3D8D9B9}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{48734495-3841-4D13-B5FE-CAA7A3BFE74C}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{FB2487CA-9ED5-4F7F-A6E1-4A3E4CF7064C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{E72A910C-5C4D-4E5E-A201-83F5250CF047}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{9A7C8300-1A69-408A-8D6D-AFCE012065C1}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3MP.exe
FirewallRules: [{CD122248-4A89-42BB-BF86-B5B22EA137B9}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3MP.exe
FirewallRules: [{9C871341-2784-469B-A8F5-D8A757A4FB66}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3SP.exe
FirewallRules: [{E6617AF7-A98D-4124-AAA5-DC2CBFCCE812}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3SP.exe
FirewallRules: [{46F25C0A-6A63-46C4-A664-E02054562E00}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dark Eden\updater.exe
FirewallRules: [{FBBFC970-077E-4FA2-88A2-BF23DA7968E3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dark Eden\updater.exe
FirewallRules: [UDP Query User{A436CF60-B0C4-411E-8124-AF0283E621AC}D:\program files (x86)\steam\steamapps\common\newz\thenewz.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\newz\thenewz.exe
FirewallRules: [TCP Query User{2A08D1E6-D883-4599-91F6-8AF2A620B690}D:\program files (x86)\steam\steamapps\common\newz\thenewz.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\newz\thenewz.exe
FirewallRules: [{7F99D345-8DCB-494E-A681-D850F52A49A7}] => (Allow) D:\AeriaGames\AuraKingdom-DE\game.bin
FirewallRules: [{478BC76A-8170-4AED-8B52-D767D64D101F}] => (Allow) D:\AeriaGames\AuraKingdom-DE\game.bin
FirewallRules: [{C0D90158-A15C-410C-973C-B7D4002FF5CC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Aura Kingdom\game.bin
FirewallRules: [{7D768647-DE9B-4E11-8772-F6FADC56CC12}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Aura Kingdom\game.bin
FirewallRules: [UDP Query User{54DC0874-6657-4BE1-9D81-15AB18B4AC51}D:\program files (x86)\steam\steamapps\common\eve online\sharedcache\tq\bin\exefile.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\eve online\sharedcache\tq\bin\exefile.exe
FirewallRules: [TCP Query User{8564E4EC-8E55-4200-89E6-673F332BC06E}D:\program files (x86)\steam\steamapps\common\eve online\sharedcache\tq\bin\exefile.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\eve online\sharedcache\tq\bin\exefile.exe
FirewallRules: [{5404A1C5-F27E-4451-B0DF-F9397118E2FF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExile_x64Steam.exe
FirewallRules: [{74C54ADB-82AC-47B4-8EBE-EB20160EFBF0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExile_x64Steam.exe
FirewallRules: [{3E3591C4-D26D-4CF6-A5F0-DCFF30F75AA4}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{E2896FD4-9A69-4E8D-A9D9-0861850B9F4C}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{4D9D8AF1-3E0E-4176-9C0F-6C00FFAA3BE7}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dragon's Prophet (EU)\dp_x64.exe
FirewallRules: [{CD534849-B176-4424-8F93-BF20281FAD32}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dragon's Prophet (EU)\dp_x64.exe
FirewallRules: [{24818CCB-12E4-4F61-BE07-EA612F4E161A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dragon's Prophet (EU)\launcher.exe
FirewallRules: [{B1E1C69D-FA6A-4549-A0FA-036982583C8D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dragon's Prophet (EU)\launcher.exe
FirewallRules: [{8F558F37-567A-4B3C-B37E-0CFF59CE63B2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dragon's Prophet (EU)\dp_x86.exe
FirewallRules: [{02389C73-1A64-4BE1-A00B-3401FDB21AC4}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dragon's Prophet (EU)\dp_x86.exe
FirewallRules: [{F167DF49-3605-4D0D-84A6-2BF2D59BAD99}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe
FirewallRules: [{CB225F51-1AB3-4BC6-825C-0C123260C9C8}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11.exe
FirewallRules: [{77AC70CC-3653-4D18-BAB4-D4FD11DB2765}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11_b.exe
FirewallRules: [{F3B09672-6A48-4B32-98C5-72ED5D73ADB0}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon_d3d11_b.exe
FirewallRules: [{22827771-7D12-4556-97FA-F18081A86E63}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe
FirewallRules: [{3CF7C297-531E-43B7-B03F-D274C6144A5C}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 3 Blood Dragon\bin\fc3_blooddragon.exe
FirewallRules: [{04108BB8-E1F9-486B-8DBC-F76BFD9287AA}] => (Allow) D:\Vindii\Vindictus EU\en-EU\NMService.exe
FirewallRules: [{EE5406E4-70CD-452D-A4A4-3ECF4BB2229E}] => (Allow) D:\Vindii\Vindictus EU\en-EU\NMService.exe
FirewallRules: [{C347D583-D0C3-4572-9EFA-D0DEC8110A09}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{0051FCD2-7B79-4B26-BAAC-E30A80004647}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{7DF8E0E8-E2B7-4525-9391-A568706FC69B}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Might & Magic Heroes VI\Might & Magic Heroes VI.exe
FirewallRules: [{266BEA91-7A8B-4877-8C86-C04E29121981}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Might & Magic Heroes VI\Might & Magic Heroes VI.exe
FirewallRules: [{B780B855-84C0-4D9A-B69C-FC9EEA66AE92}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CastleCrashers\castle.exe
FirewallRules: [{C3D15B54-9962-43EB-8F11-2F7985B67232}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\CastleCrashers\castle.exe
FirewallRules: [{467F0ACE-599C-47C1-B0AE-E397745FF5E7}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Escapists\TheEscapists.exe
FirewallRules: [{038B2282-0866-4B1C-B37F-C1F1E60A9865}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Escapists\TheEscapists.exe
FirewallRules: [UDP Query User{414784F0-A254-4356-A676-8890506B6BBD}D:\helloneighbor\helloneighbour\binaries\win64\helloneighbour-win64-shipping.exe] => (Allow) D:\helloneighbor\helloneighbour\binaries\win64\helloneighbour-win64-shipping.exe
FirewallRules: [TCP Query User{FC858B42-4A0D-44BB-8793-8189B3FAE20F}D:\helloneighbor\helloneighbour\binaries\win64\helloneighbour-win64-shipping.exe] => (Allow) D:\helloneighbor\helloneighbour\binaries\win64\helloneighbour-win64-shipping.exe
FirewallRules: [UDP Query User{DFED4337-DEB0-45FA-9819-B4F9326049D9}C:\program files\java\jre1.8.0_111\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_111\bin\java.exe
FirewallRules: [TCP Query User{E5351162-CAE0-48DF-9279-27DB7CB3F1CC}C:\program files\java\jre1.8.0_111\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_111\bin\java.exe
FirewallRules: [UDP Query User{AEA69BE9-4F0D-4E07-9CC7-CDA5BB1B3846}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [TCP Query User{3DD87127-6575-4FBB-B7F4-A03B5CB58AD8}C:\program files\java\jre1.8.0_111\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_111\bin\javaw.exe
FirewallRules: [UDP Query User{077C0A5D-144E-4C3D-BCE2-B8F431164748}C:\program files\java\jre1.8.0_101\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_101\bin\java.exe
FirewallRules: [TCP Query User{932E6E8C-3BCD-4B13-9C3B-E35135F9AAEB}C:\program files\java\jre1.8.0_101\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_101\bin\java.exe
FirewallRules: [UDP Query User{A0B147BE-E31B-48D0-A9FF-CB50B64C2184}D:\minnekraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\minnekraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{BF16467A-BFEA-4EDE-8D11-6C157521946E}D:\minnekraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\minnekraft\install\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{F76CC828-F816-477E-A978-B10E7AC15677}C:\users\micha\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\micha\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{C740FB2B-BCE4-4639-9094-BB04DC5F425A}C:\users\micha\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\micha\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{9B61A527-F0C3-48B8-BB4B-29CE1A65133B}D:\program files (x86)\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [TCP Query User{C39CB907-E871-472E-96E8-C0149DD13EE8}D:\program files (x86)\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\don't starve together\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [{DFC0EFE7-5BCE-462E-B7DB-3503BD4D5673}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Helmet Heroes\Helmet Heroes.exe
FirewallRules: [{9F65794B-70EF-40AD-8289-CAD398E6807D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Helmet Heroes\Helmet Heroes.exe
FirewallRules: [{0D7EB86B-0979-497C-85B3-57981CF8FD2F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Airscape\nw.exe
FirewallRules: [{3F4E49B2-2025-4E1A-AD8D-C6A43F91FCE6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Airscape\nw.exe
FirewallRules: [UDP Query User{D130728B-9838-491E-8B23-CD1AEB025299}D:\program files (x86)\steam\steamapps\common\space\spacegame\binaries\win64\spserver.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\space\spacegame\binaries\win64\spserver.exe
FirewallRules: [TCP Query User{2D85B3C8-045D-4F05-9C04-027FBE67AA89}D:\program files (x86)\steam\steamapps\common\space\spacegame\binaries\win64\spserver.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\space\spacegame\binaries\win64\spserver.exe
FirewallRules: [{CB0F5BFB-D68A-43B6-A0E5-00CE4B9E6EB1}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\The Crew (Worldwide)\TheCrew.exe
FirewallRules: [{F0B62052-ADCB-4A56-852D-871EC23E68F0}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\The Crew (Worldwide)\TheCrew.exe
FirewallRules: [{64A448C3-7B25-4F30-B19B-5E881AF0722F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LegendofDungeon\LegendofDungeon_DirectToRift.exe
FirewallRules: [{610D0E60-2A53-45A0-A964-F675CC53BA80}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LegendofDungeon\LegendofDungeon_DirectToRift.exe
FirewallRules: [{DD65CDC7-1DCF-4248-9AFF-98BCC7B4CB44}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LegendofDungeon\LegendofDungeon.exe
FirewallRules: [{F04CF578-F97C-4F6C-89EE-DE6A23E3D008}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\LegendofDungeon\LegendofDungeon.exe
FirewallRules: [UDP Query User{AF8AF6D0-469C-4FA1-827F-D6D9BCDD3E5E}D:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{51E50323-BC43-4003-8694-E289AAB7388B}D:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [{351E417D-7704-4DC5-9145-5ED8FC653D35}] => (Allow) D:\VoidElsword\data\x2.exe
FirewallRules: [{DB4087DD-E819-40CE-85AD-8BC66957F5A7}] => (Allow) D:\VoidElsword\data\x2.exe
FirewallRules: [{2C0A7818-DB55-40C3-A8E0-38CB33D0444A}] => (Allow) C:\Users\micha\Desktop\voidels.exe
FirewallRules: [{45121256-E4C6-41F9-B447-19FAD9E64312}] => (Allow) D:\VoidElsword\voidels.exe
FirewallRules: [{69F4001B-434B-4E7E-A042-01A120B7E8B2}] => (Allow) C:\Program Files (x86)\VoidElsword\data\x2.exe
FirewallRules: [{82008714-D72C-4D5D-9B47-30B71B7CFAFF}] => (Allow) C:\Program Files (x86)\VoidElsword\data\x2.exe
FirewallRules: [{D3DD071F-6032-4C0C-A5C7-36BCCF52B7DE}] => (Allow) C:\Program Files (x86)\VoidElsword\voidels.exe
FirewallRules: [UDP Query User{ED2DD6ED-B548-4A76-8C0B-9B6BC9743D9F}D:\program files (x86)\steam\steamapps\common\world of fishing\worldoffishing.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\world of fishing\worldoffishing.exe
FirewallRules: [TCP Query User{02821957-09F9-4609-A974-41AEF5220D5F}D:\program files (x86)\steam\steamapps\common\world of fishing\worldoffishing.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\world of fishing\worldoffishing.exe
FirewallRules: [{CCFA959E-C6B7-48A5-BF88-A0906E60171F}] => (Allow) D:\AeriaGames\TwinSaga-DE\game.bin
FirewallRules: [{D615F681-C7A7-401E-B013-C71CEF0714B8}] => (Allow) D:\AeriaGames\TwinSaga-DE\game.bin
FirewallRules: [UDP Query User{10C73A70-9054-4875-B89B-D803C4F204B5}C:\users\micha\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\micha\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{E12401A4-B194-4423-BD70-C64C8061B6E8}C:\users\micha\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\micha\appdata\local\akamai\netsession_win.exe
FirewallRules: [{53465351-4479-46AF-8772-2D0A2AA9FEB6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Duelyst\Duelyst.exe
FirewallRules: [{3627ACDE-B8D5-488D-8530-64923559EBE4}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Duelyst\Duelyst.exe
FirewallRules: [UDP Query User{55469AA9-2797-4982-A285-0526434E2997}D:\program files (x86)\steam\steamapps\common\aftermath\aftermath.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\aftermath\aftermath.exe
FirewallRules: [TCP Query User{B0B50524-4651-460C-A099-762265D95868}D:\program files (x86)\steam\steamapps\common\aftermath\aftermath.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\aftermath\aftermath.exe
FirewallRules: [UDP Query User{8E0AB97E-2180-4732-876B-6B551EBCF3D3}D:\program files (x86)\steam\steamapps\common\aftermath\amlauncher.exe.new.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\aftermath\amlauncher.exe.new.exe
FirewallRules: [TCP Query User{68A63FAF-AF90-436B-A19D-B3DE7A69CF54}D:\program files (x86)\steam\steamapps\common\aftermath\amlauncher.exe.new.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\aftermath\amlauncher.exe.new.exe
FirewallRules: [{7D6AC6AE-B016-4F11-8AB6-FFE5C1BAC179}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{CE364CC9-B67B-4A43-9B2B-CCDD962CEF04}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{7A610454-C142-43C6-8C51-DCAF860E1F98}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{75CB663B-6D30-4AE8-9D5F-A0DF788B5CA4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [UDP Query User{01E3C3CE-C34D-4005-A42C-BABC06287696}D:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{27681198-A5FA-4C08-9D74-BD37C76A1C5F}D:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{696FE11D-0CE6-4BB5-AA1F-657D1FBD1912}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [TCP Query User{25338BC8-ECBE-4DB4-874F-E9B27D32F018}C:\program files\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [UDP Query User{73536522-3058-4270-A1E5-4F0C900095A8}C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [TCP Query User{936757ED-C5FD-4FB8-8953-D53110B010EC}C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [{7644173B-C7B4-41F2-AED2-38CEF3750440}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Pirate Caribbean Hunt\ThePirate.exe
FirewallRules: [{D89C9EB7-7EA6-423E-A182-C55E4BC06963}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Pirate Caribbean Hunt\ThePirate.exe
FirewallRules: [{E50B6801-FAE5-407E-A29A-A5291BCF97E7}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\Rayman Origins.exe
FirewallRules: [{29603EE7-E151-437A-94FF-F70360CCB35F}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\Rayman Origins.exe
FirewallRules: [{AC3B251E-9198-4467-BDA6-030B776612FD}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\gu.exe
FirewallRules: [{5775BB66-E6DE-481B-9CE6-2D66F4D212A5}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Rayman Origins\gu.exe
FirewallRules: [{4A64C1A7-8081-4086-B2DA-EA61EB30C743}] => (Allow) C:\Program Files (x86)\TOTOLINK\Common\RaMediaServer.exe
FirewallRules: [{E48B6EB3-E75B-49F8-9F15-BE6D8A9898A8}] => (Allow) C:\Program Files (x86)\TOTOLINK\Common\RaMediaServer.exe
FirewallRules: [{14369524-9335-4023-8A98-DC15EC2DE5AD}] => (Allow) C:\Program Files (x86)\TOTOLINK\Common\RaUI.exe
FirewallRules: [{2B353DA8-E499-4055-AC1A-3B92505AB888}] => (Allow) C:\Program Files (x86)\TOTOLINK\Common\RaUI.exe
FirewallRules: [{2EE08C8A-3CA9-46FC-9DF8-27EC16F00233}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D8448F04-67E9-4796-9F43-E5DDD64B0099}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{0EA3C499-BA3B-4D4F-8F94-420F3DB61568}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{202D2476-B310-47C6-B6DB-685A5D59B5B0}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{FB77DF58-6353-4662-89BF-C7F02EA478E1}D:\program files (x86)\steam\steamapps\common\riders of icarus\bin64\launcher.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\riders of icarus\bin64\launcher.exe
FirewallRules: [UDP Query User{95486C03-8CC5-47F4-B5FE-E6227CAAFA02}D:\program files (x86)\steam\steamapps\common\riders of icarus\bin64\launcher.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\riders of icarus\bin64\launcher.exe
FirewallRules: [TCP Query User{2DE2EE15-3D67-4ADB-9016-FB42C29C4BA5}D:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) D:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [UDP Query User{29A29560-3472-4A4B-A2AB-83C3CC897732}D:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) D:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [{5AA8ACF6-583B-4E52-BBF2-33C136D5EB73}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{09EAA674-1D0D-4996-9721-163CF174F7E3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dark Souls II\Game\DarkSoulsII.exe
FirewallRules: [{86F4966F-260D-4A77-8DA9-0F46626CF633}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\nmrih\sdk\hl2.exe
FirewallRules: [{9B855492-2E54-44DB-BB27-629D95417183}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\nmrih\sdk\hl2.exe
FirewallRules: [{1854E645-2FB0-43DA-91C7-9B31D8AC2ED3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Forge of Gods (RPG)\fog.exe
FirewallRules: [{AD2A679F-236E-45F9-B2BA-9EAC6EC8A0B3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Forge of Gods (RPG)\fog.exe
FirewallRules: [{9F2F5106-3B3E-4E6D-B052-340705BFD0AC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{50E0D927-F8F1-4ECA-B7EC-7A3CACE20FD9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{386AF287-148F-4466-A2E5-74B6EB59C226}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\mod_uploader.exe
FirewallRules: [{582FF8D0-E7F9-4201-B5AC-8AC24A2083E4}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\mod_uploader.exe
FirewallRules: [{50914B23-C259-4A81-9B2A-FFEACB4C58D7}] => (Allow) C:\MicroVolts Package\MicroVolts Downloader.exe
FirewallRules: [{70B8D833-0DFA-418F-A042-9A514035F08E}] => (Allow) C:\MicroVolts Package\MicroVolts Downloader.exe
FirewallRules: [{0AFA8D6C-C52C-49A5-891F-B55F7EBC10A1}] => (Allow) D:\Program Files (x86)\GameforgeLive\Games\DEU_deu\Elsword\data\x2.exe
FirewallRules: [{25926C37-F4D0-4EF8-AC3D-BD2C97AFD08D}] => (Allow) D:\Program Files (x86)\GameforgeLive\Games\DEU_deu\Elsword\data\x2.exe
FirewallRules: [{F6657294-5724-4783-9A62-AE675EB4BB12}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\firstassault\Shipping\GAME.exe
FirewallRules: [{801CCBE6-4C42-4B12-9B6F-C529072A20EA}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\firstassault\Shipping\GAME.exe
FirewallRules: [TCP Query User{1314F32D-A01D-4806-AF43-D66E06718724}D:\program files (x86)\steam\steamapps\common\freestyle2\freestyle2.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\freestyle2\freestyle2.exe
FirewallRules: [UDP Query User{889F1E6C-AB2F-4AE2-9ECF-4849F401CA69}D:\program files (x86)\steam\steamapps\common\freestyle2\freestyle2.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\freestyle2\freestyle2.exe
FirewallRules: [{99FE6A67-42D5-446D-9757-CE7483CE6FDE}] => (Allow) D:\Program Files (x86)\GameforgeLive\Games\DEU_deu\Elsword\data\x2.exe
FirewallRules: [{ADF354D5-1318-4A98-9BF5-2257D177A32F}] => (Allow) D:\Program Files (x86)\GameforgeLive\Games\DEU_deu\Elsword\data\x2.exe
FirewallRules: [{2DF2F157-DE88-4286-A2C1-F68956FBB95C}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{044F4D9E-3DA3-4E0E-BAB7-2ECB692979A5}] => (Allow) LPort=2869
FirewallRules: [{978655D5-F6DF-4123-985D-33BB573B7434}] => (Allow) LPort=1900
FirewallRules: [{FC46AA8E-FDD4-4556-A4EA-3AF679C82606}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{4CF8C13A-6865-4F86-A8C2-CBD2F8694217}] => (Allow) D:\Program Files (x86)\Electronic Arts\BioWare\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{4721A717-DE73-44E6-9613-29DE3F29CEAE}] => (Allow) D:\Program Files (x86)\Electronic Arts\BioWare\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{297ED9AB-ABF0-446C-8907-A29A8A03FB9A}] => (Allow) D:\Program Files (x86)\Electronic Arts\BioWare\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{2E11A305-560E-48F2-A8E2-04A18E5A533E}] => (Allow) D:\Program Files (x86)\Electronic Arts\BioWare\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{44BC3132-54F6-4E5F-A597-04EDE1A7E627}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Splinter Cell\system\SplinterCell.exe
FirewallRules: [{AF4D589A-E667-4AC0-AF67-51543F02C28E}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Splinter Cell\system\SplinterCell.exe
FirewallRules: [{87023DC2-F944-4393-8244-1CE7CEBA08F6}] => (Allow) D:\Program Files (x86)\Deep Silver\Sacred 2 - Fallen Angel\system\sacred2.exe
FirewallRules: [{4DF96A75-F19E-4D48-A16C-D0398971E2D4}] => (Allow) D:\Program Files (x86)\Deep Silver\Sacred 2 - Fallen Angel\system\sacred2.exe
FirewallRules: [{C0E855B2-0812-41E2-A164-51EA986A57D4}] => (Allow) D:\Program Files (x86)\Deep Silver\Sacred 2 - Fallen Angel\system\s2gs.exe
FirewallRules: [{3BE931F6-4320-4A87-8ECC-BF88E9151A47}] => (Allow) D:\Program Files (x86)\Deep Silver\Sacred 2 - Fallen Angel\system\s2gs.exe
FirewallRules: [{248325D4-1649-46DA-915B-4B0B814AE398}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe
FirewallRules: [{5210D733-D5BC-404B-9575-666F2BFDA168}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe
FirewallRules: [TCP Query User{12130BA3-0217-470F-B161-CBDC1BDC8F9C}D:\program files (x86)\heroes of the storm\versions\base58209\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base58209\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{E8F7A47F-1EA5-47C7-AEED-B77DE9371488}D:\program files (x86)\heroes of the storm\versions\base58209\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base58209\heroesofthestorm_x64.exe
FirewallRules: [{68F76EF4-2ECB-4D9F-B801-EE35C6622C55}] => (Block) D:\program files (x86)\heroes of the storm\versions\base58209\heroesofthestorm_x64.exe
FirewallRules: [{162E8C13-D934-42B9-AABC-B0D8C9C630AA}] => (Block) D:\program files (x86)\heroes of the storm\versions\base58209\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{7ED95C03-9405-47D2-8C84-04C2C2946BDC}D:\program files (x86)\heroes of the storm\versions\base58482\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base58482\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{C11AE6DE-4B01-464C-A2D5-D83AD70A72E6}D:\program files (x86)\heroes of the storm\versions\base58482\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base58482\heroesofthestorm_x64.exe
FirewallRules: [{378BB3E3-DA86-4ECD-804C-9FB5A58E3AEF}] => (Block) D:\program files (x86)\heroes of the storm\versions\base58482\heroesofthestorm_x64.exe
FirewallRules: [{479C616B-5ACA-4B1F-B8CF-CF4DCF8C259B}] => (Block) D:\program files (x86)\heroes of the storm\versions\base58482\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{7362B4B0-6738-4695-B663-6A1036B0D15D}D:\program files (x86)\steam\steamapps\common\3on3 freestyle\3on3 freestyle\binaries\win64\doubleclutch-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\3on3 freestyle\3on3 freestyle\binaries\win64\doubleclutch-win64-shipping.exe
FirewallRules: [UDP Query User{8FEB0F54-8446-499D-A9D6-2CEB1E247DEC}D:\program files (x86)\steam\steamapps\common\3on3 freestyle\3on3 freestyle\binaries\win64\doubleclutch-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\3on3 freestyle\3on3 freestyle\binaries\win64\doubleclutch-win64-shipping.exe
FirewallRules: [{79FFE46B-2869-43E8-A0D8-B3EDAA7E7A92}] => (Block) D:\program files (x86)\steam\steamapps\common\3on3 freestyle\3on3 freestyle\binaries\win64\doubleclutch-win64-shipping.exe
FirewallRules: [{64857AAC-4519-4FC0-8A98-A09DBB7C6358}] => (Block) D:\program files (x86)\steam\steamapps\common\3on3 freestyle\3on3 freestyle\binaries\win64\doubleclutch-win64-shipping.exe
FirewallRules: [TCP Query User{4D79C8D4-C1AF-4D1D-ABBC-227A266496B9}D:\program files (x86)\diablo iii public test\x64\diablo iii64.exe] => (Allow) D:\program files (x86)\diablo iii public test\x64\diablo iii64.exe
FirewallRules: [UDP Query User{8176DB73-DA1E-4C88-88B4-CF3C5B91AF2C}D:\program files (x86)\diablo iii public test\x64\diablo iii64.exe] => (Allow) D:\program files (x86)\diablo iii public test\x64\diablo iii64.exe
FirewallRules: [{2C48E734-4623-4D58-AD98-64F645B7E06E}] => (Block) D:\program files (x86)\diablo iii public test\x64\diablo iii64.exe
FirewallRules: [{49DAEA3C-4C87-46A0-8394-CB97534DA870}] => (Block) D:\program files (x86)\diablo iii public test\x64\diablo iii64.exe
FirewallRules: [TCP Query User{66E60AC8-1AD4-4B96-8150-514328590460}D:\program files (x86)\heroes of the storm\versions\base58623\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base58623\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{CCDB72DE-DF65-44CD-8E2E-7094C69CFA81}D:\program files (x86)\heroes of the storm\versions\base58623\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base58623\heroesofthestorm_x64.exe
FirewallRules: [{70F94D82-3009-49CB-ADF2-8BE6BB59D077}] => (Block) D:\program files (x86)\heroes of the storm\versions\base58623\heroesofthestorm_x64.exe
FirewallRules: [{89BF5985-DAAC-43A5-B15E-901C26CCED62}] => (Block) D:\program files (x86)\heroes of the storm\versions\base58623\heroesofthestorm_x64.exe
FirewallRules: [{FC3E7FC4-09B5-4F00-85BB-CD79E33D726D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{522D9C2F-53F5-4235-BF38-941C3A3F8483}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{E1948FBB-F4E8-4118-8895-A0C4A16A3A35}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{B85C183B-2030-413C-B5E0-3BF48C08F051}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{F504D227-539B-4A05-B700-47DB79D17F41}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{315AF419-E7B9-4B65-8FF2-3567425882CD}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{73AC9085-E98C-41EE-95F4-7E0B2CA2C6AA}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{B88A700F-B5C4-4E0E-A90D-44CF944EB9E6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{DF64C22F-C4E7-4C70-A5BA-B924506349A2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe
FirewallRules: [{D8174A64-DC68-4A64-83AB-F4D3FB15C0B0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe
FirewallRules: [TCP Query User{7ABCF973-25C9-4D84-A4AB-C24D4EE02875}D:\program files (x86)\heroes of the storm\versions\base59239\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base59239\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F9FF5AD4-16DA-4696-8E75-CD54914423AE}D:\program files (x86)\heroes of the storm\versions\base59239\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base59239\heroesofthestorm_x64.exe
FirewallRules: [{035D4501-4038-4092-97AF-B17E4D353605}] => (Block) D:\program files (x86)\heroes of the storm\versions\base59239\heroesofthestorm_x64.exe
FirewallRules: [{3986B13F-E371-4C4A-A086-44FBA419D9C5}] => (Block) D:\program files (x86)\heroes of the storm\versions\base59239\heroesofthestorm_x64.exe
FirewallRules: [{98F46B38-DE14-4198-8290-15B9B4C506B2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Binding of Isaac Rebirth\isaac-ng.exe
FirewallRules: [{6B1B38CF-8FEC-41F7-BCCF-1CC24E313D77}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Binding of Isaac Rebirth\isaac-ng.exe
FirewallRules: [TCP Query User{804CF13E-72B3-43E2-8D29-5B1F3958E498}D:\spelunky sd\spelunkysd.exe] => (Allow) D:\spelunky sd\spelunkysd.exe
FirewallRules: [UDP Query User{37110BD1-46C4-41E4-9108-1DE24C86759B}D:\spelunky sd\spelunkysd.exe] => (Allow) D:\spelunky sd\spelunkysd.exe
FirewallRules: [{9B098E15-71E5-4F4B-8811-70B53B50C800}] => (Block) D:\spelunky sd\spelunkysd.exe
FirewallRules: [{F0198D4E-7799-42D8-BDBE-65CAFEDA0861}] => (Block) D:\spelunky sd\spelunkysd.exe
FirewallRules: [{4B9814E3-DA2B-4418-A66B-25C4B688EF1E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{2DC45247-A701-4710-A12A-30CA715B6BF4}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{F4EEF2FC-556A-421B-B70D-5834B128273D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame.exe
FirewallRules: [{9D6B5134-090B-4635-933E-C5BE28EA5B8A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame.exe
FirewallRules: [{A6132CFD-FB5E-485C-A467-7B49734FFD29}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{DB99D280-ED12-4530-B02B-6515460FDA7C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{1F0C19AF-B916-4594-82B0-27E19A2EB5CE}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{8A6825B2-631F-4C6D-BCF9-C3046F4B8E67}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [TCP Query User{84579BE2-39DC-4A34-BC2D-53D4D0533F3E}D:\program files (x86)\heroes of the storm\versions\base59799\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base59799\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{9DF94714-0F75-4F46-BDF4-D089B185BAEB}D:\program files (x86)\heroes of the storm\versions\base59799\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base59799\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{43EA0A81-002B-4BFB-9E3E-D4AF92D38571}C:\program files\java\jre1.8.0_151\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_151\bin\javaw.exe
FirewallRules: [UDP Query User{32AC1C32-41B2-43C6-9BF7-9C75F54BC65A}C:\program files\java\jre1.8.0_151\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_151\bin\javaw.exe
FirewallRules: [{5D1039B5-D775-4198-8615-A362127EE32D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe
FirewallRules: [{790776F4-973F-49B2-9372-641FB0433805}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe
FirewallRules: [{7CE39755-6BC4-45BE-B921-DDCAD72868C2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TwinSaga\game.bin
FirewallRules: [{A2F75827-D65A-4AFA-9E38-238C9732C6C9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TwinSaga\game.bin
         
__________________

Alt 30.08.2018, 02:31   #4
Michi55
 
Windows 10: rundll32.exe CPU Auslastung - Standard

Windows 10: rundll32.exe CPU Auslastung



hier ist der 3 Teil:

Code:
ATTFilter
FirewallRules: [TCP Query User{0CE76DC7-EE53-4DE9-9062-9CD2E47A33A6}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe
FirewallRules: [UDP Query User{30696365-91DE-46F0-8798-022C73BEA560}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe
FirewallRules: [{048DD221-2998-4104-AA3A-62CB515A3406}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\THE GAME OF LIFE - The Official 2016 Edition\TheGameOfLife.exe
FirewallRules: [{7AFE73F6-D970-4CAE-83A1-9ECB4D54494A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\THE GAME OF LIFE - The Official 2016 Edition\TheGameOfLife.exe
FirewallRules: [{2240E7EF-AA98-43EB-9CFE-E13AFFB64293}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\EMERGENCY 20\bin\em5_launcher.exe
FirewallRules: [{CDDA83C9-501C-41C6-AB98-3689F5422CB2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\EMERGENCY 20\bin\em5_launcher.exe
FirewallRules: [TCP Query User{4D50DFFB-4E9D-472B-8778-68FFEAC4682A}C:\users\micha\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\micha\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{1D40E268-3CCF-46B4-A9BC-98BD16FF940B}C:\users\micha\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\micha\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{DD384AD1-615F-42DB-A3A0-BD41E9921156}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe
FirewallRules: [UDP Query User{89C4943D-A064-4885-AFC4-2FBDE11297BA}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe
FirewallRules: [{588190A9-A699-4CAC-A2CF-0CCCD876CB42}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Cuisine Royale\slauncher.exe
FirewallRules: [{652BD3F3-AE33-4BD7-921D-61F3B5ECF966}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Cuisine Royale\slauncher.exe
FirewallRules: [{158092E9-9D76-4FD5-9E2B-20951FF9C4A0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Shadowrun Returns\Shadowrun.exe
FirewallRules: [{66BF552D-7D66-435A-B3FA-FCAD5FE6B33E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Shadowrun Returns\Shadowrun.exe
FirewallRules: [TCP Query User{6636AC13-5BF6-4E2E-8A79-F0E10B65DA99}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe
FirewallRules: [UDP Query User{B23E4767-F1D9-4067-9D50-72C10F406308}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe
FirewallRules: [TCP Query User{70C2ECA3-A92C-4434-826E-94A5F69F31C7}D:\program files (x86)\heroes of the storm\versions\base66182\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base66182\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{32DFD497-F751-4492-87FA-4DBA2BBACC3C}D:\program files (x86)\heroes of the storm\versions\base66182\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base66182\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{5DB5D95A-8E12-4D25-98DC-9C2AA654C31A}D:\program files (x86)\starcraft ii\versions\base65895\sc2_x64.exe] => (Allow) D:\program files (x86)\starcraft ii\versions\base65895\sc2_x64.exe
FirewallRules: [UDP Query User{DC4E44C4-601E-4A4A-B03D-F874A7AFF6BE}D:\program files (x86)\starcraft ii\versions\base65895\sc2_x64.exe] => (Allow) D:\program files (x86)\starcraft ii\versions\base65895\sc2_x64.exe
FirewallRules: [TCP Query User{297ED92E-55D7-4417-AABE-980EF91645F8}D:\program files (x86)\starcraft ii\support64\sc2editor_x64.exe] => (Allow) D:\program files (x86)\starcraft ii\support64\sc2editor_x64.exe
FirewallRules: [UDP Query User{2ED10DA5-7CA9-42E0-896B-33A791DD8EB0}D:\program files (x86)\starcraft ii\support64\sc2editor_x64.exe] => (Allow) D:\program files (x86)\starcraft ii\support64\sc2editor_x64.exe
FirewallRules: [{5C87AA86-8334-48D4-9888-234E9F36797D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\StarBreak\mvmmoclient.exe
FirewallRules: [{80145AA6-663A-4D7E-8673-DB69019CE502}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\StarBreak\mvmmoclient.exe
FirewallRules: [{5DF854EC-1B77-4E68-B270-695915069CEE}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{EFDC5122-5E78-4625-865D-8B9C911F911C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{C8698FE1-DC42-49E3-B544-76D7DD3CCE2A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
FirewallRules: [{2C5F9D97-21F2-4E08-BDA3-C399CA8367F3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\GunsOfIcarusOnline.exe
FirewallRules: [{7D8CF911-BA33-4ABF-B25A-53991D2B3CED}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Floating Point\Floating Point.exe
FirewallRules: [{62CED9F7-5D02-48BA-B555-E5BC47759577}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Floating Point\Floating Point.exe
FirewallRules: [{B4081E6A-98A8-4AB5-A9E6-EF8E3C2335F7}] => (Allow) C:\Program Files\Parsec\parsecd.exe
FirewallRules: [TCP Query User{C75A2362-2549-4788-8D8C-36954F860C4F}D:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) D:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{44C8BD63-6588-404D-A1F0-519CF3D3D993}D:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Allow) D:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{038CDF53-576A-4E9D-9BD8-C1DDFCB20A79}C:\program files\java\jre1.8.0_181\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_181\bin\javaw.exe
FirewallRules: [UDP Query User{EDFFD697-1408-4687-86B6-2A448451F1E0}C:\program files\java\jre1.8.0_181\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_181\bin\javaw.exe
FirewallRules: [{FEED1702-FFC5-43EE-BAC0-853342EA7614}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\HeroSiege\bin\Hero_Siege.exe
FirewallRules: [{A473F2B3-C600-407A-9E00-3B0559186650}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\HeroSiege\bin\Hero_Siege.exe
FirewallRules: [TCP Query User{A1AB938E-5481-45C5-81D5-63816148048B}C:\users\micha\documents\nitrox\nitroxserver\bin\debug\nitroxserver.exe] => (Allow) C:\users\micha\documents\nitrox\nitroxserver\bin\debug\nitroxserver.exe
FirewallRules: [UDP Query User{B2D9C35A-27C5-4949-AB2D-1E05720E5FFA}C:\users\micha\documents\nitrox\nitroxserver\bin\debug\nitroxserver.exe] => (Allow) C:\users\micha\documents\nitrox\nitroxserver\bin\debug\nitroxserver.exe
FirewallRules: [{D508CAD0-A6AD-46E7-9A09-1C176FC38326}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{CCDB77F4-2454-411F-97B8-730758222173}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{C519DF39-FA5E-4BF1-B1A6-791FC07756A2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{07AFAA3C-AD51-49E2-A14F-888FF2E53BCA}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{78F7B951-460E-4391-A52D-9E1A902A5312}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{87EF3682-7AF9-44B8-82E4-D9D5FE756932}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Hunt Showdown\hunt.exe
FirewallRules: [{C489A1A7-720B-420E-A315-CB104628C444}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Hunt Showdown\hunt.exe
FirewallRules: [TCP Query User{E41549BB-D441-4D5A-81BA-4815AFB208E3}D:\program files (x86)\steam\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe
FirewallRules: [UDP Query User{81D1BD88-F9AC-4437-8012-432A866B46A7}D:\program files (x86)\steam\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe
FirewallRules: [{A86D4CE9-2BA3-4EAC-88FF-4B96A24519F5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{F1C53450-4F87-487B-A49A-EBE771B50517}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{6BFD4F8C-2185-4FA8-82DF-EF28B2EB6412}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{211809EB-9AAA-4B67-93DA-F6376E7EB995}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{13FD7B86-0F48-47F1-8DC1-44FA996C1EEE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{FD390E58-CAEF-4872-8F86-7464435EB162}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{92CAECFB-15A8-4BB9-81D8-DADC405A3C05}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\insurgency2\insurgency_BE.exe
FirewallRules: [{7D1ECEC8-97BE-47F7-8FE0-D9DC62CB20D4}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\insurgency2\insurgency_BE.exe
FirewallRules: [TCP Query User{CA967444-A03A-4467-AA61-36E15A1E112D}D:\program files (x86)\steam\steamapps\common\insurgency2\insurgency_x64.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\insurgency2\insurgency_x64.exe
FirewallRules: [UDP Query User{4958F762-DC43-4DDE-9D4E-FEDA541EF9B5}D:\program files (x86)\steam\steamapps\common\insurgency2\insurgency_x64.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\insurgency2\insurgency_x64.exe
FirewallRules: [{88FE3F62-996C-41E6-987A-3979B2E5DD7B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Orwell\Orwell.exe
FirewallRules: [{99248E43-B53A-40FF-8916-A3BC39D2CEEA}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Orwell\Orwell.exe
FirewallRules: [TCP Query User{C3DCFE71-6706-4D07-941C-E0A4BCB59BAF}D:\program files (x86)\starcraft ii\versions\base67188\sc2_x64.exe] => (Allow) D:\program files (x86)\starcraft ii\versions\base67188\sc2_x64.exe
FirewallRules: [UDP Query User{0DB7E2BD-A7CD-460F-805D-82A12CF4A70A}D:\program files (x86)\starcraft ii\versions\base67188\sc2_x64.exe] => (Allow) D:\program files (x86)\starcraft ii\versions\base67188\sc2_x64.exe
FirewallRules: [{42135205-BB50-4D5D-B1AD-AC245E7B91A0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{E3E70C15-DFBD-4BEA-AA39-4BF23693E47E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Guns of Icarus Online\workshop\Workshop.exe
FirewallRules: [{97324AE7-9D54-419B-94BE-CF048D003FF0}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
FirewallRules: [TCP Query User{E1E37721-EC37-4C46-9F19-09CFD3DE8071}D:\program files (x86)\steam\steamapps\common\for honor\forhonor.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\for honor\forhonor.exe
FirewallRules: [UDP Query User{806ECD63-A34D-4A4D-9457-B0DB6EAC31E0}D:\program files (x86)\steam\steamapps\common\for honor\forhonor.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\for honor\forhonor.exe
FirewallRules: [{05AEB6DA-428A-4F17-AED2-154FAF88A8BD}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{58EE4F9C-4716-472C-BF8D-C37192491DB8}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [TCP Query User{894527FB-B657-44E5-8B30-18F87540DEDA}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe
FirewallRules: [UDP Query User{7179C8D4-8488-4ABC-8372-64541DAF69BA}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe
FirewallRules: [{A6CCD9FE-8C79-462D-8EED-353D70958DCF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{341EB849-2182-48F7-A514-58583331FA90}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\mod_uploader.exe
FirewallRules: [{A10BAAD1-65A5-4612-A3D5-9CDFCD8E84B6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{139D9DEE-F128-4889-A1F9-72E3383E1F9B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win32\starbound.exe
FirewallRules: [{5B21AFB8-FC79-454C-8A90-745C2557CCC9}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{71ECE734-6170-49D7-9ECF-085FB8AA1F89}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{877C757E-6858-4ACE-ACE3-09F8CB2E0D40}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{C5318FA8-4B44-4B51-9317-4099740437F6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound.exe
FirewallRules: [{A6E4F365-0E3A-436C-9180-28054BE52DED}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{9C4B11A0-DACA-4058-89F9-0B262BABAF88}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Starbound\win64\starbound_server.exe
FirewallRules: [{8168EDED-F32B-42F6-8346-6D4E531983EF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\IdleChampions\IdleDragons.exe
FirewallRules: [{3C7E28A3-B372-491B-BC36-6B64E7CACF39}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\IdleChampions\IdleDragons.exe
FirewallRules: [TCP Query User{782BFFA2-7FC8-4108-8440-FBF6F0BAD5D7}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe
FirewallRules: [UDP Query User{34D21FED-E7D1-4234-99DC-74408CE80ED4}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe

==================== Wiederherstellungspunkte =========================


==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (08/30/2018 01:00:19 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3009) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl) konnten nicht installiert werden. Der Fehlercode ist das erste DWORD im Datenbereich.

Error: (08/29/2018 10:31:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SystemSettings.exe, Version: 10.0.17134.112, Zeitstempel: 0x2a3c4e62
Name des fehlerhaften Moduls: Windows.UI.Xaml.dll, Version: 10.0.17134.81, Zeitstempel: 0x4f4899f8
Ausnahmecode: 0xc000027b
Fehleroffset: 0x00000000006a4e02
ID des fehlerhaften Prozesses: 0x2500
Startzeit der fehlerhaften Anwendung: 0x01d43fd73bd70847
Pfad der fehlerhaften Anwendung: C:\Windows\ImmersiveControlPanel\SystemSettings.exe
Pfad des fehlerhaften Moduls: C:\Windows\System32\Windows.UI.Xaml.dll
Berichtskennung: 76160dd6-9922-44e5-84b0-e3ea889d7064
Vollständiger Name des fehlerhaften Pakets: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: microsoft.windows.immersivecontrolpanel

Error: (08/29/2018 10:30:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SystemSettings.exe, Version: 10.0.17134.112, Zeitstempel: 0x2a3c4e62
Name des fehlerhaften Moduls: Windows.UI.Xaml.dll, Version: 10.0.17134.81, Zeitstempel: 0x4f4899f8
Ausnahmecode: 0xc000027b
Fehleroffset: 0x00000000006a4e02
ID des fehlerhaften Prozesses: 0x2bb0
Startzeit der fehlerhaften Anwendung: 0x01d43fd715933d48
Pfad der fehlerhaften Anwendung: C:\Windows\ImmersiveControlPanel\SystemSettings.exe
Pfad des fehlerhaften Moduls: C:\Windows\System32\Windows.UI.Xaml.dll
Berichtskennung: c20daf8f-170a-4cbe-ae6d-699ca7a1116e
Vollständiger Name des fehlerhaften Pakets: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: microsoft.windows.immersivecontrolpanel

Error: (08/29/2018 10:29:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SystemSettings.exe, Version: 10.0.17134.112, Zeitstempel: 0x2a3c4e62
Name des fehlerhaften Moduls: Windows.UI.Xaml.dll, Version: 10.0.17134.81, Zeitstempel: 0x4f4899f8
Ausnahmecode: 0xc000027b
Fehleroffset: 0x00000000006a4e02
ID des fehlerhaften Prozesses: 0x3950
Startzeit der fehlerhaften Anwendung: 0x01d43fd7065e6b8d
Pfad der fehlerhaften Anwendung: C:\Windows\ImmersiveControlPanel\SystemSettings.exe
Pfad des fehlerhaften Moduls: C:\Windows\System32\Windows.UI.Xaml.dll
Berichtskennung: 23537f34-0742-4061-a88e-828c785ba9f5
Vollständiger Name des fehlerhaften Pakets: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: microsoft.windows.immersivecontrolpanel

Error: (08/29/2018 10:29:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SystemSettings.exe, Version: 10.0.17134.112, Zeitstempel: 0x2a3c4e62
Name des fehlerhaften Moduls: Windows.UI.Xaml.dll, Version: 10.0.17134.81, Zeitstempel: 0x4f4899f8
Ausnahmecode: 0xc000027b
Fehleroffset: 0x00000000006a4e02
ID des fehlerhaften Prozesses: 0x121c
Startzeit der fehlerhaften Anwendung: 0x01d43fd6ef7d1a33
Pfad der fehlerhaften Anwendung: C:\Windows\ImmersiveControlPanel\SystemSettings.exe
Pfad des fehlerhaften Moduls: C:\Windows\System32\Windows.UI.Xaml.dll
Berichtskennung: df297a40-d998-4f11-993c-d811a161f875
Vollständiger Name des fehlerhaften Pakets: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: microsoft.windows.immersivecontrolpanel

Error: (08/29/2018 10:28:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SystemSettings.exe, Version: 10.0.17134.112, Zeitstempel: 0x2a3c4e62
Name des fehlerhaften Moduls: Windows.UI.Xaml.dll, Version: 10.0.17134.81, Zeitstempel: 0x4f4899f8
Ausnahmecode: 0xc000027b
Fehleroffset: 0x00000000006a4e02
ID des fehlerhaften Prozesses: 0x2980
Startzeit der fehlerhaften Anwendung: 0x01d43fd6e6cfddd1
Pfad der fehlerhaften Anwendung: C:\Windows\ImmersiveControlPanel\SystemSettings.exe
Pfad des fehlerhaften Moduls: C:\Windows\System32\Windows.UI.Xaml.dll
Berichtskennung: 8fdd1404-807e-4a82-ae36-2545f93ad1e4
Vollständiger Name des fehlerhaften Pakets: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: microsoft.windows.immersivecontrolpanel

Error: (08/29/2018 10:28:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SystemSettings.exe, Version: 10.0.17134.112, Zeitstempel: 0x2a3c4e62
Name des fehlerhaften Moduls: Windows.UI.Xaml.dll, Version: 10.0.17134.81, Zeitstempel: 0x4f4899f8
Ausnahmecode: 0xc000027b
Fehleroffset: 0x00000000006a4e02
ID des fehlerhaften Prozesses: 0x2924
Startzeit der fehlerhaften Anwendung: 0x01d43f8d31ac3dd9
Pfad der fehlerhaften Anwendung: C:\Windows\ImmersiveControlPanel\SystemSettings.exe
Pfad des fehlerhaften Moduls: C:\Windows\System32\Windows.UI.Xaml.dll
Berichtskennung: 8dc48ce6-6976-49b3-a5fb-04439c0263c2
Vollständiger Name des fehlerhaften Pakets: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: microsoft.windows.immersivecontrolpanel

Error: (08/29/2018 07:46:32 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-AHG77M6)
Description: httphttp-2147467263


Systemfehler:
=============
Error: (08/30/2018 01:45:16 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-AHG77M6)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "DESKTOP-AHG77M6\micha" (SID: S-1-5-21-3159779420-2504212275-734065462-1001) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 und der APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (08/30/2018 01:33:21 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-AHG77M6)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "DESKTOP-AHG77M6\micha" (SID: S-1-5-21-3159779420-2504212275-734065462-1001) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 und der APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (08/30/2018 01:31:54 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-AHG77M6)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "DESKTOP-AHG77M6\micha" (SID: S-1-5-21-3159779420-2504212275-734065462-1001) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 und der APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (08/30/2018 01:31:50 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-AHG77M6)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "DESKTOP-AHG77M6\micha" (SID: S-1-5-21-3159779420-2504212275-734065462-1001) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 und der APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (08/30/2018 01:31:44 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Start" für die COM-Serveranwendung mit der CLSID 
Windows.SecurityCenter.WscBrokerManager
 und der APPID 
Nicht verfügbar
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (08/30/2018 01:31:40 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-AHG77M6)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "DESKTOP-AHG77M6\micha" (SID: S-1-5-21-3159779420-2504212275-734065462-1001) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Start" für die COM-Serveranwendung mit der CLSID 
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
 und der APPID 
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (08/30/2018 01:31:40 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-AHG77M6)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "DESKTOP-AHG77M6\micha" (SID: S-1-5-21-3159779420-2504212275-734065462-1001) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Start" für die COM-Serveranwendung mit der CLSID 
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
 und der APPID 
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (08/30/2018 01:31:40 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-AHG77M6)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "DESKTOP-AHG77M6\micha" (SID: S-1-5-21-3159779420-2504212275-734065462-1001) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Start" für die COM-Serveranwendung mit der CLSID 
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
 und der APPID 
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.


CodeIntegrity:
===================================

Date: 2018-08-19 21:38:20.694
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Elsword\data\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2018-08-19 21:38:19.876
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Elsword\data\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2018-08-19 21:38:10.303
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Elsword\data\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2018-08-19 21:38:04.499
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Elsword\data\GameGuard\npggNT.des that did not meet the Microsoft signing level requirements.

Date: 2018-08-18 13:20:54.839
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Elsword\data\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2018-08-18 13:20:21.281
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Elsword\data\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2018-08-18 13:20:13.114
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Elsword\data\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2018-08-18 13:20:07.552
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Elsword\data\GameGuard\npggNT.des that did not meet the Microsoft signing level requirements.

==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i7-4790 CPU @ 3.60GHz
Prozentuale Nutzung des RAM: 43%
Installierter physikalischer RAM: 8134.23 MB
Verfügbarer physikalischer RAM: 4625.6 MB
Summe virtueller Speicher: 14022.23 MB
Verfügbarer virtueller Speicher: 10122.38 MB

==================== Laufwerke ================================

Drive c: (Windows) (Fixed) (Total:103.88 GB) (Free:31.02 GB) NTFS
Drive d: (Daten) (Fixed) (Total:931.51 GB) (Free:309.75 GB) NTFS

\\?\Volume{09716c4d-3a82-4621-8145-2a8665153447}\ (Windows RE tools) (Fixed) (Total:0.49 GB) (Free:0.23 GB) NTFS
\\?\Volume{e460477c-638a-485e-b7d3-532c7e23a556}\ (Recovery image) (Fixed) (Total:13.65 GB) (Free:4.52 GB) NTFS
\\?\Volume{a2d6bc47-e732-4cb4-907f-1032f1b82c15}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 4FA04183)

Partition: GPT.

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 3EADD993)

Partition: GPT.

==================== Ende von Addition.txt ============================
         

Alt 30.08.2018, 09:43   #5
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 10: rundll32.exe CPU Auslastung - Standard

Windows 10: rundll32.exe CPU Auslastung



Avast bitte komplett deinstallieren

Von Avast raten wir schon lange ab, außerdem will ich für eine Analyse und Bereinigung so wenig Störquellen wie nur möglich. Zum Abschluss gibt es Hinweise zur Absicherung deines Windows-Systems.

Wir deinstallieren dann am besten auch gleich weiteren unnötigen oder veralteten Krempel.

Lade Dir bitte von hier Revo Uninstaller Download Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
  • Installiere und starte das Programm. (Bebilderte Anleitung zu Revo Uninstaller)
  • Klicke auf Optionen und wähle als Sprache Deutsch.
  • Suche im Uninstallerfeld nach den Programmen:


    Adobe Acrobat Reader DC - Deutsch

    Adobe Flash Player 30 NPAPI

    Akamai NetSession Interface

    Avast Free Antivirus

    Avast Secure Browser

    Avast Update Helper

    Bandisoft MPEG-1 Decoder


  • Wähle die Programme nacheinander aus und klicke jedes Mal auf Uninstall.
  • Wähle anschließend den Modus "Moderat" aus.
  • Reste löschen:
    Klicke auf dann auf und dann auf .

 





Gib Bescheid wenn das weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren!

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 30.08.2018, 11:54   #6
Michi55
 
Windows 10: rundll32.exe CPU Auslastung - Standard

Windows 10: rundll32.exe CPU Auslastung



Nach mehrmaligen Neustarts kam es zu keinen hohen Auslastungen jedoch bin ich mir da nicht ganz sicher obs repariert ist aber zu 90% bin ich mir sicher das hat geholfen.
1. hätte ich da noch bei der Deinstallation von Programmen fand ich Avast Update Helper nicht ist das schlimm? Also damit mein ich es war nicht da zum Deinstallieren.
2. Welches Antivirus Programm würden Sie mir empfehlen zur Verwendung auch wenn es nur der Kostenlose zweck ist?
3. Was ich grad noch bemerkt hab ist das die Antimalware Service Executable mal ab und zu die Cpu kurz Auslastet ist das normal? Also im bereich von 15%-20%

Geändert von Michi55 (30.08.2018 um 12:02 Uhr)

Alt 30.08.2018, 13:41   #7
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 10: rundll32.exe CPU Auslastung - Standard

Windows 10: rundll32.exe CPU Auslastung



Schädlinge suchen mit Kaspersky TDSS-Killer

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.



Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 30.08.2018, 14:06   #8
Michi55
 
Windows 10: rundll32.exe CPU Auslastung - Standard

Windows 10: rundll32.exe CPU Auslastung



hier sind die Files:

Code:
ATTFilter
14:03:12.0210 0x16c8  TDSS rootkit removing tool 3.1.0.17 Apr 20 2018 12:12:17
14:03:12.0210 0x16c8  UEFI system
14:03:16.0253 0x16c8  ============================================================
14:03:16.0253 0x16c8  Current date / time: 2018/08/30 14:03:16.0253
14:03:16.0263 0x16c8  SystemInfo:
14:03:16.0263 0x16c8  
14:03:16.0263 0x16c8  OS Version: 10.0.17134 ServicePack: 0.0
14:03:16.0263 0x16c8  Product type: Workstation
14:03:16.0263 0x16c8  ComputerName: DESKTOP-AHG77M6
14:03:16.0263 0x16c8  UserName: micha
14:03:16.0263 0x16c8  Windows directory: C:\WINDOWS
14:03:16.0263 0x16c8  System windows directory: C:\WINDOWS
14:03:16.0263 0x16c8  Running under WOW64
14:03:16.0263 0x16c8  Processor architecture: Intel x64
14:03:16.0263 0x16c8  Number of processors: 8
14:03:16.0263 0x16c8  Page size: 0x1000
14:03:16.0263 0x16c8  Boot type: Normal boot
14:03:16.0263 0x16c8  CodeIntegrityOptions = 0x00000001
14:03:16.0263 0x16c8  ============================================================
14:03:16.0341 0x16c8  KLMD registered as C:\WINDOWS\system32\drivers\41346316.sys
14:03:16.0341 0x16c8  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 17134.1, osProperties = 0x19
14:03:16.0365 0x16c8  System UUID: {FB0B86FC-A275-8417-BC1A-BDFC833C93B1}
14:03:16.0507 0x16c8  Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 ( 119.24 Gb ), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:03:16.0522 0x16c8  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:03:16.0538 0x16c8  ============================================================
14:03:16.0538 0x16c8  \Device\Harddisk0\DR0:
14:03:16.0538 0x16c8  GPT partitions:
14:03:16.0539 0x16c8  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {09716C4D-3A82-4621-8145-2A8665153447}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xFA000
14:03:16.0539 0x16c8  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {A2D6BC47-E732-4CB4-907F-1032F1B82C15}, Name: EFI system partition, StartLBA 0xFA800, BlocksNum 0x32000
14:03:16.0539 0x16c8  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {1841054B-5F05-44AA-B82F-968E5778B78D}, Name: Microsoft reserved partition, StartLBA 0x12C800, BlocksNum 0x40000
14:03:16.0539 0x16c8  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {088CF8BF-1364-48C6-8C41-49CA19105B5F}, Name: Basic data partition, StartLBA 0x16C800, BlocksNum 0xCFC3800
14:03:16.0539 0x16c8  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {E460477C-638A-485E-B7D3-532C7E23A556}, Name: Basic data partition, StartLBA 0xD130000, BlocksNum 0x1B4C000
14:03:16.0539 0x16c8  MBR partitions:
14:03:16.0539 0x16c8  \Device\Harddisk1\DR1:
14:03:16.0539 0x16c8  GPT partitions:
14:03:16.0540 0x16c8  \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {C1E47E30-8347-44F1-943F-45DC155E44CC}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x74706000
14:03:16.0540 0x16c8  MBR partitions:
14:03:16.0540 0x16c8  ============================================================
14:03:16.0540 0x16c8  C: <-> \Device\Harddisk0\DR0\Partition4
14:03:16.0558 0x16c8  D: <-> \Device\Harddisk1\DR1\Partition1
14:03:16.0558 0x16c8  ============================================================
14:03:16.0558 0x16c8  Initialize success
14:03:16.0558 0x16c8  ============================================================
14:04:00.0898 0x1114  ============================================================
14:04:00.0898 0x1114  Scan started
14:04:00.0898 0x1114  Mode: Manual; SigCheck; TDLFS; 
14:04:00.0898 0x1114  ============================================================
14:04:00.0898 0x1114  KSN ping started
14:04:00.0971 0x1114  KSN ping finished: true
14:04:01.0538 0x1114  ================ Scan system memory ========================
14:04:01.0538 0x1114  System memory - ok
14:04:01.0539 0x1114  ================ Scan services =============================
14:04:01.0585 0x1114  1394ohci - ok
14:04:01.0588 0x1114  3ware - ok
14:04:01.0589 0x1114  ACPI - ok
14:04:01.0592 0x1114  AcpiDev - ok
14:04:01.0594 0x1114  acpiex - ok
14:04:01.0596 0x1114  acpipagr - ok
14:04:01.0599 0x1114  [ 6AFFD57803BBB6FBCB483F983900A5C4, A3A87984E70C8B47F919D2633E6378F3AACCBF3E74DB3B35BB2E15D036DB36E2 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
14:04:01.0630 0x1114  AcpiPmi - ok
14:04:01.0638 0x1114  acpitime - ok
14:04:01.0641 0x1114  ADP80XX - ok
14:04:01.0644 0x1114  AFD - ok
14:04:01.0647 0x1114  [ F267095A11A461BEF39FB180750BE801, CF90798C46892FF5225155D2C7BCC469A4A631E22919CBEDA2F4FEEF4F05E301 ] afunix          C:\WINDOWS\system32\drivers\afunix.sys
14:04:01.0663 0x1114  afunix - ok
14:04:01.0701 0x1114  [ 3D1BB871A893182B0058A4898D5AFE29, 77AAD5ADD3C0F6AE2056CD4891644CE7F12946B05A4BDBCC711A1BD3B2C650C2 ] AGMService      C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
14:04:01.0752 0x1114  AGMService - ok
14:04:01.0786 0x1114  [ C20CA26CDE768CA950C622B866292FC2, 007B142A02B3676F320F9BBB92AAAE1589938FD19D20701655114CE84588526B ] AGSService      C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
14:04:01.0829 0x1114  AGSService - ok
14:04:01.0838 0x1114  [ 0CD0F0C62414217DE9EA7EC8D425277E, FD211157B85B841D0C94B36776572FADC7425F1B0B49EACC910D3E175208A7EC ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
14:04:01.0858 0x1114  ahcache - ok
14:04:01.0861 0x1114  [ 2BF4DA8EC5F1A0D88D2DDE1E6821076B, B9F4D499DB4CB91576ACE4847B96F2FC770B9BCC223B5E2261B2DEC22D7651E7 ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
14:04:01.0873 0x1114  AJRouter - ok
14:04:01.0876 0x1114  [ 9E9D78D1C179EB2E3E2282A1DC409D93, EA7486B4425A87FDDD60542AAF0812A8DB868F569886B894883702B362A05D2C ] ALG             C:\WINDOWS\System32\alg.exe
14:04:01.0893 0x1114  ALG - ok
14:04:01.0896 0x1114  AmdK8 - ok
14:04:01.0898 0x1114  AmdPPM - ok
14:04:01.0900 0x1114  amdsata - ok
14:04:01.0903 0x1114  amdsbs - ok
14:04:01.0906 0x1114  amdxata - ok
14:04:01.0908 0x1114  AppID - ok
14:04:01.0911 0x1114  [ F1A04835C7FA75C8215961C1095D5EBF, 45D153404E601C0CE247058B78F328DD9F7F4F6A9480132F7CE6D9A7092F63CF ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
14:04:01.0922 0x1114  AppIDSvc - ok
14:04:01.0926 0x1114  [ 48EA4B4CCC920D130529A1EF85388B6A, 31F69543682E70DF0A6B2A70FC7553ECEE643C554E7F8FF18A2DD09359360F8E ] Appinfo         C:\WINDOWS\System32\appinfo.dll
14:04:01.0940 0x1114  Appinfo - ok
14:04:01.0946 0x1114  [ 3B3774C868868257533EC7E715BB6D53, 4AF1DADCEDBD80BE6EDEC696DF59E65B51D31E33F4C84413CA03C7BD959FF4E5 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:04:01.0953 0x1114  Apple Mobile Device Service - ok
14:04:01.0956 0x1114  [ 769316CA5884FBBD02D45C28FE105922, 117168BFB2D8DBF1258EBA53DCE09E74000B35B7B7460251B4C46BDB9CEA709A ] applockerfltr   C:\WINDOWS\system32\drivers\applockerfltr.sys
14:04:01.0970 0x1114  applockerfltr - ok
14:04:01.0973 0x1114  AppReadiness - ok
14:04:01.0975 0x1114  AppXSvc - ok
14:04:01.0977 0x1114  arcsas - ok
14:04:01.0979 0x1114  AsyncMac - ok
14:04:01.0981 0x1114  atapi - ok
14:04:01.0984 0x1114  AudioEndpointBuilder - ok
14:04:01.0986 0x1114  Audiosrv - ok
14:04:01.0990 0x1114  [ D7BFD86F7A9ABE39351199869D093110, 90BB2C0A8185D3982FEFAC7C1E18783AF949EBECA3B9E44DCF89E2FD5FD6AA0C ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
14:04:02.0002 0x1114  AxInstSV - ok
14:04:02.0005 0x1114  b06bdrv - ok
14:04:02.0009 0x1114  [ 982FAA5686F67BFEF3E6094705C2621F, 02456312B0FD0ABE7B7EEC0FB385268AF34DDB5F13AF934F96FCA7C32EA51447 ] bam             C:\WINDOWS\system32\drivers\bam.sys
14:04:02.0017 0x1114  bam - ok
14:04:02.0019 0x1114  BasicDisplay - ok
14:04:02.0022 0x1114  BasicRender - ok
14:04:02.0025 0x1114  BcastDVRUserService - ok
14:04:02.0029 0x1114  bcmfn2 - ok
14:04:02.0037 0x1114  [ 255D1EA1F4EDA1B7B28A88581F12A1CE, 5B2D7F2EFA7BB539719890CF2E45568C544DD0EECEC44BBA56CCECB792E8BC44 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
14:04:02.0061 0x1114  BDESVC - ok
14:04:02.0064 0x1114  [ 9B068DF7B7B3DDF768D06DFD69B49FD0, DC2CD3A70506AEB1BCEB207A9B06657806E72C5432FA605FF9C6F11516F38132 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
14:04:02.0082 0x1114  Beep - ok
14:04:02.0086 0x1114  BFE - ok
14:04:02.0090 0x1114  [ BC1E5F20251E0AFDB955E7D91093B619, 5642E6B6CA6DBC8585834790A70CFF54252A631A9EA06D28F28EF7430FA42BE5 ] bindflt         C:\WINDOWS\system32\drivers\bindflt.sys
14:04:02.0098 0x1114  bindflt - ok
14:04:02.0127 0x1114  [ 97F4C0B9741E06BAC6AD2D93ABCEAED8, 25FD58F4BA2F8EC99241A580352D1EC49924829C61D89353B30CCEEE2CEBADE7 ] BITS            C:\WINDOWS\System32\qmgr.dll
14:04:02.0210 0x1114  BITS - ok
14:04:02.0221 0x1114  [ 30D75769E23CCFBE13DB41FC54243BB1, 4ED018F1DB103D3F354D8EF7DFE797028DBDF22294D355F6D38DF9C6AF61B69E ] BluetoothUserService C:\WINDOWS\System32\Microsoft.Bluetooth.UserService.dll
14:04:02.0252 0x1114  BluetoothUserService - ok
14:04:02.0263 0x1114  [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:04:02.0275 0x1114  Bonjour Service - ok
14:04:02.0278 0x1114  bowser - ok
14:04:02.0282 0x1114  [ 7487B46E104303E247F68D485C12326F, BAC6A4FFD5B4009B4B673479630FAA2784618438925DFB6489F07BF163188114 ] BRDriver64_1_3_3_E02B25FC C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys
14:04:02.0292 0x1114  BRDriver64_1_3_3_E02B25FC - ok
14:04:02.0294 0x1114  BrokerInfrastructure - ok
14:04:02.0298 0x1114  [ 3E4BF0145201239E0BBD0A937431C14C, 1DDC27C89B16ADD9346EB30AA9E17330FE0181BE96DC6F06C455493FBDCB1113 ] Browser         C:\WINDOWS\System32\browser.dll
14:04:02.0313 0x1114  Browser - ok
14:04:02.0321 0x1114  [ 448917845F097FCE9D4554C3D2001EF3, BDCBEC01579D7CF28963E4E13CDC5B26E4B69CA24FA2CC4D6E24CAE0DDBCB3FE ] BRSptStub       C:\ProgramData\BitRaider\BRSptStub.exe
14:04:02.0332 0x1114  BRSptStub - ok
14:04:02.0342 0x1114  [ 85F5808D19879E1803E46405090F29C8, E22E73BCE3B76BFBAC712DF1E5D7D38E189B80D1CE6E9A9AB3C94733CF18F04B ] BTAGService     C:\WINDOWS\System32\BTAGService.dll
14:04:02.0364 0x1114  BTAGService - ok
14:04:02.0374 0x1114  [ 063E91CD2CB1C372459FD6FBC02509E7, 29319290F73D8D87323584D938FBC86400AB37455E7E058A543A77F9BBF4579D ] BthAvctpSvc     C:\WINDOWS\System32\BthAvctpSvc.dll
14:04:02.0392 0x1114  BthAvctpSvc - ok
14:04:02.0397 0x1114  [ 02FEC31842DD153D966AC227B6DDF8BB, 90EEEA049212E5FE8EFA2ACED45DFB6ABAFEA6D40FB4E1E2681F65A417237163 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
14:04:02.0408 0x1114  BthHFEnum - ok
14:04:02.0412 0x1114  [ A0EC1D5C937995A2C5F1179538A8A6B4, CBFBDF2D8305BD72FFF64AAAB31EB5D5B8ADE537C35AC63DC3F6ADCBF96B3659 ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
14:04:02.0426 0x1114  BTHMODEM - ok
14:04:02.0431 0x1114  [ 1EB49C9E2716D4924460B2FAA295E313, B96D39479BFD2ABCD3A3BB8897EAD7C5A03DFFD7266E82A1FBA0E7FEAF73E4B8 ] bthserv         C:\WINDOWS\system32\bthserv.dll
14:04:02.0446 0x1114  bthserv - ok
14:04:02.0448 0x1114  bttflt - ok
14:04:02.0451 0x1114  buttonconverter - ok
14:04:02.0455 0x1114  [ 9983FF8D9834F2E67787F4BDC42A8E36, 85260F4A657D657ACD394339DFDDE814AD6BCA65712EAD943833BE7AB0937C8D ] CAD             C:\WINDOWS\System32\drivers\CAD.sys
14:04:02.0463 0x1114  CAD - ok
14:04:02.0466 0x1114  camsvc - ok
14:04:02.0468 0x1114  CapImg - ok
14:04:02.0471 0x1114  cdfs - ok
14:04:02.0482 0x1114  [ 0942C87ED45B1E227032AD154105F79B, A0A40589B9C399061C1C46247609CA514DCD21DDF1E7FCEE19F0CE75D0FC7996 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
14:04:02.0508 0x1114  CDPSvc - ok
14:04:02.0517 0x1114  [ 9FBF5849A6F51E3B3F8AF2A4171648DA, 7422BC5C87075F5008E6364C8AFAA794AB17CA2DC238DC00F377B942B6FCDC11 ] CDPUserSvc      C:\WINDOWS\System32\CDPUserSvc.dll
14:04:02.0539 0x1114  CDPUserSvc - ok
14:04:02.0543 0x1114  cdrom - ok
14:04:02.0548 0x1114  [ 620E4F2FDD04FFB70702676423F1C2AC, 25A19FFA966605C229F5BFBCBBBEE36695FC673C7814CF13E79EE4A9B3D8CBE2 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
14:04:02.0564 0x1114  CertPropSvc - ok
14:04:02.0571 0x1114  [ 6581A8AA7D4CDE34EBE6DDF6A9913F86, DA921C0CADF48778C9144BDA601EA1806D92BADE4A082F1CBB032294A6C00494 ] CG6Service      C:\Program Files\CyberGhost 6\CyberGhost.Service.exe
14:04:02.0581 0x1114  CG6Service - ok
14:04:02.0584 0x1114  cht4iscsi - ok
14:04:02.0587 0x1114  cht4vbd - ok
14:04:02.0590 0x1114  [ 3AA86DA04A561E8162C2DBBF92D12074, 9CB67299BEC25F2B357DDAA5A36B3464193B8BDAB4DCFAE0CD4315911027E409 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
14:04:02.0599 0x1114  circlass - ok
14:04:02.0602 0x1114  CldFlt - ok
14:04:02.0604 0x1114  CLFS - ok
14:04:02.0621 0x1114  [ 5BD85187D6A6A37D2A4563F33D7A76E4, 6FF434BE93259229E0EA64EC1B6E09B1B814C2A467FC2859B94C79549E2F114C ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
14:04:02.0647 0x1114  ClipSVC - ok
14:04:02.0655 0x1114  CmBatt - ok
14:04:02.0658 0x1114  CNG - ok
14:04:02.0661 0x1114  [ 037DCC7A71938729CB12E8174E03031C, 1BA2F74F639BF8D5BB38AA658A6D847BAE8D85CF72C4AD5F13BBA1D53145789F ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
14:04:02.0668 0x1114  cnghwassist - ok
14:04:02.0680 0x1114  [ E40C99A3E0FFF49687F2187BF3E3050D, 30723EC5767C3F6FAA3CF299440B71B5973F890FB54B9737B96FA0359E7D90FA ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_bcb89b3386563bd7\CompositeBus.sys
14:04:02.0688 0x1114  CompositeBus - ok
14:04:02.0691 0x1114  COMSysApp - ok
14:04:02.0693 0x1114  condrv - ok
14:04:02.0696 0x1114  CoreMessagingRegistrar - ok
14:04:02.0703 0x1114  CryptSvc - ok
14:04:02.0706 0x1114  [ 8711386E9B04357F8F58166760759F3A, 8912CFD220645002C9D3F9E49717D8B0B98704380B45F53D45D5674537B496FF ] dam             C:\WINDOWS\system32\drivers\dam.sys
14:04:02.0714 0x1114  dam - ok
14:04:02.0717 0x1114  DcomLaunch - ok
14:04:02.0719 0x1114  defragsvc - ok
14:04:02.0728 0x1114  [ 8DF502E8116C625387DD789936D7A0C2, D42661E068F401199FAEA012C200EEF02C1409A09DACD30E6B08E3FBE4149BFA ] DeviceAssociationService C:\WINDOWS\system32\das.dll
14:04:02.0749 0x1114  DeviceAssociationService - ok
14:04:02.0752 0x1114  DeviceInstall - ok
14:04:02.0761 0x1114  [ 38D6ED38A46F815C24C5656E8A5AB083, 730DD6D85771A60E5C089BF5D810E3AEA335BF7DD14FD72924A1A4FCF021A59D ] DevicePickerUserSvc C:\WINDOWS\System32\Windows.Devices.Picker.dll
14:04:02.0790 0x1114  DevicePickerUserSvc - ok
14:04:02.0804 0x1114  [ 372BD821867225F32DE87A6B3FEC8A2E, 20389A1861B5A451EE3383F68FC59B3C9A75D3123B2DF1669CBB5CC37A0128B0 ] DevicesFlowUserSvc C:\WINDOWS\System32\DevicesFlowBroker.dll
14:04:02.0836 0x1114  DevicesFlowUserSvc - ok
14:04:02.0840 0x1114  [ C48C4D6B8D9C53F0399DEDA402A6FAE5, 25FBE2A51DCF7DB95AD2707502F8A9661B94FC61DFC405DA5BF23BED1BA123D2 ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
14:04:02.0858 0x1114  DevQueryBroker - ok
14:04:02.0861 0x1114  Dfsc - ok
14:04:02.0865 0x1114  Dhcp - ok
14:04:02.0867 0x1114  diagnosticshub.standardcollector.service - ok
14:04:02.0873 0x1114  [ 6EC6BB6EF31C85FD72D14BE4A1BD1B03, E027124AD492ED22F0D604030CB0E2C3778331879FC73A614644FA8C8606ADD3 ] diagsvc         C:\WINDOWS\system32\DiagSvc.dll
14:04:02.0892 0x1114  diagsvc - ok
14:04:02.0894 0x1114  DiagTrack - ok
14:04:02.0897 0x1114  Disk - ok
14:04:02.0899 0x1114  DmEnrollmentSvc - ok
14:04:02.0901 0x1114  dmvsc - ok
14:04:02.0904 0x1114  [ 8B3601E34BD1D693598F968D70361C37, 897C5AEB5ED6AC9DAB2E8E638A42FF588AF3A94EE4C731E97DFAB89BD3B658BC ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
14:04:02.0915 0x1114  dmwappushservice - ok
14:04:02.0918 0x1114  Dnscache - ok
14:04:02.0925 0x1114  [ C79E79CD4DE45EC0EC0ECB5C76D6CB11, C1AFCA79A104EDF5C59C3E6A113467C7F73E84AACEDE97A22BCBA5B25563E163 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
14:04:02.0946 0x1114  dot3svc - ok
14:04:02.0951 0x1114  [ 5B1EF28DE7302A6BD5DF8459E2C598EF, F2292B8ED8FBFFA681942D5566BF1932D1E9B4F44C2D13329B60E5A8B9386CC9 ] DPS             C:\WINDOWS\system32\dps.dll
14:04:02.0966 0x1114  DPS - ok
14:04:02.0968 0x1114  drmkaud - ok
14:04:03.0013 0x1114  [ CC8C8479B0C9FC6803B6905D99158FE4, 9D701773C8BDEAB044FF98D16D530B8402837D0CAAF848F9CCFB96A2931B58E9 ] Ds3Service      D:\ScpServer\bin\ScpService.exe
14:04:03.0043 0x1114  Ds3Service - detected UnsignedFile.Multi.Generic ( 1 )
14:04:03.0084 0x1114  Detect skipped due to KSN trusted
14:04:03.0084 0x1114  Ds3Service - ok
14:04:03.0087 0x1114  DsmSvc - ok
14:04:03.0090 0x1114  DsSvc - ok
14:04:03.0097 0x1114  [ 974BC06C0EC847EA4DC8D9002D394FEB, 4952FEADD7A3EF541FD537EBBCD56ED573D712755798C42428E78267E50BAB34 ] DusmSvc         C:\WINDOWS\System32\dusmsvc.dll
14:04:03.0116 0x1114  DusmSvc - ok
14:04:03.0119 0x1114  DXGKrnl - ok
14:04:03.0122 0x1114  Eaphost - ok
14:04:03.0135 0x1114  [ B3026333D9B419597CC913CCB31A19FD, 6C389CC1FF63859987AC893A747500B84253E236C112923B053E40976E89E096 ] EasyAntiCheat   C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
14:04:03.0193 0x1114  EasyAntiCheat - ok
14:04:03.0196 0x1114  ebdrv - ok
14:04:03.0199 0x1114  EFS - ok
14:04:03.0201 0x1114  EhStorClass - ok
14:04:03.0203 0x1114  EhStorTcgDrv - ok
14:04:03.0207 0x1114  [ 80D5BD4804C587B21A121566549A63FB, 9BDC1DEB8805E06851F2E2A8B8762265FDC6B12B873D391BFCB8300BDF425B36 ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
14:04:03.0223 0x1114  embeddedmode - ok
14:04:03.0230 0x1114  [ 8BDB4EB138A93B9C4242D5ADC068899A, 528C0D16CE5D9A69EA75C43DC53D14F7BD2D8BB0B0B0F32BB1F36AC6659C6A27 ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
14:04:03.0248 0x1114  EntAppSvc - ok
14:04:03.0251 0x1114  ErrDev - ok
14:04:03.0262 0x1114  [ 9B538A1E44E1D61FA80E80EA75A085FA, 6431BBC533895BD466879C407B9BE7EB50345D666FEE69CAB0813283F07DBE82 ] EventSystem     C:\WINDOWS\system32\es.dll
14:04:03.0285 0x1114  EventSystem - ok
14:04:03.0288 0x1114  exfat - ok
14:04:03.0291 0x1114  fastfat - ok
14:04:03.0301 0x1114  [ BBD6407DA3DA4FC718710587E253C7BF, 8C9995A86EF9FC1FB47ADA1367A67A9829E0E3CE191D11E0AFB0F85E325D48DC ] Fax             C:\WINDOWS\system32\fxssvc.exe
14:04:03.0331 0x1114  Fax - ok
14:04:03.0335 0x1114  fdc - ok
14:04:03.0337 0x1114  [ A2037943CCC079307A383C5543607CEF, 2FAC5F76526A8E4D7D7FAE80F9A0AF31D37DD12FF597769C87912B973C339BF4 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
14:04:03.0348 0x1114  fdPHost - ok
14:04:03.0351 0x1114  [ C11A1A9CF331B7AA2F04974EE262EC07, AA1C79FCCDEC3C7236B7BE73E6888D7DD5642EB16E13B4633C98EE34CB72A644 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
14:04:03.0363 0x1114  FDResPub - ok
14:04:03.0367 0x1114  [ 71CECDA2DCF81E0AD8C30440C77966E2, E26313CD895579A9F3380A648E6FC271EFED0E82C0FCFB287049C5C2D0CC35A9 ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
14:04:03.0385 0x1114  fhsvc - ok
14:04:03.0388 0x1114  [ 9BC7FE262AF52B341048234809AA7D91, DF95BBEB59821357C69797AC659380C9F27C11B8A60A599C9A2C5623B7CBB6DB ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
14:04:03.0400 0x1114  FileCrypt - ok
14:04:03.0403 0x1114  FileInfo - ok
14:04:03.0406 0x1114  Filetrace - ok
14:04:03.0408 0x1114  flpydisk - ok
14:04:03.0410 0x1114  FltMgr - ok
14:04:03.0412 0x1114  FontCache - ok
14:04:03.0414 0x1114  FontCache3.0.0.0 - ok
14:04:03.0417 0x1114  FrameServer - ok
14:04:03.0419 0x1114  FsDepends - ok
14:04:03.0421 0x1114  Fs_Rec - ok
14:04:03.0423 0x1114  fvevol - ok
14:04:03.0514 0x1114  [ 2613F0B09453BDC460A9ABE869987EFF, C10F7D69A6903739FFF0D5DB2903ECAD95CAAE7F3B81E83CA2ACAA967EE141D7 ] GalaxyClientService D:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe
14:04:03.0551 0x1114  GalaxyClientService - ok
14:04:03.0683 0x1114  [ B9DD53CE9862D7AD9A972F9E951780B3, 65758A21CDEF24ECE09351B14A4F5E437B41B3EDB6BA3F94DD52E60E6ADDD9EE ] GalaxyCommunication C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
14:04:03.0854 0x1114  GalaxyCommunication - ok
14:04:03.0866 0x1114  [ 71DBED7FB264DB60341BC796EC2E8135, DBD29794A45AEFB16A5765D03962B311CB061D1EB8A281C5F34DABF39C66A3B2 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
14:04:03.0878 0x1114  gencounter - ok
14:04:03.0881 0x1114  genericusbfn - ok
14:04:03.0883 0x1114  GPIOClx0101 - ok
14:04:03.0885 0x1114  gpsvc - ok
14:04:03.0888 0x1114  [ 508614CAC7BF8AEE4FB9002A413919B1, F60DE0236B0453FC99473A09A7FAC1140831E581C08F3F5C440F5EFCD30943AB ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
14:04:03.0898 0x1114  GpuEnergyDrv - ok
14:04:03.0902 0x1114  [ 248739BB0F3A1156A2C0AF51F39A9EA2, A94C43658BCCC88C2D229F40F5C03CA5839A2EAFD57CA088E3E85EB9264CCA3E ] GraphicsPerfSvc C:\WINDOWS\System32\GraphicsPerfSvc.dll
14:04:03.0916 0x1114  GraphicsPerfSvc - ok
14:04:03.0920 0x1114  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:04:03.0927 0x1114  gupdate - ok
14:04:03.0931 0x1114  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:04:03.0937 0x1114  gupdatem - ok
14:04:03.0987 0x1114  [ F92853C996EE142D8408E9D91FD5C1C1, 3F1AE52EF80D0F996B9C3595B072B8C63C1EAE585946486A85E2B98252BC59D2 ] Hamachi2Svc     C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
14:04:04.0052 0x1114  Hamachi2Svc - ok
14:04:04.0060 0x1114  HdAudAddService - ok
14:04:04.0063 0x1114  HDAudBus - ok
14:04:04.0065 0x1114  HidBatt - ok
14:04:04.0069 0x1114  [ 33346BD26BB0AE4361DF1ED00D2876CF, 1777169606573646F7E7D54E01E421F62479DF57FAE86005B1EEFDC06F4898B7 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
14:04:04.0081 0x1114  HidBth - ok
14:04:04.0084 0x1114  hidi2c - ok
14:04:04.0086 0x1114  hidinterrupt - ok
14:04:04.0089 0x1114  [ 1553DF41F4EE4F60B4BEEEC62264BE71, 46AE8357E8038D35ADB82A51ED421293D7AB18C926C713F19149B97400D4C65E ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
14:04:04.0099 0x1114  HidIr - ok
14:04:04.0101 0x1114  hidserv - ok
14:04:04.0104 0x1114  HidUsb - ok
14:04:04.0108 0x1114  HpSAMD - ok
14:04:04.0118 0x1114  HTTP - ok
14:04:04.0121 0x1114  [ 9E1F3BA540DB9F4942A3F50A92E5754F, 3FF53B60DC52886D6F2EC7F9D8C12009A4BECE5A046D827BC8C941E7401ED000 ] hvcrash         C:\WINDOWS\System32\drivers\hvcrash.sys
14:04:04.0128 0x1114  hvcrash - ok
14:04:04.0130 0x1114  HvHost - ok
14:04:04.0132 0x1114  hvservice - ok
14:04:04.0135 0x1114  [ B149905CD7451160B6BFA2191A3F6182, A706E4F12963A20F9767D8730973282B5830D97A087ADA8CA9B7D219513C127F ] HwNClx0101      C:\WINDOWS\system32\Drivers\mshwnclx.sys
14:04:04.0144 0x1114  HwNClx0101 - ok
14:04:04.0146 0x1114  hwpolicy - ok
14:04:04.0148 0x1114  hyperkbd - ok
14:04:04.0151 0x1114  HyperVideo - ok
14:04:04.0153 0x1114  i8042prt - ok
14:04:04.0155 0x1114  iagpio - ok
14:04:04.0157 0x1114  iai2c - ok
14:04:04.0159 0x1114  iaLPSS2i_GPIO2 - ok
14:04:04.0161 0x1114  iaLPSS2i_GPIO2_BXT_P - ok
14:04:04.0163 0x1114  iaLPSS2i_I2C - ok
14:04:04.0166 0x1114  iaLPSS2i_I2C_BXT_P - ok
14:04:04.0168 0x1114  iaLPSSi_GPIO - ok
14:04:04.0170 0x1114  iaLPSSi_I2C - ok
14:04:04.0182 0x1114  [ 9EBE1AE8B3DA91D06BE1971EB37F7DA0, 55B0E66139C966AF0D4955B44363123198C559968C864DA85F6610CF1C844E8D ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
14:04:04.0197 0x1114  iaStorA - ok
14:04:04.0200 0x1114  iaStorAVC - ok
14:04:04.0203 0x1114  iaStorV - ok
14:04:04.0205 0x1114  ibbus - ok
14:04:04.0210 0x1114  [ F8CFDD8FED56E1261367A81A731BC1C0, 408187B2E7B403B47AF0D4BF089439D9BA3B3090A430983F77A55DEF2AB381DB ] icssvc          C:\WINDOWS\System32\tetheringservice.dll
14:04:04.0230 0x1114  icssvc - ok
14:04:04.0233 0x1114  IKEEXT - ok
14:04:04.0235 0x1114  [ AA38C19A3D65E8228D822EB18037E19D, 54943929E398C67A5A9C72EA65F0FD7A06BB43F03A2291CAEA29443CD10C5169 ] IndirectKmd     C:\WINDOWS\System32\drivers\IndirectKmd.sys
14:04:04.0246 0x1114  IndirectKmd - ok
14:04:04.0249 0x1114  InstallService - ok
14:04:04.0329 0x1114  [ A663CE8A3771A3D36398DC3DB12455E6, E88698573B445F663804DA1EFB2E59E565BEDF752EF450E8C3A55068561C52C4 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
14:04:04.0427 0x1114  IntcAzAudAddService - ok
14:04:04.0436 0x1114  intelide - ok
14:04:04.0440 0x1114  [ E6CC7C1E7CEDC81D6B15BF2CF4C99109, 1B181F55CD2E500468FE07C9BA6F20B207FA4B601C4971D1551B80A480D42EBD ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
14:04:04.0450 0x1114  intelpep - ok
14:04:04.0453 0x1114  intelppm - ok
14:04:04.0456 0x1114  [ 917931A6116F03DB3CA56CFCE8634667, 27B661B6143F4AE94BF28DE1133001F95A451C18804F6DFED1D7D1F36B5E5350 ] iorate          C:\WINDOWS\system32\drivers\iorate.sys
14:04:04.0464 0x1114  iorate - ok
14:04:04.0467 0x1114  [ FB72A49FAD5C343C8C38948F92D87BBF, 3947D9393D6F4F104D2D07D5FBA61041A8D6006BE2497F2A6337462F8B04A124 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
14:04:04.0483 0x1114  IpFilterDriver - ok
14:04:04.0495 0x1114  [ 9064A49C03F1CED42EAC2B4636C87192, CF388E05EA782BC0645FD0B42A41C9334C074BE6D7C193FA4F9819905CBCEA9C ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
14:04:04.0525 0x1114  iphlpsvc - ok
14:04:04.0528 0x1114  IPMIDRV - ok
14:04:04.0533 0x1114  [ 7408B83959A4B8271EF67FD06A6B366B, C22DDB76AC3351A50B889AD7D2756EF8612450AC8EE72C88A1044691A0071BE5 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
14:04:04.0548 0x1114  IPNAT - ok
14:04:04.0551 0x1114  [ 7BEA2228C81FB6E1EADDD54D615B4C7E, 8640865C98F951B1B8D99E841D9A3FDC6E0251AFAC6B02F815DC409627A50112 ] IPT             C:\WINDOWS\System32\drivers\ipt.sys
14:04:04.0564 0x1114  IPT - ok
14:04:04.0568 0x1114  [ AD0574F12AA812340BD39071FD30AD1E, 765F1EDFEDEA1F2728108D7A1187A468F529A883886006F74DB9EAD0BFE7B1B6 ] IpxlatCfgSvc    C:\WINDOWS\System32\IpxlatCfg.dll
14:04:04.0580 0x1114  IpxlatCfgSvc - ok
14:04:04.0584 0x1114  [ 030AE3773151CFA728C67E38416FAD8D, 167E698035F2F07E822B430B31F02FABF3997BAC93039786747053344CE6E6D3 ] irda            C:\WINDOWS\system32\drivers\irda.sys
14:04:04.0596 0x1114  irda - ok
14:04:04.0598 0x1114  [ 79D02DC54AB4F85D2C13A728A0E36193, 3B6BA678ED269195D506D29EBD9E070603F02AC0FAA92364E7C553B8856C3EDB ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
14:04:04.0610 0x1114  IRENUM - ok
14:04:04.0613 0x1114  [ 6ADE9DCAF71DCD888320CA47DB8B05EF, 6FA1EBB3D025546AAD14D968DF7CABD3002598F2F561CCC1D4F07A9B0322DE02 ] irmon           C:\WINDOWS\System32\irmon.dll
14:04:04.0624 0x1114  irmon - ok
14:04:04.0626 0x1114  isapnp - ok
14:04:04.0629 0x1114  iScsiPrt - ok
14:04:04.0630 0x1114  ItSas35i - ok
14:04:04.0633 0x1114  kbdclass - ok
14:04:04.0635 0x1114  kbdhid - ok
14:04:04.0637 0x1114  kdnic - ok
14:04:04.0639 0x1114  KeyIso - ok
14:04:04.0641 0x1114  KSecDD - ok
14:04:04.0643 0x1114  KSecPkg - ok
14:04:04.0645 0x1114  ksthunk - ok
14:04:04.0653 0x1114  [ C4151271434A490707B4FD4E6AAE9EED, DDB809D002039645CDED08322B9CDCA04C483A119380098FF9EBA998A1A3811D ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
14:04:04.0673 0x1114  KtmRm - ok
14:04:04.0676 0x1114  LanmanServer - ok
14:04:04.0678 0x1114  LanmanWorkstation - ok
14:04:04.0682 0x1114  [ C2A49E8EEE7C3D06ECA80847A42F65D5, E1559EF96E6F2146E4AC0BE46CBFF5FA29829812A64A6F09803C00E3E0AAB1F0 ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
14:04:04.0695 0x1114  lfsvc - ok
14:04:04.0698 0x1114  [ DB8F10ED986BFE0A5B663A1D067F2CCC, 88EE540F545C8838E9F855094A2A4AAC096BD24F77103E06464CCD77C3FCFFFD ] LicenseManager  C:\WINDOWS\system32\LicenseManagerSvc.dll
14:04:04.0711 0x1114  LicenseManager - ok
14:04:04.0714 0x1114  [ 3CF979AFF0196DF3DF5E54DFC049EB1F, FEA82EF2AA4222171E80548EB00A4F0FBD27363B84AA9E6B8F82147C568BADEE ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
14:04:04.0724 0x1114  lltdio - ok
14:04:04.0731 0x1114  [ D6DD748EAC3BC540CFE65C73FE20C099, 8A79E1F1834D949D027B4D3471297ADFB539B9282DE5DF5FDBE60AE171F3CFFC ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
14:04:04.0749 0x1114  lltdsvc - ok
14:04:04.0752 0x1114  lmhosts - ok
14:04:04.0759 0x1114  [ 0554F3B69D39D175DD110D765C11347A, A57D5CE0CBA04806EB0C6D8943D85C5AB63119A99FA8F8000BDF54CCCD1C1BF9 ] LMIGuardianSvc  C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
14:04:04.0770 0x1114  LMIGuardianSvc - ok
14:04:04.0775 0x1114  LSI_SAS - ok
14:04:04.0777 0x1114  LSI_SAS2i - ok
14:04:04.0779 0x1114  LSI_SAS3i - ok
14:04:04.0781 0x1114  LSI_SSS - ok
14:04:04.0783 0x1114  LSM - ok
14:04:04.0787 0x1114  [ E86400D7B6E095E89CF63667D94D3F50, 4E30374B82FB1D8904B9803109C4557C565023FA94C7AE61BB2ADAAACAE0E179 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
14:04:04.0799 0x1114  luafv - ok
14:04:04.0804 0x1114  [ 07514F5635999D7DDB5F3A62B5C5AEB3, D3717437D14C36873E2D0C1AA65F29EB9A5DB1DE60A7EE86A093FD126B7EBC05 ] LxpSvc          C:\WINDOWS\System32\LanguageOverlayServer.dll
14:04:04.0822 0x1114  LxpSvc - ok
14:04:04.0824 0x1114  MapsBroker - ok
14:04:04.0826 0x1114  mausbhost - ok
14:04:04.0828 0x1114  mausbip - ok
14:04:04.0830 0x1114  megasas - ok
14:04:04.0832 0x1114  megasas2i - ok
14:04:04.0835 0x1114  megasas35i - ok
14:04:04.0837 0x1114  megasr - ok
14:04:04.0841 0x1114  [ E0EF6C1399A9B1AAA0B28590411BED04, 10C193D1ED434A6DC2AD8C450012B9AF1C848A0A0B3B775F13495648FB77E009 ] MEIx64          C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys
14:04:04.0847 0x1114  MEIx64 - ok
14:04:04.0851 0x1114  [ 69259AFDF347B5F4AF06E900C4A1F62E, 167FF155F3E1B362A5D5FDB010A5F539F5E13CAD7E64E6F105CC770DA3639EEB ] MessagingService C:\WINDOWS\System32\MessagingService.dll
14:04:04.0864 0x1114  MessagingService - ok
14:04:04.0868 0x1114  mlx4_bus - ok
14:04:04.0870 0x1114  MMCSS - ok
14:04:04.0873 0x1114  [ CA25F2D78FDD0D36E3F3071B4B317BD4, 21B5902EF802FAFA7DC6FD737CE9888C74526983FDCE31CDFAB11630E1476FD1 ] Modem           C:\WINDOWS\system32\drivers\modem.sys
14:04:04.0882 0x1114  Modem - ok
14:04:04.0886 0x1114  [ 13142B3B30F633F407D5256B2FFCCEF0, 0A8DD229FD752E8B7E1D11E1A066BCF8B3E2023068AD731FF23ACBF4D182D23D ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
14:04:04.0898 0x1114  monitor - ok
14:04:04.0901 0x1114  mouclass - ok
14:04:04.0904 0x1114  mouhid - ok
14:04:04.0906 0x1114  mountmgr - ok
14:04:04.0908 0x1114  mpsdrv - ok
14:04:04.0910 0x1114  mpssvc - ok
14:04:04.0912 0x1114  MRxDAV - ok
14:04:04.0914 0x1114  mrxsmb - ok
14:04:04.0917 0x1114  mrxsmb20 - ok
14:04:04.0921 0x1114  [ F14DE177087F9E990EDE95ACE1F94662, E0B8C7DAF8C13CAD08B974D681981038E33ED8871717C550477EDCFD05A3B96D ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
14:04:04.0933 0x1114  MsBridge - ok
14:04:04.0939 0x1114  [ 9A94F32C1DC90A7E5A35D0F820A8FB1D, 4CAFCE804D9135BE9CBF80307D570F24E4A102890DAB504E3DEFF3B335C9B80E ] MSDTC           C:\WINDOWS\System32\msdtc.exe
14:04:04.0954 0x1114  MSDTC - ok
14:04:04.0958 0x1114  Msfs - ok
14:04:04.0962 0x1114  [ 5A5ABA987943317300A4E55A5C5EB8C4, 9AC863F537BBB2D776C3F240B510DEE94BD84A7675C695D1270770609E77F65B ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
14:04:04.0969 0x1114  msgpiowin32 - ok
14:04:04.0972 0x1114  mshidkmdf - ok
14:04:04.0974 0x1114  [ E12A703CE10B068727499276340D5296, 67F513A83D896DBF014D7446D66F1A1F9F0D03ADB23B57FD1A3CCC880ED50299 ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
14:04:04.0984 0x1114  mshidumdf - ok
14:04:04.0987 0x1114  msisadrv - ok
14:04:04.0989 0x1114  MSiSCSI - ok
14:04:04.0992 0x1114  msiserver - ok
14:04:04.0995 0x1114  MSKSSRV - ok
14:04:04.0998 0x1114  [ AECFFBE104D428E8A74BCABF5B3B9912, EA94A7FA1F9BE357311E411293F4D3CC8F80ED1523BFE362DA56A3C2AC65DF58 ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
14:04:05.0012 0x1114  MsLldp - ok
14:04:05.0014 0x1114  MSPCLOCK - ok
14:04:05.0016 0x1114  MSPQM - ok
14:04:05.0019 0x1114  MsRPC - ok
14:04:05.0023 0x1114  mssmbios - ok
14:04:05.0025 0x1114  MSTEE - ok
14:04:05.0027 0x1114  MTConfig - ok
14:04:05.0029 0x1114  Mup - ok
14:04:05.0032 0x1114  mvumis - ok
14:04:05.0035 0x1114  NativeWifiP - ok
14:04:05.0049 0x1114  [ B281FAC1C60FE21ED3F635ECF673A981, 6641CCBD38AEF3FA5D9EDD24F01AAB6509AD6D3927371CD7938C04B3BBC92FD1 ] NaturalAuthentication C:\WINDOWS\System32\NaturalAuth.dll
14:04:05.0079 0x1114  NaturalAuthentication - ok
14:04:05.0084 0x1114  [ 6FEC83EDC4A3D1E99039CA1D96AD720D, F6DB011FBED10EAF8CCDC9EDDCB47F728B6B17A6A3CA5D6DB5DE50EEFE7DDD4D ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
14:04:05.0104 0x1114  NcaSvc - ok
14:04:05.0112 0x1114  [ C3D3E2DFBD52C48EA787604F49060A5C, 0F5E3C9E63F6421398154EF942182FE67CCCCE6DE25B1EE2A30A8E6E3C17145A ] NcbService      C:\WINDOWS\System32\ncbservice.dll
14:04:05.0136 0x1114  NcbService - ok
14:04:05.0140 0x1114  [ 9AB04C4C14B32D127DB6E7D3DF79FF26, DAC84CBDF605C43657CDA1B95A86DC0D55E236A75BFDA3041472C5D6222EB025 ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
14:04:05.0154 0x1114  NcdAutoSetup - ok
14:04:05.0156 0x1114  ndfltr - ok
14:04:05.0158 0x1114  NDIS - ok
14:04:05.0161 0x1114  [ AF73B18F3096B165A6F4417C5ED36B01, B0FA9E52D7208F756103E2E853F1D17F594C9FDD2E76304743C581613E612449 ] NdisCap         C:\WINDOWS\system32\drivers\ndiscap.sys
14:04:05.0171 0x1114  NdisCap - ok
14:04:05.0175 0x1114  [ 1A9B1F5B8B131CE461A01C9424E149D7, 66E3F49308DF111B5D5DBF57F11A05E0B9492530587E37C6729C46AED17647D3 ] NdisImPlatform  C:\WINDOWS\system32\drivers\NdisImPlatform.sys
14:04:05.0187 0x1114  NdisImPlatform - ok
14:04:05.0190 0x1114  NdisTapi - ok
14:04:05.0192 0x1114  Ndisuio - ok
14:04:05.0194 0x1114  NdisVirtualBus - ok
14:04:05.0196 0x1114  NdisWan - ok
14:04:05.0198 0x1114  ndiswanlegacy - ok
14:04:05.0200 0x1114  ndproxy - ok
14:04:05.0204 0x1114  [ 0E3B0F3645D1BAE79397C66FE8AF6402, 6568FD9646FE7C7D61D280C26097583EFA2FB9F59D43340A7283BEAD3A5CC206 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
14:04:05.0216 0x1114  Ndu - ok
14:04:05.0220 0x1114  NetAdapterCx - ok
14:04:05.0223 0x1114  NetBIOS - ok
14:04:05.0226 0x1114  NetBT - ok
14:04:05.0228 0x1114  Netlogon - ok
14:04:05.0231 0x1114  Netman - ok
14:04:05.0233 0x1114  netprofm - ok
14:04:05.0270 0x1114  [ A3F8BF8193D36C4C8CEF20AFF28411E9, E6C6321820AFB4D3ABF2DAF894EFE0E8FC308F5DE6F9FE2FFE56F89A319C8C0E ] netr28x         C:\WINDOWS\System32\drivers\netr28x.sys
14:04:05.0336 0x1114  netr28x - ok
14:04:05.0342 0x1114  NetSetupSvc - ok
14:04:05.0348 0x1114  [ 7EC8B56348F9298BCCA7A745C7F70E2C, F677CBD94ABE25AECF08ECFBBDA063A9C032C678327A0D105CB6B3E587C44C19 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:04:05.0362 0x1114  NetTcpPortSharing - ok
14:04:05.0365 0x1114  netvsc - ok
14:04:05.0375 0x1114  [ 162A571ABAF9546339EE0BB482FF6AE7, E6E590B628AA65D161D7A87C9CF360D905FCC858E73EE1C4723FE217E8A91EA2 ] NgcCtnrSvc      C:\WINDOWS\System32\NgcCtnrSvc.dll
14:04:05.0402 0x1114  NgcCtnrSvc - ok
14:04:05.0406 0x1114  NgcSvc - ok
14:04:05.0408 0x1114  NlaSvc - ok
14:04:05.0410 0x1114  Npfs - ok
14:04:05.0414 0x1114  npggsvc - ok
14:04:05.0416 0x1114  npsvctrig - ok
14:04:05.0418 0x1114  nsi - ok
14:04:05.0420 0x1114  nsiproxy - ok
14:04:05.0423 0x1114  Ntfs - ok
14:04:05.0425 0x1114  Null - ok
14:04:05.0429 0x1114  nvdimm - ok
14:04:05.0436 0x1114  [ 4FD4739B359C2923965FE99B03AFD090, 02D52056A7605B9413747B41CBA2A904FAB025250FE64DFCD435606EF898A73D ] NVHDA           C:\WINDOWS\system32\drivers\nvhda64v.sys
14:04:05.0446 0x1114  NVHDA - ok
14:04:05.0695 0x1114  [ 068D7C5847782F98DB1E8CAD759F088D, 036A12D778453E8785C4B3D1AA69654C4B0706B6EB80DAF4CABEEAF16EF28EE4 ] nvlddmkm        C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_f5be1f8d25335236\nvlddmkm.sys
14:04:06.0031 0x1114  nvlddmkm - ok
14:04:06.0050 0x1114  nvraid - ok
14:04:06.0053 0x1114  nvstor - ok
14:04:06.0057 0x1114  [ 7205B1942F895B5597A0DD9164CCDD8C, 182B411F92BFEE76BD71C6DA3223397478055DEB02B8A1105B80B768447F8DF1 ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
14:04:06.0061 0x1114  NvStreamKms - ok
14:04:06.0071 0x1114  [ BFF407E26C76659300155A74B04F323F, D975AC1432DA475E4718FCD21D99FF74A17F6D9047996E2944C79D2857A399E2 ] NvStUSB         C:\WINDOWS\System32\drivers\nvstusb.sys
14:04:06.0083 0x1114  NvStUSB - ok
14:04:06.0096 0x1114  [ 63AD8DEFFE793D89F418E9B3A073C3E0, 6CA2669A81B63A2921E0CBE9E073580B2A4487063236CDC0A1FA1079FC113502 ] NvTelemetryContainer C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
14:04:06.0142 0x1114  NvTelemetryContainer - ok
14:04:06.0146 0x1114  [ 31A62118FFA56D758D3CA4D00EAEA430, 397F7A3F1F1349CF7BA8EF6A417F87C101B1A6C4A0DF08466B50E3CB6F5B5C37 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
14:04:06.0152 0x1114  nvvad_WaveExtensible - ok
14:04:06.0156 0x1114  [ 05524B29F19E0BB19FA0297880D788B0, 99934B2DB97E21B7BDA6AF011F1A7D6703008A231B9A2DC71870283AEE505063 ] nvvhci          C:\WINDOWS\System32\drivers\nvvhci.sys
14:04:06.0161 0x1114  nvvhci - ok
14:04:06.0169 0x1114  [ 9DBC464AB85AA48C9760C6C2E591E2D3, C9D718F8BE838E13F7488F1E8DAA79809340235A5BA5BF206C1C3DBF0A5DDB48 ] OneSyncSvc      C:\WINDOWS\System32\APHostService.dll
14:04:06.0189 0x1114  OneSyncSvc - ok
14:04:06.0271 0x1114  [ 6A7569E99384ABE9BEC5314F63C8584D, 9E98AB6351A985F54ADC5D445CAB170718D23B320FB4EC9DE38C2F8BDE0E9270 ] Origin Client Service D:\Origin\OriginClientService.exe
14:04:06.0366 0x1114  Origin Client Service - ok
14:04:06.0434 0x1114  [ 9942801443AA0EF4FBAC8E65606D30DC, 278A7F0B2FFCAA4CB3C721C5A37BBB72B9E094DDBE744114B2702C9719D3B2F6 ] Origin Web Helper Service D:\Origin\OriginWebHelperService.exe
14:04:06.0523 0x1114  Origin Web Helper Service - ok
14:04:06.0534 0x1114  [ CD5ECD6470B6B235B73569A091150299, FAAE20B0F2F15ADA5B3F5F2BBBFEA000A95EC8A64B37C9364145CE04EE204352 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
14:04:06.0556 0x1114  p2pimsvc - ok
14:04:06.0564 0x1114  [ CCD10679BA0D9EF549F80C458C2AD1C4, 7B433FEE4BEA69C28A98F4BFBE5FA603DB2CE1DFCF229EBB4D9B7A0FD159FF04 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
14:04:06.0585 0x1114  p2psvc - ok
14:04:06.0588 0x1114  Parport - ok
14:04:06.0593 0x1114  [ C07646CA88BC4BA633F93F263575BEE8, 0F30F8550B1E7D3E9FA683B87A51FA05653F167DBE2D8FC1EA3CB6033AD7C253 ] Parsec          C:\Program Files\Parsec\pservice.exe
14:04:06.0617 0x1114  Parsec - ok
14:04:06.0620 0x1114  partmgr - ok
14:04:06.0625 0x1114  PcaSvc - ok
14:04:06.0627 0x1114  pci - ok
14:04:07.0209 0x1114  pciide - ok
14:04:07.0221 0x1114  pcmcia - ok
14:04:07.0224 0x1114  pcw - ok
14:04:07.0226 0x1114  pdc - ok
14:04:07.0238 0x1114  [ 42B12A76D3C98AE69C97727E3BEC7D8A, C878A05A9817F62514432685FAA795737F628EF7258EC5C7846045E1CAB2DF6E ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
14:04:07.0264 0x1114  PEAUTH - ok
14:04:07.0267 0x1114  percsas2i - ok
14:04:07.0269 0x1114  percsas3i - ok
14:04:07.0295 0x1114  [ 185100798FBD23C849DC1C00ED43D99D, 10895ADE339744BBABDFB50BE6025217C02C76B1911C2C8740A57912385B38DE ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
14:04:07.0338 0x1114  PerfHost - ok
14:04:07.0344 0x1114  PhoneSvc - ok
14:04:07.0348 0x1114  [ 807ED476A62E79935315342BD3FAA046, FF56FC79C6B6043A10C123CF85A8DDA0B8564E03D49AD5811DDCBB99823C4836 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
14:04:07.0366 0x1114  PimIndexMaintenanceSvc - ok
14:04:07.0392 0x1114  [ 4E614DBE28B5857F70DEBCC804629E67, B93C42FB96BBA0577CB892274905352AE4A6DE257F676D6A23CE0297F945D7E7 ] pla             C:\WINDOWS\system32\pla.dll
14:04:07.0440 0x1114  pla - ok
14:04:07.0444 0x1114  PlugPlay - ok
14:04:07.0447 0x1114  pmem - ok
14:04:07.0450 0x1114  PnkBstrA - ok
14:04:07.0453 0x1114  [ 99ECEDA6B2E1FDB6892FBD5AED1E5D99, C970DDDBDB4AF8C6A1AA92D780B82920B4922304649509075CF14A2AB86C3CCF ] PNPMEM          C:\WINDOWS\System32\drivers\pnpmem.sys
14:04:07.0461 0x1114  PNPMEM - ok
14:04:07.0464 0x1114  [ 75690F495CEDBEF3D5989828AEEAE832, 3257E7261DF8F39CA4988BBED3060B9E8A5988978F66A4B1409E08F65B262FED ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
14:04:07.0476 0x1114  PNRPAutoReg - ok
14:04:07.0483 0x1114  [ CD5ECD6470B6B235B73569A091150299, FAAE20B0F2F15ADA5B3F5F2BBBFEA000A95EC8A64B37C9364145CE04EE204352 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
14:04:07.0501 0x1114  PNRPsvc - ok
14:04:07.0503 0x1114  PolicyAgent - ok
14:04:07.0507 0x1114  Power - ok
14:04:07.0509 0x1114  PptpMiniport - ok
14:04:07.0563 0x1114  [ AD62FCEC1CB8ECD7C0E3DFD2FA79FDE4, 6372FC5E78A2DDB8AE6EB73BEB5C0D4056FB6BE9F231A36BAC37AE970F5EB247 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
14:04:07.0673 0x1114  PrintNotify - ok
14:04:07.0680 0x1114  [ A60202AE474E2173ED91118DD73ADAAD, 6AE315E1DD9E3B03E48B8848FCB0CDD506080F0012DE478BA99D102F91E968E6 ] PrintWorkflowUserSvc C:\WINDOWS\System32\PrintWorkflowService.dll
14:04:07.0699 0x1114  PrintWorkflowUserSvc - ok
14:04:07.0703 0x1114  Processor - ok
14:04:07.0705 0x1114  ProfSvc - ok
14:04:07.0709 0x1114  [ E4BF8BE7B3711BCBBC95EE983C0236F4, A71C09D83034C96F7ED4DB58F7388F8A13C7FD1A3F41FE8EEC553C42B65DFFC6 ] Psched          C:\WINDOWS\system32\drivers\pacer.sys
14:04:07.0724 0x1114  Psched - ok
14:04:07.0728 0x1114  PushToInstall - ok
14:04:07.0735 0x1114  [ 8AB5F41584C98047ABEF490FC1E31F7E, F8480F9D9C1A60901975C529CC0911ED592834AB1068FADD88B15E6497A59221 ] QWAVE           C:\WINDOWS\system32\qwave.dll
14:04:07.0754 0x1114  QWAVE - ok
14:04:07.0758 0x1114  [ 00F72861538B6C4E925A21BAE397A49D, 6847E2332CC8573850428CC7E3A73B2DA0274977F53BDDF7DBA68D223A501CC4 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
14:04:07.0768 0x1114  QWAVEdrv - ok
14:04:07.0776 0x1114  [ A804BE5B6EB59221C0C85B7CDD8B8D64, 6A2122ABD1341877C08D5965BB8836F9D15D864F38ABED055457100FF57B9EA3 ] RalinkRegistryWriter C:\Program Files (x86)\TOTOLINK\Common\RaRegistry.exe
14:04:07.0788 0x1114  RalinkRegistryWriter - ok
14:04:07.0797 0x1114  [ E01B930DD3D006A996F824716330CE8F, E49A3E9446331A7B290DFC8DD83D03599D20476EEF6AEE5E12F055B1395283F3 ] RalinkRegistryWriter64 C:\Program Files (x86)\TOTOLINK\Common\RaRegistry64.exe
14:04:07.0809 0x1114  RalinkRegistryWriter64 - ok
14:04:07.0811 0x1114  Ramdisk - ok
14:04:07.0839 0x1114  [ 2977F7750EA2BECB3E623814D2C18800, A2FAE078FC18481C59D7D3B465D4E53756D85C1C49F6471D3840EEF49814EA19 ] RaMediaServer   C:\Program Files (x86)\TOTOLINK\Common\RaMediaServer.exe
14:04:08.0278 0x1114  RaMediaServer - detected UnsignedFile.Multi.Generic ( 1 )
14:04:08.0317 0x1114  Detect skipped due to KSN trusted
14:04:08.0318 0x1114  RaMediaServer - ok
14:04:08.0320 0x1114  RasAcd - ok
14:04:08.0323 0x1114  RasAgileVpn - ok
14:04:08.0325 0x1114  RasAuto - ok
14:04:08.0327 0x1114  Rasl2tp - ok
14:04:08.0329 0x1114  RasMan - ok
14:04:08.0331 0x1114  RasPppoe - ok
14:04:08.0334 0x1114  RasSstp - ok
14:04:08.0339 0x1114  rdbss - ok
14:04:08.0343 0x1114  [ 206AB796793FDBD518B82E2F308A7176, ED0DBDE7106970F217F4FB1FB184B6795A16356C879C17E0910840F64F292809 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
14:04:08.0356 0x1114  rdpbus - ok
14:04:08.0358 0x1114  RDPDR - ok
14:04:08.0364 0x1114  [ 0600DF60EF88FD10663EC84709E5E245, 48572DC0C644E13BD1713E29E522763EB4E00337ACA64D1392960D17EAF8923A ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
14:04:08.0372 0x1114  RdpVideoMiniport - ok
14:04:08.0378 0x1114  [ 65652EFAAF4A8A59E60A2D7BE15317E8, 83A9A8506EF4769625EF0EF43B93906A6FBD9133E52C12B17A68B89DAC68D026 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
14:04:08.0391 0x1114  rdyboost - ok
14:04:08.0394 0x1114  ReFS - ok
14:04:08.0396 0x1114  ReFSv1 - ok
14:04:08.0406 0x1114  [ 980F60634FAF9C58FC468AF9AA609D68, 7BA03FE851F78D5DC9062ACEADF194ACB4F8F56C9D496B17D846CE1E4373B404 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
14:04:08.0435 0x1114  RemoteAccess - ok
14:04:08.0440 0x1114  [ 106E630F1B2A8BF2BBD4508D9B166406, FAFBE21EC61B97B4B825285EBA0F661382A95119E1740EE4FB9A1F6FB3C0F5F7 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
14:04:08.0460 0x1114  RemoteRegistry - ok
14:04:08.0472 0x1114  [ 53BE6D9C36A9CB95A1568C24D44A8A34, DD8245F87B9D4203F56595D6ABF9F1E74EA071D4B7BB0469A293CA9E20BDA246 ] RetailDemo      C:\WINDOWS\system32\RDXService.dll
14:04:08.0501 0x1114  RetailDemo - ok
14:04:08.0507 0x1114  [ 3D4F4CCE0364CD3F1B539D2630686F24, 620EFC53D6F5279AEF4748FAE22F7239E7855D1F5C79B85F6CB54EF51C516408 ] rhproxy         C:\WINDOWS\System32\drivers\rhproxy.sys
14:04:08.0518 0x1114  rhproxy - ok
14:04:08.0523 0x1114  [ ADA13EBD9C23C51876A5B2EADF7F2E29, D08E6A907DE5DC6F51CA71CBF7886FE7D8C6FB09154B633D86CDBE9C311361A0 ] RmSvc           C:\WINDOWS\System32\RMapi.dll
14:04:08.0538 0x1114  RmSvc - ok
14:04:08.0541 0x1114  RpcEptMapper - ok
14:04:08.0544 0x1114  [ 19EC4D05E01FE350B3494CEA122D64EB, 09FF60A8F22D66796257E33F4CFD6059D4A11A3173A7691718E9FE841E15ABA2 ] RpcLocator      C:\WINDOWS\system32\locator.exe
14:04:08.0556 0x1114  RpcLocator - ok
14:04:08.0558 0x1114  RpcSs - ok
14:04:08.0562 0x1114  [ FFFB16EF6E0B8B5F7F19B425923E7D12, 27C2882AC7B27BAC5A4051C2C9326A6D289F297158DE7A3A93E8B09378DC91AA ] rspndr          C:\WINDOWS\system32\drivers\rspndr.sys
14:04:08.0573 0x1114  rspndr - ok
14:04:08.0589 0x1114  [ 0283ADA7E6B1F2E495A0EA0EF2C1F9A2, 89B2CFEC06A884BC92D5E769FD15DC1F4C4E194F4952B36AC6D40FDE27C9E79B ] RTL8168         C:\WINDOWS\System32\drivers\Rt630x64.sys
14:04:08.0607 0x1114  RTL8168 - ok
14:04:08.0612 0x1114  [ A2939E69027B97105014434BFBFF7195, 9DC09BE94415564D0E80431223BDA1C59E3555AB5267DD3F64E71D4A18C8553A ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
14:04:08.0625 0x1114  s3cap - ok
14:04:08.0627 0x1114  SamSs - ok
14:04:08.0629 0x1114  sbp2port - ok
14:04:08.0635 0x1114  [ D48F36EA4B4E8237B24E33B18D76EB2A, 128E754F15FDB00D218FB23431BF0FBDC65D64EEF294D72535B0C07EB5472136 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
14:04:08.0656 0x1114  SCardSvr - ok
14:04:08.0660 0x1114  [ 1B1FB3D8403E621F2B9201EF414E21D9, 5EFBEA5DC09CD5F151EF224BE2FF2C985D19301B17E5C16F5D00CB2852DAF8BF ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
14:04:08.0680 0x1114  ScDeviceEnum - ok
14:04:08.0683 0x1114  [ 0070C2DC6563C48EDA63A282748F3FCD, 12C8505DDD05994641B2B19666D7A54E12A21F6894913342A9BA5D148F193BE0 ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
14:04:08.0695 0x1114  scfilter - ok
14:04:08.0710 0x1114  [ 9D13410D7B4D76AA2EA73EC8CA0E0190, 7C46D202683F34F1C07D9D297E9A239376800DC8C84FE1585FE7FC723B6EBBA0 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
14:04:08.0745 0x1114  Schedule - ok
14:04:08.0749 0x1114  scmbus - ok
14:04:08.0754 0x1114  [ 620E4F2FDD04FFB70702676423F1C2AC, 25A19FFA966605C229F5BFBCBBBEE36695FC673C7814CF13E79EE4A9B3D8CBE2 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
14:04:08.0767 0x1114  SCPolicySvc - ok
14:04:08.0771 0x1114  [ 0447065A6E10774EFCECFDD0EB970A79, 384A9AC72E756F96D43EE4B144A466564476AFD8778092C979116BB29A514433 ] ScpVBus         C:\WINDOWS\System32\drivers\ScpVBus.sys
14:04:08.0777 0x1114  ScpVBus - ok
14:04:08.0780 0x1114  sdbus - ok
14:04:08.0783 0x1114  [ 9EF09DE84CE20B787C02395394AC2A7E, 17019B74506D26707EBC342365008A9BB5AACA381FB60ABA85F34D153FB0682C ] SDFRd           C:\WINDOWS\System32\drivers\SDFRd.sys
14:04:08.0790 0x1114  SDFRd - ok
14:04:08.0795 0x1114  [ 01607A2FAB0068450A06C90AF755D57E, 9615261063475045CBC99F17BD3A4919198D0F77CA9E4EC7B13826E514BC8543 ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
14:04:08.0814 0x1114  SDRSVC - ok
14:04:08.0816 0x1114  sdstor - ok
14:04:08.0820 0x1114  [ 44B1F4F200B4D3AE8B53290101148AFC, 34F18FEDE525BB398371329CA9F93BD3D88C30E23FCA576978D94EC67513228C ] seclogon        C:\WINDOWS\system32\seclogon.dll
14:04:08.0833 0x1114  seclogon - ok
14:04:08.0836 0x1114  SecurityHealthService - ok
14:04:08.0856 0x1114  [ 7D7ED932B6417D8687D1D972989B310B, A5DF3B6CEE97DD110FD1BC542CC5A5313B2F447E5FCC40DF6EFB9D7D49CD792C ] SEMgrSvc        C:\WINDOWS\system32\SEMgrSvc.dll
14:04:08.0898 0x1114  SEMgrSvc - ok
14:04:08.0903 0x1114  [ CA614C9FBC8307AB1DC937F3393899E2, 4833CC631FA30E4D4B45BBC2CE41DE72B332B6A1FFD23B7DBFD6EDD6BC1A2ED8 ] SENS            C:\WINDOWS\System32\sens.dll
14:04:08.0923 0x1114  SENS - ok
14:04:08.0942 0x1114  [ 46AEFFC68BEAF89805B95CC6F9529C2E, 7A6A38A329E82F684191561479604142BBB35121822A5CDD828819C606F2A60A ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
14:04:08.0984 0x1114  SensorDataService - ok
14:04:08.0998 0x1114  [ 2B81117E9C3E20BBAA2CB5467D000F77, AC0DF8E635908026EE43EE0444DEF61481E211737A85A473D64EC8BB214D1135 ] SensorService   C:\WINDOWS\system32\SensorService.dll
14:04:09.0036 0x1114  SensorService - ok
14:04:09.0043 0x1114  [ DF94FAAEC4CDAA3886A0169E660C984B, 54BB09459D59B5DDA24D72821840FA7A71A194EA464E09DFDE021B24CB27FCAD ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
14:04:09.0063 0x1114  SensrSvc - ok
14:04:09.0066 0x1114  SerCx - ok
14:04:09.0069 0x1114  SerCx2 - ok
14:04:09.0072 0x1114  Serenum - ok
14:04:09.0074 0x1114  Serial - ok
14:04:09.0076 0x1114  sermouse - ok
14:04:09.0087 0x1114  [ 87340BC77470B34F11A9E558B591DB08, FD91561FE5951B4F59FEE23707E1ACE31293E508EF734A5CDB0F34D332EFDDF7 ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
14:04:09.0109 0x1114  SessionEnv - ok
14:04:09.0112 0x1114  sfloppy - ok
14:04:09.0115 0x1114  [ 1941F5CA54C469E16957587FD56ED842, D356547A9702A50AEB5F7765AC44668EEA913563A422ABBD0427EC22833A5B78 ] SgrmAgent       C:\WINDOWS\system32\drivers\SgrmAgent.sys
14:04:09.0123 0x1114  SgrmAgent - ok
14:04:09.0128 0x1114  [ D3170A3F3A9626597EEE1888686E3EA6, 9321991C441B095DF15D24C8AE58F87EE5A3242532E8C023D0F78B2F96FEE6B7 ] SgrmBroker      C:\WINDOWS\system32\SgrmBroker.exe
14:04:09.0142 0x1114  SgrmBroker - ok
14:04:09.0154 0x1114  [ AC1D97F89F2EC7E334A406603A686973, D230059C1CB400CCA62438603356F058B40E17DE4C7BD4DADDBB981E4F5E4C9C ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
14:04:09.0179 0x1114  SharedAccess - ok
14:04:09.0196 0x1114  [ 0BE15FDA358837ABD88DC72AA75C75CD, 3990FA051E7C280B446C8A749FCEE04E384230CC5E286B4E7080B1737E5730DD ] SharedRealitySvc C:\WINDOWS\System32\SharedRealitySvc.dll
14:04:09.0231 0x1114  SharedRealitySvc - ok
14:04:09.0243 0x1114  [ 63B104867F70F0D81125C37989146960, 468431098DD9B91F1C58551CEB4DBE6E1C456FFE845E302571B970EF05AE03A8 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
14:04:09.0277 0x1114  ShellHWDetection - ok
14:04:09.0283 0x1114  [ F6D90D09D2BCFA2B5E492BFECA40EDE4, 7B427335943C1EFDE482D59F3A23149FCD45BB014643BEF620A708720383C4A8 ] shpamsvc        C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
14:04:09.0304 0x1114  shpamsvc - ok
14:04:09.0306 0x1114  SiSRaid2 - ok
14:04:09.0309 0x1114  SiSRaid4 - ok
14:04:09.0311 0x1114  smphost - ok
14:04:09.0323 0x1114  [ A3BEF2736E902B9DCA68554F4E10E08C, 5C7590D8F2D637B6D4A5F68945D8350B1C3D48EBE1B2C36658361900C9425611 ] SmsRouter       C:\WINDOWS\system32\SmsRouterSvc.dll
14:04:09.0349 0x1114  SmsRouter - ok
14:04:09.0355 0x1114  [ 577EC13EB5215325E9B9FC51FB56A974, 1D7A0245A3C474BCD4EC69704040FB50C0E086DB1711C5B7FC4D9C4A7909DAB9 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
14:04:09.0371 0x1114  SNMPTRAP - ok
14:04:09.0374 0x1114  spaceport - ok
14:04:09.0377 0x1114  [ FE1776E587227120DC04EAEC45473245, 9DEBD997D275065481EEEDD2310479F2021D53B64AA6D5CEEA70E9BB8C9856C7 ] SpatialGraphFilter C:\WINDOWS\system32\drivers\SpatialGraphFilter.sys
14:04:09.0385 0x1114  SpatialGraphFilter - ok
14:04:09.0388 0x1114  SpbCx - ok
14:04:09.0391 0x1114  spectrum - ok
14:04:09.0404 0x1114  [ C05A19A38D7D203B738771FD1854656F, 3A832F3CBA33682EAA18ABB721BF2D5A6FE9AC853038C684C264700DEB52AA65 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
14:04:09.0435 0x1114  Spooler - ok
14:04:09.0439 0x1114  sppsvc - ok
14:04:09.0441 0x1114  srv - ok
14:04:09.0443 0x1114  srv2 - ok
14:04:09.0446 0x1114  srvnet - ok
14:04:09.0452 0x1114  [ 1AEA66706573E8CCD6038369FE37F237, A62CAFE205D5B4C9F8528EDDA4E20BA4E2D1E231F2B183FE70EFE6458B2D5460 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
14:04:09.0470 0x1114  SSDPSRV - ok
14:04:09.0480 0x1114  [ 5EE518DFADC18573E681BB78833E93FA, E98CCD3E2ADA265D6E3CF48CDBFE5C3067E0546F179F23B77C267F65CEB978EE ] ssh-agent       C:\WINDOWS\System32\OpenSSH\ssh-agent.exe
14:04:09.0504 0x1114  ssh-agent - ok
14:04:09.0507 0x1114  SstpSvc - ok
14:04:09.0510 0x1114  StateRepository - ok
14:04:09.0535 0x1114  [ 3BCC3C334DF59EE4765B31730D7EA04C, BA193D484666BF5FFEEF715A74501F068E13F0330E5EFD4A9864175E313EAB63 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
14:04:09.0566 0x1114  Steam Client Service - ok
14:04:09.0571 0x1114  stexstor - ok
14:04:09.0582 0x1114  [ EB2C25A3700309F3F67D9334CF33A36C, 9262778566EEEA810AD32CD660DEA841797BD9F874252CC5445D917FF159280B ] stisvc          C:\WINDOWS\System32\wiaservc.dll
14:04:09.0610 0x1114  stisvc - ok
14:04:09.0613 0x1114  storahci - ok
14:04:09.0616 0x1114  storflt - ok
14:04:09.0618 0x1114  stornvme - ok
14:04:09.0621 0x1114  storqosflt - ok
14:04:09.0623 0x1114  StorSvc - ok
14:04:09.0626 0x1114  storufs - ok
14:04:09.0628 0x1114  storvsc - ok
14:04:09.0630 0x1114  svsvc - ok
14:04:09.0642 0x1114  swenum - ok
14:04:09.0644 0x1114  swprv - ok
14:04:09.0648 0x1114  [ A2A42A570524C975259E3B81C4D80DCA, 4B2A6295E46DD2042B3C741D9519A0376687B30711F2DA8B9B81A039E46229F9 ] Synth3dVsc      C:\WINDOWS\System32\drivers\Synth3dVsc.sys
14:04:09.0661 0x1114  Synth3dVsc - ok
14:04:09.0664 0x1114  SysMain - ok
14:04:09.0666 0x1114  SystemEventsBroker - ok
14:04:09.0672 0x1114  [ CE9975A9E0DFBEFECECE218D2674C1CD, 20ABA9B78FF40C89A757ED2B4AE2F8BE5F4C6C257AA00A324849D68ACA59A264 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
14:04:09.0692 0x1114  TabletInputService - ok
14:04:09.0696 0x1114  [ D765F43CBEA72D14C04AF3D2B9C8E54B, 89C5CA1440DF186497CE158EB71C0C6BF570A75B6BC1880EAC7C87A0250201C0 ] tap0901         C:\WINDOWS\System32\drivers\tap0901.sys
14:04:09.0716 0x1114  tap0901 - ok
14:04:09.0724 0x1114  [ E38C7C4D57B1438F70A1B913870E8665, EEBE640E31F3D9126FD2F58EB93051FE4EEA591223DFAB9E918DEBE879718B95 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
14:04:09.0746 0x1114  TapiSrv - ok
14:04:09.0749 0x1114  Tcpip - ok
14:04:09.0751 0x1114  Tcpip6 - ok
14:04:09.0756 0x1114  [ 085F8A5F09E64CC27309AF160EF4F9BA, DB3DFD3059836A9FB26FE924E9F2B960E454F4B20D8862266DFDA3168D610FD8 ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
14:04:09.0766 0x1114  tcpipreg - ok
14:04:09.0770 0x1114  tdx - ok
14:04:09.0925 0x1114  [ 7139743C088045BA6BE0B7CCE6FA2D8F, 5FE20C650DB8E9BFB9A4F43C56CE981239437A52B7BE906398A61D11A6847478 ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
14:04:10.0117 0x1114  TeamViewer - ok
14:04:10.0131 0x1114  [ B2C4D7CB291293CAC636748E695D111E, 5E0AA8147EFDA5D21CEE8AE254F74A974B0ADAF298F569CAA73AC4E3B758438A ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
14:04:10.0139 0x1114  terminpt - ok
14:04:10.0158 0x1114  [ 10ADC3589E50B1ED8452C86E0CBE8248, BE82341A12EA83D9EFADC9AC35CF16D327F8499C99107DCDE88DD0F5DF84523C ] TermService     C:\WINDOWS\System32\termsrv.dll
14:04:10.0193 0x1114  TermService - ok
14:04:10.0198 0x1114  [ 1A0A0F6A139148AFDC4622046D4B3CBD, 8FC2FB99B70A3A5B2F1D757A2F0E3085B1D242B792A35070E1DB3871A275329E ] Themes          C:\WINDOWS\system32\themeservice.dll
14:04:10.0214 0x1114  Themes - ok
14:04:10.0221 0x1114  [ 811910E891A6DB4A864AE119EB71218C, 2CBB6159E2ACAE4BA73892A4F7F8A3981C159083C29F1A1D548C59FB713B9D74 ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
14:04:10.0244 0x1114  TieringEngineService - ok
14:04:10.0246 0x1114  TimeBrokerSvc - ok
14:04:10.0249 0x1114  TokenBroker - ok
14:04:10.0252 0x1114  TPM - ok
14:04:10.0256 0x1114  [ A5C0F857C38278A90E953A24E1701196, 1A646E47013946CCE41C798A494C6D266AEFC8A8D6EB65CD8848E72106687E38 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
14:04:10.0273 0x1114  TrkWks - ok
14:04:10.0275 0x1114  TrustedInstaller - ok
14:04:10.0280 0x1114  [ 0D721F40C179EC5737C15E551F22C69B, BBA04E11C3D9150C60F74D8B1A3F444BDE0C19857BB7C45D58448F641082DE1A ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
14:04:10.0293 0x1114  TsUsbFlt - ok
14:04:10.0297 0x1114  [ DE1296871208D1F13B7AC57C4B1FA46C, D18709F65E372A47AE114ECFD6A45E6736089B4A8E719E2FB5D831D9415E995D ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
14:04:10.0305 0x1114  TsUsbGD - ok
14:04:10.0310 0x1114  [ BC938ABBF586272BD4063CA51F09149F, 06EB662948D212ACDF930C3CD01C6381A6FB152AC0F1628C86764F0973ABA1CB ] tunnel          C:\WINDOWS\system32\drivers\tunnel.sys
14:04:10.0322 0x1114  tunnel - ok
14:04:10.0326 0x1114  [ E94996BB8F323AF02860196C1400AD30, DE605439FC5B59C1064DF05F63C94D7C275482C1C66BEC74FA4A83F61C2051FC ] tzautoupdate    C:\WINDOWS\system32\tzautoupdate.dll
14:04:10.0342 0x1114  tzautoupdate - ok
14:04:10.0345 0x1114  UASPStor - ok
14:04:10.0349 0x1114  [ 00C4396DE1CD3502884BB2E2B6D6861C, 39F6BF25096ACE29CAF964DCA15078F47986F645DF49FB502A2CDF2C05C89AAB ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
14:04:10.0363 0x1114  UcmCx0101 - ok
14:04:10.0367 0x1114  [ ED9CBD1541C8AFDAA9B8255A384E2B53, D970F5E976CEBE0BCDF07B9E155EDB5B3C225812991779748CD04A9C4852DF3D ] UcmTcpciCx0101  C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
14:04:10.0380 0x1114  UcmTcpciCx0101 - ok
14:04:10.0384 0x1114  [ F58F1BC6A6972437CE18516F8ACCEB9F, 2C619D1E2E80662FA463EE48E3D41C8437A81B0F68EE67A0839A93DEDCD2E0B2 ] UcmUcsi         C:\WINDOWS\System32\drivers\UcmUcsi.sys
14:04:10.0395 0x1114  UcmUcsi - ok
14:04:10.0398 0x1114  Ucx01000 - ok
14:04:10.0400 0x1114  UdeCx - ok
14:04:10.0403 0x1114  udfs - ok
14:04:10.0405 0x1114  UEFI - ok
14:04:10.0412 0x1114  [ 588B9212DEE84F5192C09A147AA5C316, 80C70FD489D72015FCF8AFBE649F6C77F40B613882A1F031A2DAE088B9B4F67B ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
14:04:10.0425 0x1114  Ufx01000 - ok
14:04:10.0428 0x1114  UfxChipidea - ok
14:04:10.0430 0x1114  ufxsynopsys - ok
14:04:10.0435 0x1114  umbus - ok
14:04:10.0438 0x1114  UmPass - ok
14:04:10.0445 0x1114  [ 0D806415E1F86E7C1C192261C247EF0D, 640CB73D9ACC3B6E0F2A2A5A4587375F05A7519081BEC510B926A8A4A496C3B9 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
14:04:10.0467 0x1114  UmRdpService - ok
14:04:10.0487 0x1114  [ EAEC69961D9D8B39FEA44D56F7FB259D, 43FEB15A32B353B6F3C8E5F1072FF9507F2FA7799A414F30FEA0B8C47999D969 ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
14:04:10.0529 0x1114  UnistoreSvc - ok
14:04:10.0539 0x1114  [ 2362D5C18120FAB9CE5BD1F73EE33758, D9AB5D5BEAF95F62A204CE8A3B8B3B6C9C1E85FB5425CA2AADCBB4770EDCDF30 ] upnphost        C:\WINDOWS\System32\upnphost.dll
14:04:10.0564 0x1114  upnphost - ok
14:04:10.0568 0x1114  [ 49A5E1B43C59DC0E363AD9C2D7D10BE4, B903C1C24DAF316AF9D8C1770687DE0A24ACDA4EFE47845E13BE99985609B7CE ] UrsChipidea     C:\WINDOWS\System32\drivers\urschipidea.sys
14:04:10.0576 0x1114  UrsChipidea - ok
14:04:10.0579 0x1114  [ 53F1DA2D92D1D8CE4BB9D33E58D7DF01, CD3F4B92EDA042FE696C59D67BEB711C7AF0EB5979AD5F4110297C47454EBBFA ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
14:04:10.0588 0x1114  UrsCx01000 - ok
14:04:10.0592 0x1114  [ 09518A324B95BBC0B472BD5A472CB916, B3C6BF8C84268C02CC43E5C6B37648F9691B6038D275F4BEBA7B5E9ECA046181 ] UrsSynopsys     C:\WINDOWS\System32\drivers\urssynopsys.sys
14:04:10.0599 0x1114  UrsSynopsys - ok
14:04:10.0602 0x1114  usbccgp - ok
14:04:10.0606 0x1114  [ 250D21958EE5F45CD13FE6BE3788EE70, C0EF097EE2ED91950BD3A6881AB08698E85C4ABABC4F7520F7E92E70CA454D4E ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
14:04:10.0617 0x1114  usbcir - ok
14:04:10.0620 0x1114  usbehci - ok
14:04:10.0623 0x1114  usbhub - ok
14:04:10.0626 0x1114  USBHUB3 - ok
14:04:10.0629 0x1114  usbohci - ok
14:04:10.0632 0x1114  [ 692C0BA4109C8F78392A299369F51129, A675E11CD4794693D0B65A06E85F264199506A4C6EDBB68503163EED389B8D1F ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
14:04:10.0641 0x1114  usbprint - ok
14:04:10.0644 0x1114  usbser - ok
14:04:10.0646 0x1114  USBSTOR - ok
14:04:10.0648 0x1114  usbuhci - ok
14:04:10.0651 0x1114  USBXHCI - ok
14:04:10.0676 0x1114  [ CE0E3BA8FC974BEE5BE20E4F43A1C583, E19DE81559FD92D1F7B0ADB4297926E6971F7FCB642E11758D361FC2A22C33BB ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
14:04:10.0724 0x1114  UserDataSvc - ok
14:04:10.0730 0x1114  UserManager - ok
14:04:10.0733 0x1114  UsoSvc - ok
14:04:10.0741 0x1114  [ 3E283D06357616CD4117CC15BDB7C4C3, ACE50702EE61C9F93855720037898F19E509D45982F9173643EDA455F54FB9E7 ] VacSvc          C:\WINDOWS\System32\vac.dll
14:04:10.0760 0x1114  VacSvc - ok
14:04:10.0762 0x1114  VaultSvc - ok
14:04:10.0766 0x1114  [ E7204D7FD7362F0EFAA502A4CB91CA1E, C7F3BE383C81AB9AA642479F95872E40E19A4CFD72D4C8D7DE80ABC11B713E21 ] VBAudioVACMME   C:\WINDOWS\system32\DRIVERS\vbaudio_cable64_win7.sys
14:04:10.0772 0x1114  VBAudioVACMME - ok
14:04:10.0775 0x1114  vdrvroot - ok
14:04:10.0777 0x1114  vds - ok
14:04:10.0779 0x1114  VerifierExt - ok
14:04:10.0782 0x1114  vhdmp - ok
14:04:10.0784 0x1114  vhf - ok
14:04:10.0787 0x1114  [ 743E5C7578F5109F2DA691EB494EC442, E115BF3EF148ADD15CAA89130FD8F38C0B1FAB6D789BD2328663A0F9C979A781 ] ViGEmBus        C:\WINDOWS\System32\drivers\ViGEmBus.sys
14:04:10.0804 0x1114  ViGEmBus - ok
14:04:10.0807 0x1114  vmbus - ok
14:04:10.0810 0x1114  VMBusHID - ok
14:04:10.0812 0x1114  vmgid - ok
14:04:10.0819 0x1114  [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmicguestinterface C:\WINDOWS\System32\icsvc.dll
14:04:10.0840 0x1114  vmicguestinterface - ok
14:04:10.0845 0x1114  [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmicheartbeat   C:\WINDOWS\System32\icsvc.dll
14:04:10.0860 0x1114  vmicheartbeat - ok
14:04:10.0866 0x1114  [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmickvpexchange C:\WINDOWS\System32\icsvc.dll
14:04:10.0881 0x1114  vmickvpexchange - ok
14:04:10.0888 0x1114  [ DB7FB1DA7E1564EACBADD436191309C5, B567DFB5828D64A2A199C16538F3557696C3381B858420F23EABC757FDC341C2 ] vmicrdv         C:\WINDOWS\System32\icsvcext.dll
14:04:10.0909 0x1114  vmicrdv - ok
14:04:10.0916 0x1114  [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmicshutdown    C:\WINDOWS\System32\icsvc.dll
14:04:10.0930 0x1114  vmicshutdown - ok
14:04:10.0936 0x1114  [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmictimesync    C:\WINDOWS\System32\icsvc.dll
14:04:10.0950 0x1114  vmictimesync - ok
14:04:10.0957 0x1114  [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmicvmsession   C:\WINDOWS\System32\icsvc.dll
14:04:10.0973 0x1114  vmicvmsession - ok
14:04:10.0979 0x1114  [ DB7FB1DA7E1564EACBADD436191309C5, B567DFB5828D64A2A199C16538F3557696C3381B858420F23EABC757FDC341C2 ] vmicvss         C:\WINDOWS\System32\icsvcext.dll
14:04:10.0995 0x1114  vmicvss - ok
14:04:10.0998 0x1114  volmgr - ok
14:04:11.0000 0x1114  volmgrx - ok
14:04:11.0003 0x1114  volsnap - ok
14:04:11.0005 0x1114  volume - ok
14:04:11.0008 0x1114  vpci - ok
14:04:11.0010 0x1114  vsmraid - ok
14:04:11.0013 0x1114  VSS - ok
14:04:11.0017 0x1114  [ 516907EE74BDF7EEA09BA0FC5DC96C8E, 70A59A472AE1B7184D3EE7FD6E10A49E2403D08D89108E5353D632372BE89A0B ] VSStandardCollectorService150 C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe
14:04:11.0025 0x1114  VSStandardCollectorService150 - ok
14:04:11.0028 0x1114  VSTXRAID - ok
14:04:11.0033 0x1114  [ 26BF9586A9F4CF7630F75D8514797103, 4E0EF6D085B5948FFB59210723C05A2FB926FCC0A1EE0D5A129FAD754131486B ] VUSB3HUB        C:\WINDOWS\System32\drivers\ViaHub3.sys
14:04:11.0060 0x1114  VUSB3HUB - ok
14:04:11.0064 0x1114  [ A5DA80C665904C64F346A95EDB89242E, A0EB92E0E8E5B87C38B851E1019892EDDCD638D64DA715D656D4FDCEC5EE4C48 ] VUSBSTOR        C:\WINDOWS\System32\Drivers\vusbstor.sys
14:04:11.0071 0x1114  VUSBSTOR - ok
14:04:11.0073 0x1114  vwifibus - ok
14:04:11.0076 0x1114  vwififlt - ok
14:04:11.0079 0x1114  vwifimp - ok
14:04:11.0083 0x1114  W32Time - ok
14:04:11.0091 0x1114  [ 1C8447EFBC2B36B1CFE889E519F46A6E, 2601185B01909682FB921400C26BE6391AC93F72E84E70E2F49B4059987E191E ] WaaSMedicSvc    C:\WINDOWS\System32\WaaSMedicSvc.dll
14:04:11.0115 0x1114  WaaSMedicSvc - ok
14:04:11.0118 0x1114  WacomPen - ok
14:04:11.0126 0x1114  [ 25FAB8A2CFFA21FDB472AB3AE6C17A57, C97E651111643F32FD5B94BEDA31D62E6FF83CA0644FFE8BA98463EC9EA6EF9B ] WalletService   C:\WINDOWS\system32\WalletService.dll
14:04:11.0150 0x1114  WalletService - ok
14:04:11.0153 0x1114  wanarp - ok
14:04:11.0156 0x1114  wanarpv6 - ok
14:04:11.0159 0x1114  [ 395447583F42FD840520EE87AE439D74, 984AE1EE8BA3B8926C6FC94BC22DE9061C90C15135EA56D0F16C1D3C4EF8DAF8 ] WarpJITSvc      C:\WINDOWS\System32\Windows.WARP.JITService.dll
14:04:11.0175 0x1114  WarpJITSvc - ok
14:04:11.0178 0x1114  wbengine - ok
14:04:11.0183 0x1114  WbioSrvc - ok
14:04:11.0187 0x1114  [ 8A304D6CDC067922448CBA1EBB9FFCA8, DE40DD3A32DFF22C477F38B5E2224D55B8CCF2499EFFE0A8E9923728295BAEC1 ] wcifs           C:\WINDOWS\system32\drivers\wcifs.sys
14:04:11.0197 0x1114  wcifs - ok
14:04:11.0200 0x1114  Wcmsvc - ok
14:04:11.0204 0x1114  wcncsvc - ok
14:04:11.0207 0x1114  [ FCA1B5465213EF4DE373A1F7E76D260E, 2548A9D11027871AD0290FDADF1E42E828E6120ECE925B12BAB3F09E25172489 ] wcnfs           C:\WINDOWS\system32\drivers\wcnfs.sys
14:04:11.0221 0x1114  wcnfs - ok
14:04:11.0225 0x1114  [ E6B9D4C5BB2C8B7BA7946EC54392B14E, 3EC126095A98E76E003EE0F8CE71E44B1CD9CA6EF63FF94A84981CB763B4E2A6 ] WdBoot          C:\WINDOWS\system32\drivers\wd\WdBoot.sys
14:04:11.0232 0x1114  WdBoot - ok
14:04:11.0235 0x1114  Wdf01000 - ok
14:04:11.0243 0x1114  [ C0100756EBE0B8CCC9517949A0809893, 7E510269FE9984CDAB42A6C053F18C9B65A3DAD431D3050F83192995E83FDF7C ] WdFilter        C:\WINDOWS\system32\drivers\wd\WdFilter.sys
14:04:11.0256 0x1114  WdFilter - ok
14:04:11.0260 0x1114  [ 067D1A81B4708CA97523709FDF57B728, CA331223250B37E7D2D8B04640EDF279F7FD7336017181ECF2D3E4F82E370F97 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
14:04:11.0277 0x1114  WdiServiceHost - ok
14:04:11.0280 0x1114  [ 067D1A81B4708CA97523709FDF57B728, CA331223250B37E7D2D8B04640EDF279F7FD7336017181ECF2D3E4F82E370F97 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
14:04:11.0298 0x1114  WdiSystemHost - ok
14:04:11.0301 0x1114  wdiwifi - ok
14:04:11.0305 0x1114  [ EAF4FB729E94561EE31BDE5BEF869C65, 73290250B565E0A3F453BC45E69FF16A1D964E372A15401A2D3E2CDEB4670B38 ] WdmCompanionFilter C:\WINDOWS\system32\drivers\WdmCompanionFilter.sys
14:04:11.0313 0x1114  WdmCompanionFilter - ok
14:04:11.0316 0x1114  [ CF07A18380EBA6609F66002B82BE2E84, 1470438EE0996C2614CB879415884DB610B219D965AED45D1DB8B2F84863B20B ] WdNisDrv        C:\WINDOWS\system32\drivers\wd\WdNisDrv.sys
14:04:11.0323 0x1114  WdNisDrv - ok
14:04:11.0380 0x1114  [ C748A3C5E6222847FAA853465A4FFAFA, 81021BB03E97425B6B5780C76925D906F181DAD3F50F039BD87E8F2A0E775D4B ] WdNisSvc        C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\NisSrv.exe
14:04:11.0450 0x1114  WdNisSvc - ok
14:04:11.0461 0x1114  [ BDCC510E85F7AF152E2DFF030A526EA2, 67830B42DE20EBB30DD33093F30FBA166B27D3C1F25B52DABE1BC436671A1882 ] WebClient       C:\WINDOWS\System32\webclnt.dll
14:04:11.0479 0x1114  WebClient - ok
14:04:11.0485 0x1114  [ 506F0A1CCABF4428733CF854BCBB6832, 859A7E21ABB93A0AD538AAF93D32E31B961EA6012C24567B4C76A9ED8FD4AD46 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
14:04:11.0506 0x1114  Wecsvc - ok
14:04:11.0510 0x1114  [ D8D727E8311C86B2A993A9006A453BAC, AD6C93F5ED51C621841DF68A25D5932578FADB83689FB668D056F316A8AA749D ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
14:04:11.0527 0x1114  WEPHOSTSVC - ok
14:04:11.0532 0x1114  [ 30B4568D058E17500E7BF88AECEDF3F1, 612597DFAF63E55ACB80789483CBCF0E5AC5FF7607C478C61E5A86D77B169E9E ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
14:04:11.0548 0x1114  wercplsupport - ok
14:04:11.0551 0x1114  WerSvc - ok
14:04:11.0555 0x1114  WFDSConMgrSvc - ok
14:04:11.0558 0x1114  WFPLWFS - ok
14:04:11.0562 0x1114  [ 752F5931696914DF2EC0B27275C38458, 83415E7BE50D9548785FBF6550FA679E425B5990F303E2D74513275A5E1DC828 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
14:04:11.0578 0x1114  WiaRpc - ok
14:04:11.0581 0x1114  WIMMount - ok
14:04:11.0585 0x1114  [ CEDC4E5155D9D48F2922C21EC02419B7, B147CC9A14B92E224C7755D41E0453506F983E7874573F1DF79F3EBF27BED090 ] WinDefend       C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MsMpEng.exe
14:04:11.0593 0x1114  WinDefend - ok
14:04:11.0599 0x1114  WindowsTrustedRT - ok
14:04:11.0602 0x1114  [ 5F0EDDA201630E132C2251BC9DA85023, 842B5CBA8C33616345EDC2F91B560416AAEAAB15A8CE1F36978B251CE4CBDA16 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
14:04:11.0609 0x1114  WindowsTrustedRTProxy - ok
14:04:11.0611 0x1114  WinHttpAutoProxySvc - ok
14:04:11.0614 0x1114  WinMad - ok
14:04:11.0620 0x1114  Winmgmt - ok
14:04:11.0622 0x1114  WinNat - ok
14:04:11.0662 0x1114  [ C57185CC62AA13E4F5A989D904CC9A16, 993F27F710148335C4244AB74D4B1D232DEDB0E3D82E39093A1E422C72283D31 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
14:04:11.0741 0x1114  WinRM - ok
14:04:11.0750 0x1114  [ 6FA3D810FE082001B16ADE19829F1E8E, 64B420FC14AB3194D4D2907EA5BE741456928E7E3CB9CBA50FEB8677A43B1971 ] WINUSB          C:\WINDOWS\System32\drivers\WinUSB.SYS
14:04:11.0762 0x1114  WINUSB - ok
14:04:11.0765 0x1114  WinVerbs - ok
14:04:11.0767 0x1114  wisvc - ok
14:04:11.0770 0x1114  WlanSvc - ok
14:04:11.0773 0x1114  wlidsvc - ok
14:04:11.0776 0x1114  wlpasvc - ok
14:04:11.0778 0x1114  WmiAcpi - ok
14:04:11.0782 0x1114  wmiApSrv - ok
14:04:11.0784 0x1114  WMPNetworkSvc - ok
14:04:11.0792 0x1114  [ E122AD60BF4D7E4B28CCBABF33B28C1F, 1ABABE62FCC1B1A837540EE66F3EB0CE062962F05247002D61CFDE6ABB8E7E87 ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
14:04:11.0804 0x1114  Wof - ok
14:04:11.0839 0x1114  [ 0D3303BDBC591ECF113601D7853A1AA7, 437CF89541696E0B1A8056F4A5189642FC76D762113ED4F71458AF4D72FC3E9A ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
14:04:11.0890 0x1114  workfolderssvc - ok
14:04:11.0895 0x1114  WpcMonSvc - ok
14:04:11.0898 0x1114  WPDBusEnum - ok
14:04:11.0902 0x1114  [ 15C1131EA0216F799C86B03EDAE0BE45, 39F50C084407BC3B498714B74DDA5D63E0539681F324A18ABBED3CD0DE5D52AA ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
14:04:11.0909 0x1114  WpdUpFltr - ok
14:04:11.0916 0x1114  [ 096969606BB5C4822AB020081EA07FC5, 522F372834B0497215F45ACBC417DA10DCE45C6D3C7099E47BBA18700C294B22 ] WpnService      C:\WINDOWS\system32\WpnService.dll
14:04:11.0938 0x1114  WpnService - ok
14:04:11.0942 0x1114  [ 8B694BC50D2D2B98311283CFE5B40EE6, 734F8985CAD99E8635ACF09309D958D2B7FB05C6FF54DBE3623DC071BECE3413 ] WpnUserService  C:\WINDOWS\System32\WpnUserService.dll
14:04:11.0959 0x1114  WpnUserService - ok
14:04:11.0963 0x1114  ws2ifsl - ok
14:04:11.0970 0x1114  [ DCB549367EB94CD8AFAA28E3F77F6493, 9FD2C6E03F398E76403502CFC94EB8EBD2F90ED5E95ABA5E86C1B7F63601C43C ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
14:04:11.0990 0x1114  wscsvc - ok
14:04:11.0994 0x1114  [ A3317B8C6765C18F3BD9FE9DD352B05D, 8312D05F32909933FA692B893D5F6E1DC2E5908C8E590D4B6A51EA724DF4744C ] WSDPrintDevice  C:\WINDOWS\System32\drivers\WSDPrint.sys
14:04:12.0003 0x1114  WSDPrintDevice - ok
14:04:12.0007 0x1114  [ 3C15A5AC47B1CA4D9A9F8680E224996F, F95EC4E4E5FDFF1D68179205430AAD01A0124DBD682FAFF6270B99B4AACC793F ] WSDScan         C:\WINDOWS\system32\DRIVERS\WSDScan.sys
14:04:12.0021 0x1114  WSDScan - ok
14:04:12.0024 0x1114  WSearch - ok
14:04:12.0028 0x1114  wuauserv - ok
14:04:12.0032 0x1114  [ 813DC18CC654CFB1875074139B0FEFD3, 87901841AFD9224BFEC06A712BE3C2371E16D3571210D4792F91034A2B926A06 ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
14:04:12.0045 0x1114  WudfPf - ok
14:04:12.0051 0x1114  [ FB64BAD6DEDB27EA39B03685AC0A8EB4, CEDCB71F5FC8BAFF69948960F69A46E3A41CDF81304495AFF41088E5B4E9EB1D ] WUDFRd          C:\WINDOWS\system32\drivers\WudfRd.sys
14:04:12.0066 0x1114  WUDFRd - ok
14:04:12.0092 0x1114  [ FAFE3B08208AA28C82BC42731B4EEBE8, 333D9CBE6B3492BC30A7B64C1F83494B38AD2CE7C832C1D68FEBD2EB8029230D ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
14:04:12.0148 0x1114  WwanSvc - ok
14:04:12.0175 0x1114  [ E3F397F295B5C5592EFDFACC691AD534, EB87C1BB115087BC1E8FBD1352123B22B5DE0DC9FBB68777A65E1DAA193F484E ] X6va063         C:\WINDOWS\SysWoW64\Drivers\X6va063
14:04:12.0179 0x1114  X6va063 - ok
14:04:12.0183 0x1114  [ 51D3A1E2285E2E931A553281BBA10E81, 8B371AF5E7717C53780A5C2F68400412C4DB0F01AC6551476FF062B83A7D0AC8 ] xbgm            C:\WINDOWS\system32\xbgmsvc.exe
14:04:12.0200 0x1114  xbgm - ok
14:04:12.0219 0x1114  [ DB952AD196A9548CF5235A71E5197F3F, 6C51EB14B2808665FCB999F376A97018F6B0A91EE6E63A25C044EA59A5713EE1 ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
14:04:12.0260 0x1114  XblAuthManager - ok
14:04:12.0282 0x1114  [ 8C0DD7BFFF5A81AEC26AD720057F5451, 4503D4DD540DB9977BBFF3BF7E92BE9778578B769972CF8A54AF0F1FF5C79BF5 ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
14:04:12.0327 0x1114  XblGameSave - ok
14:04:12.0331 0x1114  xboxgip - ok
14:04:12.0335 0x1114  [ C7FEC5C0377E5598BA919B29731CA45F, C153C62742B6F981905AEF7C464761E5894260F26EE164968B21D93979376378 ] XboxGipSvc      C:\WINDOWS\System32\XboxGipSvc.dll
14:04:12.0350 0x1114  XboxGipSvc - ok
14:04:12.0369 0x1114  [ 3A94BD93CD2D9C34725D924230B502A5, 87AF2061D348FFFA190D0E50E6860903BED46968CF64B7765D8D80127C702E6A ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
14:04:12.0410 0x1114  XboxNetApiSvc - ok
14:04:12.0415 0x1114  [ 14AF49EE75DD1985A5A8E5CFA05C9666, DABA1EBA7F93AE90D88BAF6BF165956E3CEE3D37D51B1FC141631581E83A4D24 ] xhunter1        C:\WINDOWS\xhunter1.sys
14:04:12.0420 0x1114  xhunter1 - ok
14:04:12.0423 0x1114  [ CE1F78B5C1F14F74242008B2B3153FA2, 682D1F32DD1BBEB031D5129CE40D9C77D3C6CF4FB5979F1918B2482AF617B5BE ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
14:04:12.0434 0x1114  xinputhid - ok
14:04:12.0440 0x1114  [ 3663FDFE97959EB5FE959054D9F69EE0, 4F59B18576CE398BD48B7841023748AF1F430B030E236852F12D901AE4069F18 ] xusb22          C:\WINDOWS\System32\drivers\xusb22.sys
14:04:12.0453 0x1114  xusb22 - ok
14:04:12.0453 0x1114  ================ Scan global ===============================
14:04:12.0462 0x1114  [ Global ] - ok
14:04:12.0462 0x1114  ================ Scan MBR ==================================
14:04:12.0463 0x1114  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
14:04:12.0477 0x1114  \Device\Harddisk0\DR0 - ok
14:04:12.0479 0x1114  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
14:04:12.0583 0x1114  \Device\Harddisk1\DR1 - ok
14:04:12.0583 0x1114  ================ Scan VBR ==================================
14:04:12.0585 0x1114  [ 13D5B2B97786C701030B00930A4B861E ] \Device\Harddisk0\DR0\Partition1
14:04:12.0586 0x1114  \Device\Harddisk0\DR0\Partition1 - ok
14:04:12.0588 0x1114  [ AFEDB3540F84FF19BB85C9BB84A75ED9 ] \Device\Harddisk0\DR0\Partition2
14:04:12.0588 0x1114  \Device\Harddisk0\DR0\Partition2 - ok
14:04:12.0589 0x1114  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
14:04:12.0590 0x1114  \Device\Harddisk0\DR0\Partition3 - ok
14:04:12.0591 0x1114  [ 3BB09C23DE10142A353C36F109DD8724 ] \Device\Harddisk0\DR0\Partition4
14:04:12.0592 0x1114  \Device\Harddisk0\DR0\Partition4 - ok
14:04:12.0593 0x1114  [ 251D18CC7C3122E8150EAF7695C91E3E ] \Device\Harddisk0\DR0\Partition5
14:04:12.0594 0x1114  \Device\Harddisk0\DR0\Partition5 - ok
14:04:12.0596 0x1114  [ 3C4579FA1D77F5787D871D2F802BEDDB ] \Device\Harddisk1\DR1\Partition1
14:04:12.0597 0x1114  \Device\Harddisk1\DR1\Partition1 - ok
14:04:12.0597 0x1114  ================ Scan generic autorun ======================
14:04:12.0599 0x1114  SecurityHealth - ok
14:04:12.0729 0x1114  [ C1046C79EB891D2ADD9F69682CE76B9F, E75BBFFB462BA10FE139FABC50CF34FE42C36FB2AB8B0EFEC5ADB8FE55BBCC77 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
14:04:12.0876 0x1114  RTHDVCPL - ok
14:04:12.0897 0x1114  [ ED43758BF94B8A5221D69F1B7F63F13D, F6E7418823E45085F4D4F50DD25A55ED517C0A335C6C2F69A1139B30677D3DA9 ] C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe
14:04:12.0915 0x1114  XboxStat - ok
14:04:12.0924 0x1114  [ 7DC06D017872420EAFBD512225F8F4E2, FF47A89958AB9995DC8CAE1848528C326B9306E88E19ACC25ED23D64EFA0DF66 ] C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
14:04:12.0944 0x1114  AdobeGCInvoker-1.0 - ok
14:04:12.0954 0x1114  [ 268034A82C186404819E3E4CE6305166, 4817729CB046B02D42F34108626C12714454E28838C6895EA2EDA097BA7F272C ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
14:04:13.0009 0x1114  SunJavaUpdateSched - ok
14:04:13.0162 0x1114  [ 4DF3250415C21628171E5174F14DFB3F, 9044C47D3CEF805E40DFBE6A1024DB30109387E94991A6FACC4DB9276F40DF57 ] D:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
14:04:13.0352 0x1114  LogMeIn Hamachi Ui - ok
14:04:13.0645 0x1114  [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
14:04:13.0980 0x1114  OneDriveSetup - ok
14:04:14.0020 0x1114  [ FC7536F076D2F1660AC072E54A86B2F1, B36F3E9976F59EC137F8618C7EDF4ED0B35AC65497CA27D69835048E6E277040 ] C:\Program Files (x86)\Windows Mail\wab.exe
14:04:14.0061 0x1114  WAB Migrate - ok
14:04:14.0362 0x1114  [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
14:04:14.0649 0x1114  OneDriveSetup - ok
14:04:14.0675 0x1114  [ FC7536F076D2F1660AC072E54A86B2F1, B36F3E9976F59EC137F8618C7EDF4ED0B35AC65497CA27D69835048E6E277040 ] C:\Program Files (x86)\Windows Mail\wab.exe
14:04:14.0693 0x1114  WAB Migrate - ok
14:04:14.0720 0x1114  [ 71C11685A422EADD78171050888413F0, 5F7D77F57D4E06E073860CAE82006C818EE37D97236E50A7110791A83308785A ] C:\Users\micha\AppData\Local\Microsoft\OneDrive\OneDrive.exe
14:04:14.0746 0x1114  OneDrive - ok
14:04:14.0750 0x1114  Discord - ok
14:04:14.0773 0x1114  [ 23686E6FA80E49F08715598A3EFF36BB, B7DC968ADB7DC2FCA1D67A3E6ECE0FF71DC5A909547249CB4A479093319BA7B5 ] C:\Program Files\CyberGhost 6\CyberGhost.exe
14:04:14.0802 0x1114  CyberGhost - ok
14:04:14.0830 0x1114  [ 62305D013F4E1538FA071846BD62FF52, E3DE76A994F2CCF17F443EFC928532FA6114469BC2C4B21D43B1DCE677D5D112 ] C:\Users\micha\AppData\Local\FluxSoftware\Flux\flux.exe
14:04:14.0962 0x1114  f.lux - ok
14:04:15.0053 0x1114  [ 036D82DD70A5D8B7A29BCDDF3E5C243D, E54A465BF2D70C93B440B05612C8F11B7CA8C8AEECB822E65E518DD862A00700 ] D:\Program Files (x86)\Steam\steam.exe
14:04:15.0323 0x1114  Steam - ok
14:04:15.0331 0x1114  Spotify - ok
14:04:15.0370 0x1114  [ CD5473BD641DA14DCED3C8560BEC43DA, 15D754F0518C922088F99C3075732DEDFBF58CFCEEC528596D2214A446BE2EFB ] D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe
14:04:15.0412 0x1114  Ubisoft Game Launcher - ok
14:04:15.0415 0x1114  Parsec.App.0 - ok
14:04:15.0454 0x1114  EpicGamesLauncher - ok
14:04:15.0456 0x1114  Waiting for KSN requests completion. In queue: 246
14:04:15.0521 0x2c90  Object required for P2P: [ 068D7C5847782F98DB1E8CAD759F088D ] nvlddmkm
14:04:15.0842 0x2c90  Object send P2P result: true
14:04:16.0471 0x1114  AV detected via SS2: Windows Defender, windowsdefender:// (  ), 0x61100 ( enabled : updated )
14:04:16.0477 0x1114  Win FW state via NFP2: enabled ( trusted )
14:04:16.0557 0x1114  ============================================================
14:04:16.0557 0x1114  Scan finished
14:04:16.0557 0x1114  ============================================================
14:04:16.0563 0x2a3c  Detected object count: 0
14:04:16.0563 0x2a3c  Actual detected object count: 0
         

Alt 30.08.2018, 14:16   #9
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 10: rundll32.exe CPU Auslastung - Standard

Windows 10: rundll32.exe CPU Auslastung



Adware/Junkware/Toolbars entfernen

Alte Versionen von adwCleaner vorher löschen, danach neu runterladen auf den Desktop!
Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren!




adwCleaner v7.x

Downloade Dir bitte AdwCleaner auf deinen Desktop (Bebilderte Anleitung).
  • Schließe alle offenen Programme und Browser.
  • Starte die adwcleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Einstellungen, scrolle nach unten und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • Tracing Schlüssel löschen
    • Prefetch-Dateien löschen
    • Proxy wiederherstellen
    • IE-Policies wiederherstellen
    • Chrome-Policies wiederherstellen
    • Winsock wiederherstellen
  • Klicke nun auf Dashboard, dann auf Jetzt scannen und warte bis der Suchlauf abgeschlossen ist.
  • Klicke nun auf Bereinigen & Reparieren und bestätige mit Jetzt bereinigen.
  • WICHTIG:
    Sollte AdwCleaner nichts finden, klicke auf Grundlegende Reparatur ausführen und anschließend auf Jetzt bereinigen.
  • Nach dem Neustart öffnet sich AdwCleaner automatisch. Klicke auf Log-Datei ansehen.
  • Poste mir deren Inhalt der Log-Datei mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt. (xx = fortlaufende Nummer).
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 30.08.2018, 14:30   #10
Michi55
 
Windows 10: rundll32.exe CPU Auslastung - Standard

Windows 10: rundll32.exe CPU Auslastung



hier die Dateien:

Code:
ATTFilter
# -------------------------------
# Malwarebytes AdwCleaner 7.2.2.0
# -------------------------------
# Build:    07-17-2018
# Database: 2018-08-30.1
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    08-30-2018
# Duration: 00:00:01
# OS:       Windows 10 Home
# Cleaned:  39
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\Program Files (x86)\GreatDealz
Deleted       C:\Users\micha\AppData\Roaming\Tencent
Deleted       C:\Program Files (x86)\DriverFinder
Deleted       C:\ProgramData\TweakBit
Deleted       C:\Windows\System32\Tasks\TweakBit

***** [ Files ] *****

Deleted       C:\END
Deleted       C:\Users\micha\AppData\Local\Temp\ReimagePackage.exe
Deleted       C:\Windows\Temp\reimage.log
Deleted       C:\Users\micha\AppData\Local\Temp\reimage.log
Deleted       C:\Windows\Reimage.ini
Deleted       C:\Windows\restoro.ini

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKLM\Software\Wow6432Node\TWEAKBIT
Deleted       HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION|AndroidServer.exe
Deleted       HKLM\Software\Wow6432Node\Classes\AppID\REI_AxControl.DLL
Deleted       HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
Deleted       HKLM\Software\Wow6432Node\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Deleted       HKLM\Software\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Deleted       HKLM\Software\Wow6432Node\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Deleted       HKLM\Software\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Deleted       HKLM\Software\Wow6432Node\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Deleted       HKLM\Software\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Deleted       HKLM\Software\Wow6432Node\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Deleted       HKLM\Software\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Deleted       HKLM\Software\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Deleted       HKLM\Software\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Deleted       HKCU\Software\Reimage
Deleted       HKLM\Software\Reimage
Deleted       HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
Deleted       HKLM\Software\Classes\REI_AxControl.ReiEngine
Deleted       HKCU\Software\Local AppWizard-Generated Applications\Restoro
Deleted       HKCU\Software\Restoro
Deleted       HKLM\Software\Restoro
Deleted       HKLM\Software\Classes\CLSID\{AE198C69-7358-4856-9029-F4C0FAD524C1}
Deleted       HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
Deleted       HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A60238BF-F75E-4BF7-9206-1485AA0D7E96} 
Deleted       HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\TweakBit

***** [ Chromium (and derivatives) ] *****

Deleted       GreatDealz

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Prefetch
[+] Delete Tracing Keys
[+] Reset Chromium Policies
[+] Reset IE Policies
[+] Reset Proxy Settings
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [4542 octets] - [30/08/2018 14:27:11]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
         

Alt 30.08.2018, 14:33   #11
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 10: rundll32.exe CPU Auslastung - Standard

Windows 10: rundll32.exe CPU Auslastung



adwcleaner bitte zwecks Kontrolle wiederholen
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 30.08.2018, 14:40   #12
Michi55
 
Windows 10: rundll32.exe CPU Auslastung - Standard

Windows 10: rundll32.exe CPU Auslastung



Jedesmal wenn ich Chrome starte kommt die Meldung "GreatDealz wurde als Erweiterung hinzugefügt"
nochmal die Dateien:

Code:
ATTFilter
# -------------------------------
# Malwarebytes AdwCleaner 7.2.2.0
# -------------------------------
# Build:    07-17-2018
# Database: 2018-08-30.1
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    08-30-2018
# Duration: 00:00:00
# OS:       Windows 10 Home
# Cleaned:  2
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKLM\Software\Classes\REI_AxControl.ReiEngine.1

***** [ Chromium (and derivatives) ] *****

Deleted       GreatDealz

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Prefetch
[+] Delete Tracing Keys
[+] Reset Chromium Policies
[+] Reset IE Policies
[+] Reset Proxy Settings
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [4542 octets] - [30/08/2018 14:27:11]
AdwCleaner[C00].txt - [4117 octets] - [30/08/2018 14:27:35]
AdwCleaner[S01].txt - [1413 octets] - [30/08/2018 14:34:58]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
         

Alt 30.08.2018, 14:47   #13
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 10: rundll32.exe CPU Auslastung - Standard

Windows 10: rundll32.exe CPU Auslastung



Ich brauche neue FRST-Logs . Haken setzen bei addition.txt dann auf Untersuchen klicken.

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 30.08.2018, 14:54   #14
Michi55
 
Windows 10: rundll32.exe CPU Auslastung - Standard

Windows 10: rundll32.exe CPU Auslastung



Hier sind die FRST files:

Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 23.08.2018
durchgeführt von micha (Administrator) auf DESKTOP-AHG77M6 (30-08-2018 14:52:29)
Gestartet von C:\Users\micha\Desktop
Geladene Profile: micha (Verfügbare Profile: micha)
Platform: Windows 10 Home Version 1803 17134.228 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Parsec) C:\Program Files\Parsec\pservice.exe
(Ralink Technology, Corp.) C:\Program Files (x86)\TOTOLINK\Common\RaRegistry64.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(Ralink Technology, Corp.) C:\Program Files (x86)\TOTOLINK\Common\RaRegistry.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1807.18075-0\MsMpEng.exe
(Scarlet.Crush Productions) D:\ScpServer\bin\ScpService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Electronic Arts) D:\Origin\OriginWebHelperService.exe
(CyberGhost S.A.) C:\Program Files\CyberGhost 6\CyberGhost.Service.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1807.18075-0\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.0_x64__8wekyb3d8bbwe\Office16\OfficeHubTaskHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(f.lux Software LLC) C:\Users\micha\AppData\Local\FluxSoftware\Flux\flux.exe
(Valve Corporation) D:\Program Files (x86)\Steam\Steam.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9217024 2017-04-13] (Realtek Semiconductor)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [316392 2018-05-11] (Adobe Systems, Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => D:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5885352 2018-05-30] (LogMeIn Inc.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ACHTUNG
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Run: [Discord] => C:\Users\micha\AppData\Local\Discord\app-0.0.301\Discord.exe [57816920 2018-04-30] (Discord Inc.)
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 6\CyberGhost.exe [1398352 2018-06-11] (CyberGhost S.A.)
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Run: [f.lux] => C:\Users\micha\AppData\Local\FluxSoftware\Flux\flux.exe [1806344 2018-07-03] (f.lux Software LLC)
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [3207968 2018-08-29] (Valve Corporation)
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Run: [Spotify] => C:\Users\micha\AppData\Roaming\Spotify\Spotify.exe [24453008 2018-08-29] (Spotify Ltd)
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Run: [Ubisoft Game Launcher] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe [470872 2018-08-23] (Ubisoft)
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Run: [Parsec.App.0] => C:\Users\micha\AppData\Roaming\Parsec\electron\parsec.exe [80666112 2018-07-27] (Parsec Cloud, Inc.)
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Run: [EpicGamesLauncher] => "D:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\RunOnce: [Application Restart #1] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1577816 2018-08-08] (Google Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Ralink Wireless Utility.lnk [2017-07-03]
ShortcutTarget: Ralink Wireless Utility.lnk -> C:\Program Files (x86)\TOTOLINK\Common\RaUI.exe (Ralink Technology, Corp.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TOTOLINK Wireless Utility.lnk [2016-07-08]
ShortcutTarget: TOTOLINK Wireless Utility.lnk -> C:\Program Files (x86)\TOTOLINK\Common\RaUI.exe (Ralink Technology, Corp.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{93c5caab-8ba9-482e-afd0-628435dae7b9}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{ecf2f916-80d0-4af9-a1ef-9348dea31aa0}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre-10.0.2\bin\ssv.dll => Keine Datei
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre-10.0.2\bin\jp2ssv.dll [2018-07-18] (Oracle Corporation)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=13.0.2 -> C:\Program Files\Java\jre-10.0.2\bin\dtplugin\npDeployJava1.dll [2018-07-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=13.0.2.0 -> C:\Program Files\Java\jre-10.0.2\bin\plugin2\npjp2.dll [2018-07-18] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npNxGameEU.dll [2016-10-28] (Nexon)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-08-21] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-08-21] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN)
FF Plugin HKU\S-1-5-21-3159779420-2504212275-734065462-1001: @my.com/Games -> C:\Users\micha\AppData\Local\MyComGames\NPMyComDetector.dll [Keine Datei]

Chrome: 
=======
CHR Profile: C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default [2018-08-30]
CHR Extension: (Präsentationen) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (BetterTTV) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2017-11-20]
CHR Extension: (Docs) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-08]
CHR Extension: (YouTube) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-08]
CHR Extension: (Adblock Plus) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-08-28]
CHR Extension: (FrankerFaceZ) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2018-06-11]
CHR Extension: (Tabellen) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Google Docs Offline) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-17]
CHR Extension: (Black red shards) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpjlkkaalgfbbegfnjoclhfidancjpch [2018-01-13]
CHR Extension: (Instant Gaming) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbnoedlobifdhbpjkcfhcbdcjhampmne [2018-02-02]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (vidIQ Vision for YouTube) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pachckjkecffpdphbpmfolblodfkgbhl [2018-08-30]
CHR Extension: (Google Mail) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-08]
CHR Extension: (Chrome Media Router) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-08-02]
CHR HKLM-x32\...\Chrome\Extension: [lobonlhedgiilkfmbbbfhkaoefacipgj] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2321384 2018-05-11] (Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2128872 2018-05-11] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2016-08-09] (BitRaider, LLC)
R2 CG6Service; C:\Program Files\CyberGhost 6\CyberGhost.Service.exe [204880 2018-06-11] (CyberGhost S.A.)
R2 Ds3Service; D:\ScpServer\bin\ScpService.exe [381952 2014-03-13] (Scarlet.Crush Productions) [Datei ist nicht signiert]
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [774272 2018-08-23] (EasyAntiCheat Ltd)
S3 GalaxyClientService; D:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [686664 2018-07-31] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [8942664 2018-07-31] (GOG.com)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3346856 2018-05-30] (LogMeIn Inc.)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc.)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [8019808 2018-03-29] (INCA Internet Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-30] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-30] (NVIDIA Corporation)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2212672 2018-08-07] (Electronic Arts)
R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3083080 2018-08-07] (Electronic Arts)
R2 Parsec; C:\Program Files\Parsec\pservice.exe [190536 2018-07-27] (Parsec)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2016-12-07] ()
R2 RalinkRegistryWriter; C:\Program Files (x86)\TOTOLINK\Common\RaRegistry.exe [383280 2013-09-12] (Ralink Technology, Corp.)
R2 RalinkRegistryWriter64; C:\Program Files (x86)\TOTOLINK\Common\RaRegistry64.exe [452912 2013-09-12] (Ralink Technology, Corp.)
S3 RaMediaServer; C:\Program Files (x86)\TOTOLINK\Common\RaMediaServer.exe [1863680 2013-09-12] (Ralink) [Datei ist nicht signiert]
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10945776 2017-12-15] (TeamViewer GmbH)
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [142440 2017-12-14] (Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\NisSrv.exe [3905952 2018-08-30] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MsMpEng.exe [110944 2018-08-30] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2016-08-09] (BitRaider)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 netr28x; C:\WINDOWS\System32\drivers\netr28x.sys [2537984 2018-04-12] (MediaTek Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_f5be1f8d25335236\nvlddmkm.sys [17212744 2018-08-22] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30656 2018-07-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69544 2018-07-30] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [65792 2018-07-30] (NVIDIA Corporation)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
R3 VBAudioVACMME; C:\WINDOWS\system32\DRIVERS\vbaudio_cable64_win7.sys [41192 2014-09-02] (Windows (R) Win 7 DDK provider)
R3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [53128 2018-01-19] (Benjamin Höglinger-Stelzer)
S3 VUSB3HUB; C:\WINDOWS\System32\drivers\ViaHub3.sys [227840 2013-12-11] (VIA Technologies, Inc.)
S3 VUSBSTOR; C:\WINDOWS\System32\Drivers\vusbstor.sys [86064 2013-01-18] (VIA Technologies, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46584 2018-08-30] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [340008 2018-08-30] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [61992 2018-08-30] (Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [48656 2018-08-30] (Wellbia.com Co., Ltd.)
S3 X6va063; \??\C:\WINDOWS\SysWoW64\Drivers\X6va063 [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2018-08-30 14:52 - 2018-08-30 14:52 - 000020746 _____ C:\Users\micha\Desktop\FRST.txt
2018-08-30 14:51 - 2018-08-30 00:10 - 002413056 _____ (Farbar) C:\Users\micha\Desktop\FRST64.exe
2018-08-30 14:25 - 2018-08-30 14:27 - 000000000 ____D C:\AdwCleaner
2018-08-30 14:24 - 2018-08-30 14:24 - 007417040 _____ (Malwarebytes) C:\Users\micha\Desktop\adwcleaner_7.2.2.exe
2018-08-30 14:03 - 2018-08-30 14:06 - 000161432 _____ C:\TDSSKiller.3.1.0.17_30.08.2018_14.03.12_log.txt
2018-08-30 14:02 - 2018-08-30 14:02 - 004949824 _____ (AO Kaspersky Lab) C:\Users\micha\Desktop\tdsskiller.exe
2018-08-30 11:36 - 2018-08-30 11:35 - 000563832 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2018-08-30 11:27 - 2018-08-30 11:27 - 000000926 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2018-08-30 11:27 - 2018-08-30 11:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2018-08-30 00:27 - 2018-08-30 01:31 - 000000000 ____D C:\ProgramData\SecTaskMan
2018-08-30 00:27 - 2018-08-30 00:27 - 000000889 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spy Protector.lnk
2018-08-30 00:27 - 2018-08-30 00:27 - 000000884 _____ C:\Users\Public\Desktop\Security Task Manager.lnk
2018-08-30 00:27 - 2018-08-30 00:27 - 000000884 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Task Manager.lnk
2018-08-30 00:12 - 2018-08-30 14:52 - 000000000 ____D C:\FRST
2018-08-29 17:05 - 2018-08-29 17:05 - 000000000 ____D C:\Users\micha\AppData\LocalLow\Codename Entertainment
2018-08-28 15:05 - 2018-08-21 12:24 - 000132408 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2018-08-28 15:02 - 2018-08-22 18:14 - 001420648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2018-08-28 15:02 - 2018-08-22 18:14 - 001093640 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2018-08-28 15:02 - 2018-08-22 18:14 - 000628560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2018-08-28 15:02 - 2018-08-22 18:14 - 000518832 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 040348400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 035251600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 004354208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 003770072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 002016600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439907.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 001564496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 001469144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439907.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 001218056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 000751264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2018-08-28 15:02 - 2018-08-22 18:13 - 000609496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 031252104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 025967968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 017756392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 015170608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 013733544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 011277848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 004128112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 001350792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 001160520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 001067288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 000908032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 000817800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2018-08-28 15:02 - 2018-08-22 18:12 - 000656352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2018-08-27 21:27 - 2018-08-27 21:27 - 000000643 _____ C:\Users\Public\Desktop\League of Legends.lnk
2018-08-27 21:27 - 2018-08-27 21:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2018-08-27 20:50 - 2018-08-28 23:39 - 000000000 ___RD C:\Users\micha\Creative Cloud Files
2018-08-23 18:59 - 2018-08-23 18:59 - 000000000 ____D C:\ProgramData\For Honor Data
2018-08-17 20:18 - 2018-08-23 18:59 - 000000000 ____D C:\Users\micha\AppData\Roaming\EasyAntiCheat
2018-08-14 19:36 - 2018-08-03 05:39 - 007519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-08-14 19:36 - 2018-08-03 05:25 - 006568784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-08-14 19:36 - 2018-08-03 05:23 - 025846784 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-08-14 19:36 - 2018-08-03 05:18 - 022714880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-08-14 19:35 - 2018-08-03 10:39 - 021389368 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-08-14 19:35 - 2018-08-03 10:39 - 000790304 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-08-14 19:35 - 2018-08-03 10:25 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2018-08-14 19:35 - 2018-08-03 10:25 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-08-14 19:35 - 2018-08-03 10:24 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2018-08-14 19:35 - 2018-08-03 10:24 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2018-08-14 19:35 - 2018-08-03 10:24 - 000046592 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2018-08-14 19:35 - 2018-08-03 10:22 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2018-08-14 19:35 - 2018-08-03 10:21 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2018-08-14 19:35 - 2018-08-03 10:21 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2018-08-14 19:35 - 2018-08-03 10:21 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2018-08-14 19:35 - 2018-08-03 10:21 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-08-14 19:35 - 2018-08-03 10:20 - 004049408 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2018-08-14 19:35 - 2018-08-03 10:20 - 003652608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-08-14 19:35 - 2018-08-03 10:20 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2018-08-14 19:35 - 2018-08-03 10:19 - 001661440 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-08-14 19:35 - 2018-08-03 09:45 - 000663128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2018-08-14 19:35 - 2018-08-03 09:43 - 020383720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-08-14 19:35 - 2018-08-03 09:33 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2018-08-14 19:35 - 2018-08-03 09:33 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-08-14 19:35 - 2018-08-03 09:32 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2018-08-14 19:35 - 2018-08-03 09:30 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2018-08-14 19:35 - 2018-08-03 09:29 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2018-08-14 19:35 - 2018-08-03 09:29 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-08-14 19:35 - 2018-08-03 09:28 - 002895360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-08-14 19:35 - 2018-08-03 09:27 - 004050432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2018-08-14 19:35 - 2018-08-03 09:27 - 001469952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2018-08-14 19:35 - 2018-08-03 07:41 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2018-08-14 19:35 - 2018-08-03 06:49 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2018-08-14 19:35 - 2018-08-03 05:47 - 001034624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-08-14 19:35 - 2018-08-03 05:47 - 000128920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys
2018-08-14 19:35 - 2018-08-03 05:46 - 000272296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2018-08-14 19:35 - 2018-08-03 05:46 - 000269248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-08-14 19:35 - 2018-08-03 05:41 - 000568600 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2018-08-14 19:35 - 2018-08-03 05:41 - 000077608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2018-08-14 19:35 - 2018-08-03 05:41 - 000061736 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2018-08-14 19:35 - 2018-08-03 05:40 - 001221048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-08-14 19:35 - 2018-08-03 05:40 - 001064744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2018-08-14 19:35 - 2018-08-03 05:40 - 001030952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-08-14 19:35 - 2018-08-03 05:40 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2018-08-14 19:35 - 2018-08-03 05:40 - 000228136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ucx01000.sys
2018-08-14 19:35 - 2018-08-03 05:40 - 000136488 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-08-14 19:35 - 2018-08-03 05:40 - 000072800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2018-08-14 19:35 - 2018-08-03 05:39 - 009091480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-08-14 19:35 - 2018-08-03 05:39 - 007436120 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-08-14 19:35 - 2018-08-03 05:39 - 002829216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-08-14 19:35 - 2018-08-03 05:39 - 001457136 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-08-14 19:35 - 2018-08-03 05:39 - 000709824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-08-14 19:35 - 2018-08-03 05:39 - 000692240 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2018-08-14 19:35 - 2018-08-03 05:39 - 000170936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-08-14 19:35 - 2018-08-03 05:39 - 000114080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2018-08-14 19:35 - 2018-08-03 05:39 - 000075160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2018-08-14 19:35 - 2018-08-03 05:39 - 000031648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys
2018-08-14 19:35 - 2018-08-03 05:38 - 002765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-08-14 19:35 - 2018-08-03 05:38 - 001945792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-08-14 19:35 - 2018-08-03 05:38 - 001285536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-08-14 19:35 - 2018-08-03 05:38 - 001258288 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-08-14 19:35 - 2018-08-03 05:38 - 001140576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-08-14 19:35 - 2018-08-03 05:38 - 001097648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-08-14 19:35 - 2018-08-03 05:38 - 000983016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-08-14 19:35 - 2018-08-03 05:38 - 000885856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-08-14 19:35 - 2018-08-03 05:38 - 000713368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2018-08-14 19:35 - 2018-08-03 05:38 - 000604576 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-08-14 19:35 - 2018-08-03 05:38 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2018-08-14 19:35 - 2018-08-03 05:38 - 000115640 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2018-08-14 19:35 - 2018-08-03 05:27 - 000061032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2018-08-14 19:35 - 2018-08-03 05:26 - 006043600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-08-14 19:35 - 2018-08-03 05:25 - 002255008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-08-14 19:35 - 2018-08-03 05:25 - 001622296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-08-14 19:35 - 2018-08-03 05:25 - 001131064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-08-14 19:35 - 2018-08-03 05:25 - 000583120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2018-08-14 19:35 - 2018-08-03 05:25 - 000568568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-08-14 19:35 - 2018-08-03 05:25 - 000539168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2018-08-14 19:35 - 2018-08-03 05:18 - 022007808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-08-14 19:35 - 2018-08-03 05:17 - 004380160 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-08-14 19:35 - 2018-08-03 05:17 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgid.sys
2018-08-14 19:35 - 2018-08-03 05:16 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-08-14 19:35 - 2018-08-03 05:16 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsProxyStub.dll
2018-08-14 19:35 - 2018-08-03 05:16 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2018-08-14 19:35 - 2018-08-03 05:15 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-08-14 19:35 - 2018-08-03 05:15 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2018-08-14 19:35 - 2018-08-03 05:14 - 004867584 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-08-14 19:35 - 2018-08-03 05:14 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2018-08-14 19:35 - 2018-08-03 05:14 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-08-14 19:35 - 2018-08-03 05:14 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSAssessment.dll
2018-08-14 19:35 - 2018-08-03 05:13 - 019404288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-08-14 19:35 - 2018-08-03 05:13 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-08-14 19:35 - 2018-08-03 05:13 - 003395072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-08-14 19:35 - 2018-08-03 05:13 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-08-14 19:35 - 2018-08-03 05:13 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-08-14 19:35 - 2018-08-03 05:12 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-08-14 19:35 - 2018-08-03 05:12 - 002738688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-08-14 19:35 - 2018-08-03 05:12 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-08-14 19:35 - 2018-08-03 05:12 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2018-08-14 19:35 - 2018-08-03 05:12 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-08-14 19:35 - 2018-08-03 05:12 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2018-08-14 19:35 - 2018-08-03 05:11 - 007577088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-08-14 19:35 - 2018-08-03 05:11 - 005746688 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2018-08-14 19:35 - 2018-08-03 05:11 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-08-14 19:35 - 2018-08-03 05:11 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-08-14 19:35 - 2018-08-03 05:11 - 002172928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-08-14 19:35 - 2018-08-03 05:11 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-08-14 19:35 - 2018-08-03 05:11 - 000983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2018-08-14 19:35 - 2018-08-03 05:11 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2018-08-14 19:35 - 2018-08-03 05:11 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-08-14 19:35 - 2018-08-03 05:10 - 001535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-08-14 19:35 - 2018-08-03 05:10 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2018-08-14 19:35 - 2018-08-03 05:09 - 005776896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-08-14 19:35 - 2018-08-03 05:09 - 004615680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-08-14 19:35 - 2018-08-03 05:09 - 004529664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe
2018-08-14 19:35 - 2018-08-03 05:09 - 001932288 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeangle.dll
2018-08-14 19:35 - 2018-08-03 05:09 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-08-14 19:35 - 2018-08-03 05:09 - 001550848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-08-14 19:35 - 2018-08-03 05:09 - 001395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-08-14 19:35 - 2018-08-03 05:09 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2018-08-14 19:35 - 2018-08-03 05:09 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-08-14 19:35 - 2018-08-03 05:09 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-08-14 19:35 - 2018-08-03 05:08 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2018-08-14 19:35 - 2018-08-03 05:08 - 002236928 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-08-14 19:35 - 2018-08-03 05:08 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-08-14 19:35 - 2018-08-03 05:08 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-08-14 19:35 - 2018-08-03 05:08 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-08-14 19:35 - 2018-08-03 05:08 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2018-08-14 19:35 - 2018-08-03 05:08 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-08-14 19:35 - 2018-08-03 05:08 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-08-14 19:35 - 2018-08-03 05:08 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-08-14 19:35 - 2018-08-03 05:08 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-08-14 19:35 - 2018-08-03 05:08 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-08-14 19:35 - 2018-08-03 05:07 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-08-14 19:35 - 2018-08-03 05:07 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-08-14 19:35 - 2018-08-03 05:07 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2018-08-14 19:35 - 2018-08-03 05:07 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2018-08-14 19:35 - 2018-08-03 05:06 - 004191232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-08-14 19:35 - 2018-08-03 05:06 - 001000448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2018-08-14 19:35 - 2018-08-03 05:06 - 000856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2018-08-14 19:35 - 2018-08-03 05:06 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-08-14 19:35 - 2018-08-03 05:06 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2018-08-14 19:35 - 2018-08-03 05:06 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-08-14 19:35 - 2018-08-03 05:05 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2018-08-14 19:35 - 2018-08-03 05:05 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-08-14 19:35 - 2018-08-03 05:05 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-08-14 19:35 - 2018-08-03 05:04 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2018-08-14 19:35 - 2018-08-03 03:54 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2018-08-10 14:42 - 2018-08-28 15:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-08-10 14:42 - 2018-08-28 15:04 - 000000000 ____D C:\Users\micha\AppData\Local\NVIDIA
2018-08-10 14:42 - 2018-08-11 11:37 - 000000000 ____D C:\Users\micha\AppData\Local\NVIDIA Corporation
2018-08-10 14:42 - 2018-08-10 14:42 - 000001450 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2018-08-10 14:42 - 2018-07-30 21:14 - 001311784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2018-08-10 14:42 - 2018-07-30 21:14 - 000206760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2018-08-10 14:42 - 2018-07-30 21:14 - 000185256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2018-08-10 14:42 - 2018-07-30 21:14 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2018-08-10 14:41 - 2018-08-30 14:37 - 000000000 ____D C:\ProgramData\NVIDIA
2018-08-10 14:41 - 2018-08-28 15:05 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-08-10 14:41 - 2018-08-21 12:15 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2018-08-10 14:41 - 2018-08-21 12:14 - 005947600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2018-08-10 14:41 - 2018-08-21 12:14 - 002612264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2018-08-10 14:41 - 2018-08-21 12:14 - 001767632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2018-08-10 14:41 - 2018-08-21 12:14 - 000634352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2018-08-10 14:41 - 2018-08-21 12:14 - 000450768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2018-08-10 14:41 - 2018-08-21 12:14 - 000124216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2018-08-10 14:41 - 2018-08-21 12:14 - 000083440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2018-08-10 14:41 - 2018-08-10 14:41 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2018-08-10 14:41 - 2018-08-03 00:32 - 008273432 _____ C:\WINDOWS\system32\nvcoproc.bin
2018-08-10 14:41 - 2018-08-01 11:52 - 000553376 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2018-08-10 14:41 - 2018-08-01 11:52 - 000458312 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2018-08-10 14:40 - 2018-08-21 14:16 - 000044335 _____ C:\WINDOWS\system32\nvinfo.pb
2018-08-10 14:40 - 2018-08-01 11:50 - 002002448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439882.dll
2018-08-10 14:40 - 2018-08-01 11:50 - 001467920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439882.dll
2018-08-10 14:40 - 2018-07-30 21:14 - 000069544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2018-08-10 14:40 - 2018-07-30 21:14 - 000065792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2018-08-10 14:40 - 2018-07-30 21:14 - 000047648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2018-08-10 14:38 - 2018-08-10 14:51 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-08-09 18:47 - 2018-08-09 18:47 - 000000044 _____ C:\Users\micha\Desktop\SomeStuff.txt
2018-08-09 17:50 - 2018-08-09 17:50 - 000000000 ____D C:\Program Files (x86)\NCWest
2018-08-08 01:53 - 2018-07-14 08:46 - 023862784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-08-08 01:53 - 2018-07-14 08:42 - 019525632 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2018-08-08 01:52 - 2018-07-15 02:58 - 000094112 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2018-08-08 01:52 - 2018-07-15 02:56 - 001523240 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2018-08-08 01:52 - 2018-07-15 02:44 - 006587392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2018-08-08 01:52 - 2018-07-15 02:44 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2018-08-08 01:52 - 2018-07-15 02:43 - 012710400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-08-08 01:52 - 2018-07-15 02:42 - 008624128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2018-08-08 01:52 - 2018-07-15 02:42 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-08-08 01:52 - 2018-07-15 02:41 - 000169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2018-08-08 01:52 - 2018-07-15 02:41 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2018-08-08 01:52 - 2018-07-15 02:39 - 001787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2018-08-08 01:52 - 2018-07-15 02:39 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2018-08-08 01:52 - 2018-07-15 02:38 - 002051584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2018-08-08 01:52 - 2018-07-15 02:38 - 001180160 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2018-08-08 01:52 - 2018-07-15 02:38 - 001004032 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2018-08-08 01:52 - 2018-07-15 02:38 - 000615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2018-08-08 01:52 - 2018-07-15 02:36 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2018-08-08 01:52 - 2018-07-15 01:28 - 001327424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2018-08-08 01:52 - 2018-07-15 01:18 - 005657600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2018-08-08 01:52 - 2018-07-15 01:17 - 011901440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-08-08 01:52 - 2018-07-15 01:15 - 007987712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2018-08-08 01:52 - 2018-07-15 01:14 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2018-08-08 01:52 - 2018-07-15 01:13 - 001452544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2018-08-08 01:52 - 2018-07-15 01:13 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2018-08-08 01:52 - 2018-07-15 01:13 - 000775168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2018-08-08 01:52 - 2018-07-15 01:13 - 000485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2018-08-08 01:52 - 2018-07-15 01:11 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2018-08-08 01:52 - 2018-07-14 06:37 - 000375712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-08-08 01:52 - 2018-07-14 06:37 - 000230304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2018-08-08 01:52 - 2018-07-14 06:23 - 000760888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2018-08-08 01:52 - 2018-07-14 06:22 - 006813744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-08-08 01:52 - 2018-07-14 06:22 - 001144664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2018-08-08 01:52 - 2018-07-14 06:22 - 000510392 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2018-08-08 01:52 - 2018-07-14 06:22 - 000203560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2018-08-08 01:52 - 2018-07-14 06:21 - 000722824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-08-08 01:52 - 2018-07-14 06:21 - 000192920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2018-08-08 01:52 - 2018-07-14 06:20 - 000184472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2018-08-08 01:52 - 2018-07-14 06:19 - 002535032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2018-08-08 01:52 - 2018-07-14 06:19 - 001946752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-08-08 01:52 - 2018-07-14 06:19 - 000981920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2018-08-08 01:52 - 2018-07-14 06:19 - 000636944 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2018-08-08 01:52 - 2018-07-14 06:19 - 000483024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-08-08 01:52 - 2018-07-14 06:18 - 002563984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-08-08 01:52 - 2018-07-14 06:18 - 002371416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-08-08 01:52 - 2018-07-14 06:18 - 001017584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2018-08-08 01:52 - 2018-07-14 06:18 - 000930712 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2018-08-08 01:52 - 2018-07-14 06:18 - 000613176 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2018-08-08 01:52 - 2018-07-14 06:18 - 000443216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2018-08-08 01:52 - 2018-07-14 06:18 - 000376216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2018-08-08 01:52 - 2018-07-14 06:17 - 006527056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2018-08-08 01:52 - 2018-07-14 06:17 - 002420632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-08-08 01:52 - 2018-07-14 06:17 - 000743320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2018-08-08 01:52 - 2018-07-14 06:16 - 002331576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2018-08-08 01:52 - 2018-07-14 06:16 - 001143096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2018-08-08 01:52 - 2018-07-14 06:16 - 000506728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2018-08-08 01:52 - 2018-07-14 06:15 - 001559368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2018-08-08 01:52 - 2018-07-14 06:15 - 001174552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2018-08-08 01:52 - 2018-07-14 06:15 - 000829856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2018-08-08 01:52 - 2018-07-14 06:01 - 006647296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2018-08-08 01:52 - 2018-07-14 05:59 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2018-08-08 01:52 - 2018-07-14 05:59 - 005883392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2018-08-08 01:52 - 2018-07-14 05:59 - 003553280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2018-08-08 01:52 - 2018-07-14 05:58 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2018-08-08 01:52 - 2018-07-14 05:58 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2018-08-08 01:52 - 2018-07-14 05:58 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-08-08 01:52 - 2018-07-14 05:57 - 007057920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2018-08-08 01:52 - 2018-07-14 05:57 - 004331008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2018-08-08 01:52 - 2018-07-14 05:57 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2018-08-08 01:52 - 2018-07-14 05:57 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 004559872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 002900992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 002697216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Controls.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 001703936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Controls.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 001558016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 000257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschap.dll
2018-08-08 01:52 - 2018-07-14 05:56 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgr.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 001124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000993792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000582144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2018-08-08 01:52 - 2018-07-14 05:55 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2018-08-08 01:52 - 2018-07-14 05:55 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreCommonProxyStub.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\datamarketsvc.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-08-08 01:52 - 2018-07-14 05:55 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2018-08-08 01:52 - 2018-07-14 05:55 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 003319808 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 001537024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000603648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2018-08-08 01:52 - 2018-07-14 05:54 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\PushToInstall.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\raschap.dll
2018-08-08 01:52 - 2018-07-14 05:54 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\EasPolicyManagerBrokerPS.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 004770816 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 001825792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 001668096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgrSvc.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 000450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 000396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2018-08-08 01:52 - 2018-07-14 05:53 - 000220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2018-08-08 01:52 - 2018-07-14 05:52 - 000972800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2018-08-08 01:52 - 2018-07-14 05:52 - 000790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2018-08-08 01:52 - 2018-07-14 05:52 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2018-08-08 01:52 - 2018-07-14 05:52 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2018-08-08 01:52 - 2018-07-14 05:52 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2018-08-08 01:52 - 2018-07-14 05:51 - 003376640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2018-08-08 01:52 - 2018-07-14 05:51 - 002904576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-08-08 01:52 - 2018-07-14 05:51 - 001804288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-08-08 01:52 - 2018-07-14 05:51 - 001747968 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-08-08 01:52 - 2018-07-14 05:51 - 001304064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2018-08-08 01:52 - 2018-07-14 05:51 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2018-08-08 01:52 - 2018-07-14 05:51 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 001773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 001457664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 001359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2018-08-08 01:52 - 2018-07-14 05:50 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-08-08 01:52 - 2018-07-14 05:49 - 000884736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2018-08-08 01:52 - 2018-07-13 06:30 - 002718624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-08-07 21:49 - 2018-08-09 17:50 - 000001480 _____ C:\Users\Public\Desktop\Blade & Soul.lnk
2018-08-07 21:49 - 2018-08-07 21:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCSOFT
2018-08-07 21:47 - 2018-08-07 21:47 - 000000000 ____D C:\Program Files\NCWest
2018-08-05 13:39 - 2013-01-07 16:56 - 001721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2018-08-01 13:03 - 2018-08-29 23:43 - 000002542 _____ C:\WINDOWS\System32\Tasks\BlueStacksHelper
2018-07-31 17:59 - 2018-07-31 18:03 - 000000000 ____D C:\Users\micha\AppData\Roaming\Tunngle
2018-07-31 17:59 - 2016-04-26 16:10 - 000048824 _____ (Tunngle.net GmbH) C:\WINDOWS\system32\Drivers\tap0901t.sys
2018-07-31 16:43 - 2018-07-31 16:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2018-07-31 16:43 - 2018-07-31 16:43 - 000000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2018-07-31 14:54 - 2018-07-31 14:54 - 000000000 ____D C:\Users\micha\AppData\Roaming\dnSpy
2018-07-31 14:33 - 2018-07-31 14:33 - 000000000 ____D C:\Users\micha\AppData\Local\dnSpy
2018-07-31 14:14 - 2018-07-31 14:20 - 000000583 _____ C:\Users\micha\.bash_history
2018-07-31 14:11 - 2018-07-31 14:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git
2018-07-31 14:11 - 2018-07-31 14:11 - 000000000 ____D C:\ProgramData\Git
2018-07-31 13:54 - 2018-07-31 13:54 - 000000000 ____D C:\Users\micha\AppData\Local\NuGet
2018-07-31 13:54 - 2018-07-31 13:54 - 000000000 ____D C:\Users\micha\.nuget
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\3082
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\2052
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1055
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1049
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1046
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1045
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1042
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1041
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1040
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1036
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1033
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1031
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1029
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\SysWOW64\1028
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\3082
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\2052
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1055
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1049
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1046
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1045
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1042
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1041
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1040
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1036
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1033
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1031
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1029
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\WINDOWS\system32\1028
2018-07-31 13:50 - 2018-07-31 13:50 - 000000000 ____D C:\Program Files (x86)\Entity Framework Tools
2018-07-31 13:49 - 2018-07-31 13:49 - 000000000 ____D C:\Program Files (x86)\NuGet
2018-07-31 13:48 - 2018-07-31 13:48 - 000001803 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend für Visual Studio 2017.lnk
2018-07-31 13:48 - 2018-07-31 13:48 - 000000000 ____D C:\Program Files\Microsoft SQL Server
2018-07-31 13:48 - 2018-07-31 13:48 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2018-07-31 13:47 - 2018-07-31 13:47 - 000000000 ____D C:\Users\micha\AppData\Roaming\NuGet
2018-07-31 09:34 - 2018-07-31 09:34 - 000000000 ____D C:\Users\micha\AppData\Local\Wasntafairfight
2018-07-31 09:33 - 2018-07-31 09:34 - 000000000 ____D C:\Users\micha\AppData\Roaming\Resanance
2018-07-31 09:33 - 2018-07-31 09:33 - 000001676 _____ C:\Users\Public\Desktop\Resanance.lnk
2018-07-31 09:33 - 2018-07-31 09:33 - 000001676 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Resanance.lnk
2018-07-31 09:33 - 2018-07-31 09:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resanance

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2018-08-30 14:50 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-08-30 14:50 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-08-30 14:50 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-08-30 14:41 - 2018-06-01 15:45 - 001718588 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-08-30 14:41 - 2018-04-12 18:13 - 000741854 _____ C:\WINDOWS\system32\perfh007.dat
2018-08-30 14:41 - 2018-04-12 18:13 - 000149526 _____ C:\WINDOWS\system32\perfc007.dat
2018-08-30 14:41 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2018-08-30 14:35 - 2018-06-01 15:43 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-08-30 14:35 - 2018-04-11 23:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-08-30 14:00 - 2016-07-09 02:35 - 000000000 ____D C:\Users\micha\AppData\Local\Warframe
2018-08-30 12:43 - 2016-07-27 01:03 - 000048656 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2018-08-30 12:37 - 2016-07-08 20:20 - 000000000 ___RD C:\Users\micha\OneDrive
2018-08-30 12:30 - 2018-06-01 15:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-08-30 12:00 - 2018-06-01 15:43 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-08-30 12:00 - 2018-04-12 01:38 - 000000000 ___RD C:\Program Files\Windows Defender
2018-08-30 11:50 - 2018-06-01 15:37 - 000000000 ____D C:\Users\micha\AppData\Local\LogMeIn Hamachi
2018-08-30 11:43 - 2016-07-08 20:43 - 000000000 ____D C:\ProgramData\AVAST Software
2018-08-30 11:38 - 2018-04-12 10:47 - 000000000 ____D C:\Users\micha\AppData\Local\AVAST Software
2018-08-30 11:35 - 2018-04-11 23:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2018-08-30 11:32 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-08-30 11:32 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-08-30 01:31 - 2018-06-01 15:37 - 000000000 ____D C:\Users\micha
2018-08-30 01:13 - 2016-07-12 00:08 - 000000000 ____D C:\Users\micha\AppData\Roaming\TS3Client
2018-08-30 00:39 - 2018-07-29 15:44 - 000000000 ____D C:\Users\micha\AppData\Roaming\Parsec
2018-08-29 23:45 - 2018-01-08 21:13 - 000000000 ____D C:\Users\micha\AppData\Roaming\Spotify
2018-08-29 23:45 - 2018-01-08 21:13 - 000000000 ____D C:\Users\micha\AppData\Local\Spotify
2018-08-29 23:43 - 2018-06-01 15:43 - 000003558 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-08-29 23:43 - 2018-06-01 15:43 - 000003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000003334 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-08-29 23:43 - 2018-06-01 15:43 - 000003196 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000003152 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000003016 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000003016 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000003016 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000002914 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000002856 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3159779420-2504212275-734065462-1001
2018-08-29 23:43 - 2018-06-01 15:43 - 000002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000002754 _____ C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-michal.giza@gmx.de
2018-08-29 23:43 - 2018-06-01 15:43 - 000002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-08-29 23:43 - 2018-06-01 15:43 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2018-08-29 22:43 - 2016-07-14 23:02 - 000000000 ____D C:\Users\micha\AppData\Local\ElevatedDiagnostics
2018-08-29 22:42 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-08-29 22:31 - 2016-07-15 01:38 - 000000000 ____D C:\Users\micha\AppData\Local\CrashDumps
2018-08-29 16:42 - 2017-08-21 22:03 - 000000000 ____D C:\ProgramData\Origin
2018-08-29 14:02 - 2017-08-21 22:04 - 000000000 ____D C:\Users\micha\AppData\Roaming\Origin
2018-08-29 14:01 - 2017-08-22 14:18 - 000000000 ____D C:\Program Files (x86)\Origin Games
2018-08-29 10:52 - 2017-03-12 22:11 - 000007606 _____ C:\Users\micha\AppData\Local\Resmon.ResmonCfg
2018-08-29 01:01 - 2018-06-02 12:28 - 000000000 ____D C:\Users\micha\AppData\Local\D3DSCache
2018-08-28 23:57 - 2016-08-16 20:55 - 000000000 ____D C:\temp
2018-08-28 23:57 - 2016-08-12 20:01 - 000000000 ____D C:\ProgramData\Adobe
2018-08-28 23:56 - 2016-07-08 20:18 - 000000000 ____D C:\Users\micha\AppData\Roaming\Adobe
2018-08-28 23:39 - 2016-08-12 20:31 - 000000000 ____D C:\Users\micha\AppData\Local\Adobe
2018-08-28 15:05 - 2017-10-01 12:20 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-08-27 21:26 - 2016-12-03 03:19 - 000000000 ____D C:\Users\micha\AppData\Local\Battle.net
2018-08-27 20:48 - 2016-07-09 03:59 - 000000000 ____D C:\ProgramData\Package Cache
2018-08-27 14:07 - 2016-08-10 22:57 - 000000000 ____D C:\Users\micha\AppData\Local\Ubisoft Game Launcher
2018-08-27 11:44 - 2018-02-10 20:49 - 000000000 ____D C:\Program Files (x86)\BlueStacks
2018-08-26 19:28 - 2018-04-12 01:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2018-08-23 18:59 - 2016-07-23 19:21 - 000000000 ____D C:\Users\micha\OneDrive\Documents\My Games
2018-08-23 13:37 - 2017-09-07 16:56 - 000000000 ____D C:\ProgramData\Epic
2018-08-23 13:31 - 2018-02-23 22:10 - 000000000 ____D C:\Users\micha\AppData\Roaming\Wargaming.net
2018-08-23 13:29 - 2016-08-12 17:44 - 000000000 ____D C:\ProgramData\boost_interprocess
2018-08-23 13:28 - 2016-07-13 19:17 - 000000000 ____D C:\Users\micha\AppData\Local\Bluestacks
2018-08-22 18:12 - 2017-11-09 04:25 - 004858000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2018-08-18 17:20 - 2017-01-01 03:45 - 000000000 ____D C:\Users\micha\AppData\Local\PAYDAY 2
2018-08-18 12:55 - 2018-07-29 15:44 - 000000000 ____D C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Parsec
2018-08-16 10:44 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-08-15 10:54 - 2017-12-02 13:54 - 000000000 ___RD C:\Users\micha\3D Objects
2018-08-15 10:54 - 2016-07-08 20:18 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-08-15 10:53 - 2018-06-01 15:34 - 000251648 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2018-08-15 10:53 - 2018-04-12 18:17 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2018-08-15 10:53 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-08-15 10:53 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-08-15 10:53 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2018-08-15 10:53 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2018-08-15 10:53 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-08-15 10:53 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-08-15 10:53 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2018-08-14 19:39 - 2016-07-08 22:47 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-08-14 19:38 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-08-14 19:38 - 2016-07-08 22:47 - 137343192 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-08-13 08:28 - 2018-06-01 15:37 - 000002436 _____ C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-08-12 22:04 - 2016-08-03 21:00 - 000000000 ____D C:\Users\micha\AppData\Roaming\discord
2018-08-10 14:42 - 2017-10-01 12:20 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-08-10 14:41 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\Help
2018-08-10 12:49 - 2016-07-26 09:52 - 000000000 ____D C:\Users\micha\AppData\Roaming\obs-studio
2018-08-09 11:42 - 2016-07-08 20:34 - 000002300 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-08-09 11:42 - 2016-07-08 20:34 - 000002259 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-08-08 11:08 - 2016-12-03 03:43 - 000000000 ____D C:\Users\micha\AppData\Local\Jagex
2018-08-08 10:38 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\UNP
2018-08-08 10:38 - 2018-04-12 01:38 - 000000000 ___RD C:\WINDOWS\PrintDialog
2018-08-08 10:38 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2018-08-07 21:49 - 2016-07-08 20:29 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-08-07 21:47 - 2016-09-05 21:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCWest
2018-08-06 17:19 - 2018-04-12 01:41 - 000836480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-08-06 17:19 - 2018-04-12 01:41 - 000181120 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-08-03 08:11 - 2018-07-11 19:06 - 000000000 ____D C:\ProgramData\Packages
2018-08-02 07:11 - 2016-08-08 14:12 - 000000000 ____D C:\Users\micha\AppData\Roaming\vlc
2018-07-31 13:51 - 2018-03-29 12:47 - 000000000 ____D C:\Users\micha\AppData\Roaming\Visual Studio Setup
2018-07-31 13:50 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-07-31 13:50 - 2018-03-29 12:48 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2018-07-31 13:49 - 2018-03-29 12:47 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2018-07-31 13:48 - 2018-03-29 12:48 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2018-07-31 13:46 - 2018-03-29 12:49 - 000000000 ____D C:\Users\micha\OneDrive\Documents\Visual Studio 2017
2018-07-31 09:33 - 2018-01-22 13:56 - 000000000 ____D C:\Program Files\VB

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-07-09 01:47 - 2017-05-13 19:34 - 000000134 _____ () C:\Users\micha\AppData\Roaming\CSharpAnalytics-MeasurementQueue
2016-07-09 01:40 - 2017-05-13 19:34 - 000000443 _____ () C:\Users\micha\AppData\Roaming\CSharpAnalytics-MeasurementSession
2018-01-22 14:12 - 2018-01-22 14:51 - 000034139 _____ () C:\Users\micha\AppData\Roaming\VoiceMeeterDefault.xml
2017-07-27 12:50 - 2017-07-27 12:50 - 000002610 _____ () C:\Users\micha\AppData\Local\recently-used.xbel
2017-03-12 22:11 - 2018-08-29 10:52 - 000007606 _____ () C:\Users\micha\AppData\Local\Resmon.ResmonCfg

Einige Dateien in TEMP:
====================
2018-08-07 22:54 - 2018-08-30 13:17 - 000000000 _____ () C:\Users\micha\AppData\Local\Temp\3fc1552ba19ee3472398342b0fadfa41.dll
2018-08-07 22:54 - 2018-08-30 12:43 - 000000093 _____ () C:\Users\micha\AppData\Local\Temp\ecfc50d44093669aca188e25f0317b43.dll
2018-06-01 15:36 - 2018-07-30 19:50 - 000731016 _____ (NVIDIA Corporation) C:\Users\micha\AppData\Local\Temp\nvSCPAPI64.dll
2018-06-05 14:49 - 2018-07-30 19:50 - 000395656 _____ (NVIDIA Corporation) C:\Users\micha\AppData\Local\Temp\nvStInst.exe
2018-08-29 01:26 - 2018-08-29 01:26 - 013279008 _____ (Restoro) C:\Users\micha\AppData\Local\Temp\RestoroSetup.exe

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2018-06-01 15:34

==================== Ende von FRST.txt ============================
         

Alt 30.08.2018, 14:56   #15
Michi55
 
Windows 10: rundll32.exe CPU Auslastung - Standard

Windows 10: rundll32.exe CPU Auslastung



hier sind die Addition files Teil 1:

Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 23.08.2018
durchgeführt von micha (30-08-2018 14:53:05)
Gestartet von C:\Users\micha\Desktop
Windows 10 Home Version 1803 17134.228 (X64) (2018-06-01 13:43:23)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3159779420-2504212275-734065462-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3159779420-2504212275-734065462-503 - Limited - Disabled)
Gast (S-1-5-21-3159779420-2504212275-734065462-501 - Limited - Disabled)
micha (S-1-5-21-3159779420-2504212275-734065462-1001 - Administrator - Enabled) => C:\Users\micha
WDAGUtilityAccount (S-1-5-21-3159779420-2504212275-734065462-504 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Apple Application Support (64-Bit) (HKLM\...\{A6B0442B-E159-444B-B49D-6B9AC531EAE3}) (Version: 4.3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
AuraKingdom-DE (HKLM-x32\...\AuraKingdom-DE) (Version:  - )
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Black Desert Online (HKLM-x32\...\{C1F96C92-7B8C-485F-A9CD-37A0708A2A60}) (Version: 1.0.0.7 - Kakao Games Europe B.V.)
Blade & Soul (HKLM-x32\...\{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.260 - NC Interactive, LLC) Hidden
Blade & Soul (HKLM-x32\...\InstallShield_{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.260 - NC Interactive, LLC)
Blender (HKLM\...\{E29A1273-2E7A-40E7-AA63-428A11D59429}) (Version: 2.79.2 - Blender Foundation)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
ClickOnce Bootstrapper Package for Microsoft .NET Framework (HKLM-x32\...\{D1844DC3-B378-47CC-AB40-7FC16C79A2CD}) (Version: 4.7.02558 - Microsoft Corporation) Hidden
Crossout Launcher 1.0.3.18 (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\CrossOutLauncher_is1) (Version:  - )
CyberGhost 6 (HKLM\...\CyberGhost 6_is1) (Version:  - CyberGhost S.R.L.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dauntless (HKLM\...\{03AFDFA7-7A23-41B1-AAC2-3898591127D3}) (Version: 1.00.0000 - Ihr Firmenname)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
DiagnosticsHub_CollectionService (HKLM\...\{5FC8BCBB-3408-48B0-BAF0-839490F7AE65}) (Version: 15.6.27309 - Microsoft Corporation) Hidden
Discord (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 399.07 - NVIDIA Corporation) Hidden
Dogecoin Core (64-bit) (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Dogecoin Core (64-bit)) (Version: 1.10.0 - Dogecoin Core project)
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.12 - Electronic Arts)
Dungeons 2 (HKLM-x32\...\1436885138_is1) (Version: 1.6.1.31 - GOG.com)
EAX4 Unified Redist (HKLM-x32\...\{89661B04-C646-4412-B6D3-5E19F02F1F37}) (Version: 4.001 - Creative Labs)
Elsword (HKLM-x32\...\Elsword_de_is1) (Version:  - Gameforge 4D GmbH)
En Masse Launcher (HKLM-x32\...\{5d5e6f2b-6c03-4f96-8cd7-c16318764bc8}_is1) (Version: 1.0 - En Masse Entertainment)
Entity Framework 6.1.3 Tools  for Visual Studio 15 (HKLM-x32\...\{F8C0447E-D45C-4E52-94E8-C6340AAC9DB8}) (Version: 6.1.60104.0 - Microsoft Corporation) Hidden
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
f.lux (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Flux) (Version:  - f.lux Software LLC)
FINAL FANTASY XIV ONLINE (HKLM-x32\...\{2B41E132-07DF-4925-A3D3-F2D1765CCDFE}) (Version: 1.0.0000 - SQUARE ENIX CO., LTD.)
Fotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GhostMouse (HKLM-x32\...\GhostMouse_is1) (Version: Free V3.2.3 - ghost-mouse.com)
GIMP 2.8.22 (HKLM\...\GIMP-2_is1) (Version: 2.8.22 - The GIMP Team)
Git version 2.18.0 (HKLM\...\Git_is1) (Version: 2.18.0 - The Git Development Community)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 68.0.3440.106 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Grand Theft Multiplayer (HKLM-x32\...\GrandTheftMultiplayer) (Version:  - Grand Theft Multiplayer Team)
Gtk# for .Net 2.12.26 (HKLM-x32\...\{BC25B808-A11C-4C9F-9C0A-6682E47AAB83}) (Version: 2.12.26 - Xamarin, Inc.)
Gwent (HKLM-x32\...\1971477531_is1) (Version: 0.9.24.3.432 - GOG.com)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.0.6.4 - Hi-Rez Studios)
icecap_collection_neutral (HKLM-x32\...\{12C1EC05-F936-4A80-821E-7AAC64C4E6FF}) (Version: 15.6.27413 - Microsoft Corporation) Hidden
icecap_collection_x64 (HKLM\...\{C8E22DF4-5498-4B61-93CF-3081BE95A1BA}) (Version: 15.6.27413 - Microsoft Corporation) Hidden
icecap_collectionresources (HKLM-x32\...\{13A88904-8BD3-4A9C-9A64-2B09C9CBC1FD}) (Version: 15.6.27406 - Microsoft Corporation) Hidden
icecap_collectionresourcesx64 (HKLM-x32\...\{983A2CE0-E694-4DE3-9310-CB73EFB94E5A}) (Version: 15.6.27406 - Microsoft Corporation) Hidden
IntelliTraceProfilerProxy (HKLM-x32\...\{ACBAA378-519A-441D-9349-C0AAD8DEAD04}) (Version: 15.0.17289.01 - Microsoft Corporation) Hidden
Java 10.0.2 (64-bit) (HKLM\...\{EECB2736-D013-5AC5-9917-7656712F6931}) (Version: 10.0.2.0 - Oracle Corporation)
Java 8 Update 181 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
KB4023057 (HKLM\...\{264FDD69-C4DF-476F-B1B8-7DCEE4AF839B}) (Version: 2.4.0.0 - Microsoft Corporation)
KRITIKA (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\EME_GAME_kritika) (Version:  - allm)
Kumulatives Microsoft .NET Framework Intellisense Pack für Visual Studio (Deutsch) (HKLM-x32\...\{4DFD6FF3-9A29-4F31-AEE1-D44E016C5AD4}) (Version: 4.7.02558 - Microsoft Corporation) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League client alpha (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\League client alpha 1.0) (Version: 1.0 - Riot Games, Inc)
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Lightworks (HKLM-x32\...\{E94DD4E4-7746-472c-AA7B-1242FED0CFC8}) (Version: 14.0.0.0 - EditShare)
LogMeIn Hamachi (HKLM-x32\...\{892DB406-ADF8-4C30-9840-8438AF5B8763}) (Version: 2.2.0.607 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.607 - LogMeIn, Inc.)
LOOT Version 0.12.5 (HKLM-x32\...\{BF634210-A0D4-443F-A657-0DCE38040374}_is1) (Version: 0.12.5 - LOOT Team)
Luna Online: Reborn (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Luna_Online_Reborn_Suba_Games_is1) (Version: 2016.10.20 - Suba Games)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\OneDriveSetup.exe) (Version: 18.131.0701.0007 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{3c3aafc8-d898-43ec-998f-965ffdae065a}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.15.3248.309 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{B3B750C0-8C22-439D-B7CE-67F3ED99CC2B}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.8.106.0 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2017 (HKLM\...\{7099743B-B67C-47CB-8978-D72F6F685E89}) (Version: 14.0.1000.169 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2017 (HKLM-x32\...\{E1AC4A1E-F203-4355-9FC5-1F404347AAB2}) (Version: 14.0.1000.169 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Movie Maker (HKLM-x32\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD)
My.com Game Center (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\MyComGames) (Version: 3.198 - My.com B.V.)
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version:  - NCSOFT)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.14 - Black Tree Gaming)
NosTale (HKLM-x32\...\Nostale(DE)_is1) (Version:  - Gameforge 4D GmbH)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.6 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 399.07 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 399.07 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.14.1.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.1.48 - NVIDIA Corporation)
NVIDIA Grafiktreiber 399.07 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 399.07 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 18.0.1 - OBS Project)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.25.7131 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{46225f57-204e-40de-a5d1-d39dc46e7313}) (Version: latest - ppy Pty Ltd)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
paint.net (HKLM\...\{E8FA8815-3817-4128-A814-E2EAC456ADF0}) (Version: 4.0.21 - dotPDN LLC)
Parsec (HKLM-x32\...\Parsec) (Version:  - Parsec Cloud Inc.)
Path of Building version 1.4.95 (HKLM-x32\...\{72FA9AB7-189F-4BDE-8856-72DEB90C157B}_is1) (Version: 1.4.95 - Openarl)
Pixelmon Launcher (Beta) (HKLM-x32\...\{1D32F448-1BEE-431D-8ABA-9FA2F86AF046}) (Version: 2.1.5 - Ikara Software Limited) Hidden
Pixelmon Launcher (Beta) (HKLM-x32\...\Pixelmon Launcher (Beta) 2.1.5) (Version: 2.1.5 - Ikara Software Limited)
PlanetSide 2 (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\DG0-PlanetSide 2) (Version:  - Sony Online Entertainment)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8117 - Realtek Semiconductor Corp.)
Resanance (HKLM\...\{07BB6181-E1D0-4283-87D0-BE4819535A3C}) (Version: 2.1.3 - WasntAFairFight)
Revelation Online (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Revelation Online) (Version: 1.64 - My.com B.V.)
Revo Uninstaller 2.0.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.5 - VS Revo Group, Ltd.)
RivaTuner Statistics Server 7.1.0 (HKLM-x32\...\RTSS) (Version: 7.1.0 - Unwinder)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.3.1 - Rockstar Games)
RuneScape Launcher 2.2.4 (HKLM\...\RuneScape Launcher_is1) (Version: 2.2.4 - Jagex Ltd)
Sacred 2 - Fallen Angel (HKLM-x32\...\{1023383E-D9F6-478C-A965-23A4657B3C9A}) (Version: 2.43.0.0 - Deep Silver)
Security Task Manager 2.3 (HKLM-x32\...\Security Task Manager) (Version: 2.3 - Neuber Software)
Silkroad (HKLM-x32\...\Silkroad) (Version:  - )
Skyforge MyCom (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Skyforge MyCom) (Version: 1.141 - My.com B.V.)
Spore™ (HKLM-x32\...\{4BDCC41C-FFE7-40a4-BCB6-B558916868F7}) (Version: 1.7.0.0 - Electronic Arts)
Spotify (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Spotify) (Version: 1.0.88.353.g15c26ea1 - Spotify AB)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
StarCraft (HKLM-x32\...\StarCraft) (Version:  - Blizzard Entertainment)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steam Customizer (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Steam Customizer) (Version: 1.00.00.00 - Blumont)
Streamlabs Chatbot version 1.0.2.17 (HKLM-x32\...\{08D3C5BB-C492-4916-B111-725081845380}_is1) (Version: 1.0.2.17 - Streamlabs)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.0.6447 - TeamViewer)
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version:  - Gameforge4d)
The Witcher 3 - Wild Hunt - Game of the Year Edition (HKLM-x32\...\1495134320_is1) (Version: 1.30.0.0 - GOG.com)
Tom Clancy's Splinter Cell (HKLM-x32\...\Uplay Install 109) (Version:  - Ubisoft)
TOTOLINK RT2870 Wireless LAN Card (HKLM-x32\...\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}) (Version: 1.5.26.0 - TOTOLINK)
TreeSize Free V4.2.2 (HKLM-x32\...\TreeSize Free_is1) (Version: 4.2.2 - JAM Software)
Twin Saga DE (HKLM-x32\...\Twin Saga DE) (Version:  - )
Unity (HKLM-x32\...\Unity) (Version: 5.6.3p1 - Unity Technologies ApS)
Unreal Development Kit: 2015-01 (HKLM\...\UDK-f4ff4afd-afe0-495f-857d-85b7b5d955e4) (Version:  - Epic Games, Inc.)
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 21.1 - Ubisoft)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version:  - VB-Audio Software)
vcpp_crt.redist.clickonce (HKLM-x32\...\{1ACBC664-45C6-448E-8B9B-39948766C139}) (Version: 14.13.26020 - Microsoft Corporation) Hidden
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio Community 2017 (HKLM-x32\...\e75d9a13) (Version: 15.6.27428.2015 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.3 - VideoLAN)
VS Immersive Activate Helper (HKLM-x32\...\{8A2BDA07-3417-46C1-9058-CB32BC63E30E}) (Version: 16.0.76.0 - Microsoft Corporation) Hidden
VS JIT Debugger (HKLM\...\{F8F52853-A1A7-42C7-A082-5A6D5853BB0B}) (Version: 16.0.76.0 - Microsoft Corporation) Hidden
vs_BlendMsi (HKLM-x32\...\{C5D83E0F-12E7-4BA3-98E6-DAE0E73B5BF9}) (Version: 15.0.27205 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsi (HKLM-x32\...\{A68D7884-F036-4A0D-AE1A-410E0311E135}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsires (HKLM-x32\...\{91DDDFB5-1782-48C2-BA2A-8F4D9DE39D27}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
vs_clickoncesigntoolmsi (HKLM-x32\...\{6A1ECF65-2CBF-4B33-9D4A-D1C0A0E5FE45}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32\...\{C2749223-157E-48F0-9410-A510361D6803}) (Version: 15.6.27406 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{5297D80E-CD92-48D8-9DB0-301AB3205772}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32\...\{BFFA2FFB-1095-4ADD-A352-368806D2412B}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{02DD895F-089F-4A63-81A9-78D00142AF20}) (Version: 15.6.27406 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{E6A92308-33DF-494B-A91A-3B80FBC97F2B}) (Version: 15.6.27406 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{8EB2C670-04C2-482D-BACD-B4095E27FD39}) (Version: 15.6.27309 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{6B45EEA3-85F8-4B26-B952-6830A45F2688}) (Version: 15.6.27323 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{13E08AD0-D6AC-44C4-9F5B-0AE2EB56B105}) (Version: 15.6.27421 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{0D3A6730-43CE-4AF6-BDF7-4D0660296C60}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_SQLClickOnceBootstrappermsi (HKLM-x32\...\{5779B6DD-604A-41CE-BC3D-9D4BDDA22AD2}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32\...\{1AC6CC3D-7724-4D84-9270-798A2191AB1C}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
Warface My.Com (HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\Warface My.Com) (Version: 1.42 - My.com B.V.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.60 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Keine Datei
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2018-03-19] ()
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2018-06-24] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2018-06-24] (Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-08-21] (NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2018-06-24] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2018-06-24] (Alexander Roshal)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0356CB03-832D-46F8-ADD7-AA826BA6A3E6} - System32\Tasks\BlueStacksHelper => D:\BlackStacks\BlueStacks\Client\Helper\BlueStacksHelper.exe
Task: {0C80C165-A162-445C-99AA-4C1B24890407} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG
Task: {0FA9A222-1D50-4C91-9482-84814A54CCB4} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-07-30] (NVIDIA Corporation)
Task: {135C55CE-B992-4F88-863C-89368AE5BA7E} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-michal.giza@gmx.de => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-05-11] (Adobe Systems, Incorporated)
Task: {13BE21E9-78D2-4D6E-8FB5-A53D31BA23E9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-07-30] (NVIDIA Corporation)
Task: {15C1FDB7-E055-4937-91E7-32CA4C5F1733} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2016-08-15] (Microsoft)
Task: {19B44A01-F0C8-4572-8464-9E7635718C8D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-07-30] (NVIDIA Corporation)
Task: {31F0BF05-5E86-4A4A-8DE3-3E8C569FCC95} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-08-26] (AVAST Software)
Task: {4D05F88C-8E00-446B-B939-1C09E297D51C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-08-30] (Microsoft Corporation)
Task: {5172DD08-A695-4FEE-9D7F-F1D27E8B77B1} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-michal.giza@gmx.de => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {62F89C21-8A2E-4EC3-BF26-A1360D9833EC} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-30] (NVIDIA Corporation)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {76ADD661-3B8F-484E-8A61-6CAEBA239A18} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2016-08-15] (Microsoft Corporation)
Task: {77461216-DF0F-42AD-8C56-0097B341C714} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-07-30] (NVIDIA Corporation)
Task: {7902636F-EFA8-41A6-90DB-B3638C6BA854} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-07-30] (NVIDIA Corporation)
Task: {7B0A9C83-AD9E-4AD6-87E5-9B451B84A090} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2016-08-15] (Microsoft Corporation)
Task: {7CD3F24F-E1DB-45D6-A9E8-015FAD606A2A} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-30] (NVIDIA Corporation)
Task: {8CC231A8-3FF9-4DD1-994E-60CE7294BB48} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-08-30] (Microsoft Corporation)
Task: {8FBB3E1D-5FC8-4078-8A32-EC6764A6E77A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-08] (Google Inc.)
Task: {94FB0C9B-82D8-454B-9C30-4D3018ECE4B8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-08-30] (Microsoft Corporation)
Task: {9606B37F-2302-4C17-83F7-025F258CAB43} - System32\Tasks\Microsoft\Windows\Setup\Notifier => C:\WINDOWS\system32\Notifier.exe
Task: {9F5DAABC-A52D-4F0B-9DD9-68D8008D8314} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2016-08-15] (Microsoft Corporation)
Task: {B36DFFC6-3FE0-4EDC-9A88-FB5AD4D96EC3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-07-30] (NVIDIA Corporation)
Task: {BA8AF83D-6D43-4307-9B56-70318D273DE1} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {BE57A7F8-C6AA-4EB3-B99F-B1B588FA4505} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-08] (Google Inc.)
Task: {BEED8C8C-B50B-4187-BA17-CA789037EB60} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-30] (NVIDIA Corporation)
Task: {C47FF0DF-0BFF-42DA-8351-B7A2D45E6981} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-08-30] (Microsoft Corporation)
Task: {CAC4652A-6CB5-49E9-9788-BE3B217695EF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-07-30] (NVIDIA Corporation)
Task: {D525D7C3-891E-4D65-9B65-9A6FADF92CE0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {F42FA26F-EA33-4FEA-81DF-A707759462E0} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-30] (NVIDIA Corporation)
Task: {FCBF0BF1-BD4D-493F-90EC-31811C34F47B} - System32\Tasks\S-1-5-21-3159779420-2504212275-734065462-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2018-04-12] (Microsoft Corporation)
Task: {FF5D9199-2233-46C3-8A67-7C062C5B9673} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2016-08-15] (Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)


==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)


==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-07-05 15:23 - 2016-07-05 15:23 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-07-05 15:23 - 2016-07-05 15:23 - 001354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2018-08-10 14:42 - 2018-07-30 21:14 - 001314856 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-12-07 13:50 - 2016-12-07 15:07 - 000076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-08-14 19:35 - 2018-08-03 05:09 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-07-17 11:56 - 2018-07-17 11:57 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-07-17 11:56 - 2018-07-17 11:57 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-07-17 11:56 - 2018-07-17 11:57 - 022373888 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-07-17 11:56 - 2018-07-17 11:57 - 002610176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\skypert.dll
2018-07-17 11:56 - 2018-07-17 11:56 - 000653824 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-07-11 19:04 - 2018-07-11 19:06 - 001922224 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2018-08-11 23:14 - 2018-08-11 23:15 - 035124224 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-08-11 23:14 - 2018-08-11 23:14 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-08-11 23:14 - 2018-08-11 23:14 - 006417408 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-09-26 15:44 - 2017-09-26 15:44 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-08-11 23:14 - 2018-08-11 23:14 - 009010176 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-08-09 11:42 - 2018-08-08 02:41 - 004855640 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\libglesv2.dll
2018-08-09 11:42 - 2018-08-08 02:41 - 000115544 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\libegl.dll
2018-08-10 14:42 - 2018-07-30 21:14 - 095437352 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2018-08-10 14:42 - 2018-07-30 21:14 - 003029032 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libglesv2.dll
2018-08-10 14:42 - 2018-07-30 21:14 - 000149544 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libegl.dll
2018-08-28 23:37 - 2018-08-27 21:41 - 001054496 _____ () D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\SDL2.dll
2018-08-28 23:37 - 2018-08-27 22:52 - 098006816 _____ () D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libcef.dll
2018-08-28 23:37 - 2018-08-27 22:52 - 004443424 _____ () D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libglesv2.dll
2018-08-28 23:37 - 2018-08-27 22:52 - 000100128 _____ () D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libegl.dll
2018-08-28 23:37 - 2018-08-27 21:41 - 000874784 _____ () D:\Program Files (x86)\Steam\SDL2.dll
2018-08-30 11:43 - 2018-08-29 23:17 - 002646304 _____ () D:\Program Files (x86)\Steam\video.dll
2018-07-25 10:54 - 2016-09-01 03:02 - 004969248 _____ () D:\Program Files (x86)\Steam\v8.dll
2018-07-25 10:54 - 2017-12-20 03:43 - 000695584 _____ () D:\Program Files (x86)\Steam\libavformat-57.dll
2018-07-25 10:54 - 2017-12-20 03:43 - 000351520 _____ () D:\Program Files (x86)\Steam\libavresample-3.dll
2018-07-25 10:54 - 2017-12-20 03:43 - 000847136 _____ () D:\Program Files (x86)\Steam\libavutil-55.dll
2018-07-25 10:54 - 2017-12-20 03:43 - 000783648 _____ () D:\Program Files (x86)\Steam\libswscale-4.dll
2018-07-25 10:54 - 2017-12-20 03:43 - 005137696 _____ () D:\Program Files (x86)\Steam\libavcodec-57.dll
2018-07-25 10:55 - 2016-09-01 03:02 - 001195296 _____ () D:\Program Files (x86)\Steam\icuuc.dll
2018-07-25 10:55 - 2016-09-01 03:02 - 001563936 _____ () D:\Program Files (x86)\Steam\icui18n.dll
2018-08-30 11:43 - 2018-08-29 23:17 - 001015584 _____ () D:\Program Files (x86)\Steam\bin\chromehtml.DLL
2018-07-25 10:54 - 2016-07-05 00:17 - 000266560 _____ () D:\Program Files (x86)\Steam\openvr_api.dll
2018-08-10 14:42 - 2018-07-30 21:14 - 001032744 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\Public\AppData:CSM [476]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2016-07-08 20:51 - 2018-08-16 10:44 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3159779420-2504212275-734065462-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\micha\Desktop\dark_souls_14-wallpaper-1920x1080 (1).jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\StartupFolder: => "TOTOLINK Wireless Utility.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Ralink Wireless Utility.lnk"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "CyberGhost"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "Wargaming.net Game Center"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "Ubisoft Game Launcher"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_E8760D060CAF6C1EB31EBFCD30386D60"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "Parsec.App.0"
HKU\S-1-5-21-3159779420-2504212275-734065462-1001\...\StartupApproved\Run: => "EpicGamesLauncher"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [UDP Query User{D8776B8B-5BC6-4D75-9075-44AB95741E71}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe
FirewallRules: [TCP Query User{6B3EBC67-2ECC-4C77-A074-89187F6FF373}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.148\deploy\leagueclient.exe
FirewallRules: [UDP Query User{82BE2723-E95C-455E-B2C2-CC0ED991A8C5}D:\program files (x86)\steam\steamapps\common\robocraft\robocraftclient.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\robocraft\robocraftclient.exe
FirewallRules: [TCP Query User{6E56281B-2036-49E9-80D1-53405270254A}D:\program files (x86)\steam\steamapps\common\robocraft\robocraftclient.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\robocraft\robocraftclient.exe
FirewallRules: [UDP Query User{F67E7C5C-1B0E-4D5F-B0AE-33EE1A719CD4}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe
FirewallRules: [TCP Query User{24C30A40-6A79-48F4-983C-6B329C771B1F}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.147\deploy\leagueclient.exe
FirewallRules: [UDP Query User{B5610E42-64E0-446D-B077-BAA817816105}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe
FirewallRules: [TCP Query User{EFAA7423-F523-4A91-A108-E4E54F0F1BC6}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.146\deploy\leagueclient.exe
FirewallRules: [{463DDEC0-03A8-4802-A16C-98EE6A6ED5AC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Hacknet\Hacknet.exe
FirewallRules: [{1F5485D4-4257-46B9-B9F0-FABEE1B5DA56}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Hacknet\Hacknet.exe
FirewallRules: [{AEF9D428-68A6-4E33-86DD-5D5ABD5FDBBF}] => (Allow) D:\Program Files (x86)\Elsword\data\x2.exe
FirewallRules: [{7B7E1694-4DE9-49BD-AADD-7C730791209E}] => (Allow) D:\Program Files (x86)\Elsword\data\x2.exe
FirewallRules: [UDP Query User{2A922BD4-35F0-4E9A-8EA2-B7C77444F398}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe
FirewallRules: [TCP Query User{EE29EF98-3E21-427B-AABB-DE276E1A79FF}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.143\deploy\leagueclient.exe
FirewallRules: [UDP Query User{09425192-4554-487F-8FA9-7F30FDA3DDD1}D:\program files (x86)\steam\steamapps\common\hideandshriek\hideandshriek\binaries\win64\hideandshriek-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\hideandshriek\hideandshriek\binaries\win64\hideandshriek-win64-shipping.exe
FirewallRules: [TCP Query User{DDACAAF8-057B-4820-9E66-D2B3C284398C}D:\program files (x86)\steam\steamapps\common\hideandshriek\hideandshriek\binaries\win64\hideandshriek-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\hideandshriek\hideandshriek\binaries\win64\hideandshriek-win64-shipping.exe
FirewallRules: [UDP Query User{9F4A549E-C208-4733-8ED3-2014292585A4}D:\program files (x86)\steam\steamapps\common\flameintheflood\rivergame\binaries\win64\rivergame-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\flameintheflood\rivergame\binaries\win64\rivergame-win64-shipping.exe
FirewallRules: [TCP Query User{08593028-4355-4366-A7AD-4866BAF5B1F4}D:\program files (x86)\steam\steamapps\common\flameintheflood\rivergame\binaries\win64\rivergame-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\flameintheflood\rivergame\binaries\win64\rivergame-win64-shipping.exe
FirewallRules: [{39C512D6-AF41-438F-B242-7E7303B1AD1F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\FlameInTheFlood\RiverGame.exe
FirewallRules: [{919EEBFD-04A7-454C-B08B-FB8218596AD9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\FlameInTheFlood\RiverGame.exe
FirewallRules: [UDP Query User{E84F28D2-0917-4184-935F-AC42D6F340D3}D:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\x64\gameclient.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\x64\gameclient.exe
FirewallRules: [TCP Query User{69AE1187-3CBB-413E-A6AE-E66958EC1D3C}D:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\x64\gameclient.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\x64\gameclient.exe
FirewallRules: [UDP Query User{7B8CF5CF-B9F2-4599-B6B6-88F8B1715185}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe
FirewallRules: [TCP Query User{4024A72B-76ED-4814-A515-8EBA30304E1C}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.141\deploy\leagueclient.exe
FirewallRules: [UDP Query User{65838931-A862-40B4-B87A-E99856A873B5}D:\pbe\rads\projects\league_client\releases\0.0.1.184\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.184\deploy\leagueclient.exe
FirewallRules: [TCP Query User{3F8CB6B9-0CB6-49C7-9AEF-86E669EE2920}D:\pbe\rads\projects\league_client\releases\0.0.1.184\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.184\deploy\leagueclient.exe
FirewallRules: [{0F1F9892-39EF-4D3B-9B48-77C36B152E0B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Wild Eight\wildeight.exe
FirewallRules: [{42497D78-862A-4E94-9223-6404DBE1DA58}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Wild Eight\wildeight.exe
FirewallRules: [UDP Query User{395B16D5-DFBA-4CFD-BB24-72A486509E89}D:\pbe\rads\projects\league_client\releases\0.0.1.180\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.180\deploy\leagueclient.exe
FirewallRules: [TCP Query User{647CDCDE-3DA0-4451-A529-1E9249E4263A}D:\pbe\rads\projects\league_client\releases\0.0.1.180\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.180\deploy\leagueclient.exe
FirewallRules: [{B97E0998-F786-4D5E-B1AF-4D56F5C44558}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{5863A2BB-C2EE-4940-8166-26CEDE4A0560}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [UDP Query User{700861F5-F77B-4AC3-AB05-949B922C27FC}D:\program files (x86)\steam\steamapps\common\terraria\tmodloaderserver.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\terraria\tmodloaderserver.exe
FirewallRules: [TCP Query User{671CEBDC-FE09-4A84-AB1C-3723FE7C46F8}D:\program files (x86)\steam\steamapps\common\terraria\tmodloaderserver.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\terraria\tmodloaderserver.exe
FirewallRules: [UDP Query User{1042F777-F94D-46C2-9958-B6A77C002B1D}D:\pbe\rads\projects\league_client\releases\0.0.1.179\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.179\deploy\leagueclient.exe
FirewallRules: [TCP Query User{CA7DA81A-7D5B-4074-9C42-A8D165D3CE51}D:\pbe\rads\projects\league_client\releases\0.0.1.179\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.179\deploy\leagueclient.exe
FirewallRules: [UDP Query User{0A257A1D-DDA0-45FC-80BD-15D9EEBADD7B}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe
FirewallRules: [TCP Query User{7C798D77-2E2C-44F8-B3D2-7C79C62B85E7}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe
FirewallRules: [UDP Query User{AE380F3E-2C4A-403D-9A72-5C5DFAFBDD6A}D:\program files (x86)\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe
FirewallRules: [TCP Query User{05258B21-77A8-4A9A-9BB6-9EA55C990DED}D:\program files (x86)\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\pubg_closed_experimental\tslgame\binaries\win64\tslgame.exe
FirewallRules: [UDP Query User{094BDD89-D77B-4A12-8A4D-486B1CC85A6E}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe
FirewallRules: [TCP Query User{451E1AC2-677B-4700-BAA8-D4306A7F973D}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.139\deploy\leagueclient.exe
FirewallRules: [UDP Query User{C69271E9-4AE3-49F9-8423-3A56A49DDDA2}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe
FirewallRules: [TCP Query User{3DF73DFD-BAF0-4945-9D3C-5CD94B728244}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.138\deploy\leagueclient.exe
FirewallRules: [{EE7CFE06-A8A0-4B06-99B5-9280490AE85F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Shakes & Fidget\Shakes and Fidget.exe
FirewallRules: [{2E856D76-C5F2-4219-A7D0-E4F46801E3D1}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Shakes & Fidget\Shakes and Fidget.exe
FirewallRules: [UDP Query User{1D39E606-93E9-493A-A56A-2B6275CD54AE}D:\program files\unity\editor\unity.exe] => (Block) D:\program files\unity\editor\unity.exe
FirewallRules: [TCP Query User{E35E2CE5-DDD6-486D-8CB5-B8B0D74126DA}D:\program files\unity\editor\unity.exe] => (Block) D:\program files\unity\editor\unity.exe
FirewallRules: [{E35FC619-8F9E-4150-A35C-A131A28CA7E7}] => (Block) D:\Program Files\Unity\Editor\Data\Tools\nodejs\node.exe
FirewallRules: [{7E893C9E-30DF-44AD-90A3-EC2D961F7530}] => (Allow) D:\Program Files\Unity\Editor\Data\Tools\nodejs\node.exe
FirewallRules: [{C73729E0-BDF6-41B2-9D79-7C50FD9DA477}] => (Block) D:\Program Files\Unity\Editor\Unity.exe
FirewallRules: [{1FD3FCE4-CDA9-4199-8A32-BA10E4F34751}] => (Allow) D:\Program Files\Unity\Editor\Unity.exe
FirewallRules: [UDP Query User{D29F7DD5-A88E-4BF1-B410-86EE8A046E67}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe
FirewallRules: [TCP Query User{0034D87D-9077-4418-AB59-210C699AC524}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.137\deploy\leagueclient.exe
FirewallRules: [UDP Query User{04B73D3A-297C-49B5-A087-F886307CD6C0}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.134\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.134\deploy\leagueclient.exe
FirewallRules: [TCP Query User{F74B17A7-839A-4C71-9F3E-1DB8C40B9418}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.134\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.134\deploy\leagueclient.exe
FirewallRules: [UDP Query User{30ED66FD-76EB-41F1-B253-AA49C6B70860}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.133\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.133\deploy\leagueclient.exe
FirewallRules: [TCP Query User{EE2EF2C1-3ECA-4788-8B20-C36A5C936127}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.133\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.133\deploy\leagueclient.exe
FirewallRules: [{B3E04B9E-4057-4BCD-929B-1DF408E34947}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SlayTheSpire\SlayTheSpire.exe
FirewallRules: [{0013BE87-C8FC-465B-BA1B-EF1FFB356554}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\SlayTheSpire\SlayTheSpire.exe
FirewallRules: [{375A74C0-7209-4066-BCDE-E99316E67367}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Terra Lander\bin\terraLander.exe
FirewallRules: [{F3BCD1B1-F159-406E-8D11-2EF0850AD452}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Terra Lander\bin\terraLander.exe
FirewallRules: [UDP Query User{30619DF7-F80A-4A4E-9BFA-51C70048A4DF}D:\program files (x86)\steam\steamapps\common\hunt showdown\bin\win_x64\gamelauncher.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\hunt showdown\bin\win_x64\gamelauncher.exe
FirewallRules: [TCP Query User{DD6E09FE-97A2-4EEC-A560-D268D9FE3043}D:\program files (x86)\steam\steamapps\common\hunt showdown\bin\win_x64\gamelauncher.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\hunt showdown\bin\win_x64\gamelauncher.exe
FirewallRules: [UDP Query User{655093CA-A180-4F3B-92D9-414B592A772D}D:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe] => (Block) D:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [TCP Query User{AB4BBCAA-D8BD-46E9-B472-8FD9C95C4150}D:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe] => (Block) D:\program files (x86)\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{3ADB870D-F67E-43AB-BF03-CB2DDC0EFAAB}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe
FirewallRules: [TCP Query User{1FEC9917-6FB5-4CB5-AD51-2B46B3A70086}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe
FirewallRules: [UDP Query User{03A96129-A829-43A4-B98A-E1F00AAF8959}D:\battle\battle.net\battle.net.exe] => (Allow) D:\battle\battle.net\battle.net.exe
FirewallRules: [TCP Query User{BFAE3B0C-AEB6-4599-94E8-DAA0D00DDF1F}D:\battle\battle.net\battle.net.exe] => (Allow) D:\battle\battle.net\battle.net.exe
FirewallRules: [UDP Query User{C6F3711C-0CF6-4264-83DA-DEE1C9DD0A8D}D:\program files\dogecoin\dogecoin-qt.exe] => (Allow) D:\program files\dogecoin\dogecoin-qt.exe
FirewallRules: [TCP Query User{2F026BF4-FE67-434E-AF95-1A8D1FD2741D}D:\program files\dogecoin\dogecoin-qt.exe] => (Allow) D:\program files\dogecoin\dogecoin-qt.exe
FirewallRules: [UDP Query User{077A69D2-12B5-4F68-B229-E38E1A0DC297}D:\pbe\rads\projects\league_client\releases\0.0.1.142\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.142\deploy\leagueclient.exe
FirewallRules: [TCP Query User{29E0C26C-7ECC-49D7-BEE6-C6FE307F7B40}D:\pbe\rads\projects\league_client\releases\0.0.1.142\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.142\deploy\leagueclient.exe
FirewallRules: [UDP Query User{19C70BA1-340F-4B71-9E70-7566299DA173}D:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\x86\gameclient.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\x86\gameclient.exe
FirewallRules: [TCP Query User{9013B16E-70B0-488E-AD15-478620F57FAA}D:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\x86\gameclient.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\x86\gameclient.exe
FirewallRules: [UDP Query User{D9D29DFD-8014-4ADB-9E51-A543E6C460D3}D:\pbe\rads\projects\league_client\releases\0.0.1.139\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.139\deploy\leagueclient.exe
FirewallRules: [TCP Query User{B2213044-9265-42E8-899E-F8106E64026E}D:\pbe\rads\projects\league_client\releases\0.0.1.139\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.139\deploy\leagueclient.exe
FirewallRules: [UDP Query User{B334A7E7-2206-4A9F-8253-7851E849F284}D:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) D:\programdata\wargaming.net\gamecenter\wgc.exe
FirewallRules: [TCP Query User{D6D56D05-2FD2-4D71-A0B3-681D61759E89}D:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) D:\programdata\wargaming.net\gamecenter\wgc.exe
FirewallRules: [UDP Query User{19C5CFEF-059B-4756-B16E-57C35F60B1E8}D:\pbe\rads\projects\league_client\releases\0.0.1.138\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.138\deploy\leagueclient.exe
FirewallRules: [TCP Query User{8C79B042-82B4-4DAD-BCC8-84CBEAE28226}D:\pbe\rads\projects\league_client\releases\0.0.1.138\deploy\leagueclient.exe] => (Allow) D:\pbe\rads\projects\league_client\releases\0.0.1.138\deploy\leagueclient.exe
FirewallRules: [UDP Query User{D895E73A-D9CF-4C3C-BD31-A463F6B6038B}D:\program files (x86)\heroes of the storm\versions\base62424\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base62424\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{12B8DDB3-9F9F-4D74-8D89-111F8D288A53}D:\program files (x86)\heroes of the storm\versions\base62424\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base62424\heroesofthestorm_x64.exe
FirewallRules: [{88A552DD-EB06-450A-8735-B6A5DC54863C}] => (Allow) D:\DOWNLOADS\BlackDesert_Downloader.exe
FirewallRules: [{2AFD6F75-4393-459F-A16E-5C03E2EB5630}] => (Allow) D:\DOWNLOADS\BlackDesert_Launcher.exe
FirewallRules: [{90391BD0-9250-4D9D-9CED-2321F18DDFAE}] => (Allow) D:\DOWNLOADS\bin64\BlackDesert64.exe
FirewallRules: [{C9045C98-3DB1-4530-9C31-B4CF3C15B8C8}] => (Allow) D:\DOWNLOADS\bin\BlackDesert32.exe
FirewallRules: [{2C8FA673-BF3B-4FB9-9CE9-86E37460EE31}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe
FirewallRules: [{87EE7EE7-7A2B-4219-9819-66F9AEB9939E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe
FirewallRules: [{08DAF1C7-644D-4059-B317-1CEC0C99E093}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe
FirewallRules: [UDP Query User{681EBF88-B62A-43E4-8240-7385A369E093}D:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [TCP Query User{F7F20EA4-1EDC-490E-9BF8-D29F63CA4BA8}D:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [{2D7B700F-F14E-4A65-9DB5-ABB9019CD2CD}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{CAF682CE-FA0B-48FE-B099-0D8D0F3070ED}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{CC9FC7FC-6DBE-4ADB-BE51-806393CD6B41}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{2EB3DF3B-4AF6-4912-9DF9-D188531DC975}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{232A2284-2CA7-43F1-96BE-637A5AA77625}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{FED781C6-BF8A-4AAF-A863-5B6E24223A6B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{69ED0E0E-D474-4373-AF80-6CB168DFF449}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ASTRONEER Early Access\Astro.exe
FirewallRules: [{5330CD0B-8D8D-477F-8719-11D00CB0D5C5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ASTRONEER Early Access\Astro.exe
FirewallRules: [{9D380808-ACD2-429A-BBA6-BF64B5EF4A59}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{C2E612C5-1EDB-4C03-AE63-846036B9E0DD}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{75E6D924-A782-45FE-BD58-126BA18D5930}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{B5FBF4DF-4938-4560-8871-045CB94727B0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{99758573-F513-43A1-A9C6-E410FE1F8361}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{0EB45A46-014D-47B6-8A77-38E0D1480AF8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{1BD72CDB-13B0-489F-82E6-74A1CA810D7F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{628921C1-E523-4F81-9C88-F4E40004631D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{60CC11EE-08A8-4578-BD17-855B948CF166}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{32350FAE-A858-4739-8390-7EFA3BE24FEF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{9FF647B8-944F-4339-8244-88E33C1610CB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{3AC2EEA5-2BD2-49B9-8C70-3A53F99E39F3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [UDP Query User{86051AFC-1D37-4220-B29D-E50A780129ED}C:\users\micha\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\micha\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{822388C3-91EB-4C06-B0CE-9876AB95259F}C:\users\micha\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\micha\appdata\roaming\spotify\spotify.exe
FirewallRules: [{DDE74714-0AC6-47EB-A169-E196A67C93B2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dead Age\DeadAge.exe
FirewallRules: [{FBB6D1DB-E5E9-4D52-BE35-87117F3C2579}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Dead Age\DeadAge.exe
FirewallRules: [{F7B18489-850B-4DC1-A070-9EE220B8B32D}] => (Allow) D:\BOT\Streamlabs Chatbot\Streamlabs Chatbot.exe
FirewallRules: [{35A7E8B6-C063-4AFD-B206-31E92D0C064E}] => (Allow) D:\BOT\Streamlabs Chatbot\Streamlabs Chatbot.exe
FirewallRules: [{045E2F1A-A7BE-4975-BAF5-BD5770619403}] => (Allow) D:\BOT\Streamlabs Chatbot\Streamlabs Chatbot.exe
FirewallRules: [{7ECA6DEC-4F78-4D59-8856-6837E23FE4A1}] => (Allow) D:\BOT\Streamlabs Chatbot\Streamlabs Chatbot.exe
FirewallRules: [{D438BB9C-33CE-462E-A148-AB3E751698CE}] => (Allow) D:\BOT\Streamlabs Chatbot\Streamlabs Chatbot.exe
FirewallRules: [{48B1ADF5-751F-4847-98D2-0A29DEBDA593}] => (Allow) D:\BOT\Streamlabs Chatbot\Streamlabs Chatbot.exe
FirewallRules: [{806EF647-B4B6-4D4E-B816-251F86F57BBB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{3966CBC2-4A8D-4000-AF8F-44ACAAE372ED}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{C65ACC19-BD5C-454D-90A3-751A141870CF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{A6EF24C7-E661-4828-B651-DF596F8C2FD4}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{9950F996-7BFF-4D64-9F57-9BB84F45E06B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{4CBF7C9F-7CD2-4882-B862-C7F921B92EE4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{BE98A2E2-A67E-4196-B6D2-40D6E20F5038}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{A474E12E-616F-417B-8460-A404AF0B7F3A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{17BC820A-A8E2-4C09-AF05-B585EB455434}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\FINAL FANTASY XIV Online\boot\ffxivboot.exe
FirewallRules: [{F557BA14-1530-4B48-BBBC-35616C8F7AA5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\FINAL FANTASY XIV Online\boot\ffxivboot.exe
FirewallRules: [{60D95F83-A049-4042-B26A-59B1AF5031CC}] => (Allow) D:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe
FirewallRules: [{5152E920-5841-489E-B99D-EE2E4BB4971F}] => (Allow) D:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe
FirewallRules: [{1C86BB6F-A855-46C7-B769-CE1A2DDA2198}] => (Allow) D:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [{C2205704-BD11-4A3C-AAF4-553D558CF364}] => (Allow) D:\Program Files (x86)\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [{A4CF4C92-AD4A-43C4-A068-00EE45A9FEB0}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [{862C23D7-39B2-4E4F-A997-912FA34DFF56}] => (Allow) D:\Program Files (x86)\Origin Games\Dragon Age Inquisition\DragonAgeInquisition.exe
FirewallRules: [UDP Query User{45B9CE6C-49F6-49FC-BDF0-197A10CAD6D4}D:\program files (x86)\overwatch\overwatch.exe] => (Allow) D:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{4DFB35A9-76CE-47FF-B402-4E8DAAE0C8A4}D:\program files (x86)\overwatch\overwatch.exe] => (Allow) D:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{449DCBE1-5924-468C-8C5B-DD3304AA97AE}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Reigns Her Majesty\Reigns2.exe
FirewallRules: [{B24B8B13-4F90-44AF-B014-C352576E0E11}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Reigns Her Majesty\Reigns2.exe
FirewallRules: [{B5037A19-5902-4B37-BDFE-ABBC31680158}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Deceit\bin\win_x64\Deceit.exe
FirewallRules: [{851C44DD-4F17-437E-9B9A-3765C556C601}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Deceit\bin\win_x64\Deceit.exe
FirewallRules: [UDP Query User{F8B2F7AB-990D-49B5-A5CC-BCEA08EC446A}D:\program files (x86)\heroes of the storm\versions\base60522\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base60522\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{F638074B-505A-426C-BC4E-9D9FA4D03182}D:\program files (x86)\heroes of the storm\versions\base60522\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base60522\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{57549BD2-356C-4CB8-9A1B-13A6D7FE8C81}D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [TCP Query User{BFC72891-9351-4AE9-BAE6-57669C71B157}D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [{BE08BE07-1F19-4B57-A75D-DDF8F18DEF4C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Bit Heroes\Bit Heroes.exe
FirewallRules: [{AC389156-2FB3-413C-8565-D4C991117A4C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Bit Heroes\Bit Heroes.exe
FirewallRules: [UDP Query User{F36A415A-57ED-45C5-A9CA-195FEA2E66B1}D:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe
FirewallRules: [TCP Query User{A83C7F3C-215A-4EBD-B0FB-754552A465DF}D:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe
FirewallRules: [{E38A4E7F-65AA-459B-9545-374BD17E6FEB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Fallout\FalloutLauncher.exe
FirewallRules: [{4916C30D-244A-46FA-8CBF-2D5F06368D49}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Fallout\FalloutLauncher.exe
FirewallRules: [UDP Query User{499A9238-2BB2-4755-86F0-ADA169ACA0F3}D:\program files (x86)\heroes of the storm\versions\base57589\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base57589\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{EFCA951F-9559-45E0-8F3F-32A804252B40}D:\program files (x86)\heroes of the storm\versions\base57589\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base57589\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{BE58046F-C544-4CD5-A6D2-15855AECCAF4}D:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe
FirewallRules: [TCP Query User{A0406A34-2378-439C-87AC-0FEA47136CF2}D:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\outlast\binaries\win64\olgame.exe
FirewallRules: [{9F6A94ED-C90B-46FD-B79E-AF6814EF38BB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Outlast\OutlastLauncher.exe
FirewallRules: [{0C305948-867F-4E0D-906E-0483000FD4C2}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Outlast\OutlastLauncher.exe
FirewallRules: [{F06D8A7E-2C85-4104-A040-00160D67ADAA}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Human Fall Flat\Human.exe
FirewallRules: [{A77EE7BF-8B68-44D0-86F1-D7E13537A3AB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Human Fall Flat\Human.exe
FirewallRules: [{754459E4-BC61-4A71-8A3C-380B7C0B67AE}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together Dedicated Server\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [{7BA7F404-F8F8-46E5-9DA0-7537891A717D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together Dedicated Server\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [UDP Query User{C4BD7623-3843-434F-B589-A0C990E1E50C}D:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) D:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [TCP Query User{E621E4FF-C1A5-4927-BC66-BF74486AE300}D:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) D:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{2E0CD30C-AE4C-4EA7-AA09-285A0F9F773C}D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [TCP Query User{31127FFB-BBC8-4BF5-AC27-3EE476358869}D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [{4B6F05AA-E6E4-4604-96AB-93ABF53E518B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Relic Hunters Zero\RelicHuntersZero.exe
FirewallRules: [{52B4AB8F-14E4-42EE-B2EE-85B8C8DE3CA0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Relic Hunters Zero\RelicHuntersZero.exe
FirewallRules: [UDP Query User{1C19A8E0-B658-483C-8317-E1BE7209FE8E}C:\program files\java\jre1.8.0_141\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_141\bin\javaw.exe
FirewallRules: [TCP Query User{9099A826-D680-44D2-A99A-D21E0910F872}C:\program files\java\jre1.8.0_141\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_141\bin\javaw.exe
FirewallRules: [{C17F6BA1-5B19-4E80-BD27-3652E7FABD24}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{9942A09C-26AD-4F6B-A5D3-EAAB29D99FA7}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Walking Dead\WalkingDead101.exe
FirewallRules: [{8A241E1C-4E9B-4081-8DCC-36C522654F80}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Monaco\MONACO.exe
FirewallRules: [{882EFFC4-F90D-4600-A287-E3C289337A6A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Monaco\MONACO.exe
FirewallRules: [UDP Query User{7DC32BAF-5002-474C-B372-9D9F80620001}D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{3DE17916-29A1-40D8-B482-DB41C02F8E82}D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{2AB92C4C-8995-446E-AA43-EAC3D4032EC1}D:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{AADD7DC7-148E-4F9B-A24E-719C7B8A2464}D:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [{5887A680-5836-4A96-A2D3-1212FECC83A7}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Storm Riders\stormriders.exe
FirewallRules: [{DB0C7C4B-2D8F-48D0-8EF3-7C144DED1B01}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Storm Riders\stormriders.exe
FirewallRules: [UDP Query User{7389B9ED-7885-4AF0-B0CA-9E5C67E7A2F4}D:\program files (x86)\steam\steamapps\common\supraball\binaries\win32\udk.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\supraball\binaries\win32\udk.exe
FirewallRules: [TCP Query User{34693554-4417-4FEB-86E1-2F89A641F6F4}D:\program files (x86)\steam\steamapps\common\supraball\binaries\win32\udk.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\supraball\binaries\win32\udk.exe
FirewallRules: [{E38B7E21-064F-4099-AF72-7EFD50B13B45}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Doodle God Blitz\DoodleGod.exe
FirewallRules: [{93CF2C54-BAA1-496D-855F-DF08151D24C8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Doodle God Blitz\DoodleGod.exe
FirewallRules: [{E0FE1892-1FF7-4313-8D16-F2A0F82062B7}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Evoland 2\Evoland2.exe
FirewallRules: [{09642757-87B5-4C5D-829B-61DD2372C8F7}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Evoland 2\Evoland2.exe
FirewallRules: [UDP Query User{53171712-4FC0-418D-85BB-05A0BE8BCF27}D:\program files (x86)\heroes of the storm\versions\base56705\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base56705\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{815DCF6F-54DF-4955-BEB6-679AF348FB2C}D:\program files (x86)\heroes of the storm\versions\base56705\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base56705\heroesofthestorm_x64.exe
FirewallRules: [{49250F40-73D4-4997-9705-350C8CBB3EC3}] => (Allow) D:\Program Files\Lightworks\ntcardvt.exe
FirewallRules: [{9C739078-1AD6-4D93-9677-DB4177BB91D4}] => (Allow) D:\Program Files\Lightworks\ntcardvt.exe
FirewallRules: [{4FCB5C0A-7F4E-4BAD-BD02-5E7B78EB9F4A}] => (Allow) D:\Program Files\Lightworks\lightworks.exe
FirewallRules: [{27D3C144-83BB-4A58-B2F5-66A740136032}] => (Allow) D:\Program Files\Lightworks\lightworks.exe
FirewallRules: [{7564ED41-9A52-466A-A036-391B2628A834}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\This War of Mine\Storyteller.exe
FirewallRules: [{D9990A96-B212-4BFA-A1E1-9969B41790AD}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\This War of Mine\Storyteller.exe
FirewallRules: [{4F74DCC5-0349-4903-9813-4DD4BCF7A85B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{809F4DB8-575D-45A1-A833-BD6797066713}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{76036C84-D088-47D2-9784-BD3B61AB8005}] => (Allow) D:\Program Files (x86)\Origin Games\Spore\Sporebin\SporeApp.exe
FirewallRules: [{43D2883B-8F93-42EA-B198-6E2E30EA6A07}] => (Allow) D:\Program Files (x86)\Origin Games\Spore\Sporebin\SporeApp.exe
FirewallRules: [{DC7DD9E2-031B-49EB-89DA-EEDB5191603C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [{54671A0A-6BBE-4F8D-B1F4-E20BEC8DAE99}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe
FirewallRules: [UDP Query User{E7543084-157B-47B4-B0DA-4A261FC681C5}D:\program files (x86)\heroes of the storm\versions\base56361\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base56361\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{532173ED-FFDC-4980-B8A9-3EEC8A6B5794}D:\program files (x86)\heroes of the storm\versions\base56361\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base56361\heroesofthestorm_x64.exe
FirewallRules: [{A79524B4-E117-443C-8952-E3C9336DDA30}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Borderlands\Binaries\Borderlands.exe
FirewallRules: [{9C52FDB1-029C-4B09-B2F6-44BDD9D0FA6E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Borderlands\Binaries\Borderlands.exe
FirewallRules: [UDP Query User{0F5EB395-1526-4554-8CC7-F631307D762E}D:\program files (x86)\secondlifeviewer\slvoice.exe] => (Allow) D:\program files (x86)\secondlifeviewer\slvoice.exe
FirewallRules: [TCP Query User{26CDFCCD-CEBD-486D-AD26-07196F54E850}D:\program files (x86)\secondlifeviewer\slvoice.exe] => (Allow) D:\program files (x86)\secondlifeviewer\slvoice.exe
FirewallRules: [{493F81C3-F8E2-4C7E-89E2-66D27A89F81D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Naev\naev.exe
FirewallRules: [{87902C9A-78B6-4F13-8238-2F4ED39B3032}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Naev\naev.exe
FirewallRules: [UDP Query User{0F1B19A9-BB74-4BFB-9EE4-B91AD9134640}D:\program files (x86)\heroes of the storm\versions\base55288\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base55288\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{D6B1CCDD-66FD-4013-A533-A5E5E4115ACD}D:\program files (x86)\heroes of the storm\versions\base55288\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base55288\heroesofthestorm_x64.exe
FirewallRules: [{0D210DA0-AC48-4DEF-9916-79216094932A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Loading Screen Simulator\LSS.exe
FirewallRules: [{84E75F32-4667-4993-9418-55D176448B1C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Loading Screen Simulator\LSS.exe
FirewallRules: [{86008E8F-C2BC-49B3-8467-A31D4D16DD78}] => (Allow) D:\Program Files (x86)\VoidElsword\VoidElsword\data\x2.exe
FirewallRules: [{71DF7D94-090A-4C46-9FDC-40DA0BE1BFD1}] => (Allow) D:\Program Files (x86)\VoidElsword\VoidElsword\data\x2.exe
FirewallRules: [{BFFD7DF4-BDC4-4DA2-95EB-4461A17BB653}] => (Allow) D:\Program Files (x86)\VoidElsword\VoidElsword\voidels.exe
FirewallRules: [{769D43E8-71B5-474D-AC7D-96C0A20C3F58}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{BE83FC17-30A0-42F6-9655-418E989F717B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [UDP Query User{EF6F3C1F-4008-4351-B59E-85CCE6B90C47}D:\game lol\tower\tower master.exe] => (Allow) D:\game lol\tower\tower master.exe
FirewallRules: [TCP Query User{3BBA9B4D-B920-4004-8447-ED321CA57A36}D:\game lol\tower\tower master.exe] => (Allow) D:\game lol\tower\tower master.exe
FirewallRules: [{5A7BAEE1-04C1-47C5-BD38-65A761704458}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Aetherspace\Aetherspace.exe
FirewallRules: [{C59C3584-18A1-40A9-8DD3-16C44B2824A5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Aetherspace\Aetherspace.exe
FirewallRules: [{F9FC0A3E-7E43-47C8-8AE2-471766764659}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{08A5D94D-7077-4DE4-9B0C-A670BE336F2F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{E0DA3B57-2BA1-4E2A-B8DA-099E3996EC1E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Realm Grinder\RealmGrinderDesktop.exe
FirewallRules: [{70F45F46-FA1D-44BC-B95F-D44B40BC81EC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Realm Grinder\RealmGrinderDesktop.exe
FirewallRules: [{3E0E7EE9-8E88-4060-A73F-08F0448481A1}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Trimmer Tycoon\trimmer.exe
FirewallRules: [{C632FAFF-BF8D-42FE-A375-D258ECFA4DD4}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Trimmer Tycoon\trimmer.exe
FirewallRules: [UDP Query User{129EBDA0-7E85-43B0-ABAC-20370A234156}D:\program files (x86)\steam\steamapps\common\awesomenauts\awesomenauts.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\awesomenauts\awesomenauts.exe
FirewallRules: [TCP Query User{4F285DB1-D60C-46F6-A0B4-55B5FAD192B6}D:\program files (x86)\steam\steamapps\common\awesomenauts\awesomenauts.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\awesomenauts\awesomenauts.exe
FirewallRules: [{A541405C-7957-483B-B6B4-9DB675C87CCB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
FirewallRules: [{746E4871-E1D1-4BA1-A945-FD8AD6CD0602}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Awesomenauts\AwesomenautsLauncher.exe
FirewallRules: [{05955E79-D252-4062-946E-5B27BCB19887}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ArtOfWar\gslaunchershell.exe
FirewallRules: [{DF1CB45A-516D-4D98-AB3E-099EEB91A2E6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ArtOfWar\gslaunchershell.exe
FirewallRules: [{E1ECA67F-8B89-4C69-8BA2-3AE744A58A16}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Zombidle\Zombidle.exe
FirewallRules: [{92554198-9B37-4388-9400-CFEC0C62CE12}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Zombidle\Zombidle.exe
FirewallRules: [{5A038F0E-4FAC-4557-8F6E-4AB118EF680B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Detective Butler Maiden Voyage Murder\DetectiveButler.exe
FirewallRules: [{F57DEE76-FB10-4D11-8CFF-A330E2924A19}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Detective Butler Maiden Voyage Murder\DetectiveButler.exe
FirewallRules: [UDP Query User{DB9F8A0B-31FE-41E6-97F0-7E3D75BF075B}D:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) D:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{43E617AD-7EE6-4565-94C6-888E6F171FED}D:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) D:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{E29ED5F0-5852-434D-87FD-78644C15D253}D:\steamcmd\gm\srcds.exe] => (Allow) D:\steamcmd\gm\srcds.exe
FirewallRules: [TCP Query User{D190A97B-F699-4BB0-BA01-857799FD07CA}D:\steamcmd\gm\srcds.exe] => (Allow) D:\steamcmd\gm\srcds.exe
FirewallRules: [UDP Query User{280BB6EE-5EF6-4ACD-926B-F54FBAD95C91}D:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{2FD47C7A-6954-4533-B64A-6FEF6C664D3A}D:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) D:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [{B8DDADA2-F71B-4FB5-9F8F-4A8CE5DCFD73}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Learn to Fly 3\Learn to Fly 3.exe
FirewallRules: [{8F421B90-C7E0-4295-A229-3F183F13B565}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Learn to Fly 3\Learn to Fly 3.exe
FirewallRules: [UDP Query User{D7C6CCB4-DFE1-487C-981D-76ECB8ADB4D3}D:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) D:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [TCP Query User{DE91F0BD-CC0A-4CE2-8A71-8E75CC70A44D}D:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) D:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{4E79CA4B-034E-472E-A2EB-B96484A39A67}D:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe
FirewallRules: [TCP Query User{A02AD116-9EEC-4404-B8A4-C989E275CB74}D:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe
FirewallRules: [UDP Query User{10FE95D1-B729-4F5D-B275-6B86175965F5}C:\program files\java\jre1.8.0_131\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\java.exe
FirewallRules: [TCP Query User{C0A03FDE-A1CD-4B30-9052-D9E63A0009AB}C:\program files\java\jre1.8.0_131\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\java.exe
FirewallRules: [{F380AA90-958C-4AD5-807A-7AA4A4E71D5D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [{0D937F35-CF61-4C64-A8D0-1EE05E323AA0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [{6270E8F0-9CE9-4DEF-BFAB-AC93026EDF54}] => (Allow) LPort=25565
FirewallRules: [{3EBF5D3E-A1D0-4D7B-9BA5-038E0A9FD5F1}] => (Block) C:\programdata\oracle\java\javapath_target_10286093\java.exe
FirewallRules: [{0CAFB781-AB9B-4143-A5D9-AA8FBC43D1B9}] => (Block) C:\programdata\oracle\java\javapath_target_10286093\java.exe
FirewallRules: [UDP Query User{BEF45744-8A91-4A40-8A68-129E7F48436A}C:\programdata\oracle\java\javapath_target_10286093\java.exe] => (Allow) C:\programdata\oracle\java\javapath_target_10286093\java.exe
FirewallRules: [TCP Query User{0F31A8D8-5874-434E-90F7-2A59CB160C65}C:\programdata\oracle\java\javapath_target_10286093\java.exe] => (Allow) C:\programdata\oracle\java\javapath_target_10286093\java.exe
FirewallRules: [{DE44897A-7874-469A-98A8-CF5586404E3E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together Dedicated Server\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [{8DA0E8B3-4BA9-47EC-80C8-89323179A262}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together Dedicated Server\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [{9A57AD60-FED4-4C80-AEE5-160172C4CC9C}] => (Block) C:\program files\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [{4FA58189-1190-4BBD-9610-3DF3B25B1997}] => (Block) C:\program files\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [UDP Query User{493E57FA-AE6D-4CBA-8A2F-0F2D139D266A}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [TCP Query User{BA96421F-BB78-4B0C-8580-C72561237A50}C:\program files\java\jre1.8.0_131\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_131\bin\javaw.exe
FirewallRules: [{EB0F4CCD-060C-4796-BB77-41EDF2BAD0E0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [{0110D5C0-CFB3-4501-A5DB-D5322D6288E3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Space\spacegame\Binaries\Win64\Fractured Space.exe
FirewallRules: [{7AA0FA71-8719-4ACC-8FC3-B1E47555F0F1}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Mighty Party\Mighty_party.exe
FirewallRules: [{E250C57D-A268-4E39-B4C3-A77D0191B880}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Mighty Party\Mighty_party.exe
FirewallRules: [{F5B6C364-2842-4949-BAD1-9C6EA5802972}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ibomber defense pacific\iBomberDefensePacific.exe
FirewallRules: [{BE246E4C-A65F-4110-AA1C-A96F3D8DB02A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ibomber defense pacific\iBomberDefensePacific.exe
FirewallRules: [{3DFCBCF5-D973-465E-B954-326A5B3E7F15}] => (Block) D:\program files (x86)\steam\steamapps\common\lms\lms.exe
FirewallRules: [{83B27691-2C94-427D-99C3-1745BAF1E777}] => (Block) D:\program files (x86)\steam\steamapps\common\lms\lms.exe
FirewallRules: [UDP Query User{FEB31DF8-465B-4EF4-B2B2-6D386A67D5B2}D:\program files (x86)\steam\steamapps\common\lms\lms.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\lms\lms.exe
FirewallRules: [TCP Query User{14623B61-8561-4C6E-BC90-827024B01DEB}D:\program files (x86)\steam\steamapps\common\lms\lms.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\lms\lms.exe
FirewallRules: [{C05A2DE7-412E-439A-A79D-EBA443450351}] => (Block) D:\program files (x86)\steam\steamapps\common\lms\launcher.exe.new.exe
FirewallRules: [{EFB33B4F-0C03-4367-B7E8-272426A73999}] => (Block) D:\program files (x86)\steam\steamapps\common\lms\launcher.exe.new.exe
FirewallRules: [UDP Query User{3B0361EA-8D7E-4E14-A0B9-BE0E12EB8B4D}D:\program files (x86)\steam\steamapps\common\lms\launcher.exe.new.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\lms\launcher.exe.new.exe
FirewallRules: [TCP Query User{7FA7F31F-535E-4202-9881-76BDE1A5C714}D:\program files (x86)\steam\steamapps\common\lms\launcher.exe.new.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\lms\launcher.exe.new.exe
FirewallRules: [{E0607F6B-DC63-4BF8-A321-4E1B08643229}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Alien Swarm Reactive Drop\reactivedrop.exe
FirewallRules: [{8AFAB501-FF93-4C78-8A5E-DFFB2EBBB123}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Alien Swarm Reactive Drop\reactivedrop.exe
FirewallRules: [{50107E27-DB8C-411D-B20E-5E58F782BBBC}] => (Block) D:\program files (x86)\steam\steamapps\common\skyforge\mycomgames\mycomgames.exe
FirewallRules: [{3E6073DB-A3E2-4463-8B6E-4DB120D9925D}] => (Block) D:\program files (x86)\steam\steamapps\common\skyforge\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{9B8457D4-1879-4054-B82D-16D101DB69B8}D:\program files (x86)\steam\steamapps\common\skyforge\mycomgames\mycomgames.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\skyforge\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{58140E27-4C72-4A53-872C-F05FCAA4E185}D:\program files (x86)\steam\steamapps\common\skyforge\mycomgames\mycomgames.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\skyforge\mycomgames\mycomgames.exe
FirewallRules: [{9C3AD2C3-9999-487E-981D-7D135A08DD6D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{D23464D5-7192-49BE-94AB-BF9BDF770943}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{E15BAE7E-04D3-4F03-BDC3-FF32E12CEC52}] => (Block) D:\program files\teamspeak 3 client\ts3client_win64.exe
FirewallRules: [{E17126D7-407A-490D-8730-31B79809D134}] => (Block) D:\program files\teamspeak 3 client\ts3client_win64.exe
FirewallRules: [UDP Query User{776FDAF0-B9E2-4D7B-B71F-CCA285260C5C}D:\program files\teamspeak 3 client\ts3client_win64.exe] => (Allow) D:\program files\teamspeak 3 client\ts3client_win64.exe
FirewallRules: [TCP Query User{389C6C49-E9DF-45A4-8CF4-ED07669935A9}D:\program files\teamspeak 3 client\ts3client_win64.exe] => (Allow) D:\program files\teamspeak 3 client\ts3client_win64.exe
FirewallRules: [{64F0356A-0475-4E55-935C-08DEB1A522C4}] => (Allow) D:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe
FirewallRules: [{0202DDDC-E503-4FF6-921C-374B8509EADB}] => (Allow) D:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe
FirewallRules: [{38E39E1A-31BB-49BC-9CED-53EA77A81261}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Polarity\Polarity.exe
FirewallRules: [{1518F7E1-2C9D-4139-A12C-C009CA2272A3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Polarity\Polarity.exe
FirewallRules: [{D4D6EDF0-2179-4F3C-BE43-87F90F2B1EBC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Splatter\Splatter_Steam.exe
FirewallRules: [{4FD9FAE0-5E63-4382-95F3-BAA305C0D876}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Splatter\Splatter_Steam.exe
FirewallRules: [{3AC7E4F5-A060-442A-883D-F92C83F563F8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Sins Of The Demon\Game.exe
FirewallRules: [{7649DD8C-9DC0-4E8B-BAA2-569EE7299EC5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Sins Of The Demon\Game.exe
FirewallRules: [{7D6738A6-9FE3-4BD0-B755-1EDBBD6F941D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Deformers Alpha NA\bin\win7\deformers.exe
FirewallRules: [{3B86B22C-A6D4-41A4-876E-87BE94960550}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Deformers Alpha NA\bin\win7\deformers.exe
FirewallRules: [{D3719985-AD48-4565-8B8B-430DE2E8B0D9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe
FirewallRules: [{83649719-2ABB-4243-8033-7975FDE89D22}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe
FirewallRules: [{C886CE39-FA5C-4CC1-A2DF-90BC55DB4CE5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\NEKOPARA Vol. 0\nekopara_vol0.exe
FirewallRules: [{16DF8876-FEFF-4260-9982-1ABEF5B3CB46}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\NEKOPARA Vol. 0\nekopara_vol0.exe
FirewallRules: [UDP Query User{24A9DB34-6519-4681-ABFB-ABC33E3CF261}D:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{AFECB3EB-9CD4-4342-B027-ACA4E624AD18}D:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\program files\rockstar games\grand theft auto v\gta5.exe
FirewallRules: [{A4CE1FF5-61BE-4F57-B6EC-249775E8EC2F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{14EEF12F-269E-497A-AD79-3C2266BFFF2A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{E88203BF-420F-48DC-8C9A-D84D266DBC33}] => (Block) D:\mygames\revelation online\game\tianyu.exe
FirewallRules: [{7F248F7C-38B8-40A1-9506-476AA53BB325}] => (Block) D:\mygames\revelation online\game\tianyu.exe
FirewallRules: [UDP Query User{2D119868-6749-44D2-882B-EE1334A6AD4C}D:\mygames\revelation online\game\tianyu.exe] => (Allow) D:\mygames\revelation online\game\tianyu.exe
FirewallRules: [TCP Query User{A7CE1225-C6AF-45F6-AB79-4E66B3DDC34F}D:\mygames\revelation online\game\tianyu.exe] => (Allow) D:\mygames\revelation online\game\tianyu.exe
FirewallRules: [{286CC2A5-BF0F-4E24-9C08-A0038F93D32D}] => (Block) C:\users\micha\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{3191684A-DF00-4494-AA9E-46D654879299}] => (Block) C:\users\micha\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{2421F720-5722-49FF-A250-A730F9D99058}C:\users\micha\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\micha\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{32668634-FCBF-47F4-ABAA-24B967086CF0}C:\users\micha\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\micha\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{2EFBEECE-28B1-4B44-9B4D-068E3491C446}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TigerKnight_EW\frontend\bin\frontend.exe
FirewallRules: [{32B7BB86-C3A4-40BC-9DEA-B002A6A990E6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TigerKnight_EW\frontend\bin\frontend.exe
FirewallRules: [{38E4EDC5-E6AC-46AD-9558-4ECF0C2C295B}] => (Allow) D:\AeriaGames\TwinSaga-DE\game.bin
FirewallRules: [{B9DEA8DB-9AEC-4A55-B7E4-6A0083C0AC06}] => (Allow) D:\AeriaGames\TwinSaga-DE\game.bin
FirewallRules: [{62A584BB-9B84-4124-9C18-0A9A77F0469D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Legend of Dungeon Master\LoDM.exe
FirewallRules: [{38E61B98-E028-4936-BB7C-2BCDF0A811F5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Legend of Dungeon Master\LoDM.exe
FirewallRules: [{2C96ED0E-1515-450B-AFAE-6D2C6CAB0066}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TigerKnight_EW\frontend\bin\frontend.exe
FirewallRules: [{08685DA3-A54C-4551-8776-EE64E88D8D25}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TigerKnight_EW\frontend\bin\frontend.exe
FirewallRules: [{A7F083A6-2652-48D3-8925-92C2BD60E6E8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\firstassault\Shipping\nxsteam.exe
FirewallRules: [{D4DC13DA-9728-4A43-955F-574F307783FF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\firstassault\Shipping\nxsteam.exe
FirewallRules: [UDP Query User{B12BB99B-5470-45C9-9FB9-5C43E1ACAABB}D:\program files (x86)\steam\steamapps\common\freestylefootball\fsefootball.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\freestylefootball\fsefootball.exe
FirewallRules: [TCP Query User{12CD2186-95D1-4951-A4BA-AA8957CCDA20}D:\program files (x86)\steam\steamapps\common\freestylefootball\fsefootball.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\freestylefootball\fsefootball.exe
FirewallRules: [UDP Query User{83685552-63DA-46E6-A9AF-DD5A402F339F}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [TCP Query User{48B2193C-DF11-41C1-9C69-95A69751A919}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [{24D3F8B6-0708-49EF-916E-CED34A4084CE}] => (Allow) D:\VoidElsword\VoidElsword\data\x2.exe
FirewallRules: [{F809092D-D855-4112-9D29-23CB00DD4C7D}] => (Allow) D:\VoidElsword\VoidElsword\data\x2.exe
FirewallRules: [{0A3DBC49-9019-4C57-AECF-520FBBB9E3F0}] => (Allow) D:\VoidElsword\VoidElsword\voidels.exe
FirewallRules: [{642C7AF0-FE75-4E09-AAC2-ABBD7BD8200D}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Half dead\HalfDead.exe
FirewallRules: [{5ADA164E-5896-4AC4-917A-C81ABFB7CBD0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Half dead\HalfDead.exe
FirewallRules: [{11328F19-E0E0-4955-9FF8-17BEEE745507}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\MOBIUS FINAL FANTASY\mobiusff.exe
FirewallRules: [{E36A6E6F-FF45-415E-A2BD-5CB33197514A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\MOBIUS FINAL FANTASY\mobiusff.exe
FirewallRules: [UDP Query User{6A8353EF-F297-47A7-87D8-7BBDF8CD2EED}D:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe
FirewallRules: [TCP Query User{B6373873-7194-4888-B8B2-D3689C5A36BF}D:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\planetside 2\planetside2_x64.exe
FirewallRules: [{E7EF2C85-E6D3-4002-B631-6C5631232D14}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Airscape\EQLauncher.exe
FirewallRules: [{ECFE3314-5CC7-4A0A-AD63-9947745533AC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Airscape\EQLauncher.exe
FirewallRules: [{72E5433B-0A9E-4FB8-89AD-D123091CDC98}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Guild Quest\guild-quest.exe
FirewallRules: [{CF663751-A584-486E-B81E-56665223AA91}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Guild Quest\guild-quest.exe
FirewallRules: [{738DA67F-416A-42E5-B818-949B7F526FC9}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Prince of Persia Sands of Time\POP.EXE
FirewallRules: [{B91D407C-AF9C-4BFC-8526-B797B7D4E40F}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Prince of Persia Sands of Time\POP.EXE
FirewallRules: [{45E911E0-4EF3-493C-B631-62D1731B3B0E}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Prince of Persia Sands of Time\PrinceOfPersia.EXE
FirewallRules: [{42571EC3-98E9-4C89-AFAA-4A102D3DF15D}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Prince of Persia Sands of Time\PrinceOfPersia.EXE
         

Antwort

Themen zu Windows 10: rundll32.exe CPU Auslastung
100%, arbeitsspeicher, auslastung, avast, computer, cpu, cpu auslastung, datei, dll, folge, folgendes, frage, friert, komplett, manager, melde, meldet, problem, rundll, rundll32.exe, sicherheit, startet, task manager, virus, windows



Ähnliche Themen: Windows 10: rundll32.exe CPU Auslastung


  1. Bei Start von IE Explorer starten div. rundll32.exe, hohe CPU Auslastung auch mit Firefox
    Plagegeister aller Art und deren Bekämpfung - 19.03.2016 (8)
  2. Windows 8.1: Runtime Errror c:\windows\syswow64\rundll32.exe und Update-Fehler bei Windows
    Log-Analyse und Auswertung - 24.11.2015 (14)
  3. C:\WINDOWS\SysWOW64\RunDll32.exe Virus?
    Plagegeister aller Art und deren Bekämpfung - 14.01.2015 (33)
  4. Windows 8: TR/Bprotector.Gen2 in rundll32.exe
    Log-Analyse und Auswertung - 02.04.2014 (7)
  5. Runtime Errror c:\windows\syswow64\rundll32.exe
    Plagegeister aller Art und deren Bekämpfung - 11.10.2013 (15)
  6. Trojaner C:\Windows\system32\rundll32.exe Folgender Eintrag fehlt: FQ10 Fehler in C:\Windows\system32\rundll32.exe Folgender Eintrag fehlt:
    Plagegeister aller Art und deren Bekämpfung - 06.10.2012 (19)
  7. windows\SysWOW64\rundll32.exe - Eintrag FQ10 fehlt
    Log-Analyse und Auswertung - 27.09.2012 (2)
  8. windows\SysWOW64\rundll32.exe - Eintrag FQ10 fehlt
    Plagegeister aller Art und deren Bekämpfung - 21.08.2012 (7)
  9. Mein Online-Banking wurde ausspioniert!! / Fehler in C:\Windows\SysWOW64\rundll32.exe. Folgender Eintrag fehlt: FQ10 (Beim Windows-Start)
    Plagegeister aller Art und deren Bekämpfung - 19.08.2012 (2)
  10. Rundll32.exe seit tagen permanent bei 50% auslastung.
    Log-Analyse und Auswertung - 14.07.2012 (1)
  11. rundll32.exe erhöht CPU Auslastung auf 99% nach einiger Zeit
    Log-Analyse und Auswertung - 25.10.2011 (37)
  12. C:\Windows\System32\rundll32.exe
    Log-Analyse und Auswertung - 31.10.2010 (12)
  13. C:\WINDOWS\system32\run\rundll32.exe frage... wichtig
    Plagegeister aller Art und deren Bekämpfung - 08.10.2010 (13)
  14. HEUR/crypted in C:\Windows\Temp\rundll32.dll
    Log-Analyse und Auswertung - 10.09.2009 (10)
  15. explorer.exe verursacht 100% CPU-Auslastung über rundll32.exe
    Log-Analyse und Auswertung - 31.05.2007 (6)
  16. rundll32.exe 100% auslastung
    Plagegeister aller Art und deren Bekämpfung - 17.12.2004 (1)
  17. Again: rundll32.exe verursacht 100% CPU-Auslastung
    Log-Analyse und Auswertung - 05.12.2004 (11)

Zum Thema Windows 10: rundll32.exe CPU Auslastung - Mein Problem ist folgendes, sobald ich meine Computer hochfahre passiert es in letzter Zeit das sich die Datei rundll32.exe mehrmals meldet und somit meine CPU und Arbeitsspeicher auf 100% auslastet. - Windows 10: rundll32.exe CPU Auslastung...
Archiv
Du betrachtest: Windows 10: rundll32.exe CPU Auslastung auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.